PHP Quiz

**phrozen1221** · Apr 5, 2003, 07:21

Is it my turn to ask now?

**someonewhois** · Apr 5, 2003, 10:11

You sure you didn't test it..?

[ Edit: Missed third page; sure ask one now

]

**HarryF** · Apr 6, 2003, 08:57

Just barging in with a question;

Code:

%27+AND+1%3D1

What is this?
What is it trying to exploit?
How might it be used?

**sojomy** · Apr 6, 2003, 10:53

Originally Posted by HarryF

Just barging in with a question;

Code:

%27+AND+1%3D1

What is this?
What is it trying to exploit?
How might it be used?

Ok, I'm just guessing. But I think that it is
' AND 1=1
And it would be added to a URL of a GET form, or typed into a text box in a form that does something (Like a login page or a delete page). It is trying to do an SQL Injection. So if the programmer used code like

PHP Code:


$SQLStatement = 'SELECT * FROM Users '
              . 'WHERE UserName=\'' . $_GET['UserName'] . '\' '
              . 'AND Password=\'' . $_GET['Password'] . '\'';
mysql_query($SQLStatement);

And the user typed in Sojomy for the username, and ' AND 1=1 for the password, the actual SQL Query would look like this

SELECT * FROM Users WHERE UserName='Sojomy' AND Password='' AND 1=1

But I'm confused HarryF, shouldn't it be ' OR 1=1 so that it will find a user even if the Username and Password don't match, and still give you access? Or in a delete table, delete everything even if the query paramaters don't match?

Also, this will only work if magic_quotes_gpc is turned off, and the programmer does not use AddSlashes() on his data before puts it into the database. Was I close enough?

**Jeff Lange** · Apr 6, 2003, 11:49

Pretty close, I think Harry was just trying to show how it could be done, and not an actual thing, but the 'OR 1=1 does make more sense.

**HarryF** · Apr 6, 2003, 13:00

Whoops - yep 'OR 1=1' ( *cough* ) - anyway - spot on!

**seanf** · Apr 6, 2003, 13:33

Back on track people! You've got to answer a question before you can ask one. The next question should be from cyborg

Sean

**HarryF** · Apr 6, 2003, 14:15

Back on track people! You've got to answer a question before you can ask one. The next question should be from cyborg

Sorry - couldn't help myself

**sojomy** · Apr 6, 2003, 15:16

Originally Posted by seanf

Back on track people! You've got to answer a question before you can ask one. The next question should be from cyborg

Technically, I am the one who answered HarryF's question, Cyborg just validated it

But since I'm still new (I think) and Cyborg did answer the base64_decode, questionI'll let him ask a question for me.

**seanf** · Apr 7, 2003, 12:18

That's the question I'm on about. If he doesn't post one soon feel free

Sean

**Jeff Lange** · Apr 7, 2003, 18:07

Go ahead, I am at a loss, been thinking for over 25 hours now... can't come up with anything.

**sojomy** · Apr 7, 2003, 21:04

Originally Posted by cyborg from dh

Go ahead, I am at a loss, been thinking for over 25 hours now... can't come up with anything.

Well I can't think of anything trivial, so I'll ask a question that I want to know the answer to, and I'm sure HarryF will jump right on it...but others feel free to if he doesn't.

What is the point of using OOP to create classes that you will never instantiate more than one instance of at a time? I understand it makes stuff "cleaner" (as everyone here seems to put it), but so does putting the relative functions in a file together. So why is OOP a better method?

**Jeff Lange** · Apr 7, 2003, 21:36

In my opinion, in most cases, it isn't... Until PHP5 that is, which will bring more functionality in general to the entire OOP interface.

**seanf** · Apr 10, 2003, 06:20

Let's have a question ...

Sean

**redemption** · Apr 10, 2003, 06:59

Originally Posted by seanf

Let's have a question ...

Sean

Why don't you post one, sean? Otherwise everyone will just be looking to each other for the question.

**seanf** · Apr 10, 2003, 07:08

It's hard to think up questions, but hopefully we're all learning something

Question:

Which PHP extension allows you to process credit cards without a third-party (such as Authorize.Net)?

Sean

**nsr81** · Apr 10, 2003, 07:10

That would be cURL with SSL support

**seanf** · Apr 10, 2003, 07:13

That's right in that it can be used for that, but there's a specific extension I'm looking for. You're welcome to post a question though

Sean

**nsr81** · Apr 10, 2003, 07:17

ah, think I got it. But I'll give some one else a chance to guess first.

Will post my question in a few hours. leaving for college right now [img]images/smilies/biggrin.gif[/img]

**nsr81** · Apr 10, 2003, 14:44

Answer to sean's question is: CCVS & MCVE

don't have anything usefull to ask, how about what does LAMP stand for, in context of opensource development.

**sojomy** · Apr 10, 2003, 20:54

Easy
Linux, Apache, MySQL & PHP
But I'm more of a WAMP kinda guy

**nsr81** · Apr 10, 2003, 21:16

same here

**anode** · Apr 10, 2003, 22:29

I thought the P in LAMP was PHP/Python/Perl.

**jgreen** · Apr 10, 2003, 22:40

Leave
All
Microsoft
Products

**seanf** · Apr 11, 2003, 11:53

Question sojomy?

Sean

User Tag List

Thread: PHP Quiz

Thread Tools

Display

Bookmarks

Bookmarks

Posting Permissions