fpgroups (was: Re: qualifier)

Fairlight fairlite at fairlite.com
Tue Jul 31 19:46:11 PDT 2007


>From inside the gravity well of a singularity, fp at casabellagallery.com shouted:
> Check this link
> 
> http://www.fpgroups.com/index.php?Target=code
> 
> Please let me know if you find this script useful.
> 
> I now you can write this sort of script in matter of minutes
> but I'll like to take this opportunity to 'push' the filePro group
> concept  :)

Shameless, Jose, shameless!  :)

It has to be done sometimes, though...  *smile*

As a practical note, it's not generally wise to pop the password back onto
the screen when signing people up, mate.  Security no-no.  And it's
"immediately", not "inmidiately" on the code snippet return page.

I like the new reface you've done on it.  Much more professinal looking,
Jose.  Good job!

I put up the results of an html2prc run so people can see another fast way
of doing HTML from fP via their favourite editor.  The program could be
written in anything, I just happen to have a converter written.  But the
end methodology that illustrates what to shoot for is there.  Someone wants
to reinvent the wheel, they can take the time to do so if they wish.

Oooh...nasty!  I just looked at my code in the submitted form.  It starts
off fine enough.  Then later on your code displays a basic shortfall in
that it does not escape special entities.  Thus, my embedded HTML in my
snippet causes your display to -break- entirely.  That's not my fault, it's
in your display code.  Start spitting out > as &gt;, < as &lt;, " as &quot;
and the like.  If you don't filter special characters, not only are you
opening yourself to broken visbility issues, but XSS.

It's ironic, as you caught ^A on colons but missed SGML syntax characters.

Well, when you fix it, the code I posted will be 100% readable.  :)

Being able to edit would have been a plus.  Not seeing it available so
far, nor can I delete my own snippet.  Nor is the posted by or posted
date actually displayed.  

And displaying the email addresses as mailto: anchors...also a bad idea.
Might look into displaying them as plaintext and obfuscated (ie., fpgroups
[at] fairlite [dot] com), or possibly going to the lengths of having
them rendered by the GD extensions to PHP.  You're creating a nice spam
aggregator.  I can toss fpgroups0..infinity at it if things get unruly and
I need to reroll new addresses, but others don't have that luxury.

Tip:  Work out the major details before plugging things.  You generally
only get a few free shots--make them count for as much as they can!

No offense, man...just trying to help.

mark->
-- 
The latest synth mixdown...
http://media.fairlite.com/Isolation_Voiceless_Cry_Mix.mp3


More information about the Filepro-list mailing list