[geeklog-devtalk] geeklog-devel digest, Vol 1 #221 - 4 msgs
geeklog-devel-request at lists.geeklog.net
geeklog-devel-request at lists.geeklog.net
Fri Nov 7 13:00:10 EST 2003
Send geeklog-devel mailing list submissions to
geeklog-devel at lists.geeklog.net
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.geeklog.net/listinfo/geeklog-devel
or, via email, send a message with subject or body 'help' to
geeklog-devel-request at lists.geeklog.net
You can reach the person managing the list at
geeklog-devel-admin at lists.geeklog.net
When replying, please edit your Subject line so it is more specific
than "Re: Contents of geeklog-devel digest..."
Today's Topics:
1. Interesting concept (Tony Bibbs)
2. Re: Interesting concept (Simon Lord)
3. Re: Interesting concept (Tony Bibbs)
4. PostNuke's way of handling Post and Get Vars (Blaine Lang)
--__--__--
Message: 1
Date: Thu, 06 Nov 2003 15:05:40 -0600
From: Tony Bibbs <tony at tonybibbs.com>
To: Geeklog <geeklog-devel at lists.geeklog.net>
Subject: [geeklog-devel] Interesting concept
Reply-To: geeklog-devel at lists.geeklog.net
You may have seen it already:
http://invisiblog.com/
It allows for truly anonymous posting.
--__--__--
Message: 2
From: Simon Lord <slord at marelina.com>
Subject: Re: [geeklog-devel] Interesting concept
Date: Thu, 6 Nov 2003 16:28:00 -0500
To: geeklog-devel at lists.geeklog.net
Reply-To: geeklog-devel at lists.geeklog.net
So who is liable for comments posted then? What if some goof posts the
code and how to use it to decrypt DVD movies etc? I think it's very
cool, but I wouldn't want to be the owner of such a site.
Then, at the other end of the spectrum we have this:
http://www.theregister.co.uk/content/6/33835.html
On Nov 6, 2003, at 4:05 PM, Tony Bibbs wrote:
> You may have seen it already:
>
> http://invisiblog.com/
>
> It allows for truly anonymous posting.
>
> _______________________________________________
> geeklog-devel mailing list
> geeklog-devel at lists.geeklog.net
> http://lists.geeklog.net/listinfo/geeklog-devel
>
>
Sincerely,
Simon
--__--__--
Message: 3
Date: Thu, 06 Nov 2003 15:45:06 -0600
From: Tony Bibbs <tony at tonybibbs.com>
To: geeklog-devel at lists.geeklog.net
Subject: Re: [geeklog-devel] Interesting concept
Reply-To: geeklog-devel at lists.geeklog.net
It's as strong as GPG encryption. We'd have to be able to break it in
order to be able to say who posted something. If it is slander deemed
inappropriate by law the service provider (you) could be asked to remove
the offending post but you are not liable for damage done from the posts.
--Tony
Simon Lord wrote:
> So who is liable for comments posted then? What if some goof posts the
> code and how to use it to decrypt DVD movies etc? I think it's very
> cool, but I wouldn't want to be the owner of such a site.
>
> Then, at the other end of the spectrum we have this:
>
> http://www.theregister.co.uk/content/6/33835.html
>
>
>
> On Nov 6, 2003, at 4:05 PM, Tony Bibbs wrote:
>
>> You may have seen it already:
>>
>> http://invisiblog.com/
>>
>> It allows for truly anonymous posting.
>>
>> _______________________________________________
>> geeklog-devel mailing list
>> geeklog-devel at lists.geeklog.net
>> http://lists.geeklog.net/listinfo/geeklog-devel
>>
>>
> Sincerely,
> Simon
>
> _______________________________________________
> geeklog-devel mailing list
> geeklog-devel at lists.geeklog.net
> http://lists.geeklog.net/listinfo/geeklog-devel
--__--__--
Message: 4
From: "Blaine Lang" <geeklog at langfamily.ca>
To: <geeklog-devel at lists.geeklog.net>
Date: Thu, 6 Nov 2003 20:30:28 -0500
Subject: [geeklog-devel] PostNuke's way of handling Post and Get Vars
Reply-To: geeklog-devel at lists.geeklog.net
I have a client project that will require doing a module for PostNuke.
As best I can tell - PostNuke (pn) is mostly all new code and approach from
phpNuke.
PostNuke is still not a 1.0 release. Latest being 0.726
Anyway - They have a very different API then ours. So far, I like what I
see. Not necessarily better - just different
I can send out updates of what I see and learn if this group is interested.
With our recent security related issues and extra coding requried for plugin
developers to handle POST and GET vars. I liked the solution PostNuke has.
The following is how all variables are to be retrieved and used inside
modules. It makes it easy as I've had to include functions each time and
recently we determined a need for additional filtering.
Blaine
----------------
Name
pnVarCleanFromInput - obtain form variable
Synopsis
mixed pnVarCleanFromInput(name, ...);
string name, , string ... ;
Description
pnVarCleanFromInput() takes a variable number of name arguments and for each
one obtains the variable from the input namespace. It removes any preparsing
done by PHP to ensure that the string is exactly as expected, without any
escaped characters.
pnVarCleanFromInput() also removes any HTML tags that could be considered
dangerous to the PostNuke system's security.
Return Values
If pnVarCleanFromInput() is only passed a single name argument then it
returns the corresponding variable. If pnVarCleanFromInput() is passed
multiple arguments then it returns an array of corresponding variables.
Notes
Obtaining input variables from the global namespace, or from arrays such as
HTTP_POST_VARS, is not supported and should never be done.
pnVarCleanFromInput() is the only supported way of obtaining such variables.
Examples
// Obtain a single value
$id = pnVarCleanFromInput('id');
// Obtain a number of values
list($name, $number) = pnVarCleanFromInput('name', 'number');
--__--__--
_______________________________________________
geeklog-devel mailing list
geeklog-devel at lists.geeklog.net
http://lists.geeklog.net/listinfo/geeklog-devel
End of geeklog-devel Digest
More information about the geeklog-devtalk
mailing list