Last Played Song: Currently disabled due to loading issues.

Exploited! - Mihalism

posted in: PHPMySQL 
 CuLT
Avatar
 Administrator
 Entry No: 64

Sorry, not nearly as promising as the title, this article is about another hack attempt on me, this one aimed at wthax.org.

Thanks to an extremely poorly written (but pretty) image hosting script, wthax.org turned out to be susceptible to script execution.

Fortunately for me I discovered it before, it seems, any damage was done, and I've patched the code myself accordingly.

This is a very real threat though for anyone who uses the Mihalism image uploading software.

I've spend the guts of two hours poring through the code, adding and removing bits to make it a hell of a lot more secure than it was.

Heh, I'll either release it here as a culted-up version of Mihalism, or just give the code to Mihalism after I'm done.

Thursday 22nd of June 2006 01:57:31 AM  (7) comments on this article 


Simple PHP Gallery

posted in: PHPMySQL 
 CuLT
Avatar
 Administrator
 Entry No: 49

It appears that Simple PHP Gallery has been abandoned (for now) by the author, Paul Griffin.

As this is the most useful PHP gallery software I've come across (all the more well known ones seem to have frivolous features and/or obscure navigation), I'm happy to devote a section to it here.

I've also taken the liberty of making some minor changes and bugfixes to the software.

Quote from Original SPG Site:
Simple PHP Gallery is a gallery management system designed to tackle small- to medium-size galleries with a minimum of hassle. While SPG sacrifices a few of the bells and whistles of other gallery systems in favor of simplicity, ease-of-use, and speed, it boasts a large feature set.


Download Simple PHP Gallery Here (TGZ) or here (ZIP).

Tuesday 17th of January 2006 12:19:58 AM  (5) comments on this article 


First Update of 2006...

posted in: PHPMySQL 
 CuLT
Avatar
 Administrator
 Entry No: 48

Yeah, more than two weeks without an update is more than a little lazy, but I was hacking away at the new eirtaku site.

And I've since made it obsolete, which is mildly irritating. I've just (hopefully fully) implemented php's mod_rewrite across the site with some help from d_fens. The URLs on the site will look nicer, be easier to remember and be better protected against certain forms of hack attacks.

I've also internally relocated the site; basically I've moved everything up into the main directory.
Any old links should still work if I've done my mod_rewrite homework correctly, I'm guessing some people won't even realize there's been a change in that department. Which means that there might be a better way to do it...

Oh and I just stuck it in a comment in the previous article, but I added BBCode and some smiley code for the craic. Regex is most fun.

Hmm, on to further bugtesting!

Sunday 15th of January 2006 09:35:30 PM  (1) comments on this article 


1.0.6

posted in: PHPMySQL 
 CuLT
Avatar
 Administrator
 Entry No: 40

I've been working on the admin and posting side of things on the site, as well as fixing a few security flaws.

I've added the post editing function that I'd been meaning to, and generally given the posting interface more of a bulletin board type feel (though I've yet to add BB Code wink )

Changed the date formatting too, so things will look somewhat disparate in that department for a while unless I change all the older dates (which I might).

d_fens has been fiddling away with AJAX implementation on his site with great success, and I have yet to delve into phps mod_rewrite.

Thursday 29th of December 2005 08:56:09 PM  (2) comments on this article 


Update: cultureProject

posted in: PHPMySQL 
 CuLT
Avatar
 Administrator
 Entry No: 30

I've decided to rename the system to cultureProject, just as an extension to my nick smile cultCMS wasn't rolling off the tongue too well (I learned my mistake from making up the name for EirtaKon, but with 20,000 hits for that there's not much I can do now :P

More importantly I've added and am continuing to add loads of themes for the site. Currently preference is stored in php session variables (the style memory is wiped when you close your browser). It'll stay that way until I implement a user registration system (planned for version 1.3).

Currently about half way through updates to 1.1, still have static page creation, an edit function and some more autoparsing features to add.

2005-11-26 00:24:56  (0) comments on this article 


Another update towards 1.1

posted in: PHPMySQL 
 CuLT
Avatar
 Administrator
 Entry No: 22

Right, finished a little update marathon which is going to destroy me for tomorrow (it's nearly 5am and I'm up at 7:30).

Completely updated the stylesheet system, now the stylesheet is created dynamically and can be easily altered to change the look of the site entirely. It operates via the config file at the moment, but I'll be getting some javascript to take care of it.

The RSS feed now outputs in the correct text/xml format.

Smaller changes include:
- the header of the site is a lot smaller than it was
- one main image as opposed to two
- general code cleanup of the sidemenu, index.php, list.php

The admin side is still a bit messy, but the important reader facing environment should work.

2005-11-24 05:06:45  (4) comments on this article 


Overhaul of index.php

posted in: PHPMySQL 
 CuLT
Avatar
 Administrator
 Entry No: 21

I've done a major overhaul of index.php and as a result have made archive.php redundant.

I've solved my problem with large amounts of unnecessary code and reduced the MySQL overheads.

I guess this brings cultCMS up to version 1.02. Updates 1.1, 1.2 and 1.3 are already planned.

2005-11-22 23:24:10  (2) comments on this article 


Archive.php updated

posted in: PHPMySQL 
 CuLT
Avatar
 Administrator
 Entry No: 20

Most of the links in the side menu should actually be useful now since I revised the code for archive.php this evening.

Time to start getting back into coding and recommence work on the site, I've been out of it too long smile

2005-11-21 01:38:44  (1) comments on this article 


cultCMS gets first external run

posted in: PHPMySQL 
 CuLT
Avatar
 Administrator
 Entry No: 17

My "in-development" content management system (based on the code of this site) cultCMS, is getting its first run as a site outside my own.

As expected, it still needs a lot of work before it is fully portable, but every problem encountered during the port will help me make it a better package. Hopefully it'll be useful to a load of redbrick users when it's finalised.

the CMS is running as the main site EirtaKon, the Anime Convention running in DCU this November, and is expected to recieve a great deal of use over the coming months.

2005-10-05 00:29:59  (0) comments on this article 


Update: Image Verification (Bad Comments)

posted in: PHPMySQL 
 CuLT
Avatar
 Administrator
 Entry No: 15

Followed a nice tutorial heregenerating verification system for posts.

This should be pretty much bulletproof protection against spammy bot comments!

2005-09-30 19:23:16  (1) comments on this article 


CSS Validated

posted in: PHPMySQL 
 CuLT
Avatar
 Administrator
 Entry No: 14

Err, realized there that I never had the the CSS for the site verified.

Well, all done now and added to the credits at the end of the menu.

2005-09-29 17:48:53  (0) comments on this article 


RSS Feed Added!

posted in: PHPMySQL 
 CuLT
Avatar
 Administrator
 Entry No: 13

I wrote a simple (but ugly to the naked browser) RSS feed for the sites artcles.

I'm using Beta 1 of Firefox 1.5 and for some reason the feed icons no longer display in the bottom corner, though it should be viewable to anyone using any of the 1.0x releases.

I also added a link to the end of the menu under the XHTML one for feed validation.

The RSS feed is at http://www.redbrick.dcu.ie/~cult/site/rss.php.
*sigh* writing up the instructions for this site is going to be fun...

2005-09-29 00:31:43  (0) comments on this article 


Rearranged code

posted in: PHPMySQL 
 CuLT
Avatar
 Administrator
 Entry No: 12

Having to pass default parameters to article.php (the previous name of the main article management file) was becoming annoying.

It's not that it was difficult to do, it just looked damn ugly in the address bar. Seeing as forums and other similar sites pass default parameters all the time I figured I was missing something simple - which I was.

I just had another look at the code there; I just merged two if statements together and switched the order in which the file looks for passed parameters.

I renamed the file index.php too for the original reason that it looks cleaner. Arguments can be passed simply as "/~cult/site/?parameter=value" now.

2005-09-28 22:54:06  (2) comments on this article 


Newest 1 2 3 4 5 6 7 8 9 10