By now, we’ve all encountered captcha images in online forms. Captchas are a necessary evil, and this article will teach you how they’re made.
Please note that while there are better, automatic third party solutions for captchas out there such as ReCaptcha, this tutorial aims merely to explain and demonstrate how such technology actually works. We won’t be explaining what captchas actually are, as it’s assumed to be common knowledge and already covered in greater detail elsewhere.
The Web's Largest Community Tracking Online Fraud & Abuse
Project Honey Pot is the first and only distributed system for identifying spammers and the spambots they use to scrape addresses from your website. Using the Project Honey Pot system you can install addresses that are custom-tagged to the time and IP address of a visitor to your site. If one of these addresses begins receiving email we not only can tell that the messages are spam, but also the exact moment when the address was harvested and the IP address that gathered it.
To participate in Project Honey Pot, webmasters need only install the Project Honey Pot software somewhere on their website. We handle the rest — automatically distributing addresses and receiving the mail they generate. As a result, we anticipate installing Project Honey Pot should not increase the traffic or load to your website.
What is OSS ?
OSS (OpenSourceStore) is a open source project written in PHP.
The name OSS is an anagram of SOS and can be traducted by "OpenSourceStore" or "OpenSourceSolution".
The goal of the project is to propose an IHM for discovering new open source PHP projects, trying these and keeping these into your own domain.
Why do you use the OSS client ?
You can use the client for deploying any open source project on your apache/nginx server in a few seconds.
So you can try some of open source project to get the One you've searched.
Why do you use the OSS server (the store) ?
You can use the server (the store) for giving an alternative of the standard store (example : your are a very bad developper (like me) and you would like to shaare your projects all the same, you can do it by building your own store and diffusing its adress).
One of my favorite security measures here at Perishable Press is the site’s virtual Blackhole trap for bad bots. The concept is simple: include a hidden link to a robots.txt-forbidden directory somewhere on your pages. Bots that ignore or disobey your robots rules will crawl the link and fall into the trap, which then performs a WHOIS Lookup and records the event in the blackhole data file. Once added to the blacklist data file, bad bots immediately are denied access to your site. I call it the “one-strike” rule: bots have one chance to follow the robots.txt protocol, check the site’s robots.txt file, and obey its directives. Failure to comply results in immediate banishment. The best part is that the Blackhole only affects bad bots: normal users never see the hidden link, and good bots obey the robots rules in the first place.
PHP Error, error reporting done right!
Better error messages, full syntax highlighting, code snippets, and works for ajax too
There’s a lot of outdated information on the Web that leads new PHP users astray, propagating bad practices and insecure code. PHP: The Right Way is an easy-to-read, quick reference for PHP popular coding standards, links to authoritative tutorials around the Web and what the contributors consider to be best practices at the present time.
There is no canonical way to use PHP. This website aims to introduce new PHP developers to some topics which they may not discover until it is too late, and aims to give seasoned pros some fresh ideas on those topics they’ve been doing for years without ever reconsidering. This website will also not tell you which tools to use, but instead offer suggestions for multiple options, when possible explaining the differences in approach and use-case.
This is a living document and will continue to be updated with more helpful information and examples as they become available.
Yay, finally we released PHP 5.5, which is a new big release for PHP. In preparation for this I yesterday sent out a mail to the PHP core developers stating that the "PHP-5.3 BRANCH IS CLOSED NOW". After I saw this quoted on twitter and different websites I want to make a few things clear for users of PHP:
- The mail is an information for core developer that all changes for 5.3 should go by the release master and our security group
- We won't do normal bug fixes
- we will continue doing security fixes for a year where needed
What this means for users of PHP is that they can continue using PHP 5.3 and when upgrades come they are very low risk of breaking anything (we always try not to break anything, but any person's bug might be another person's feature) so they should be applicable easily and applied fast. So when you are a happy PHP 5.3 user and don't want to touch too many things there is no immediate need to upgrade to 5.4 or 5.5 - for a year.
PHPDocFill is a simple tool that allows you to easily complete your PHP script documentation in PHPDoc format
It was written with one simple purpose: filling up holes in your documentation. Have you ever needed to write PHP code so fast that you didn't have time to properly comment it? When you need to catch up, your only option is usually to open up every single PHP file and figure out by yourself what needs to be completed. On top of that, if your IDE doesn't support automatic creation of PHPDoc-like documentation comment blocks, you'll probably be annoyed by the syntax (/ ... ... /). PHPDocFill suppresses all these annoying steps and makes documenting your code a whole lot easier.
PHPDocFill comes as one unique PHP file that you place in a folder containing your PHP projects.
It scans the current folder and subfolders to find .php files and offers you to complete their documentation easily. PHPDocFill also allows you to generate a simple HTML manual, but bear in mind that when it comes to generating documentation, it will not fully replace powerful tools like PhpDocumentor. The manual that PHPDocFill generates consists of a simple index of the code elements (that you can select at the top of this page) along with their raw descriptions and tags if any. This version of PHPDocFill does not support the parsing and the proper presentation of tags. As stated before, you'll want to use a more advanced tool for better presentation.
Great Instant Documentation Search for webdeveloppers
Une question que je me pose en ce moment… Comment, en PHP, comparer deux version d’un même texte et n’en faire plus qu’une contenant les différentes modifications. Basiquement : diff + merge. C’est ce qui est utilisé couramment dans les systèmes de Wiki (dont Wikipédia) et je vois quelques applications à cela qui pourraient être très sympathiques.
Après une petite recherche, voilà ce que je retiens de ce qui existe.
On my previous post I was shown how to shorten URL using Bitly API key. As well as Google also provide URL shorten service (goo.gl) for its users. In this post I show you how to shorten URL using Google URL shorten API. To working with this API you will need to get a Google URL Shorten API key. If you do not have get one from here for free.
Medoo is extremely lightweight with only one file, easy-to-use, easy-to-learn, and optimized for high performance to increase the development experience and user experience for web application. It`s suitable for every PHP development project with SQL database needed.
Eden is a PHP library designed for rapid prototyping, with less code. Yes, Really.
Ever thought about doing a Facebook+Twitter+Google mashup? How about integrating that with PayPal? Is setting up shipping options in your cart a pain? Adding different libraries form different sources add more complexity to your project and ends up to be hard to maintain. Eden simply a set of reusable components, that works with any PHP framework and CMS. Eden makes code logical and readable with dead simple syntax. Eden works with major players
Welcome to part 2 of this two-part series discussing MVC and PHP, where we’ll discuss some of the considerations one must make when using an MVC architecture. If you’ve come straight to this article without reading part 1 first, I encourage you to head back and have careful read as this one will assume that you’ve read and understand everything it discussed. With that in mind, let’s get started!
This is a PHP, PDO and SQLite3 example, which demonstrates the SQLite3 databse usage with PHP-PDO. The PHP / PDO / SQLite3 example code demonstrates following things, and their us
It is an exciting time to be a PHP developer. There are lots of useful libraries released every day, and with the help of Composer and Github, they are easy to discover and use. Here are 24 of the coolest that I’ve come across.
Weevely is a stealth PHP web shell that provides a telnet-like console. It is an essential tool for web application post exploitation, and can be used as stealth backdoor or as a web shell to manage legit web accounts, even free hosted ones.
Weevely is currently included in Backtrack and Backbox and all the major Linux distributions oriented for penetration testing.
In today’s world with so many third-party integrations and content-sharing, it’s important to understand and make use of protocols like SCP and SFTP. PHP’s SSH2 extension, a wrapper for libssh2 which implements the SSH2 protocol, provides several functions you can use to securely transfer files.
To begin leveraging these functions, it’s obvious the SSH2 package needs to be installed. As it’s a PECL extension, the installation process will depend based on your operating system of choice.
Dans l’épisode précédent "La sécurisation des mots de passe, c’est salée", j’avais expliqué l’intérêt du sel pour protéger les mots de passe de ses utilisateurs. On va voir désormais que cela n’est toujours pas suffisant, et que seul les poissons volants (blowfish) pourront nous sauver la mise !
Saler et hacher ne suffit pas
A la lecture de deux très bons articles sur le sujet : How to safely store a password (en), Exemple de stockage de mot de passe en Java : hashage et salage, est-ce suffisant ? ; on se rend compte que saler et hacher ne suffit pas !
Eden is a PHP library designed for rapid prototyping, with less code. Yes, Really.
Ever thought about doing a Facebook+Twitter+Google mashup? How about integrating that with PayPal? Is setting up shipping options in your cart a pain? Adding different libraries form different sources add more complexity to your project and ends up to be hard to maintain. Eden simply a set of reusable components, that works with any PHP framework and CMS. Eden makes code logical and readable with dead simple syntax.