26 Responses to “PHP Tutorials: Dynamic pages (Security update)”

  1. 1977girish April 5, 2011 at 10:42 PM #

    hi alex thx for ur php vid,, i have the same Q , how would i use my CSS template from html in php? can u gide me in that

  2. swrphome April 5, 2011 at 11:25 PM #

    Greetings. I learned so many things from you. Thank you very much. Now I have a question. How can you prevent them from seeing your directory?

    If I type on the browser (as an example:) yoursite.com/tutorials/dynamic_page it will show your directory… and I do not want to allow it.

    Thanks.

  3. martynesku April 6, 2011 at 12:06 AM #

    A simple regular expression would have done the trick

  4. 75Mrdanny April 6, 2011 at 12:36 AM #

    Excellent videos, thank you so much( Phpacademy) it did really help me to finish my project. I watch and followed other tutorials but did not work. But your video saved my life thank you agin. By the way please do not listen to some of the comments. If those people can do better then why they do not do it them self

  5. ricardogzzzz April 6, 2011 at 1:28 AM #

    Great videos, one thing i think you should use an OR on that if, because an user can still access other files that are in the same directory, as they dont have to put an / on the url

  6. ukrainesov21 April 6, 2011 at 1:29 AM #

    @nadasvada Yeah, he should slow down a little bit and – for a better perfection – get a bit better prepared before recording the material. Anyway, it’s very cool and helpful.

  7. michaelcorelone April 6, 2011 at 2:11 AM #

    @phpacademy You are Excellent!

  8. dhaneshmane April 6, 2011 at 2:46 AM #

    well its nice info.

  9. raquelborn April 6, 2011 at 3:41 AM #

    This is giving me so much grief. It keeps getting upset at me!!! urgh

  10. gilramirez12 April 6, 2011 at 4:28 AM #

    This did not work for me. Can you please post a link to the code so that I can compare it with my own? Thanks!

  11. JonnoTheBonno April 6, 2011 at 5:24 AM #

    @nadasvada Don’t you think that was a bit harsh, do you have ADHD, so he sounds like he has a behaviour disorder?

  12. theagent9 April 6, 2011 at 5:45 AM #

    these faggots at you tube and their dam commercials are getting on my nerves.

  13. jjppmm29 April 6, 2011 at 6:12 AM #

    @crazynoob11 well it depends how you want your website to be.. do you want it rigid or do you want it more open so people can look at other things and really look at everything that is on your website this video is just and add on you dont need it but it will keep people from hacking your server

  14. Einzigartig8968 April 6, 2011 at 6:51 AM #

    Nice Video i like ur work 😀

  15. flangofas April 6, 2011 at 7:11 AM #

    excellent guy excellent tutorial!!!

  16. schnepman1993 April 6, 2011 at 7:50 AM #

    1:44 “…we’re not gonna die…”. You liar! 😛

  17. crazynoob11 April 6, 2011 at 8:09 AM #

    This defeats the purpose of the 3rd dynamic page vid you made :
    Dynamic pages update
    What if I wanted a file like : videos/video1
    ???

  18. shotox21 April 6, 2011 at 8:25 AM #

    Thank you for making this extremely simple for me to understand, I’ve been reading and reading and reading, still couldn’t get my mind around it.

    You’ve made it so easy, thank you very much kind sir!

  19. vb6help April 6, 2011 at 8:48 AM #

    i think you should do something else then this 😀 you got a line there “$path = $section.”/”.$page.”.php”;”

    you could change it to
    “$path = $section.”/”.$page.”.inc.php”;” then rename the files to filename.inc.php

  20. domneth April 6, 2011 at 9:20 AM #

    I should clarify.. error messages that contained possible useful information to malicious users.

    I used error_reporting(0) to disable that until I can find a better solution (if there is one).

  21. domneth April 6, 2011 at 9:52 AM #

    Ya, it would have helped. I understand the prevention, but honestly I have been unable to duplicate the said security issue. the only thing I was able to drum up were some error messages that contained information i’d rather people didn’t see.

  22. Josabooba April 6, 2011 at 10:04 AM #

    It would have been nice to see an example of you using the

    …update/index.php?page=../../someFile.php

    to access what you are then going to show how to STOP access to this someFile.php

    A before and after kind of thing 🙂

  23. phpacademy April 6, 2011 at 10:44 AM #

    Ha, I don’t, no!
    Thanks for the positive feedback about my videos anyway!

  24. nadasvada April 6, 2011 at 10:58 AM #

    ….man, have you got ADHD? Sounds like you’re talking with a gun to your head…

    Anyway, nice videos 🙂

  25. onlinecmd34 April 6, 2011 at 11:57 AM #

    could you do an update so that you can search the site for a page. It would be a big help.

  26. deeaka September 6, 2012 at 5:13 PM #

    I have read several just right stuff here. Definitely worth bookmarking for revisiting. I wonder how so much attempt you set to create the sort of wonderful informative web site.

Leave a Reply to gilramirez12 Click here to cancel reply.