[PAYH] Sudden ridiculous problem
Thanks for that Jelv
Yes i believe that's the problem
If Register Globals = Off then that means I'm going to have to use $_POST and $_GET for all my code which is a real pain because theres a lot of it so whats the best way round it?
If i could edit the PHP.ini file then changing Register Globals = on would compromise security so that's no good either
NEW EDIT
It seems my best option, even though it's a pain to change all the code in my current site, is to use the $_GET[whatever] method from now on.
This is one instance where the switch over to PHP 5 has not been too friendly for me. It maybe that i have bad habits and the method i was using previously was not wise.
Any comments/advice?
Yes i believe that's the problem
If Register Globals = Off then that means I'm going to have to use $_POST and $_GET for all my code which is a real pain because theres a lot of it so whats the best way round it?
If i could edit the PHP.ini file then changing Register Globals = on would compromise security so that's no good either
NEW EDIT
It seems my best option, even though it's a pain to change all the code in my current site, is to use the $_GET[whatever] method from now on.
This is one instance where the switch over to PHP 5 has not been too friendly for me. It maybe that i have bad habits and the method i was using previously was not wise.
Any comments/advice?
Thanks for your comments Spraxyt and me 
I've read the areas you have mentioned including that about php 6 and about the security issues if you turn register globals to on so i have made the alterations to my code on a couple of pages to satisfy myself that it will work and yes it's does.
It's worth noting for anyone else who is moving from PHP4 to 5 that previously the string www.mydomain.co.uk/somepage.php?id=234
Automatically creates the variable $id
But now in version 5 (4.2 or above)
you have to assign it with
$id = $_GET[id];
Equally, any html form field data that is POSTED used to automatically create a variable like $FieldName but again, you would now have to assign it to the variable using $_POST
$FieldName = $_POST[FieldName];
More coding but more secure
I've read the areas you have mentioned including that about php 6 and about the security issues if you turn register globals to on so i have made the alterations to my code on a couple of pages to satisfy myself that it will work and yes it's does.
It's worth noting for anyone else who is moving from PHP4 to 5 that previously the string www.mydomain.co.uk/somepage.php?id=234
Automatically creates the variable $id
But now in version 5 (4.2 or above)
you have to assign it with
$id = $_GET[id];
Equally, any html form field data that is POSTED used to automatically create a variable like $FieldName but again, you would now have to assign it to the variable using $_POST
$FieldName = $_POST[FieldName];
More coding but more secure
hmmmm - I don't know
Mine works perfectly without the quotes? here is a snippet of actual code from my feeback.php page
Mine works perfectly without the quotes? here is a snippet of actual code from my feeback.php page
<?php
$mode = $_GET[mode];
$txtName = $_POST[txtName];
$txteMail = $_POST[txteMail];
$txtComments = $_POST[txtComments];
if($mode=="submit")
{
//do the email bit
$subject = "JNMBC Website Feedback";
$from = "From: $txtName [$txteMail]";
$message = "
<html>
<head></head>
<body>
<p>$txtComments</p>
</body>
</html>";
$headers = "MIME-Version: 1.0 \r\n";
$headers .= "Content-type: text/html; charset=iso-8859-1 \r\n";
$headers .= "From: $txteMail";//this would normally be the email address
if(mail("webmaster@jnmbc.co.uk",$subject,$message,$headers))
{
?>
Hi,
from php.net
The advice is to use the correct format - because the above (incorrect usage) will not be supported 'forever' according to the PHP folks.
HTH
Whilst it works - it is wrong
Quote from: SoulBriski hmmmm - I don't know
Mine works perfectly without the quotes? here is a snippet of actual code from my feeback.php page
...
from php.net
Quote Why is $foo[bar] wrong?
Always use quotes around a string literal array index. For example, $foo['bar'] is correct, while $foo[bar] is not. But why? It is common to encounter this kind of syntax in old scripts:<?php
$foo[bar] = 'enemy';
echo $foo[bar];
// etc
?>
This is wrong, but it works. The reason is that this code has an undefined constant (bar) rather than a string ('bar' - notice the quotes). PHP may in future define constants which, unfortunately for such code, have the same name. It works because PHP automatically converts a bare string (an unquoted string which does not correspond to any known symbol) into a string which contains the bare string. For instance, if there is no defined constant named bar, then PHP will substitute in the string 'bar' and use that.
The advice is to use the correct format - because the above (incorrect usage) will not be supported 'forever' according to the PHP folks.
HTH
Thanks very much for the lesson Pod. Well explained and obviously good advice
I will amend my code accordingly
I will amend my code accordingly