PHP - Hide Source Code?

Hello all,

i have a feeling im doing something wrong, but i have no idea what.

being server-side code, php should not show when you 'view page source' in your browser (or rather it should display as html), correct ?

why, then am i seeing php code when i view page source?

see attached image

well basically im trying to do that the 'subject says.
ive done my homework and had around 10 examples of using curl, but none of them worked in my case.
this is the final code i'm using

<?php
$cookiefile = '/temp/cookies.txt';


#2 ways ive tried doing

#$data = array('edit[username]' => 'REMOVED', 'edit[password]' => 'REMOVED', 'edit[submit]' => 'Login');
$data = array('username] => 'REMOVED', 'password' => 'REMOVED', 'submit' => 'Login');




$ch = curl_init();

curl_setopt($ch, CURLOPT_URL, 'http://pokerrpg.com');
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);

curl_setopt($ch, CURLOPT_COOKIEFILE, $cookiefile);
curl_setopt($ch, CURLOPT_COOKIEJAR, $cookiefile);

curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, $data);

curl_exec($ch);

curl_setopt($ch, CURLOPT_URL, 'http://pokerrpg.com/furniture_store.php');
$contents = curl_exec($ch);
$headers = curl_getinfo($ch);

echo $contents;

curl_close($ch);
unlink($cookiefile);
?>

im not sure about the cookie file, but i just made a txt file to that location. and empty txt file.  hope it's fine.

the page i'm trying is http://pokerrpg.com, you can even look the source code that both of these fields do exist.

when i run it, the output is a login page without logging in, so it does not log in. 

Hi, I need to extract the integers from the source code:

<span class=CatLevel1><a onclick="Javascript:ShowMeu('21');">Arts</a>&nbsp;(9768)</span>
<span class=CatLevel1><a onclick="Javascript:ShowMeu('271');">Industrial Products</a>&nbsp;(9321)</span>
<span class=CatLevel1><a onclick="Javascript:ShowMeu('1273');">Baby</a>&nbsp;(11407)</span>

What are the pattern that I can use to retrieve all the integer in the bracket (9768, 9321, 11407)?    This is my php code: 

<!DOCTYPE html>
<html>
<body>


<?php
$file_string = file_get_contents('http://www.lelong.com.my/');
preg_match('/<title>(.*)<\/title>/i', $file_string, $title);     //pattern
$title_out = $title[1];
echo $title_out;
?>
 

</body>
</html>

Thanks
Edited by Raex, 22 August 2014 - 12:49 AM.

Ok this has been driving me absolutely crazy. I have a script that gets called by Prototype's Ajax.Updater() class which should then update a div. It does update the div but a portion of what gets outputted doesn't render.

Code: [Select]

if (is_array($PROCESSED["associated_proxy_ids"]) && count($PROCESSED["associated_proxy_ids"])) {
foreach ($PROCESSED["associated_proxy_ids"] as $student) {
                if ((array_key_exists($student, $STUDENT_LIST)) && is_array($STUDENT_LIST[$student])) {
?>
<li class="user" id="audience_student_<?php echo $STUDENT_LIST[$student]["proxy_id"]; ?>" style="cursor: move;"><?php echo $STUDENT_LIST[$student]["fullname"]; ?><img src="<?php echo ENTRADA_URL; ?>/images/action-delete.gif" onclick="removeAudience('student_<?php echo $STUDENT_LIST[$student]["proxy_id"]; ?>', 'students');" class="list-cancel-image" /></li>
<?php
}
}
}
I've echoed from within the foreach and the following if and the $student variable does have a value, however I'll point out that it also doesn't render but that may be because its not a <li>, I'm not sure. Now, if I take that li element lin end output it outside of the foreach loop it renders just fine(once I substitute the $student variable for a known index of course). Inside the loop it doesn't. I can see it in the source code of the page but for some reason its not rendering. I'll put the output from the source of the page below, the top is the code output from within the loop and the bottom is from outside of the loop. The bottom renders as expected, the top doesn't.
Code: [Select]
<!--foreach li element:doesn't render-->
<li class="user" id="audience_student_2" style="cursor: move;">Hudson, Tom<img src="http://localhost/entrada/www-root/images/action-delete.gif" onclick="removeAudience('student_2', 'students');" class="list-cancel-image" /></li>

<!--non foreach li element:renders-->
<li class="user" id="audience_student_2" style="cursor: move;">Hudson, Tom<img src="http://localhost/entrada/www-root/images/action-delete.gif" onclick="removeAudience('student_2', 'students');" class="list-cancel-image" /></li>

They're identical.
I can't figure out for the life of me why this isn't working. Any help would be great.

I've been developing a php application that runs my entire company for the last 4 years. One of the things I never thought of until now is that the server guys or anyone else could copy the source code and db and be able to start up another company which brings up my question to you.... How would you protect your application?

My thought is to create one small php file that is encrypted with something that is required to make the entire site run (not sure at this point what it would be that they couldn't just rebuild). Then if this file sees it's on a different domain/ip it requests data from my site which logs the info for me to look at. If I find out it's something not approved, it would then not allow the program to run and will give a error.

What is your idea?

Hey guys,

First post here, so feel free to flame me if im violating the rules somehow.

So, the issue is this: i built an ebay listing creator for a customer. it conssists of a form with several fields being posted to a page that assembles everything into a listing (text, images, radio buttons etc.). now, what i want to do is to easily allow the customer to copy the compiled source code into the clipboard (or a txt file, doesnt really matters) - in order to easily copy it into ebay. I tried it with CURL, but all i get is the source without the posted information. I must be missing something there.

Any help would be appreciated, if you need links or codes iv's used, ill provide.

Thanks in advance!

Hi guys,

I am making a bot which only scrapes the source code of the site AFTER logging into the site.The script to login is :

Code: [Select]
<?php

    $username="xxx"; 
$password="iwonttellyou"; 
$url="http://internet.com/login.php"; 
$cookie="cookie.txt"; 

$postdata = "name=".$username."&password=".$password; 

$ch = curl_init(); 
curl_setopt ($ch, CURLOPT_URL, $url); 
curl_setopt ($ch, CURLOPT_SSL_VERIFYPEER, FALSE); 
curl_setopt ($ch, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.6) Gecko/20070725 Firefox/2.0.0.6"); 
curl_setopt ($ch, CURLOPT_TIMEOUT, 60); 
curl_setopt ($ch, CURLOPT_FOLLOWLOCATION, 0); 
curl_setopt ($ch, CURLOPT_RETURNTRANSFER, 1); 
curl_setopt ($ch, CURLOPT_COOKIEJAR, $cookie); 
curl_setopt ($ch, CURLOPT_REFERER, $url); 

curl_setopt ($ch, CURLOPT_POSTFIELDS, $postdata); 
curl_setopt ($ch, CURLOPT_POST, 1); 
$result = curl_exec ($ch); 

echo $result;  

?>

I can see different SESSION ID's in cookie.txt everytime i compile this code, which makes me believe its working.However what next?
How should i go to that site again, already logged in and scrape the data ? Some suggestions would be nice.

Hey guys, I'm facing an issue compiling the above stack from a source code inside lxc using centos 6.5 as a domain OS.     [lxc@lxc1 httpd-2.4.9]$ ./configure --with-included-apr
checking for chosen layout... Apache
checking for working mkdir -p... yes
checking for grep that handles long lines and -e... /bin/grep
checking for egrep... /bin/grep -E
checking build system type... x86_64-unknown-linux-gnu
checking host system type... x86_64-unknown-linux-gnu
checking target system type... x86_64-unknown-linux-gnu
configu
configu Configuring Apache Portable Runtime library...
configu
configuring package in srclib/apr now
checking build system type... x86_64-unknown-linux-gnu
checking host system type... x86_64-unknown-linux-gnu
checking target system type... x86_64-unknown-linux-gnu
Configuring APR library
Platform: x86_64-unknown-linux-gnu
checking for working mkdir -p... yes
APR Version: 1.5.1
checking for chosen layout... apr
checking for gcc... gcc
checking whether the C compiler works... yes
checking for C compiler default output file name... a.out
checking for suffix of executables...
checking whether we are cross compiling... configu error: in `/home/lxc/httpd-2.4.9/srclib/apr':
configu error: cannot run C compiled programs.
If you meant to cross compile, use `--host'.
See `config.log' for more details
configure failed for srclib/apr
      This problem has been detected by me when I replaced my desktop machine with new one and installed a centOS again. This such a problem never happened before using my old machine with the same version of OS and libvirt. Just to be clear, a new selinux policy into a "domain machine" has been created to be able to use the "dbus daemon" to all containers and if I try to complile this stack from source using the "domain os" this problem never happens at all. All "Development tools" is installed to this particular container, in case someone asks me why I get the following error message - "configu error: cannot run C compiled programs" Any ideas?    
Edited by jazzman1, 08 June 2014 - 01:37 PM.

Hello all,

I have a website where I do not want the Javascript to be viewable by the client right-clicking and choosing "View source".

I am using specific Google Maps API so it has to be Javascript, there is unfortunately no server side equivalent.

Is there a way for me to have a skeleton webpage that sends the data to a severside page -- where the javascript is processed -- then returned somehow back to the client?

Forget for a second that I'm using Google Maps, but just looking at it from a higher level view: Is it possible to have a webpage where I submit data -> goes to the server where it's processed using javascript -> then returns HTML to the client?

Thanks!!

I have a php form in which ,on click of a edit button the contents of that table row will be displayed in a text area (which appears on the click of that edit button).Below the textarear i have a submit and delete button,i can perform any action.Ater performing the save or delete click the text area should be hidden.
this is not happening,tried with js also.


pasting the code below

Code: [Select]
<form name='add_title' method='post' action=''><?php
echo "<br><br>";

if(isset($_POST['update'])) 
{
if(isset($_GET['id'])) {
$id    = $_GET['id'];
$comments=$_POST['comment'];
$query1 = "update  comments set  comments='$comments' WHERE id = '$id' ";

$result = mysql_query($query1);
//$row=mysql_fetch_row($result);

}
}
if(isset($_POST['delete'])) 
{
if(isset($_GET['id'])) {
$id    = $_GET['id'];
$comments=$_POST['comment'];
$query1 = "delete from  comments  WHERE id = '$id' ";

$result = mysql_query($query1);


}
}
$query="select count(*) from comments";
$result =mysql_query($query);
$row=mysql_fetch_row($result);
$count= $row[0];
if($count!=0)

{
$query="select *from comments order by id desc";
$result=mysql_query($query);
echo "<table width='700' align='center' border=1><tr bgcolor='green' align='center'><td><font color='black'>&nbsp;SlNo&nbsp;</font></td><td><font color='black'>Comment</font></td><td><font color='black'>&nbsp;&nbsp;Date Posted&nbsp;&nbsp;</font></td><td>Edit/Delete</td></tr></b>";
while($row = mysql_fetch_row($result))
{
$d=$row['0'];
$id=$row['0'];
$name=$row['1'];
$date_uploaded=$row['3'];
  
echo  "<td>$id</td><td>$name</td>".
 "<td>$date_uploaded</td>".
 "<td><a href='edit_comments.php?id=$id'>Edit </a></td>".
 "</tr>";
}
if(isset($_GET['id'])) 
{

$id    = $_GET['id'];

$query = "SELECT comments FROM comments WHERE id = '$id' ";

$result = mysql_query($query);
$row=mysql_fetch_row($result);

echo"<center><table width='700' border='1'><tr><td >
<textarea name='comment' cols='80' rows='10'>$row[0]</textarea>
<td></tr><tr><td><a href='edit_comments.php?id=$id'><input type='submit' name='update' id='update' value='Save'></a><a href='edit_comments.php?id=$id'><input type='submit' name='delete' id='delete' value='Delete'></a>
</td><td></td></center>";


} 



echo "</table>";



} else
{
echo "<table width='700' align='center'><tr bgcolor='white' align='center'><td><font color='red' size=2>No comments for  you.</font></td></tr></table>";
}
?>

Edit: Please use [code][/code] tags when posting code.

Not wanting to 'hijack' another thread, but curious about the error of my ways.

Why specifically (and very very clearly as I am OLD fart and totally self taught in php/mysql), why will this not suffice to determine form where POSTED data came?


page 1 - form
start session
create and store a hashed session variable 'who_is_it' (ie hash 1Q9zFrEd)
display the form
submit to page 2
page 2
start session
create a hashed variable $is_it-me (ie hash 1Q9zFrEd)
compare $is_it_me with the session variable 'who_is_it'
   if the camparison == each other
    obtain, validate, cleanse and store data
   ELSE
    not from a vaild source

Hi all,

I'm new to php (and the forum) and I'm trying to figure out something I feel should be relatively easy but can't figure out.
I am wanting to parse the source of multiple web pages to get a list of classes. Here is what I've kind of tried to follow, with the help of the internet:

Code: [Select]
$buffer = file_get_contents("http://catalog.utk.edu/content.php?catoid=5&navoid=386&cpage=1");
$regex = '/ something something /';
preg_match($regex,$buffer,$match);
var_dump($match);
echo $match[1];
}

I'm trying to extract the course number and name from part of the source that looks like this:

Code: [Select]
<td width="15">&#160;&#160;</td>
<td width="100%">&#8226;&#160; <a href="preview_course_nopop.php?catoid=1&coid=32666" onClick="showCourse('1', '32666',this, 'a:2:{s:8:~location~;s:8:~template~;s:28:~course_program_display_field~;N;}'); return false;" target="_blank">ACCT 200 - Foundations of Accounting</a>

</td>
</tr>

Now, here's the thing, beside the fact that I can't use regex properly, I want to be able to put this into a loop for multiple courses per page of source. I am pretty fluent in c++, but this is throwing me for a serious loop (pun intended)

As a side note, I want to be able to do this for multiple pages as well, the only thing that changes in the page URL is the page=# part, so would it be possible to automate it for all 33 pages?

Thanks for any help. 

jiat

Hi

I am trying to hide the image filepath and found this tutorial http://www.bounmis.com/en/PHP/How_To_Hide_Image_Source.html which I am currently using. It works but I need an additional security here so this script parses images only if the user is logged in to wordpress

here's what i have so far:

<?php
include('wp-config.php');
  
$wp->init();  
    $wp->parse_request();  
    $wp->query_posts();  
    $wp->register_globals();    
   
Header('Content-type: image/jpeg');
    $exp=GMDate('D, d M Y H:i:s',time()+999);
    Header('Expires: $exp GMT');

$image_path = 'pathtoimages/';   
    $file=$image_path . $_GET["img"]; // getting image name and your image path

if ( is_user_logged_in() ) {
   $file=$image_path.'authorized.jpg';
} else {
  $file=$image_path.'notauthorized.jpg'; 
};

    if (file_exists($file)){

$info=getimagesize($file);
    $width=$info[0];
    $height=$info[1];
    if ($info[2]==1){
        $img=@imagecreatefromgif($file);
    } else if ($info[2]==2){
        $img=@imagecreatefromjpeg($file);
    } else if ($info[2]==3){
        $img=@imagecreatefrompng($file);
    } else {
        $width=800;
        $height=600;
        $file = 'notauthorized.jpg'; // if there is not such image, it will show default image
        $img=@imagecreatefrompng($file);
    }
    ImageJpeg($img);
    imagedestroy($img);
}
?>

the script doesnt work. I think it's because i set headers Header('Content-type: image/jpeg'); What can I do to make it work?
Please help

thanks

i am currently creating a school portal. there is this page which enables user to create their own website for Computer Education lesson. Every user are able to upload their files and view but the problem is, i need a function for the user to be able to edit it in on the page itself.

Hi Everyone, I am a noob so forgive me I tried looking this up myself But I am still confused.

Basically, I am trying to use the above code to display a gallery of images from my images folder on my image site.

But this free code I found below Pulls the images from the /root not a named directory where the images are stored.

Would someone be kind enough to tell me how I can get the script below to pull the large images from a folder called "images" Vs the script looking for the images the root.

Thanks so much in advance 

Code: [Select]
<?php
# SETTINGS
$max_width = 100;
$max_height = 100;

function getPictureType($ext) {
if ( preg_match('/jpg|jpeg/i', $ext) ) {
return 'jpg';
} else if ( preg_match('/png/i', $ext) ) {
return 'png';
} else if ( preg_match('/gif/i', $ext) ) {
return 'gif';
} else {
return '';
}
}

function getPictures() {
global $max_width, $max_height;
if ( $handle = opendir(".") ) {
$lightbox = rand();
echo '<ul id="pictures">';
while ( ($file = readdir($handle)) !== false ) {
if ( !is_dir($file) ) {
$split = explode('.', $file); 
$ext = $split[count($split) - 1];
if ( ($type = getPictureType($ext)) == '' ) {
continue;
}
if ( ! is_dir('thumbs') ) {
mkdir('thumbs');
}
if ( ! file_exists('thumbs/'.$file) ) {
if ( $type == 'jpg' ) {
$src = imagecreatefromjpeg($file);
} else if ( $type == 'png' ) {
$src = imagecreatefrompng($file);
} else if ( $type == 'gif' ) {
$src = imagecreatefromgif($file);
}
if ( ($oldW = imagesx($src)) < ($oldH = imagesy($src)) ) {
$newW = $oldW * ($max_width / $oldH);
$newH = $max_height;
} else {
$newW = $max_width;
$newH = $oldH * ($max_height / $oldW);
}
$new = imagecreatetruecolor($newW, $newH);
imagecopyresampled($new, $src, 0, 0, 0, 0, $newW, $newH, $oldW, $oldH);
if ( $type == 'jpg' ) {
imagejpeg($new, 'thumbs/'.$file);
} else if ( $type == 'png' ) {
imagepng($new, 'thumbs/'.$file);
} else if ( $type == 'gif' ) {
imagegif($new, 'thumbs/'.$file);
}
imagedestroy($new);
imagedestroy($src);
}
echo '<li><a href="'.$file.'" rel="lightbox['.$lightbox.']">';
echo '<img src="thumbs/'.$file.'" alt="" />';
echo '</a></li>';
}
}
echo '</ul>';
}
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UFT-8" />
<title>Pictures</title>
<link rel="stylesheet" href="css/lightbox.css" type="text/css" media="screen" />
<style type="text/css">
#pictures li {
float:left;
height:<?php echo ($max_height + 10); ?>px;
list-style:none outside;
width:<?php echo ($max_width + 10); ?>px;
text-align:center;
}
img {
border:0;
outline:none;
}
</style>
</head>
<body>

<?php getPictures(); ?>


<script type="text/javascript" src="js/prototype.js"></script>
<script type="text/javascript" src="js/scriptaculous.js?load=effects,builder"></script>
<script type="text/javascript" src="js/lightbox.js"></script>
</body>
</html>