Skype - Programming Chat Group (For Anyone)

[pawl]

While I'd love to join you my work schedule (random days off, rather unsociable working hours, frequent unplanned overtime) means that there's pretty much no chance of me being online when required. =[

[Peter]

pawl

Still feel free to send me you Skype name, you never know, you may get on at a time where we are still on

[CåñåÐå™]

Mar 9, 2014 20:08:43 GMT -8 @tidus90 said:

Mar 9, 2014 18:50:48 GMT -8 CåñåÐå™ said:

I know when i saw Nick i wondered if it was you . What have you been up to?

lol, A lot has happened in 2 years. New gf, new everything. lol. Working on the same sites as before. But more advanced than before. Working on a new forum of my own, and working on a web host, along with an advertising directory, which I know you've seen before.

That's cool my friend. Yeah i do know the advertising directory, i should still be a member on it. Not much has been going on with me , i've been hanging here on pb helping Becca and stuff.

[Former Member]

Mar 10, 2014 5:52:30 GMT -8 CåñåÐå™ said:

Mar 9, 2014 20:08:43 GMT -8 @tidus90 said:

lol, A lot has happened in 2 years. New gf, new everything. lol. Working on the same sites as before. But more advanced than before. Working on a new forum of my own, and working on a web host, along with an advertising directory, which I know you've seen before.

That's cool my friend. Yeah i do know the advertising directory, i should still be a member on it. Not much has been going on with me , i've been hanging here on pb helping Becca and stuff.

Yeah.. A lot has changed on it back-end wise. lol. I'm gonna be recoding it here soon, but not until I finish my host.

[CåñåÐå™]

Mar 10, 2014 7:44:08 GMT -8 @tidus90 said:

Mar 10, 2014 5:52:30 GMT -8 CåñåÐå™ said:

That's cool my friend. Yeah i do know the advertising directory, i should still be a member on it. Not much has been going on with me , i've been hanging here on pb helping Becca and stuff.

Yeah.. A lot has changed on it back-end wise. lol. I'm gonna be recoding it here soon, but not until I finish my host.

Cool, once you get it done let me know. You'll find me here most of the time. Becca has closed her forum due to illness . So i'm here checking on stuff, but we'll talk once Peter start the skype.

[Bob]

Mar 9, 2014 22:34:37 GMT -8 @tidus90 said:

Mar 8, 2014 17:12:18 GMT -8 Bob said:

SHA-1 is no longer a favored cryptographic hash function.  In the very least I would recommend using the SHA-2 family (SHA-256/SHA-512).


<?php

// Create a new hashed password
$pass = hash('sha512', $appSalt . $plaintextPassword);

// Check an existing
if ($pass === $storedPassword) {
 // Success
}
Or, if you are running PHP 5.5.x then bcrypt is very easily implemented (and preferable, in my opinion).


<?php

// Create a new hashed password
$pass = password_hash($plaintextPassword, PASSWORD_DEFAULT);

// Check for password validity
if (password_verify($plaintextPassword, $storedPass)) {
   // Success
}
The one caveat with the bcrypt example is that is may not be the default hash in future versions of PHP.  For this reason you could specifically use the bcrypt algorithm (PASSWORD_BCRYPT).  Or, you could just verify the hashing algorithm is up to date upon login (when you have the plaintext password readily available) and, if it isn't, rehash and store the password.

Either way, some pertinent links for you:

password_hash()
password_verify()
hash()

So instead of: $password = mysql_real_escape_string(sha1($_POST['password']));

I put: $password = mysql_real_escape_string(sha512($_POST['password'])); evertime I do that, it grays out in NP++ and isn't blue anymore.

I would encourage you to read through the code examples I provided again. There is no sha512() function (unless you're defining it yourself). You use the SHA512 algorithm by passing it through PHP's hash() function. I showed you this in my previous post, so you have an example there to compare against.

That said- your post brings up another issue: usage of the original MySQL extension. This has not been supported for a very long time. Today it's completely deprecated. A couple of years ago I would be saying: "it's recommended you use MySQLi instead." But today I have to say: "it is required that you use MySQLi instead." There are alternatives to MySQLi (namely PDO), but MySQLi should be the easiest for you to pick up. For the most part you can do a one-to-one conversion between the two.

Once you are using MySQLi I would strongly encourage you to look into parameterized statements. They are your protection against SQL injection vulnerabilities. The deprecated MySQL extension never supported parameterized statements (they were introduced to MySQL after the extension was dropped from development status), so this is a huge benefit for updating your code to use MySQLi or PDO. Simply put (glaringly simplistic overview)- parameterized statements take your potentially vulnerable user input and send them seperately to the query. The database engine then handles the query on its end. And thus, never is your application vulnerable to an injection.

Some links to look over:

Explanation of MySQL's deprecation

Documentation on MySQLi extension

Those parameterized statements I discussed

[Former Member]

Yes I know all about MySQLi, BUT I just don't know how to change the premade coding properly.

[pawl]

Mar 10, 2014 5:29:55 GMT -8 Peter said:

pawl

Still feel free to send me you Skype name, you never know, you may get on at a time where we are still on

Unlikely if you're working from GMT, but I'll send it on anyway. =]

[DarkPikachu]

oh cool, count me in!
I've got tonz of questions and possibly info to provide!

Skype/Steam: Tcll5850

[Peter]

I've added most people I think (will add you tomorrow DarkPikachu when I get on).

Am thinking we can do something this weekend, I'll post more info when I know for sure, as I'm quite busy myself this week with work and other stuff.

If anyone wants to try and organise a chat while I am not able to, feel free, just post the details so people know.

[Bob]

Mar 10, 2014 13:55:41 GMT -8 Peter said:

I've added most people I think (will add you tomorrow DarkPikachu when I get on).

Am thinking we can do something this weekend, I'll post more info when I know for sure, as I'm quite busy myself this week with work and other stuff.

If anyone wants to try and organise a chat while I am not able to, feel free, just post the details so people know.

I think if we start around 6 or 7pm GMT that would give most people the opportunity to join in.  Late enough for the UK people that those working during the day should be able to get in.  And late enough that it should allow those in the US with daytime hours to hop in once they're home from work.

[Pebble]

Just throwing my own thoughts into this after reading the thread.

Why not have two nights? One for those looking for contacts and programming outside of proboards and another night for Javascript/jquery/HTML/CSS with an emphasis on creating something for your site or the library?

Just my own feelings, but I'd be more inclined to set aside some time on a Wednesday 7pm GMT ( or other mid week day/time ) if I knew that everyone was going to to be looking towards the same thing.  Maybe a Saturday 7pm for the other stuff?

I mention this as some of the stuff already written in this thread has already gone over my head ( and I'm sure others )  which may discourage people from joining in.
( I'm also a bit biased because weekends are my down time from coding plugins, due to my home life becoming hell if I said I wasn't joining in something to chat about coding!)

Ending on an up note! I'm also open to jointly creating stuff (plugin) if someone wants to take that road. Expanding one of my plugins, something new etc.  I've had a couple of months off but slowly getting back into the swing of things. Many times I've looked at a code and thought " Oh, that's clever how they've done that!" or sometimes the other way round

Just food for thought.....

[DarkPikachu]

I'm GMT -5... hopefully things won't be too painful... >.>

I'm unable to work though so I should be able to make it.

EDIT:
Pebble's post got me thinking...
originally I was all for a PB coding chat,
but a general coding chat would really help out as well

I think instead of doing nights, we should just leave the chat open at general programming
(we can talk about PB-related coding if we needed to)

[Wormopolis]

user: wormopolis
experience: skype noob. programming intermediate.
language experience: javascript/jquery
available: M-F 5PM PST-11PM PST (12 GMT-6 AM GMT), Sa-Su 10A-10P PST (5P-5A GMT) but I am on call so no guarantees

[Graham]

my skype name is: icemediauk. I dunno if i'll be on at any time, or if i'll be available when I am online (i might be on a call with a client) but feel free to add me and i'll see if i'm about