Menu
▾
▴
phpcourier-users — General phpCourier Discussion
You can subscribe to this list here.
| 2003 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
(4) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2004 |
Jan
|
Feb
|
Mar
|
Apr
|
May
(1) |
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|
From: <ben...@id...> - 2004-05-25 08:04:32
|
Dear Open Source developer I am doing a research project on "Fun and Software Development" in which I kindly invite you to participate. You will find the online survey under http://fasd.ethz.ch/qsf/. The questionnaire consists of 53 questions and you will need about 15 minutes to complete it. With the FASD project (Fun and Software Development) we want to define the motivational significance of fun when software developers decide to engage in Open Source projects. What is special about our research project is that a similar survey is planned with software developers in commercial firms. This procedure allows the immediate comparison between the involved individuals and the conditions of production of these two development models. Thus we hope to obtain substantial new insights to the phenomenon of Open Source Development. With many thanks for your participation, Benno Luthiger PS: The results of the survey will be published under http://www.isu.unizh.ch/fuehrung/blprojects/FASD/. We have set up the mailing list fa...@we... for this study. Please see http://fasd.ethz.ch/qsf/mailinglist_en.html for registration to this mailing list. _______________________________________________________________________ Benno Luthiger Swiss Federal Institute of Technology Zurich 8092 Zurich Mail: benno.luthiger(at)id.ethz.ch _______________________________________________________________________ |
|
From: Peter <li...@gm...> - 2003-12-22 23:51:30
|
Hi, well, not knowing too much now about your code, still reading on I see this: // Master administrators can view both types switch ( $_POST['type'] ) that means, every user can easily make himself a master administrator by changing the content of posted variable "type" to "admin"??? Well, that might be a bigger security issue then... Maybe I am wrong here, as I still have not checked the whole code. This somehow relates to the session-question I posed. Why don=B4t you use native php-sessions? Built in fallback mode is a great value. if we have sessions at all, it would be more secure to keep the state of the user (admin or user) as a session var, not to be posted via a form.=20 ok, I=B4ll go ahead... |
|
From: Peter <li...@gm...> - 2003-12-22 23:46:46
|
Hi, I am just trying to figure out, what exactly phpcourier does. As i walk thru he code, I see some palces like=20 "AND Acct.DomainId =3D '$_POST[domainid]' "; shouldn=B4t "addslashes" be added here on the POST-DATA?=20 |
|
From: Peter <li...@gm...> - 2003-12-22 23:44:08
|
Why aren=B4t you using PHP native sessions? |
|
From: Peter <li...@gm...> - 2003-12-22 23:36:27
|
Hi, thanks for your work on phpcourier. That looks very interesting. Unfortunately i found no documentation about how I have to setup courier to make it work with phpcourier. It is obvious that I have to use authmysql. But everything else is unclear. Could you please tell something about this? THANK YOU and merry Xmas! |
