Back To Programming / Scripting / Coding Forum

Practicing PHP/mySQL

  • vin
  • Novice
  • Novice
  • No Avatar
  • Joined: Jun 08, 2006
  • Posts: 19
  • Loc: Pittsburgh, PA
  • Status: Offline

Post May 17th, 2009, 10:16 am

I have spent all last week learning PHP and mySQL, and I think I'm doing well. I learn best by doing however, so I've been messing around on xampp.
Does anyone have a simple assignment or practice problem for me to write?
So far I've created a very simple website that uses forms to store information with mySQL, and displays that information in a cool way. But now I'm not sure where to go from here. I've searched the interwebz far and wide for practice problems or ideas of simple websites to try to make, but alas I've found none.
Thanks!
  • Anonymous
  • Bot
  • No Avatar
  • Joined: 25 Feb 2008
  • Posts: ?
  • Loc: Ozzuland
  • Status: Online

Post May 17th, 2009, 10:16 am

  • joebert
  • Sledgehammer
  • Genius
  • No Avatar
  • Joined: Feb 10, 2004
  • Posts: 13455
  • Loc: Florida
  • Status: Offline

Post May 17th, 2009, 10:28 am

Get ahold of the largest text files you can find, I'm talking at least hundereds of MB and preferably at least one GB.

Produce something from the content in those files. Statistics, an overview, an indexed MySQL database full of computed details derived from the files, anything.

Something you could do before that to get practice and generate files to work with, would be a webserver log generator.
Strong with this one, the sudo is.
  • Mars
  • Graduate
  • Graduate
  • User avatar
  • Joined: May 14, 2005
  • Posts: 160
  • Loc: Flordia
  • Status: Offline

Post May 17th, 2009, 2:28 pm

Make a basic one-user twitter clone page. Just have a text box that asks what you're doing and every time you submit it, it puts it in the database and then below that have your past updates. That should be a simple, fun assignment for you. It doesn't have to look fancy or anything it could just be a white background with black text. Make sure you put the date and time by each update.
Cars, Trucks and Air Suspensions - Squidoo
Air Suspension System
  • Bogey
  • Bogey
  • Genius
  • User avatar
  • Joined: Jul 14, 2005
  • Posts: 8211
  • Loc: USA
  • Status: Offline

Post May 17th, 2009, 7:41 pm

A membership system. That was what I've done for my first project.
"Bring forth therefore fruits meet for repentance:" Matthew 3:8
  • awatson
  • Novice
  • Novice
  • No Avatar
  • Joined: Apr 15, 2009
  • Posts: 20
  • Status: Offline

Post May 20th, 2009, 2:34 pm

Membership and profile system like Bogey suggested. Anything that makes you go through the usual view/edit/delete type stuff is good, plus using cookies, session vars, etc.
  • SpooF
  • ٩๏̯͡๏۶
  • Bronze Member
  • User avatar
  • Joined: May 22, 2004
  • Posts: 3415
  • Loc: Richland, WA
  • Status: Offline

Post May 20th, 2009, 4:33 pm

It kind of depends on what you want to do. Do you want to become a better programmer and problem solver? or do you want to become a more efficient at what you already know how to do? If you want to learn problem solving with PHP do what joebert suggested, if you want to fine tune your skills with pulling and inserting data into a database do what Bogey and awatson are suggesting.
#define NULL (::rand() % 2)
  • devilwood
  • Silver Member
  • Silver Member
  • User avatar
  • Joined: Nov 18, 2007
  • Posts: 429
  • Status: Offline

Post May 20th, 2009, 10:21 pm

It sounds like you're moving data in and data out so I'd say get a good understanding of functions, arrays, and loops.

Functions: Be able to use correct syntax, variables in/out, and recognize level of your variables. Lastly, you should be able to call your function/use it in your program. This will help writing cleaner code as functions can be included in your program from an external script.

Arrays and Loops: A good understanding with these will help extracting, processing, and displaying the data. Remember, your rows returned from the database are in an array when you use mysql_fetch_array.

I wouldn't worry too much about security until you have a project that specifically calls for it due to sensitive data types. Then do tons of research for security. I'd just work deep in directories from root and just place atleast an index.html file in each parent directory.

Eventually, you'll need to look at writing/using classes as soon as possible.
  • DarkMantis
  • Born
  • Born
  • No Avatar
  • Joined: Aug 24, 2009
  • Posts: 1
  • Status: Offline

Post August 24th, 2009, 4:15 am

devilwood wrote:
I wouldn't worry too much about security until you have a project that specifically calls for it due to sensitive data types. Then do tons of research for security. I'd just work deep in directories from root and just place atleast an index.html file in each parent directory.


I agree with everything else which devilwood says except the security side of things.
You want to start learning about security along with all other aspects of PHP coding.

A few simple examples and preventions:

Code: [ Select ]
 
<?php

if(isset($_POST['submit']){

// prevents users inputting evil code (ie ' or 1=1--)
$user = addslashes($_POST['username']);
 
$pass = addslashes($_POST['password']);
 
 
//mySQL query to check that the username and the password are correct
$strQuery = "SELECT `username`,`password` FROM `myUserDatabase` WHERE 'username'='$user' and 'password'='$pass';";
 
 
//if $strQuery is successful execute following
if(mysql_query($strQuery)){
 
echo "Login Successful";
 
}else{
 
echo "Sorry Unable to login, please check credentials and try again";
 
}
 
//stripslashes($page); prevents RFI and LFI (Remote/Local file inclusion)
$page = stripslashes($_GET['page']);
 
if(!empty($page)){
 
file_get_contents($page);
 
}else{
 
echo "<script type='text/javascript'>location.href='index.php'</script>";
 
}
 
//made up post variable
$textarea = $_POST['textarea_input'];
 
//strip_tags() prevents XSS attacks ie. Cookie Stealing
if(isset(strip_tags($textarea)){
 
echo "Secure input against XSS";
 
}else{
 
echo "Sorry error!";
 
}
}

?>
 
 
  1.  
  2. <?php
  4. if(isset($_POST['submit']){
  6. // prevents users inputting evil code (ie ' or 1=1--)
  7. $user = addslashes($_POST['username']);
  8.  
  9. $pass = addslashes($_POST['password']);
  10.  
  11.  
  12. //mySQL query to check that the username and the password are correct
  13. $strQuery = "SELECT `username`,`password` FROM `myUserDatabase` WHERE 'username'='$user' and 'password'='$pass';";
  14.  
  15.  
  16. //if $strQuery is successful execute following
  17. if(mysql_query($strQuery)){
  18.  
  19. echo "Login Successful";
  20.  
  21. }else{
  22.  
  23. echo "Sorry Unable to login, please check credentials and try again";
  24.  
  25. }
  26.  
  27. //stripslashes($page); prevents RFI and LFI (Remote/Local file inclusion)
  28. $page = stripslashes($_GET['page']);
  29.  
  30. if(!empty($page)){
  31.  
  32. file_get_contents($page);
  33.  
  34. }else{
  35.  
  36. echo "<script type='text/javascript'>location.href='index.php'</script>";
  37.  
  38. }
  39.  
  40. //made up post variable
  41. $textarea = $_POST['textarea_input'];
  42.  
  43. //strip_tags() prevents XSS attacks ie. Cookie Stealing
  44. if(isset(strip_tags($textarea)){
  45.  
  46. echo "Secure input against XSS";
  47.  
  48. }else{
  49.  
  50. echo "Sorry error!";
  51.  
  52. }
  53. }
  55. ?>
  56.  
  57.  


Don't hold it against me if the code above doesn't work, I just wrote it off the top of my head.

Just an example of some security protocols I run my code through. There are more but I dont want to spoil your whole fun.

1) addslashes(); -> prevents SQL injection
2) mysql_real_escape_string(); -> prevents sql injection into the database;
3) stripslashes(); -> prevents LFI or RFI
4) strip_tags(); -> prevents XSS (Cross Site Scripting)

and there are many more that you can use to prevent intruders, these were just from the top of my head.


Best Regards and Good Luck.

Page 1 of 1

Post Information

  • Total Posts in this topic: 8 posts
  • Users browsing this forum: No registered users and 125 guests
  • You cannot post new topics in this forum
  • You cannot reply to topics in this forum
  • You cannot edit your posts in this forum
  • You cannot delete your posts in this forum
  • You cannot post attachments in this forum
 
 

© 2011 Unmelted, LLC. Ozzu® is a registered trademark of Unmelted, LLC.