.
. Today
RiQUISISISIMOS fritters !!!!!
Tuesday, August 31, 2010
Monday, August 30, 2010
Led Zeppelin Curtains
Crystal Castles - Celestica
Take a little to make a post on this video, music and had heard a few months ago, Celestica is music that is part of second album Crystal Castles also (such as Banda and the first album) is a lovely sound to pop and gloomy air at the same time, the video is low budget, with no effect, showing Ethan Kath and Alice walking in a cemetery that adds a very eerie, where some children are also playing violin, very honest and simple video but that does not mean that is not good, to my great, great nostalgia and dark.
Friday, August 27, 2010
Birthday Cake With Police Car On It
Autokratz - Mayday Mix
Mix of the month May 2008, the electronic duo Autokratz , they belong to the famous French electronic music label Kitsune Maiso n , anime me to post the mixtape that contains several well-known remixes not crazy and I are checkered well each other, among which we find in the set list are: Wombats, the couple Hearts Revolution, Argentina Madame Mim with a remix of Brazilians Lucio and Yuri Chix that together make Database, and one of the which I have not heard for some time is Midnight Juggernauts and several other artists enjoy it cornered!
01 - autoKratz - False Flag Attack
02 - Hearts Revolution - Switchblade (LA Riots mix)
03 - Wombats - Backfire at the Disco (South Central remix)
04 - Madame Mim - Electric KoolAid (database mix)
05 - Alex Gopher - Bingo
06 - Cazals - Somebody Somewhere (Blamma Blamma mix)
07 - Midnight Juggernauts - Shadows (Knightlife mix)
08 - daveVT Vs iPunk - Boxenluder
09 - Lissat & Voltaxx - Initial Energie (Tempered DJ’s Distortion mix)
10 - SebastiAn - Momy
Monday, August 23, 2010
Driver Pinacle Pctv 150e/55e
MySQL Prepared Statements and PHP user-High
testing some things in PHP, these days it was more free with the faculty, and I decided to create a user registration, which has a relatively high security.
First of all use what is called as Prepared Statements , which allows a query to the DBMS and can so to speak, to separate what the user enters the code itself, ie the engine knows what value is entered by the user, with the advantage that security pricipalmente can not inject arbitrary code in the query called SQL Injectio
's put an example of this would be a consultation with Prepared Statements, a query to a news article .
In the first line we create an object mysqli, prepare the second query to send to the engine, note that the expected value is placed with the character? , third line adds the variable to the prepared statement, notice is i value, which means that what is expected to be an integer. We may also use s (string), d (double), b (binary data) depending on what is needed. In the fourth line
run the Prepared Statement. :) In this section
SQL Injection Prevention the OWASP , we have as a first measure of safety. The good thing is that the code is not as dirty, to filter all user input functions such as int (), settype (), is_numeric (), mysql_real_escape_string () etc.
Discharge created has the following characteristics: The password is md5 encrypted 3 times (which can be changed from the code) must be greater than 7 characters and must contain at least one uppercase and one number.
This is the codigo con el formulario en HTML y el PHP.
function ()
, in line 57,
the value of $ password is passed to a function
pass_cript ()
to encrypt it in an amount of 3 times MD5, and then basically is performed for the INSERT INTO
high:).
Here I give you some links to continue reading about Prepared Statesman
http://mattbango.com/notebook/web-development/prepared-statements-in-php-and-mysqli/
http://www.ultramegatech.com/blog/2009/07/using-mysql-prepared-statements-in-php/
http://www.hiteshagrawal.com/mysql/mysql-prepared-statement-in -php
Greetings
First of all use what is called as Prepared Statements , which allows a query to the DBMS and can so to speak, to separate what the user enters the code itself, ie the engine knows what value is entered by the user, with the advantage that security pricipalmente can not inject arbitrary code in the query called SQL Injectio
's put an example of this would be a consultation with Prepared Statements, a query to a news article .
$ mysqli = new mysqli ('host' 'User', 'pass',' db ');
$ stmt = $ mysqli-> prepare ("SELECT * FROM NEWS WHERE ID =?");
$ stmt-> bind_param (' i ', $ _GET [' id ']);
$ stmt-> execute ();
In the first line we create an object mysqli, prepare the second query to send to the engine, note that the expected value is placed with the character? , third line adds the variable to the prepared statement, notice is i value, which means that what is expected to be an integer. We may also use s (string), d (double), b (binary data) depending on what is needed. In the fourth line
run the Prepared Statement. :) In this section
SQL Injection Prevention the OWASP , we have as a first measure of safety. The good thing is that the code is not as dirty, to filter all user input functions such as int (), settype (), is_numeric (), mysql_real_escape_string () etc.
Discharge created has the following characteristics: The password is md5 encrypted 3 times (which can be changed from the code) must be greater than 7 characters and must contain at least one uppercase and one number.
This is the codigo con el formulario en HTML y el PHP.
Keeping these restrictions in the password is aimed at high
<html>
Alta Usuario
<form action='' method='post'>
<br>
Nombre:
<br>
<input type='text' name='nombre'>
<br>
<br>
<input type='text' name='email'>
<br>
Usuario:
<br>
<input type='text' name='user'>
<br>
ContraseƱa: \u0026lt;input
type='password'
\u0026lt;br> name='pass'>
\u0026lt;br>
\u0026lt;input type='submit' value='Enviar' name='enviar'>
\u0026lt; / form>
pass_cript function ($ pass) {
for ($ i = 0, $ i <3;$i++){ pass="md5($pass);" stmt=" $mysqli"> prepare ("SELECT user FROM users WHERE user =?");
$ stmt-> bind_param ('s', $ user )
$ stmt-> execute ();
$ stmt-> bind_result ($ result);
third if
# if ($ stmt-> fetch () == false) {
verificar_pass ();}
else {echo "User already exists ";
}}
high function () {global $ mysqli
;
global $ user;
global $ password;
global $ email;
global $ name, $ password = pass_cript
($ password) ;
$ stmt = $ mysqli-> prepare ("INSERT INTO users (username, password, Email, Name) VALUES (?,", ", ?)");
/ / Bind your variables to replace the? s $
stmt-> bind_param ('ssss', $ user, $ password, $ email, $ name);
/ / Execute query
$ stmt-> execute ();
printf ("% d Row inserted. \\ n", $ stmt-> affected_rows)
/ / Close statement object
$ stmt-> close ();
echo "User". $ User. "Has been released!";}
verificar_pass function () {global $ password
;
if (strlen ($ password)> 7)
{if (preg_match ('/ [AZ] + [0-9 ]+/', $ password)
#Prepared Statements
$mysqli = new mysqli('host', 'user', 'pass', 'db');
if (mysqli_connect_errno())
{
printf("Can't connect to MySQL Server. Errorcode: %s\n", mysqli_connect_error());
exit;
}
#Primer if
if(!empty($_POST['enviar']))
{
#segundo if
if (isset($_POST['nombre']) && !empty($_POST['nombre']) && isset($_POST['email']) && !empty($_POST['email']) && isset($_POST['user']) && ! Empty ($ _POST ['user']) & & isset ($ _POST ['pass']) & &! Empty ($ _POST ['pass'])) {
$ name = $ _POST ['name'];
$ user = $ _POST ['user'];
$ password = $ _POST ['pass'];
$ email = $ _POST ['email'];
verificar_usuario ();}
# close second
else {if
echo "You must fill out camposs thank you";
}} # close first if
?>
I will explain what the code, I mean its sequence to be understood and then those who want to use to use to its high
XD or test.
At line 105 is where I verify that all form data are defined and that are not white, if so
take those values \u200b\u200band I verificar_usuario
function ()
.
, this feature does is check if the user you want to register exists in the database,
if there were to print a legend with
"User already exists"
, and would end the process . If no targets are
verificar_pass function ()
.
This function testing security of password which must satisfy that: must be greater than 7 characters and
must contain at least one capital letter and a number on it.
function ()
, in line 57,
the value of $ password is passed to a function
pass_cript ()
to encrypt it in an amount of 3 times MD5, and then basically is performed for the INSERT INTO
high:).
Here I give you some links to continue reading about Prepared Statesman
http://mattbango.com/notebook/web-development/prepared-statements-in-php-and-mysqli/
http://www.ultramegatech.com/blog/2009/07/using-mysql-prepared-statements-in-php/
http://www.hiteshagrawal.com/mysql/mysql-prepared-statement-in -php
Greetings
Wednesday, August 18, 2010
Good Mixer For Bacardi Limon
JOINEA 2010
Well after over a month without posting, for reasons of power and other things back.
This weekend comes the JOINEA
-
Jornades Integration, Extension and System Update Student -
which takes place in Misiones Apostles organized by the guys at the UNAM.
Here I leave my presentation,
SQL Injection Joinea 2010
Well after over a month without posting, for reasons of power and other things back.
This weekend comes the JOINEA
-
Jornades Integration, Extension and System Update Student -
which takes place in Misiones Apostles organized by the guys at the UNAM.
There was a call for papers, send one to stay selected on Segridad 
Web: SQL Injection and Directory Traversal
, but for reasons of time in the expositions reduced it only to SQL Injection Tomorrow at 12 we left the Coast as the center FA.CE.NA students organized the trip for anyone at an affordable cost, including travel, accommodation and food, where a bus was filled up to 45 people. Web: SQL Injection and Directory Traversal 
There is good level of expositions, so sure I'm going to learn a lot and meet new people who are the main objectives. Here I leave the Here I leave my presentation,
SQL Injection Joinea 2010
Tuesday, August 17, 2010
Sunday, August 15, 2010
Prison Tycoon Games Online
Moist Chocolate Cake Almond (without meal)
.
.
FRIENDS !!!!! The hope at home ... 
Monday, August 2, 2010
Subscribe to:
Comments (Atom)