-
Posts
2284 -
Joined
-
Last visited
-
Days Won
2
Content Type
Profiles
Forums
phpVMS Resources
Downloads
Everything posted by mark1million
-
Let me say this one thing, phpvms has not been hacked to date period..... The system is secure, its teenagers who don't know what they are uploading that cause the problems. Some facts, Nabeel has created phpVMS in a way that no VA using base files has been hacked, simple as. It is when you start uploading scripts or image rotators that people dont understand, that is where the problem is, not phpVMS. On closing i have been running the system for over 2 years now without any successful hacking attempt to date, and people have tried exploiting the action.php and running other automated scripts unsuccessfully. If you know what your doing then its easy.
-
I know what thats like i have 2 here myself. roll on their bed time lol
-
Ray, I am just having a look at this and if you add a custom field then you can edit this and have it displayed already by the code. <h3>Edit Profile</h3> <form action="<?php echo url('/profile');?>" method="post" enctype="multipart/form-data"> <dl> <dt>Name</dt> <dd><?php echo $userinfo->firstname . ' ' . $userinfo->lastname;?></dd> <dt>Airline</dt> <dd><?php echo $userinfo->code?> <p>To request a change, contact your admin</p> </dd> <dt>Email Address</dt> <dd><input type="text" name="email" value="<?php echo $userinfo->email;?>" /> <?php if(isset($email_error) && $email_error == true) echo '<p class="error">Please enter your email address</p>'; ?> </dd> <dt>Location</dt> <dd><select name="location"> <?php foreach($countries as $countryCode=>$countryName) { if($userinfo->location == $countryCode) $sel = 'selected="selected"'; else $sel = ''; echo '<option value="'.$countryCode.'" '.$sel.'>'.$countryName.'</option>'; } ?> </select> <?php if(isset($location_error) && $location_error == true) echo '<p class="error">Please enter your location</p>'; ?> </dd> <dt>Signature Background</dt> <dd><select name="bgimage"> <?php foreach($bgimages as $image) { if($userinfo->bgimage == $image) $sel = 'selected="selected"'; else $sel = ''; echo '<option value="'.$image.'" '.$sel.'>'.$image.'</option>'; } ?> </select> </dd> <?php if($customfields) { foreach($customfields as $field) { echo '<dt>'.$field->title.'</dt> <dd>'; if($field->type == 'dropdown') { $field_values = SettingsData::GetField($field->fieldid); $values = explode(',', $field_values->value); echo "<select name=\"{$field->fieldname}\">"; if(is_array($values)) { foreach($values as $val) { $val = trim($val); if($val == $field->value) $sel = " selected "; else $sel = ''; echo "<option value=\"{$val}\" {$sel}>{$val}</option>"; } } echo '</select>'; } elseif($field->type == 'textarea') { echo '<textarea class="customfield_textarea"></textarea>'; } else { echo '<input type="text" name="'.$field->fieldname.'" value="'.$field->value.'" />'; } echo '</dd>'; } } ?> <dt>Avatar:</dt> <dd><input type="hidden" name="MAX_FILE_SIZE" value="<?php echo Config::Get('AVATAR_FILE_SIZE');?>" /> <input type="file" name="avatar" size="40"> <p>Your image will be resized to <?php echo Config::Get('AVATAR_MAX_HEIGHT').'x'.Config::Get('AVATAR_MAX_WIDTH');?>px</p> </dd> <dt>Current Avatar:</dt> <dd><?php if(!file_exists(SITE_ROOT.AVATAR_PATH.'/'.$pilotcode.'.png')) { echo 'None selected'; } else { ?> <img src="<?php echo SITE_URL.AVATAR_PATH.'/'.$pilotcode.'.png';?>" /></dd> <?php } ?> <dt></dt> <dd><input type="hidden" name="action" value="saveprofile" /> <input type="submit" name="submit" value="Save Changes" /></dd> </dl> </form>
-
To edit files i use http://araneae.en.softonic.com/
-
Regularly check your error logs, i have posted about this kind of attack many times and shown examples of how my site was bombarded with over 1000 requests in under a minute. Don't use default install directories for php myadmin or the like, protect sensitive areas of your site with example fail2ban and ht password protection, doing all these little things add up to many layers of protection that should give you an edge. Also have and maintain and test your backup system that is imperative.
-
I have had a look and check your config files that there are no whitespaces in there. If there was an error connecting to the database then it would show up, put a phpinfo file in to that directory and see what that says. I have moved many sites across directories and domains without problems. If you upload the install directory that should give you some clues as to whats happening.
-
If you have vista or windows 7 you need to run both programs in the same mode, if you run your sim as administrator you also need to run kACARS in that mode.
-
Code is incomplete, Once its all there it can be moved.
-
Do you have fsipc installed in your sim? if not go to peters site and download the version you need, http://www.schiratti.com/dowson.html
-
No you don't have permission!!!! And i know that for a fact so stop bullshitting everyone.
-
You know what, i really am at a loss why people open up virtual airlines that already exist. What is the point, i doubt you can offer anything better than what is currently out there.
-
OK you need to go in to your error logs for your pc, there you will find the hidden xml config file and folder. You need to remove the application from add/remove programs find any files/folders include hidden and system files in the search, delete these then restart. Finally reinstall and you should be good to go. Failing that if you download teamviewer i will have a look for you.
-
-
Have a check in your database and see you the user 1 is allocated a group.
-
Thats a good idea, maybe the better way to do it would be add the code to the maintenence.php script and run it on a cron every other day or so, you would need to obviously get it to look at everyone with flights at 0 then loot at the join date, you could define a period and use the existing delete pilot functions to remove their account.
-
If you wanted to you could just include it on your page or put in in a frame.
-
Good luck Roger, im sure you will be best remembered for obsess blue especially those of us who were about in the beginning.
-
Yes create a file in the core folder called local.config.php and make its permissions 777
-
Excalibur Airways Now Recruiting
mark1million replied to EXCALIBUR's topic in Virtual Airlines Discussion
I like your terms and conditions they seem strangely familiar Great catch with the domain name. -
Seems strange mate, when i want to deploy a new server i just click a couple of buttons to place it in a datacenter i want round the world then deploy the os, its all done within 30 minutes, and yes thats from zero to a full lamp stack able to serve. If your interested, http://www.linode.com/?r=844af9fe39e79c95f7d20a0bdcfa87cd4cb5b4ca
-
Your Name when registering is using email validation so i couldn't register Mark Grant
-
[SOLVED] PHP function to get Enabled ACFTs?
mark1million replied to MidoTheHawk's topic in Support Forum
Ok there is a fleet module you can download from the releases install that then you can modify teh FleetData.class.php file to, /** * Get an aircraft by unique name */ public static function getAircraftByName1() { $sql = 'SELECT DISTINCT `icao`, `fullname`, `range`, `weight`, `cruise`, `maxpax`, `maxcargo`, `imagelink`, `downloadlink` FROM ' . TABLE_PREFIX . 'aircraft [b]WHERE `enabled` = 1 ';[/b] return DB::get_results($sql); } The way i have is it to display Unique types only, as i have loads of a320 etc etc, so that will display all your different aircraft types. -
[SOLVED] PHP function to get Enabled ACFTs?
mark1million replied to MidoTheHawk's topic in Support Forum
Yes build in to the query a WHERE ENABLED=1 Cant remember the exact php file at the moment, will have a look in a bit as can remember at the moment off the top of my head -
Correct
-
Any news on this Nabeel, my xacars is showing up ok just not the stuff from kacars? Its only been since the url change.