<p>Do you read Linus' Google Plus? It's all about diving and some dive-log software he's written.</p>
<div class="gmail_quote">On Mar 13, 2012 9:50 AM, "Mike Hingley" <<a href="mailto:computa_mike@hotmail.com">computa_mike@hotmail.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Could you use a CMS system such as Wordpress or joomla to get the membership management. That way you can just add the functionality you need on top of the CMS? And you get security and validation for free...<br><br>Sent from my HTC<br>
<br>----- Reply message -----<br>From: "Wayne Morris" <<a href="mailto:waynelists@machx.co.uk" target="_blank">waynelists@machx.co.uk</a>><br>Date: Tue, Mar 13, 2012 02:45<br>Subject: [Wolves] mysql select help<br>
To: <<a href="mailto:wolves@mailman.lug.org.uk" target="_blank">wolves@mailman.lug.org.uk</a>><br><br>On 13/03/2012 01:52, Chris Ellis wrote:<br>> Can you share your schema? It makes it easier to assist in SQL > problems when you know what the table structures are.<br>
My structures are at best 'pitiful' lol, its a work in progress - only 400+ current records so haven't worried about spending too much time optimising fields,<br>eg addresses are all pretty much Wolverhampton, but do I use a linked table for towns...noooo ;-) . when I get to 4000+ i hope to have enough money to<br>
pay someone to write it properly lol.<br>So, one field one item, functional rather than 'neat' ;-)<br><br>Basically its a simple address book for booking in my scuba students, so just who, when, what type of stuff, about 30 fields - have quite an elaborate set of filters on a webpage protected by htacess to sort and produce print lists for internal use - and a simple 'add yourself' page which students can access in an open directory.<br>
<br>Got a lot to do to it, security is the next issue - currently I only allow students to add themselves database, no editing, the data isn't sensitive (well, no credit cards or the like) so the worst they can do is add non existent person.<br>
But I want to add 'edit your own record' and since my current setup is that update.php produces a POST link of eg website/update.php?id=356 , I know this<br>is enough to let the naughty inject another ID to edit someone else's record.<br>
Since I only need reasonable privacy (nothing of value but info available on <a href="http://192.com" target="_blank">192.com</a> to steal) would I be ok:<br>1)Finding some way of randomising ID key, if it was 10 digits, it would be nearly impossible to guess one of the other 400 users ID's<br>
2) provide them with a link comprising first name, 2nd name and dob, passwordrd fieldd so still breakable if someone knows them, but still tough<br>3) something else?<br><br>I don't really want to go down the user log on bit as it confused the hell out of me last time I did one, and they at most need a one time edit facility to<br>
add details they screwed up on adding themselves in the first place so it doesn't seem worth the effort .<br><br>I know the proper answer is 'do it right' but I'm just trying to bash enough code together in my spare time to get by, so easy and enough is good ;-)<br>
<br>cheers<br><br>Wayne<br><br><br><br><br><br><br><br>_______________________________________________<br>Wolves LUG mailing list<br>Homepage: <a href="http://www.wolveslug.org.uk" target="_blank">http://www.wolveslug.org.uk</a>/<br>
Mailing list: <a href="mailto:Wolves@mailman.lug.org.uk" target="_blank">Wolves@mailman.lug.org.uk</a><br>Mailing list home: <a href="https://mailman.lug.org.uk/mailman/listinfo/wolves" target="_blank">https://mailman.lug.org.uk/mailman/listinfo/wolves</a><br>
<br><br><br><br>_______________________________________________<br>
Wolves LUG mailing list<br>
Homepage: <a href="http://www.wolveslug.org.uk/" target="_blank">http://www.wolveslug.org.uk/</a><br>
Mailing list: <a href="mailto:Wolves@mailman.lug.org.uk">Wolves@mailman.lug.org.uk</a><br>
Mailing list home: <a href="https://mailman.lug.org.uk/mailman/listinfo/wolves" target="_blank">https://mailman.lug.org.uk/mailman/listinfo/wolves</a><br></blockquote></div>