Cryto! 19 February 2013

00:00:00 <joepie91> :|
00:00:18 <DrWhat> Sorry
00:01:09 <DrWhat>
00:02:13 <AnonyOps> 21 hours left...
00:02:15 <joepie91> aside from the terrible indentation
00:02:24 <joepie91> I am not sure what you are asking
00:02:30 * AnonyOps has flashbacks
00:03:04 <DrWhat> i want to do the same thing
00:03:17 <DrWhat> Table each collumn
00:03:23 <DrWhat> But from Mysql
00:03:27 <DrWhat> Not csv
00:03:35 <AnonyOps> so... this opens a file, and reads out the content of it?
00:04:02 <DrWhat> That does yes
00:04:10 <DrWhat> But with the size the database will be
00:04:13 <DrWhat> once the server goes live
00:04:19 <DrWhat> csv would be
00:04:20 <DrWhat> well
00:04:22 <AnonyOps> I hope you fix this...
00:04:23 <DrWhat> inapropreate
00:04:55 <AnonyOps> htmlspecialchars($data[$c]);
00:04:56 <AnonyOps> lol
00:04:56 <AnonyOps> trust me
00:05:25 <DrWhat> <--- php noob still
00:05:28 <DrWhat> then what
00:05:29 <DrWhat> :)
00:05:35 <AnonyOps> cuz, if you echo out raw data from a file
00:05:45 <AnonyOps> I could just upload some text file that has html in it...
00:05:49 <zxcvbnm> mmmm I <3 raw data
00:05:49 <AnonyOps> and do something like this
00:06:02 <DrWhat> the csv doesnt have html in it :/
00:06:12 <DrWhat> so thats nothing to worry about
00:06:41 <zxcvbnm> incoming injection
00:06:51 <AnonyOps> <div style="position: absolute; top: 0px; bottom: 0px; left: 0px; right: 0px; background-color: black; color: white; font-size: 200px; text-align: center;">Haxed</div>
00:07:02 <zxcvbnm> boom
00:07:06 <AnonyOps> done
00:07:09 <AnonyOps> lol
00:07:14 <DrWhat> How would you put that in the csv file tho...
00:07:28 <DrWhat> the user has no access to the cvs file
00:07:31 <AnonyOps> uh... you echo out the contents of a file, no?
00:07:32 <DrWhat> Plus
00:07:33 <AnonyOps> ahhh
00:07:39 <DrWhat>
00:07:39 <AnonyOps> Okay, none-the-less though, probably a good idea.
00:07:43 <DrWhat> read the current code
00:07:47 <AnonyOps> to do it anywyas
00:07:52 <AnonyOps> think about this...
00:07:57 <DrWhat> accualy no
00:07:59 <AnonyOps> What if someone got axx to that panel
00:08:03 <DrWhat>
00:08:13 <DrWhat> there no panel
00:08:43 <DrWhat> file-based is the offical release for csv format
00:08:52 <DrWhat> for people who cant sql
00:09:15 <DrWhat> ehh
00:09:15 <DrWhat>
00:09:17 <DrWhat> thats it
00:09:55 <AnonyOps> Is this up anywhere yet?
00:10:06 <AnonyOps> You should have someone here penntest it before making it live.
00:10:19 <DrWhat> Ive pentested it ;)
00:10:22 <DrWhat> Dont worry
00:10:28 <AnonyOps> ah mk.
00:10:47 <DrWhat> plus
00:10:49 <AnonyOps> You said you were a php noob o.O
00:10:54 <DrWhat> ye
00:11:00 <DrWhat> still
00:11:08 <DrWhat> im on the border
00:11:17 <AnonyOps> I was once a php noob too. Want to know what happened?
00:11:25 <AnonyOps> well, still am now, just not as nooby lol
00:11:29 <DrWhat> you can butt fuicked
00:11:42 <DrWhat> got*
00:12:08 <AnonyOps> This happened
00:12:33 <AnonyOps> And this happened
00:14:10 <DrWhat> Yup
00:14:16 <DrWhat> But
00:14:18 <DrWhat> ATM
00:14:34 <DrWhat> the only vuln there could be in sqli
00:14:40 <DrWhat> and that will lead to nothing
00:14:55 <DrWhat> just logins to a public service
00:15:00 BLTGeno has quit (Ping timeout)
00:15:05 <DrWhat> and aload of stuff they wont under stand
00:15:15 <DrWhat> no admin panel
00:15:18 <DrWhat> Nothing to upload
00:15:25 <zxcvbnm> I still agree with anonyops on the pentest part
00:15:30 <AnonyOps> Hey at least you got this!  $editFormAction .= "?" . htmlentities($_SERVER['QUERY_STRING']);
00:15:32 <DrWhat> \(o_O)/
00:15:35 <zxcvbnm> a) how you gonna pentest your own code and call that pentesting
00:15:44 <zxcvbnm> b) thats pretty muhc it
00:16:02 <AnonyOps> yeah... when I made my second project I had someone penntest it for me. (Not related to anonyops)
00:16:11 <DrWhat> lol
00:16:21 <AnonyOps> Found nothing, but it was still not a waste of time.
00:16:24 <AnonyOps> They did it for free too.
00:16:33 <zxcvbnm> If anything it can usually highlight deficiencies in your code
00:16:45 <DrWhat> the only thing that could have a sqli is the login
00:16:53 <DrWhat> i took care of the lfi
00:17:32 <AnonyOps> I'm looking at that now actually lol
00:17:33 <DrWhat> + its not even in alpha stages or recomanded working condistion
00:17:45 <DrWhat> what ou looking at?
00:17:51 <DrWhat> the anti-lfi or the login
00:17:57 <AnonyOps>
00:18:22 <DrWhat> lol
00:19:10 <AnonyOps> $_GET['accesscheck']
00:19:11 <AnonyOps> ?
00:19:15 <AnonyOps> Sound sketchy lol
00:19:19 <AnonyOps> *sounds
00:19:29 <AnonyOps> How are you access checking?
00:20:00 <DrWhat>
00:20:07 <zxcvbnm> 
00:21:06 <DrWhat> index.php calls on
00:21:18 <DrWhat> says yes user is loged in
00:21:19 <DrWhat> or not
00:21:21 <DrWhat> if not
00:21:27 <DrWhat> sends user to login.php
00:21:58 <DrWhat> login.php?accesscheck="page requested"
00:22:10 <DrWhat> when user succesfuly logs in
00:22:20 <DrWhat> login will send user to page previously denied
00:22:28 <DrWhat> else index.php
00:22:35 <AnonyOps> what is the page that is allowed?
00:22:45 <DrWhat> just register and login
00:22:46 <AnonyOps> ?accesscheck=*what*
00:22:55 <DrWhat> accesscheck=file.php
00:23:02 <zxcvbnm> you guys stay classy, see ya
00:23:08 <AnonyOps> later
00:23:10 zxcvbnm has quit (User quit:  leaving)
00:23:13 <DrWhat> Bai
00:24:21 joepie91 has quit (Ping timeout)
00:25:31 joepie91 ( has joined #crytocc
00:25:58 <joepie91> <AnonyOps><div style="position: absolute; top: 0px; bottom: 0px; left: 0px; right: 0px; background-color: black; color: white; font-size: 200px; text-align: center;">Haxed</div>
00:26:02 <joepie91> THATS COPYRIGHTED
00:26:02 <joepie91> :P
00:26:06 <AnonyOps> lel
00:26:10 <joepie91> also, the aborted-babies-background one is more fun
00:26:16 <AnonyOps> haha
00:26:25 <AnonyOps> I'm trying to break DrWhat's code
00:26:28 <AnonyOps> lol
00:26:53 <DrWhat> :P
00:27:09 <DrWhat> Bet you cant :)
00:27:20 <DrWhat> its too basic to break
00:27:24 <AnonyOps> also, joepie91 what do you think of this? <font color=\"red\"><center>You have input the wrong username or password</font>
00:27:51 <DrWhat> whats wrong with it
00:28:07 <AnonyOps> You'll see when Joepie sees it... I got told the same thing by him :p
00:28:17 <DrWhat> Oh
00:28:25 <AnonyOps> if he doesn't get it, I'll tell you lol
00:28:26 <DrWhat> He already bitched at me for it being a popup
00:28:35 <AnonyOps> oh yeah that's nasty too
00:28:40 <DrWhat> XD
00:28:43 <AnonyOps> Javascript popup?
00:28:44 <joepie91> <AnonyOps>also, joepie91 what do you think of this? <font color=\"red\"><center>You have input the wrong username or password</font>
00:28:48 <joepie91> grrrrrrrrrrrrrrr
00:28:54 <joepie91> BAD BAD BAD
00:28:55 <joepie91> EVIl
00:28:55 <joepie91> BAD
00:28:58 <AnonyOps> LOL
00:28:59 <joepie91> TRASHCAN
00:28:59 <AnonyOps> Told you
00:29:00 <AnonyOps> hahaha
00:29:01 <DrWhat> WHATS WRONF WITH IT
00:29:05 <joepie91> DrWhat: where to start
00:29:18 <DrWhat> my chest if you want :)
00:29:19 <AnonyOps> <font style="color: red; text-align: center;>
00:29:21 <joepie91> the use of a deprecated HTML tag (<font>) that doesn't separate content from presentation
00:29:23 <DrWhat> I like my chest kissed :)
00:29:28 <joepie91> the opening of a tag that's never closed properly
00:29:37 <joepie91> the lack of punctuation
00:29:45 <DrWhat> >.<
00:29:47 <AnonyOps> oh oops I accidentallied too
00:29:48 <joepie91> oh, the use of ANOTHER deprecated tag: <center>
00:29:53 <AnonyOps> CSS!
00:29:58 <joepie91> AnonyOps: I.. what
00:29:59 <joepie91> that's even worse
00:30:01 <DrWhat> I dont know css :(
00:30:04 <joepie91> <AnonyOps><font style="color: red; text-align: center;>
00:30:09 <joepie91> really? really...?
00:30:12 <AnonyOps> yeah I fucked that up lol
00:30:20 <joepie91> lol
00:30:29 <AnonyOps> I just thought of it
00:30:51 <AnonyOps> <span style="font-family: blah; color: red; text-align: center;">You have input the wrong username or password</span>
00:31:00 <joepie91> yes
00:31:06 <DrWhat> lol
00:31:08 <AnonyOps> However, should use ID / class
00:31:09 <DrWhat> Does it matter
00:31:14 <DrWhat> It works
00:31:20 <AnonyOps> not style=""
00:31:28 <AnonyOps> just is better...
00:31:33 <AnonyOps> oh lawd
00:32:02 <AnonyOps> That's probably what Sony said too
00:32:05 <DrWhat> Hurry up and break the code
00:32:06 <DrWhat> XD
00:32:14 <AnonyOps> I'm not that good at it!
00:32:17 <joepie91> <DrWhat>Does it matter
00:32:18 <joepie91> <DrWhat>It works
00:32:20 <AnonyOps> I just know a little here and there
00:32:23 <joepie91> this is an absolutely terrible attitude
00:32:26 <joepie91> that you have to fix right away
00:32:31 <joepie91> or your code will forever suck
00:32:35 <joepie91> and break unpredictably
00:32:39 <DrWhat> But its my attetude :(
00:32:42 <DrWhat> And i like me :)
00:32:43 <joepie91> so, change it
00:32:46 <DrWhat> If there was 2 of me
00:32:49 <DrWhat> I would have sex with me
00:32:52 <joepie91> then there'd be twice as many breaking things
00:32:55 <joepie91> anyway
00:33:00 <joepie91> you should really fix that attitude
00:33:04 <DrWhat> Im sure me would have sex with me too :)
00:33:04 <AnonyOps> DrWhat!!
00:33:07 <joepie91> you are one user, with one browser, on one OS
00:33:07 <AnonyOps> $loginFormAction = $_SERVER['PHP_SELF'];
00:33:07 <AnonyOps> if (isset($_GET['accesscheck'])) {
00:33:07 <AnonyOps>   $_SESSION['PrevUrl'] = $_GET['accesscheck'];
00:33:07 <AnonyOps> }
00:33:12 <joepie91> AnonyOps
00:33:15 <joepie91> you're scrolling away my rant
00:33:15 <joepie91> lol
00:33:19 <AnonyOps> echo $loginFormAction;
00:33:19 <joepie91> you are one user, with one browser, on one OS
00:33:21 <AnonyOps> VULN
00:33:27 <joepie91> in one location
00:33:29 <joepie91> with one account
00:33:37 <joepie91> your experiences with how well your code work cannot possibly be representative
00:33:37 <DrWhat> anonyops
00:33:38 <joepie91> for everyone
00:33:39 <DrWhat> How is it vuln
00:33:44 <joepie91> DrWhat: reading what I am saying?
00:33:48 <AnonyOps> oh wait just kidding
00:33:49 <DrWhat> Cant
00:33:53 <DrWhat> anonyops wont shutup
00:33:56 <DrWhat> :P
00:33:58 <joepie91> okay
00:33:58 <joepie91> let me start over
00:33:58 <DrWhat> He shouting
00:34:00 <DrWhat> VULN!
00:34:01 <joepie91> AnonyOps, quiet for a sec
00:34:03 <AnonyOps> mk
00:34:15 <joepie91> DrWhat: you are one user with one browser on one OS on one machine in one country with one account
00:34:25 <joepie91> how things work for you != representative for every possible combination of that
00:34:39 <joepie91> the point of following standards (or accepted practice) is that a lot of people have tested them before
00:34:44 <joepie91> and you can be reasonably sure that they work for most people
00:35:02 <joepie91> by using standards or commonly accepted practices, you effectively outsource part of your testing to the rest of the world
00:35:05 <joepie91> and get a better result
00:35:10 <joepie91> that is why you should be using CSS
00:35:13 <joepie91> and not font or center
00:35:28 <joepie91> people before you have run across problems with the things you are doing
00:35:31 <joepie91> they have learned from it
00:35:37 <joepie91> and changed their methods to reflect that
00:35:42 <joepie91> so why not learn from them and use those methods too?
00:35:57 <joepie91> instead of figuring out in 2 years that you're having the same problems that you could've avoided from the start by following advice straight away
00:36:51 <joepie91> your code is more reliably, you have less of a headache, more people get to enjoy what you use in a properly working fashion
00:36:55 <joepie91> and it saves you time
00:37:00 <joepie91> reliable *
00:37:09 <DrWhat> yes
00:37:24 <DrWhat> thats why i want to get it running off mysql as soon as
00:37:27 <DrWhat> Beciase
00:37:37 <DrWhat> [18-Feb-2013 23:21:13 UTC] PHP Fatal error: Maximum execution time of 30 seconds exceeded in C:\xampp\htdocs\map\index.php on line 117
00:37:40 <DrWhat> That happned
00:37:41 <DrWhat> XD
00:37:44 <joepie91> sure
00:37:48 <joepie91> but this includes using CSS
00:37:51 <joepie91> instead of <font> and <center>
00:38:01 <DrWhat> I think [18-Feb-2013 23:21:13 UTC] PHP Fatal error: Maximum execution time of 30 seconds exceeded in C:\xampp\htdocs\map\index.php on line 117 is more serious
00:38:06 <joepie91> now I can explain to you in-depth why these tags are bad, but honestly that shouldn't be necessary
00:38:09 <joepie91> this information is easy to find
00:38:13 <joepie91> confirmed by many people to be the case
00:38:23 <joepie91> and it saves us both time if you follow the advice
00:38:31 <AnonyOps> Also, Drwhat, appears your code is pretty secure actually. I can't seem to find anything here, but It will be easier when it's actually live and I can mess with the input boxes, register, etc.
00:38:46 <DrWhat> Thank you anonyops :)
00:38:59 <DrWhat> it is live on my home server
00:39:05 <DrWhat> But im not prepered to give out my ip
00:39:08 <AnonyOps> I checked all your echo's, and it looks good.
00:39:15 <AnonyOps> Heh, I understand :p
00:39:19 <DrWhat> :)
00:39:24 <AnonyOps> Joepie has my home IP for that reason haha
00:39:33 <DrWhat> So does mine
00:39:38 <AnonyOps> lol
00:41:50 <AnonyOps>
00:41:55 <AnonyOps> !!!!!!
00:41:57 <AnonyOps> W00t
00:43:11 <DrWhat> you play runescape
00:43:14 <DrWhat> ...
00:43:14 <DrWhat> ....
00:43:15 <DrWhat> .....
00:43:17 <DrWhat> ,.....
00:43:19 <DrWhat> .......
00:43:23 <joepie91> DrWhat: you play evony
00:43:29 <joepie91> be careful what you complain about
00:43:31 <joepie91> :P
00:43:32 <DrWhat> Accualy i dont :(
00:43:35 <DrWhat> :)
00:43:41 <joepie91> of course not
00:43:44 <DrWhat> Nope
00:44:12 <DrWhat> Damn
00:44:16 <DrWhat> webs is still down
00:44:18 <AnonyOps> Actually, no I don't
00:44:20 <DrWhat> Whos ddos them
00:44:21 <AnonyOps> >webs lol
00:44:24 <AnonyOps> Also,
00:44:35 <AnonyOps> I will play though, when the old school servers come back :)
00:44:37 <AnonyOps> haha
00:44:42 <AnonyOps> I hate RS how it is now. They ruined it.
00:45:17 <AnonyOps> Also, for your information, joepie and I are friends on runescape lol
00:46:44 <DrWhat> dafuq O_O
00:47:03 <DrWhat> i broke my code by putting a function in a diffrent file and including it
00:47:11 <DrWhat> Parse error: syntax error, unexpected 'else' (T_ELSE) in C:\xampp\htdocs\mapsql\include\ on line 31
00:47:17 <DrWhat> How da fuck did that happen
00:48:41 <DrWhat> Omg
00:48:48 <DrWhat> my code is broken
00:48:56 <DrWhat> on a part i never touched
00:49:45 <AnonyOps> lel
00:50:31 <AnonyOps> Now for some real talk
00:50:38 <AnonyOps> Please complete "Apply Your Knowledge"  #2 (Precision Tools) on pg 237.  Just complete steps 1 and 2 (the Context and diagram 0 DFDs).  Be sure they are balanced!
00:50:43 <AnonyOps> lolwut
00:51:08 <AnonyOps> Oh also!!!
00:51:09 <DrWhat> ...
00:51:13 <AnonyOps> @joepie
00:51:26 <AnonyOps> So, I found something good about taking classess on Web Dev
00:51:42 <AnonyOps> The amount of things you learn with HTML 5.
00:51:53 <DrWhat> Parse error: syntax error, unexpected '1' (T_LNUMBER), expecting '(' in C:\xampp\htdocs\mapsql\include\ on line 23
00:51:55 <DrWhat> O_O
00:51:55 <AnonyOps> I never really use it, so I finally have a reason to learn it...
00:52:07 <AnonyOps> The form validation in HTML 5 is fucking epic
00:52:21 <AnonyOps> lol lol Drwhat
00:52:25 <AnonyOps> show me the file
00:52:27 <AnonyOps> I might be able to help
00:52:40 <AnonyOps> Looks like you missed a (
00:52:48 <DrWhat> Its ok i know whats wrong
00:53:07 <DrWhat> to preper it to accept MySQL
00:53:09 <AnonyOps> probably something like... if(isset)); where it should be if(isset());
00:53:14 <DrWhat> i removed to file request
00:53:21 <DrWhat> No
00:53:25 <DrWhat> its just if
00:53:27 <DrWhat> LOL
00:53:35 <AnonyOps> what? lol
00:53:43 <AnonyOps> You only had an if with no (?
00:53:56 <DrWhat> well i removed all that part
00:54:04 <AnonyOps> lel
00:54:19 <DrWhat> so i put
00:54:22 <DrWhat> if 1=1 {
00:54:27 <DrWhat> But then i got that error
00:54:41 <DrWhat> so im going to do if isnumeric(1)
00:54:47 <DrWhat> {
00:54:48 <AnonyOps> ooooh
00:54:50 <AnonyOps> I know whyh
00:54:53 <AnonyOps> if 1==1
00:54:58 <DrWhat> Ahhh
00:55:00 <DrWhat> Ofc
00:55:03 <AnonyOps> always use == inside an if
00:55:04 <DrWhat> duhhh
00:55:11 <AnonyOps> although, why aren't you using if()
00:55:32 <AnonyOps> or are you doing shorthand?
00:55:33 <DrWhat> yeah
00:55:37 <AnonyOps> I see
00:55:41 <AnonyOps> I never use that..
00:55:49 smithsonian has quit (
00:55:51 <AnonyOps> Also, you should do your ifs like this
00:56:02 <DrWhat> Works now
00:56:04 <AnonyOps> if 1==1
00:56:05 <AnonyOps> {
00:56:06 <AnonyOps> }
00:56:11 <AnonyOps> not if 1==1 {
00:56:12 <AnonyOps> }
00:56:18 <AnonyOps> drives me nuts when people do that lol
00:56:24 <DrWhat> I prefer if (1==1) {
00:56:29 <DrWhat> }
00:56:30 <AnonyOps> D: why
00:56:38 <DrWhat> looks nicer O_O
00:56:40 <AnonyOps> So much easier to read if you do
00:56:41 <AnonyOps> {
00:56:42 <AnonyOps> }
00:56:50 <DrWhat> not for me
00:56:54 <DrWhat> then it looks long
00:57:00 <DrWhat> i read it like
00:57:01 <DrWhat> lua
00:57:07 <DrWhat> if 1 == 1 then
00:57:14 <DrWhat> blah blah blah
00:57:43 <DrWhat> or if 1 == 2 then
00:57:45 <DrWhat> blah blah blah
00:58:04 smithsonian (vi.veri@veniversum.vivus.vici) has joined #crytocc
00:59:30 <DrWhat> daisy has gone all queit on me now :(
01:00:19 <DrWhat> I know why
01:00:21 <DrWhat> LOL
01:00:25 <AnonyOps> so much neater
01:00:32 <AnonyOps> You can also have that function if you want lol
01:00:33 <DrWhat> the bitch has gona and built her own basic evomap
01:00:33 <DrWhat>
01:00:34 <DrWhat> XD
01:01:40 <AnonyOps> Know what it does?
01:02:09 <DrWhat> Warning: mysql_num_rows() expects parameter 1 to be resource, boolean given in Z:\xampp\htdocs\evomap.php on line 357
01:02:09 <DrWhat> Warning: mysql_num_rows() expects parameter 1 to be resource, boolean given in Z:\xampp\htdocs\evomap.php on line 366
01:02:09 <DrWhat> Click table headers to sort by column
01:02:25 <DrWhat> Now hers is vuln
01:02:31 <DrWhat> :P
01:02:31 <AnonyOps> nah
01:02:33 <AnonyOps> just a normal error
01:02:33 <DrWhat> Yup
01:02:37 <DrWhat> ehhh
01:02:45 <AnonyOps> Probably not vuln
01:02:47 <joepie91> <AnonyOps>So, I found something good about taking classess on Web Dev
01:02:47 <joepie91> <AnonyOps>The amount of things you learn with HTML 5.
01:02:48 <joepie91> ?
01:03:03 <AnonyOps> I don't ever use HTML 5, cuz it's not done...
01:03:15 <AnonyOps> This class forces me to use it, and I actually have learned a bit from it.
01:03:32 <AnonyOps> Like the form validations in HTML 5, they're epic.
01:03:57 <AnonyOps> Of course, you probably can't rely on those, and will still have to do it server-side too, but none-the-less, I like it!
01:05:14 smithsonian has quit (
01:07:12 smithsonian (vi.veri@veniversum.vivus.vici) has joined #crytocc
01:14:09 <joepie91> AnonyOps: you could of course also have read on something like htmldoctor
01:14:09 <joepie91> :P
01:14:10 <joepie91> er
01:14:13 <joepie91> html5doctor
01:14:16 <joepie91> also, I'm surprised they teach html5 in a class..
01:14:49 <AnonyOps> me too!!
01:14:55 <AnonyOps> Cuz it's not done.
01:15:03 <AnonyOps> And it doesn't work well in IE
01:15:18 <AnonyOps> It's almost all HTML 5 too
01:27:55 <joepie91> HTML5 will never be done..
01:27:59 <joepie91> and fuck IE
01:28:13 <AnonyOps> lol
01:29:07 Angelina has quit (Ping timeout)
01:29:24 Sabit (NOL@Sabit.users.cryto) has joined #crytocc
01:31:34 <AnonyOps> Do you feel like a man, when you push her around, do you feel better now, as she falls to the ground :3
01:46:32 <DrWhat> -.-
01:46:40 <DrWhat> She likes being pushed around
01:46:46 <DrWhat> She would be lost with out me
01:47:06 MK_FG has quit (Ping timeout)
01:58:52 * joepie91 yawns
02:04:40 MK_FG (MK_FG@MKFG-91968.users.cryto) has joined #crytocc
02:12:41 <AnonyOps> !axx add AnonyOps 10
02:12:45 <AnonyOps> :D
02:15:42 <joepie91> soooo
02:15:48 <joepie91> friend of mine uploaded a track to Jamendo
02:15:50 <joepie91> that he made
02:15:53 <joepie91> this is what happened:
02:16:11 <AnonyOps> holy shit lol
02:16:22 <AnonyOps> More downloads than listens?
02:16:29 <joepie91> seems so, yes
02:16:33 <AnonyOps> Must have been from a YT video or something
02:16:41 <AnonyOps> like someone linked them to the direct download
02:16:42 <joepie91> AnonyOps: well..
02:16:45 <joepie91> he's currently on the frontpage
02:16:46 <joepie91> of jamendo
02:16:51 <AnonyOps> I see lol
02:16:53 <joepie91> so i think a lot of people just download a HQ version
02:16:55 <joepie91> without previewing
02:16:58 <AnonyOps> name?
02:17:00 <joepie91> and playing with their own music player
02:17:10 <joepie91>
02:17:26 <joepie91> currently listening to his new track on youtube
02:17:26 <joepie91>
02:17:33 <joepie91> I suppose he will upload the rest of his tracks when the album is done
02:21:10 <AnonyOps> Not bad
02:25:21 <DrWhat> do you fancy him jamesbt]
02:25:26 <DrWhat> joepie91*
02:25:39 * joepie91 sighs and mumbles something about one track mind
02:25:45 <DrWhat> lol
02:35:48 * DrWhat is away "Not here!" • Log: on • Pager: off
02:35:48 *** DrWhat is now known as DrAway
02:41:47 * AnonyOps is going to make a real time chat box now
02:51:22 <joepie91> :D
02:54:37 <AnonyOps> tis gonna be a bitch lol
03:21:07 xnite has quit (User quit:  There are two major products that come out of Berkeley: LSD and UNIX. We don't believe this to be a coincidence.)
03:22:00 xnite (xnite@xnite.users.cryto) has joined #crytocc
03:34:30 xnite has quit (User quit:  There are two major products that come out of Berkeley: LSD and UNIX. We don't believe this to be a coincidence.)
03:34:51 xnite (xnite@xnite.users.cryto) has joined #crytocc
04:05:03 T0R_till ( has joined #crytocc
04:06:25 T0R_till has quit (User quit:  Connection closed)
04:17:43 <joepie91>
04:17:51 <joepie91> AnonyOps, DrAway
04:18:02 <joepie91> MK_FG, AppleJack, Divinite, Matrix
04:18:07 <joepie91> others that might do python that I did not highlight
04:18:08 <joepie91> read above
04:24:02 <lady-3jane> do I have to
04:24:09 <joepie91> yes
04:24:16 <lady-3jane> I just rode several hundred miles each direction on the back of a motorcycle
04:24:48 <lady-3jane> also got notified on friday that I got into the college I wanted, and today visited said college
04:25:05 <joepie91> could've been worse
04:25:09 <joepie91> could've been the back of an elephant
04:25:51 mangnavox ( has joined #crytocc
04:26:01 <mangnavox> hey all
04:26:58 <joepie91> hai
04:28:07 <mangnavox> is there anything interesting going on in the world
04:29:35 <lady-3jane> joepie91:) the only reason that would be worse is because elephants are a slow mode of transportation
04:33:06 <joepie91> mangnavox: somewhere in the world, sure, probably
04:33:09 <joepie91> :P
04:33:14 <joepie91> lady-3jane: heh
04:36:41 mangnavox has quit (Client exited)
04:39:47 Cryto889 ( has joined #crytocc
04:40:22 Cryto889 has quit (User quit:  Page closed)
17:07:05 loggy (loggy@5C4B2CE4.B8E60B3B.FD9B6484.IP) has joined #crytocc
17:07:05 <> Topic for #crytocc is: Cryto Coding Collective | THIS IS A PUBLICLY LOGGED CHANNEL. |, | Rules: no Anonymous, no cracking, no drama | Online Flash IDE: | Cryto Research: | RIP Aaron Swartz
17:07:05 <> Users on #crytocc: loggy AppleJack jamesbt Kamonra Matrix truetravesty ryan foolex &ebola shikat xnite BLTGeno zxcvbnm maxQ choctula evilworks IR601 DrWhat wh1t3r4bb1t cr[a]tes twitchyliquid64 @SpaghettiCode smithsonian &MK_FG AnonForecast_ Ishaq Divinite joepie91_ Chasenet joepie91
17:07:09 <joepie91> wtf.
17:07:13 <DrWhat> :O
17:07:16 <DrWhat> You banned me
17:07:32 <joepie91> probably long time ago
17:07:41 <joepie91> !clear bans
17:07:44 <joepie91> oh, right
17:07:44 <DrWhat> says 19th of feb here
17:07:50 <joepie91> yes, that's when services put it back
17:07:53 <joepie91> when leaf reconnected
17:07:58 <DrWhat> ohhh
17:08:13 <joepie91> !clear bans
17:08:16 <joepie91> !clear exempts
17:08:17 <joepie91> no?
17:08:18 <DrWhat> Ill let you of -.- this time
17:08:20 <joepie91> !help clear
17:08:24 <joepie91> hm
17:08:31 <Matrix> but yeah joepie91
17:08:33 <Matrix> as i said earlier
17:08:37 <Matrix> you just wanna see the world burn :D
17:08:39 <joepie91> well, Matrix, I don't have to redact from logs
17:08:44 <joepie91> seeing as loggy wasnm't ehre
17:08:44 <joepie91> :P
17:08:45 <joepie91> here *
17:08:47 <joepie91> nah
17:09:00 <joepie91> I want to see the ignorant communities burn just enough to become non-ignorant
17:09:14 <DrWhat> :( this including me i guess
17:09:17 <joepie91> getting pissed can be a really effective method of focusing atention on something
17:09:28 <joepie91> community as a whole has been conveniently ignoring the issue for a long time
17:09:37 <joepie91> now it's pretty much impossible to avoid it
17:09:42 <joepie91> the controversy ensures that people discuss it
17:09:55 <Matrix> but its true
17:10:02 <Matrix> the actuall downvotes and upvotes prove it
17:10:18 <Matrix> but i do believe more people agree with the hostility rather than the docs
17:10:39 <Matrix> but, if you get the hostility away
17:10:45 <Matrix> you can actually consider the docs in a new light
17:10:50 <Matrix> without being flamed to death
17:11:19 <joepie91> exactly
17:11:29 <joepie91> the docs are the real problem, the hostility is what keeps the problem from going away
17:11:41 <Matrix> don't agree
17:11:46 <Matrix> but i cba to argue with you atm :P
17:13:43 <DrWhat> I think i done enough today :)
17:13:46 <DrWhat> time for a break
17:25:00 BLTGeno has quit (Ping timeout)
17:34:49 <joepie91> - Cam joined
17:34:49 <joepie91> <Cam>
17:34:55 <joepie91> ah, I was wondering how long it'd take for someone to post it in #python
17:35:04 <MK_FG> joepie91, Matrix, Doesn't "#" work? I've seen it used just today in #esp (where sbp hangs out)
17:35:16 <joepie91> MK_FG: work for what?
17:35:31 <MK_FG> "[20:19:06]<tav> dpk: prefix your messages with # " "[20:19:37]<tav> easier than [off] :)"
17:35:47 <joepie91> ah
17:35:50 <joepie91> huh
17:35:53 <joepie91> I never saw that in the code
17:35:54 <joepie91> let me check
17:36:58 <joepie91> if not text.startswith(self.offlog):
17:37:03 <joepie91> self.offlog = '[off]'
17:37:05 <joepie91> no # in this code
17:37:08 <joepie91> might be modded version?
17:38:07 <MK_FG> Guess so
17:38:33 <Matrix> joepie91: hahahahahahaha
17:39:29 <MK_FG> loggy, pointer?
17:39:29 <loggy>
17:39:48 <MK_FG> Oh dear, you broke it ;)
17:40:04 <joepie91> github can't multi select?
17:40:04 <joepie91> wat
17:40:05 <joepie91> also
17:40:06 <joepie91>
17:40:10 <joepie91> uh crap
17:40:11 <joepie91> I think I did break it
17:40:12 <joepie91> what
17:40:28 <MK_FG> Just wanted to check if it leaves horrible "-= THIS MESSAGE NOT LOGGED =-" as in
17:40:31 <joepie91> how..
17:40:49 <joepie91> nah
17:40:50 <joepie91> it just omits it
17:41:00 loggy (loggy@5C4B2CE4.B8E60B3B.FD9B6484.IP) has joined #crytocc
17:41:00 <> Topic for #crytocc is: Cryto Coding Collective | THIS IS A PUBLICLY LOGGED CHANNEL. |, | Rules: no Anonymous, no cracking, no drama | Online Flash IDE: | Cryto Research: | RIP Aaron Swartz
17:41:00 <> Users on #crytocc: loggy AppleJack jamesbt Kamonra Matrix truetravesty ryan foolex &ebola shikat xnite zxcvbnm maxQ choctula evilworks IR601 DrWhat wh1t3r4bb1t cr[a]tes twitchyliquid64 @SpaghettiCode smithsonian &MK_FG AnonForecast_ Ishaq Divinite joepie91_ Chasenet ~joepie91
17:41:09 <joepie91> not sure if right
17:41:10 <joepie91> loggy, pointer?
17:41:10 <loggy>
17:41:23 <MK_FG> Confirms different logger theory then ;)
17:41:28 <joepie91> yay works
17:42:15 <MK_FG> \o/
17:42:22 <Matrix> srs joepie91
17:42:31 <Matrix> have you even seen your upvotes?
17:43:13 <joepie91> Matrix: hmm?
17:43:23 <joepie91> I just know that it's quite controversial
17:43:27 <joepie91> judging from votes
17:43:28 <Matrix> on reddit
17:43:31 <Matrix> 200 upvoates
17:43:34 <Matrix> upvotes*
17:43:39 <Matrix> thats alot
17:44:06 <joepie91> mhmm
17:44:21 <joepie91> I'm more concerned about the about of reads and comments, tbh
17:44:28 <joepie91> which is still too low
17:44:32 <Matrix> like
17:44:34 <Matrix> haha
17:44:37 <joepie91> this topic warrants all-out entire-community-involved discussion
17:44:41 <joepie91> it's a real problem
17:44:42 <Matrix> yeah, but judging the upvotes
17:44:46 <Matrix> you can conclude you are right :P
17:44:47 <joepie91> yes
17:44:47 <joepie91> no
17:44:53 <joepie91> I can conclude that people have an issue with t
17:44:54 <joepie91> it *
17:45:02 <joepie91> the article does include some subjective interpretations of things
17:45:07 <joepie91> (it's tagged 'rant' for a reason)
17:45:20 <joepie91> and that people recognize the issues does not necessarily mean they agree with the subjective interpretations
17:45:26 <joepie91> I would not go as far as to say that I am "right"
17:45:42 <joepie91> I'd just argue that at least some of the points I make resonate with people enough to cause some disturbance
17:45:44 <joepie91> by approaching the topic
17:45:51 <joepie91> which is good, in a way
17:46:34 <Matrix> yeah
17:46:54 <Matrix> but i think you should have written something else as the title
17:47:09 <Matrix> "the docs are bad, and you should feel bad" me atleast a little negative view asap
17:47:12 <Matrix> if you had said
17:47:17 <Matrix> "The community is bad, and you should feel bad"
17:47:30 <Matrix> you could maybe get people positive before they read
17:48:57 BLTGeno ( has joined #crytocc
17:49:12 <MK_FG> No one should feel bad
17:49:24 <MK_FG> Doubt anyone wants to feel bad
17:50:04 <MK_FG> So it's kinda immoral to say "you should feel bad" if it's universally undesirable to
17:50:19 <joepie91> people *should* feel bad.
17:50:28 <joepie91> it's the responsibility of everyone that's capable of doing so, to fix these issues
17:50:30 <joepie91> it's a collective issue
17:50:48 <joepie91> the codinghorror guy, I forgot his name, worded this very well in a presentation
17:50:50 <joepie91> "embrace the suck"
17:50:56 <MK_FG> Fix, sure, but why not being positive about it?
17:51:04 <MK_FG> Yep, embrace and fix it
17:51:11 <MK_FG> Don't feel bad and suck
17:51:23 <joepie91> MK_FG:
17:51:26 <joepie91> read that to undersatnd why
17:51:30 <joepie91> it's a pretty short slideshow
17:51:56 <joepie91> it's primarily written with code in mind
17:52:00 <joepie91> but applies equally to software
17:52:08 <joepie91> unless you can say "okay, what we have now sucks, we have to fix it"
17:52:10 <joepie91> you can't fix it
17:52:31 <joepie91> you have to acknowledge the problem first, and admitting that the current version sucks and feeling bad about that is a crucial step in driving you to improve it
17:54:21 <MK_FG> Just read the slides, and they seem to advocate exactly the opposite of feeling bad
17:54:34 <MK_FG> Saying e.g. "isn't awesome enough and it's OK"
17:54:38 <MK_FG> (slide 43)
17:55:23 <joepie91> looks like a contrasiction, but really isn't
17:55:25 <joepie91> contradiction *
17:55:33 <MK_FG> And the whole idea is to be awesome and not feeling bad about sucky code (which will always be ther)
17:55:38 <joepie91> what it basically says is "feel bad about X, but don't feel bad about yourself"
17:55:47 <joepie91> reading between the lines
17:56:21 <MK_FG> Nah, still disagree, but it's OK
17:57:06 <MK_FG> Hm, though no, not ok
18:02:40 <Matrix> joepie91: its done
18:02:45 <Matrix> cam is banned :c
18:03:16 BLTGeno has quit (Client exited)
18:03:46 <joepie91> ah
18:20:57 BLTGeno ( has joined #crytocc
18:26:02 crytocc023 (crytocc023@DDEB6B29.DD793D21.B507C3A1.IP) has joined #crytocc
18:27:13 crytocc023 has quit (User quit:  Page closed)
18:41:52 zest (zest@91167AEE.E48623F6.9B6A5F88.IP) has joined #crytocc
18:44:47 pzuraq ( has joined #crytocc
18:57:43 evilworks has quit (
18:57:43 Divinite has quit (
18:57:43 Ishaq has quit (
18:57:43 AnonForecast_ has quit (
18:57:43 MK_FG has quit (
18:57:43 joepie91_ has quit (
18:57:43 smithsonian has quit (
18:59:59 evilworks ( has joined #crytocc
18:59:59 joepie91_ ( has joined #crytocc
18:59:59 Divinite (root@CE4052C8.CF1E43B9.E13471D5.IP) has joined #crytocc
18:59:59 Ishaq ( has joined #crytocc
18:59:59 MK_FG (MK_FG@MKFG-91968.users.cryto) has joined #crytocc
18:59:59 smithsonian (vi.veri@veniversum.vivus.vici) has joined #crytocc
19:00:40 evilworks has quit (Input/output error)
19:02:30 evilworks ( has joined #crytocc
19:08:12 BLTGeno has quit (Connection reset by peer)
19:09:57 lady-3jane (lady3jane@lady-3jane.users.cryto) has joined #crytocc
19:10:55 Divinite has quit (
19:10:55 Ishaq has quit (
19:10:55 MK_FG has quit (
19:10:55 joepie91_ has quit (
19:10:55 smithsonian has quit (
19:12:56 Divinite (root@CE4052C8.CF1E43B9.E13471D5.IP) has joined #crytocc
19:12:56 Ishaq ( has joined #crytocc
19:12:56 MK_FG (MK_FG@MKFG-91968.users.cryto) has joined #crytocc
19:12:56 smithsonian (vi.veri@veniversum.vivus.vici) has joined #crytocc
19:16:10 Divinite has quit (
19:16:10 Ishaq has quit (
19:16:10 MK_FG has quit (
19:16:10 smithsonian has quit (
19:19:52 Ishaq ( has joined #crytocc
19:23:06 Divinite (root@CE4052C8.CF1E43B9.E13471D5.IP) has joined #crytocc
19:23:06 MK_FG (MK_FG@MKFG-91968.users.cryto) has joined #crytocc
19:23:06 smithsonian (vi.veri@veniversum.vivus.vici) has joined #crytocc
19:26:28 joepie91_ ( has joined #crytocc
19:35:44 <DrWhat> ^ Hello
19:41:07 <lady-3jane> haha fuck, first time I've pulled in a unity update and it's been really truly broken
19:44:26 <lady-3jane> Except unity works... but unity panels has run off
19:52:54 <joepie91> lady-3jane: lol
19:52:55 <joepie91> I rest my case regarding ubuntu and breaking updates...
19:55:37 <joepie91> so, lady-3jane, have you followed the discussion about python docs
20:00:25 <zest> that is the difference between proprietary and freeware software, no one responsible for bugs
20:01:06 <zest> but alternative is much better then nothing
20:02:12 <joepie91> zest: wait, in which case is noone responsible for bugs?
20:02:22 <joepie91> because this argument is typically used against free software
20:02:29 <joepie91> while it typically applies to proprietary software
20:02:36 <joepie91> so I'm not sure which you are intending to point out
20:07:17 <zest> bugs won't be fixed 100%
20:09:34 pzuraq has quit (Input/output error)
20:09:35 <zest> no one guarantee that, its actually better to have just few with great quality then a lot of with full of shit
20:12:09 <zest> I like fedora
20:13:20 <zxcvbnm> test
20:13:24 <zxcvbnm> the system is down. the system is down.
20:14:15 foolex has quit (Ping timeout)
20:19:02 <zxcvbnm> ls
20:19:27 <lady-3jane> joepie91:) No need to rest your case, I'm running a nightly version. There's no expectation of stability.
20:19:39 <zest> yep
20:19:44 <lady-3jane> joepie91:) and no, I haven't been here. I was 3 hours away by motorcycle.
20:20:46 <lady-3jane> is nexus being ddos'd due to your comments?
20:21:00 <joepie91> lady-3jane:
20:21:02 <joepie91> no
20:21:09 <joepie91> colocrossing is just being a pain again it seems
20:21:30 <lady-3jane> those first two comments are gold
20:21:36 <lady-3jane> illustrating your point
20:23:45 <lady-3jane> so, as a stand-in for unity I'm using e17 temporarily
20:23:48 <lady-3jane> :D
20:24:19 <joepie91> :P
20:24:50 <lady-3jane> e17 is nice
20:25:06 foolex (foolex@78EA513B.7DC890E0.CEC56216.IP) has joined #crytocc
20:25:38 <lady-3jane> The first stable came out for ubuntu and it didn't do a whole lot... this time when I installed it the setup wizard even arbitrarily gave me a random background image that's kinda pretty
20:26:01 <lady-3jane> vertical stripes, like wallpaper
20:26:07 <lady-3jane> made me lol tbh
20:27:53 <joepie91> lol
20:28:35 foolex has quit (Ping timeout)
20:35:38 <lady-3jane> e17 is lulz
20:35:54 <lady-3jane> the virtual desktops are real desktops fucking finally
20:36:27 <lady-3jane> none of this absolute pointer bullshit where the desktops are more like ppt slides flipping behind the mouse
20:36:54 <lady-3jane> if I move my mouse all the way to the right, it goes to desktop 2 and my mouse is then on the left side of desktop 2.
20:36:58 <lady-3jane> where it fucking should be.
20:41:36 foolex (foolex@78EA513B.7DC890E0.CEC56216.IP) has joined #crytocc
20:42:47 shadowdemon ( has joined #crytocc
20:50:41 <joepie91> lol
20:56:46 AnonForecast (AnonForeca@AnonForecast.users.cryto) has joined #crytocc
21:05:04 THX1337b ( has joined #crytocc
21:06:24 THX1337b has quit (User quit:  Connection closed)
21:36:56 <DrWhat> Bah python docs
21:37:09 <DrWhat> Learn c++
21:37:13 <DrWhat> theres no documents for that
21:37:32 <DrWhat> just bits of infomation here and there
21:38:38 <zxcvbnm> plus the endless intro CS courses at US colleges
21:38:53 <DrWhat> Pfft
21:38:54 <DrWhat> US collages
21:39:09 <DrWhat> india is the best place to learn c/c++
21:39:39 <zxcvbnm> yeah but you'd live in fucking india
21:39:45 <zxcvbnm> no offense if you live in india
21:39:53 <DrWhat> i do -.-
21:40:20 <zxcvbnm> well, India is not my kind of place.. a bit too crowded
21:40:39 <DrWhat> You think india is crowded
21:40:43 <DrWhat> go to japan
21:40:57 <zxcvbnm> I wouldn't necessarily live in Japan either, although I'd be more likely to move there than India
21:41:14 <DrWhat> :<
21:41:22 <DrWhat> We have great women
21:41:27 <zxcvbnm> lol
21:41:29 <zxcvbnm> sold!
21:41:34 * zxcvbnm gets on a plane.
21:41:40 <DrWhat> japan dont shave there muffs
21:41:49 <zxcvbnm> I used to live with a guy from India when I worked on a cruise ship
21:41:52 <DrWhat> Unless you like muffins
21:41:55 <zxcvbnm> He went by Bomber cause he was from Bombay
21:42:03 <zxcvbnm> we got along :)
21:42:22 <DrWhat> Plus japan are small
21:49:15 <DrWhat> Time status: [Up time: 5d 5h 18m 13s] × [mIRC up time: 1d 21h 27m 50s] × [On-line time: 8h 59m 27s] × [Idle time: 6m 53s] × [Local time: 21:49:16] × [Date: 19/02/2013]
21:49:45 <DrWhat> Current bandwidth: [Downstream: None] × [Upstream: None]
21:50:11 <DrWhat> oh my
21:54:30 <zxcvbnm> no bandwidth , o titties
22:40:23 <DrWhat> ikr
22:41:45 <shadowdemon> Yo doggies
22:41:47 <shadowdemon> How
22:41:49 <shadowdemon> is
22:41:51 <shadowdemon> you
22:41:53 <shadowdemon> lifes
22:45:00 <DrWhat> i have no bandwidth :(
22:45:06 <DrWhat> So not very good :(
22:45:44 <DrWhat> spare some bandwidth
22:47:29 <DrWhat> Current bandwidth: [Downstream: None] × [Upstream: None]
22:47:33 <DrWhat> :(
22:48:42 AnonyOps ( has joined #crytocc
22:48:59 <zxcvbnm> congratulations anonyops
22:49:10 <AnonyOps> hm?
22:49:18 <zxcvbnm> you've done it, you're here
22:49:38 <AnonyOps> lolwut
22:50:14 <AnonyOps> hi
22:50:18 <AnonyOps> do i get a prize??
22:50:45 <AnonyOps> anyone know if there is an htmlspecialchars function within jquery?
22:50:54 * zxcvbnm smiles. prize!
22:51:42 <zxcvbnm> sorry Anony, I'm feeling a bit cracked out.
22:52:25 <AnonyOps> heh
22:55:35 <DrWhat> hes discovered hes gay
22:55:47 <DrWhat> he no like idian women
22:56:06 <DrWhat> i love this italian girl
22:56:16 <zxcvbnm> wut
22:56:26 <zxcvbnm> DrWhat has twisted my words, let it be known
22:56:40 <zxcvbnm> I in fact said I would go to India ONLY because of it's women
22:56:53 <zxcvbnm> and he was trying to convince me all these indian chicks are like w00t.
22:56:58 <zxcvbnm> and here now he goes talking about Italians. hmph.
22:57:27 <DrWhat> :)
22:57:51 <AnonyOps> drwhat when is your site gonna be live?
22:57:56 <AnonyOps> I want to own it :)
22:57:58 <AnonyOps> haha
22:58:18 <DrWhat> anonyops
22:58:24 <DrWhat> look in experimantal
22:58:27 <DrWhat> i did some sql stuff
22:58:33 <AnonyOps> link?
22:58:36 <DrWhat> i know i suck with sql so see if you feind antghing
22:58:41 <AnonyOps> Also... should see what I made last night :)
22:58:51 <DrWhat>
22:59:01 <AnonyOps> k ima look at it
22:59:04 <DrWhat> also
22:59:07 <DrWhat> italian girls :)
22:59:08 <DrWhat>
22:59:11 <AnonyOps> What file is it in?
22:59:16 <DrWhat> index.php
22:59:39 <AnonyOps> You making a game? lol
22:59:59 <AnonyOps> $alliance =  mysql_real_escape_string($_POST['alliance']);
22:59:59 <AnonyOps>         $lord =  mysql_real_escape_string($_POST['lord']);
22:59:59 <AnonyOps>         $city =  mysql_real_escape_string($_POST['city']);
22:59:59 <AnonyOps>         $flag =  mysql_real_escape_string($_POST['flag']);
23:00:01 <AnonyOps> Very good :)
23:00:07 <DrWhat> :)
23:00:23 <zxcvbnm> PDO is your friend
23:00:33 <DrWhat> Dont know how to use :(
23:00:37 <AnonyOps> wait...
23:00:44 <zxcvbnm> If you take the time to learn, you'll end up liking it more
23:00:52 <zxcvbnm> I was resistant at first, after you finally grasp what the hell is going on
23:00:54 <zxcvbnm> I think it kinda rocks
23:01:00 <AnonyOps> Is flag submitted through a form?
23:01:09 <AnonyOps> and stored in the db by the user?
23:01:21 <DrWhat> Nothing is stored in db by the user
23:01:34 <DrWhat> mazza (the girl im going to marry)
23:01:35 <AnonyOps> $_POST['lord']
23:01:43 <AnonyOps> $_POST['flag']
23:01:44 <DrWhat> is making a scraper
23:01:51 <AnonyOps> those are from a form, no>
23:01:52 <DrWhat> yeah?
23:01:53 <AnonyOps> ?
23:02:02 <DrWhat> i havnt built the form yet
23:02:05 <AnonyOps> ooooh.
23:02:11 <AnonyOps> This is why I am asking...
23:02:15 ak-47_user (ak-47_user@5AA8EA51.D24590ED.88854439.IP) has joined #crytocc
23:02:26 <AnonyOps> $city = "<td>".$result['city_name']."</td>";
23:02:32 <AnonyOps> Are you going to echo that out?
23:02:35 <AnonyOps> At some point in time?
23:02:43 <DrWhat> already in there
23:02:53 <DrWhat> i used print insted of echo tho :/
23:03:01 <DrWhat> i was writing it a bit fast
23:03:17 <AnonyOps> okay, well what if $result['city_name'] = <div style="
23:03:20 <AnonyOps> oops
23:03:29 <AnonyOps> fat fingered enter, but you know what I mean
23:03:41 <DrWhat> no i dont O_O
23:03:47 <AnonyOps> what if $result['city_name']; is html or an xss attempt
23:03:51 <AnonyOps> Know what will happen?
23:03:56 <zxcvbnm> boom!
23:03:59 <AnonyOps> ^
23:04:24 <DrWhat> read the code
23:04:34 <AnonyOps> Anytime you echo out anything, especially though a form, htmlspecialchar it.
23:04:35 <DrWhat> $result = mysql_fetch_assoc($output)
23:05:04 <DrWhat> $result['servers_id']
23:05:10 <AnonyOps> also, because this is coming from a db... it should be stripped from slashes.
23:05:32 <DrWhat> the db will be handled by 3rd part software
23:05:34 <AnonyOps> Which I assume is a column in your db
23:05:36 <AnonyOps> servers_id
23:05:39 <DrWhat> yes
23:05:55 <DrWhat>
23:05:57 <AnonyOps> ok, and most likely that won't be an injection point because the server generates it.
23:06:03 <DrWhat> yes
23:06:12 <DrWhat> scraper will get data from evony
23:06:18 <AnonyOps> But how does city_name get populated?
23:06:19 <DrWhat> and put that in database
23:06:28 <AnonyOps> okay, and what is evony?
23:06:39 <DrWhat> a game im halping to own
23:07:03 <AnonyOps> okay, but how does that game put the data there? is it at all touched by someone that could potentially do harm?
23:07:39 <DrWhat> no
23:07:53 <DrWhat> the data is in there database
23:07:58 <AnonyOps> if someone from evony made the data of city_name this <div style="blah"></div> then you db would store that, and echo it out as raw data, thus executing the html.
23:08:13 <DrWhat> but becuase we have no access to their database we nee d another method ot get the infomation of city locations
23:08:35 <DrWhat> then evony would quickly fic that as its more of a risk to them then me
23:08:43 <DrWhat> they have 30 million users
23:09:01 * zxcvbnm wonders how quickly a game w/ 30 million users would notice a city with an apostrophe in the name
23:09:02 <AnonyOps> Yes, but you should still htmlspecialchar raw output.
23:09:07 <DrWhat> if somone plocked a cookie stealing the datbase and so much as 1 million people picked on it
23:09:18 <DrWhat> evony has santized input
23:09:27 <DrWhat> so the data we are extracting is clean
23:09:28 <AnonyOps> meh, I would do it anyways :p
23:09:32 <zxcvbnm> No reason not to
23:09:35 <DrWhat> if it wasnt evony would have errors
23:09:48 <DrWhat> there game needs clean info to work
23:09:55 <AnonyOps> Hell, sometimes I even specialchar the id's I output from the db haha
23:10:00 <DrWhat> if a coord is not a number
23:10:09 <DrWhat> then evony will break
23:10:24 <AnonyOps> I'm just trying to save you a headache in the future.
23:10:27 <AnonyOps> <zxcvbnm>No reason not to
23:10:28 <AnonyOps> that
23:10:28 * zxcvbnm nods.
23:10:37 <AnonyOps> No reason not to htmlspecialchar your output.
23:10:41 <AnonyOps> it's simply too!
23:10:53 <DrWhat> lol
23:11:00 <AnonyOps> $city = "<td>". htmlspecialchars($result['city_name']) ."</td>";
23:11:02 <AnonyOps> done
23:11:05 <DrWhat> ill do it first thing friday
23:11:45 <AnonyOps> you might need a ; after the closing ) of htmlspecialchars... I'm not sure.
23:12:02 <zxcvbnm> I'm excited for this project though DrWhat, hope it works out for you. I love scraping data
23:12:03 <AnonyOps> in the way that it's written I mean
23:12:19 <zxcvbnm> And I hope I get a chance to break it
23:12:32 <DrWhat> You like the 100,000th person who told me XD
23:12:42 <AnonyOps> Oh and actually
23:13:10 <DrWhat> getting a c++ developer to do software for you for free is not easy
23:13:12 <AnonyOps> $city = "<td>". htmlspecialchars(stripslashes($result['city_name'])) ."</td>";
23:13:24 <DrWhat> she build a private server
23:13:28 <DrWhat> the scraper
23:13:31 <AnonyOps> Should strip the slashes in that too Dr, or else your gonna have like city name = Derpington\' city
23:13:49 <DrWhat> even a custom cleint fo rme topass objected code to evony servers
23:13:52 <DrWhat> to test for vulns
23:13:58 <DrWhat> i found a sqli in there market
23:14:05 <DrWhat> but i never injected a game before
23:14:07 <DrWhat> it was hard
23:14:20 <DrWhat> not a simple union injection
23:14:27 <zxcvbnm> hehehe. Derpington Palace :P
23:14:28 <DrWhat> i think it was blind
23:14:40 * zxcvbnm is on the way home to Derpington Palace.
23:16:17 <DrWhat> any change picked up instantly
23:16:17 <DrWhat> [18/02/2013 23:00:59] Daizee: but then evony had a mental breakdown
23:16:17 <DrWhat> [18/02/2013 23:01:04] Daizee: thinking we were making bots and shit
23:16:17 <DrWhat> [18/02/2013 23:01:59] Daizee: what is this shit
23:16:17 <DrWhat> [18/02/2013 23:02:02] Daizee: it's so throttled right now
23:16:17 <DrWhat> [18/02/2013 23:03:43] Daizee: are you really trying to make another evomap
23:16:28 <DrWhat> it was huge
23:16:29 <DrWhat> [18/02/2013 23:04:44] Daizee: but it was just pulling mapdata
23:16:29 <DrWhat> [18/02/2013 23:04:45] Daizee: nothing more
23:16:29 <DrWhat> [18/02/2013 23:05:02] Daizee: were you planning on making it public
23:16:29 <DrWhat> [18/02/2013 23:05:03] Daizee: or no
23:16:29 <DrWhat> [18/02/2013 23:05:18] ╒╣DrWhat╠╕: its opensource
23:17:03 <DrWhat> i want to see another mapping service
23:17:26 <AnonyOps> Also. Want to see what I'm making?
23:17:39 <ak-47_user> hi every body
23:17:44 <DrWhat> Yeah sure
23:17:50 <zxcvbnm> I do
23:17:59 <AnonyOps> Mk, one sec.
23:18:10 <AnonyOps> Did this last night..
23:18:15 <DrWhat> hurry up
23:18:19 <AnonyOps> let me get some stuff set up though
23:18:19 <DrWhat> stop dordiling
23:18:21 <AnonyOps> gimme like 5 mins
23:18:43 <DrWhat> :)
23:18:56 <AnonyOps> Well first, have you guys seen this?
23:18:59 <zxcvbnm> i've lost interest. :(
23:19:04 <DrWhat> I though daizee was zee when she added me
23:19:12 <DrWhat> i was like dafuq
23:19:15 <zxcvbnm> is that filler? anonyops did you just give us a filler while you do something else
23:19:33 <DrWhat> But then she said she was single
23:19:36 <AnonyOps> No, that is background for what I'm about to show you :p
23:19:45 <zxcvbnm> o ok
23:19:47 <zxcvbnm> :D
23:19:53 <DrWhat> huhhh
23:20:04 <ak-47_user> please i'm a student and i want to learn new things like hacking and security,can you give where to start
23:20:06 <DrWhat> simple css with embedded
23:20:15 <DrWhat> code plox
23:21:21 <DrWhat> I want to add
23:21:22 <zxcvbnm> ak-47_user - hacking is bad mmk? is a good starting place
23:21:24 <DrWhat> AND `servers_id` = $SID
23:21:48 <DrWhat> to the sql query once the database is full with 300 * 160000 records
23:22:11 <zxcvbnm> only practice "hacking" on machines you own or have explicit permission to access and mess with
23:22:19 <DrWhat> 48,000,000
23:22:23 <DrWhat> Phew
23:22:30 <DrWhat> that will take some proccessing power
23:22:37 <AnonyOps> Okay... guys here you go:
23:22:39 <ak-47_user> zxcvbnm thanks a lot
23:22:48 <AnonyOps> Go quick though, cuz I am going to delete all this when I'm done showing you :p
23:23:06 <zxcvbnm> ak-47_user : np, then check out
23:23:08 <AnonyOps> Type in the box and hit send
23:23:11 <ak-47_user> zxcvbnm i have a VMware to try this
23:23:20 <AnonyOps> @Drwhat @zxcvbnm ^
23:23:23 <zxcvbnm> Yea, using VMware is good for trying this stuff
23:24:15 <ak-47_user> zxcvbnm ok thanks again
23:25:49 <AnonyOps> Back over here :p
23:25:51 <AnonyOps> You guys like?
23:25:56 <DrWhat> imma find shit on that
23:26:02 <DrWhat> imma break it
23:26:02 <zxcvbnm> I do
23:26:03 zest has quit (Client exited)
23:26:08 <zxcvbnm> I likey.
23:26:11 <AnonyOps> lol gl Drwhat
23:26:14 <AnonyOps> :)
23:26:21 <AnonyOps> Also, I'm toasting the page now...
23:26:26 <AnonyOps> and going to eat!
23:26:32 <zxcvbnm> ...
23:26:45 <zxcvbnm> he's pasting sqli cheat sheet into your input there
23:27:03 <AnonyOps> I know lol
23:27:07 <zxcvbnm> lol
23:27:27 <DrWhat> I think i broke it :(
23:27:28 <AnonyOps> Also, it's toasted now. And I am going to eat. Bbl!
23:27:34 <AnonyOps> No I deleted it drwhat haha
23:27:38 <DrWhat> Ohhh
23:27:43 <AnonyOps> You're seeing my custom 404 page
23:27:45 <zxcvbnm> lol
23:27:46 <AnonyOps> refresh the whole thing
23:27:52 <DrWhat> No im seeing a broke page :/
23:27:52 * zxcvbnm likes custom 404
23:27:53 <zxcvbnm> later
23:27:57 <AnonyOps> thanks :)
23:27:59 <DrWhat> there just a button
23:28:13 <AnonyOps> be back in like 30
23:28:26 <DrWhat> will it be there for me to break
23:28:53 <DrWhat> anyway
23:28:55 <DrWhat> good bya
23:28:58 <DrWhat> \away sleep!
23:29:02 <DrWhat> herp
23:29:05 * DrWhat is away "Sleep!" • Log: on • Pager: off
23:29:05 *** DrWhat is now known as DrAway
23:32:51 ak-47_user has quit (User quit:  Quitte)
23:57:10 <AnonyOps> back
23:57:24 <zxcvbnm> nice