sniko

  Just run an nmap scan on the server IP and see if there are any ports open. If there is, and you can run shell commands, there is a good chance we *might* be able to check the mysqld service is running, then extracting your database from it. As for the server, go to DigitalOcean, get a VPS (I will help you get set up with it), it's $5usd a month, you manage it yourself, a professional team managing the hardware for you - it'll handle the standard load of a 2016 mccodes game. Hit me up via e-mail if you need any help with anything. I've recently got some more time and I'm looking for work.

Pretty decent avatar builder, nice one!

  You could look at your signature for advice on what to do ;) Life is not about surviving the storm. It's about learning to dance in the rain. Real talk: perhaps only some ports are closed, and (for example), the FTP port (21) may still be open. Assuming the server hasn't completely died and you have an FTP user, you could recover that way. Also, if you put your files through version control (either locally, or via a centralised server (ie: GitHub)), you could recover them that way.

Hey there community, Recently, I've got some more time on my hands. I'm looking for some extra work to do in the evenings, around 1900-2300GMT weekdays. Lately I've been developing internal systems so I cannot showcase anything, though I've been around here for a while now, though code samples can be requested for serious enquiries. I am experienced with the McCodes engine, and I can make custom engines (or modify existing engines) with mobile apps. Skills include; GIT MongoDb MySQL PHP 5.6 (7 if needed, but not primarily what I focus on) CSS / LESS / SASS HTML5 Vanilla Javascript / jQuery REST APIs SOAP APIs I'm a backend developer mainly, so I cannot design anything in Photoshop/Illustrator/Fireworks/GIMP/etc... though I can create concept screens. You may contact me via e-mail: [email protected] (please put the subject as "MakeWebGames" - I don't use the PM feature here) Hourly pay or payment per project is negotiable. (A deposit may be required) I won't accept anything like "I've got this awesome idea, you make it and once it makes profit, I'll pay you" "Do this for free, it's only small" "5$ an hour"  

  Or just use parse_url() instead of hacking together an explode().

This is a super easy job with CSS, SVG, and JS.

  Linux wasn't built specifically for web hosting. I've never hosted on Windows, but you'll probably want a simple WAMP stack - which you can get from Bitnami: https://bitnami.com/stack/wamp - but it all depends on what you're hosting.

  But I thought you conquered PHP and a simple conditional is giving you a headache?

It does, but it's quite broken/insecure.

  A fund of 30-50$usd will free up my time for another release.

Because your budget implied you were prepared to pay such amount You're paying for someone to work on deprecated code (namely the mysql_* extension and others (purposely being vague, it's been a while since I've touched mccodes)) You're paying someone to work with sub-par procedural code You're paying for the persons time

  1) You're missing the line number the error reports it's on 2) Java and Javascript are totally different. This isn't Java.

  Yeah. I rarely work for free now since time is precious right now. Even if this small project raises only 50$usd, at least I'll get something in return.

[h=1]? If interest is high, I'll recreate this using fabric.js ?[/h] http://paypal.me/harrydenley  

Nice! Keep us (or me at least) updated

  Also, you're "modifying" user input (by +0) and not just validating it. But yeah, both work. I'd choose ctype_digit() for this instance also, but eh...

  1) You mean JavaScript (Java and JavaScript are totally different) 2) The implementation is terrible To fix 1) Create a div around the contact list section. Name it something meaningful (foo isn't contextually meaningful). Then hide it with CSS for the initial page load. 2) Add JavaScript to detect the option change, and show the contact list div https://jsfiddle.net/ot9ec2LL/

  Then use preg_match() with a whitelist character set. What, exactly, are you trying to validate? An English sentence? A numerical value? A single string word?   <?php if( preg_match("/^[\w]+$/", "SomeString") ) { //Matched } if( preg_match("/^[\d]+$/", "999") ) { //Matched } if( preg_match("/^[\w\s]+$/", trim("Lorem Ipsum a sentence with no punctuation")) ) { //Matched }  

  1) You won't get the expected behaviour as you're not assigning the return of mysqli_real_escape_string() to a variable - thus you're still vulnerable an SQL injection. 2) Moreover, you're open to XSS attack vectors. 3) Also, don't output a mysql error to the end-user! 4) You're using sprintf() when you aren't utilising it...

  Setting up an e-mail blast to all accounts with a detailed description of what's gone on and who's involved/should be dealt with. Should be sent soonish (need to figure out how to mass mail >100k accounts that doesn't cost)

Ugh, you really need to learn how to debug.

So, a couple days ago ZIDDLE ( [uSER=69959]CruZer[/uSER] ) released a database dump and the source for a recoded Pokemon Helios. Along with (this is an ongoing discussion as they've not replied to me) them potentially not allowing to release the source (as their own / at all) due to licensing restrictions, it has come to my attention that complete_db_helios.rar holds the usernames, emails, and hashed passwords of over 100k users. Along with a breach of trust from the users - releasing their information (site activity, private messages, user information), they've hashed the passwords with sha1(). At time of writing I've personally cracked around 19k passwords. This leads me on... Many users reuse their passwords. I've ~19k email/user;pass configurations to try on multiple platforms, including their e-mail providers. Once I've got into their e-mail account, I'm free to access any account the user has by resetting passwords and such. This is a complete breach of user trust with a content provider. I've talked to [uSER=69959]CruZer[/uSER] about this and he's since removed the complete_db_helios.rar - though that doesn't stop someone who has previously downloaded it to re-upload somewhere they've no control over. This Facebook chat with [uSER=69959]CruZer[/uSER] implies he's shifting blame on the actual site owner, even though he's the one that posted it to his site and reached an audience who now have it. Somewhat related to a previous shady move by [uSER=69959]CruZer[/uSER] - http://makewebgames.io/forum/misc/chit-chat/26302-rivalry-between-games#post26302

  Looks like it. I hope he wagers cash or a shoe-on-the-head selfie ;) [uSER=69959]CruZer[/uSER] - Waiting on you. Accept the bet. Wager something.

What's the wager? Cash or...?

You can contact me on Skype: harry.sniko Should get a response within 24hrs.