Aurora078 Posted September 13, 2010 Posted September 13, 2010 Well, i had a little free time, and i havent seen one on here, so here it is. Basically it allows members to forward their mails to either one or multiple users. Hope you enjoy. Feel free to ask questions or acknowledge any problems you may have. Open: mailbox.php Find: Line 30-33 You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. Under it add: You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. Find: Line 84-85 You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. Under it add: You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. The rest: You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. Quote
Joshua Posted September 13, 2010 Posted September 13, 2010 Hm interesting. I'll go through it later :) Off hand you might want to secure your variables Quote
Equinox Posted September 13, 2010 Posted September 13, 2010 Nice idea, some of your security techniques I'd question though. Like I wouldn't really use htmlentities() on input on this situation, I would also use a preg_replace() and some regex. There are other things I'd do differently as well, but that may just be my preference as I work with error_reporting() on Well done Quote
BigBoy Posted September 13, 2010 Posted September 13, 2010 Yes very nice idea saves lots of copy pasting for members and would be nice if someone secures it for sure. :D Quote
Aurora078 Posted September 13, 2010 Author Posted September 13, 2010 I don't see any security flaws. I understand people have preferences but i don't see anything wrong with it in my eyes. Quote
Equinox Posted September 13, 2010 Posted September 13, 2010 I was just questioning you using htmlentities() on input, why? And this will error for people that have error_reporting() on (not ruin the script, just display some errors) Quote
Aurora078 Posted September 13, 2010 Author Posted September 13, 2010 I was just questioning you using htmlentities() on input, why? And this will error for people that have error_reporting() on (not ruin the script, just display some errors) Because not everyone has secured their mail from executing things like javascript, and that'll atleast help a bit. Its not gonna fix the whole thing, but it helps Quote
Equinox Posted September 13, 2010 Posted September 13, 2010 You could've used mysql_real_escape_string() and strip_tags() or my favourite preg_replace(). I prefer htmlentities() on output, to be honest. Quote
Aurora078 Posted September 13, 2010 Author Posted September 13, 2010 Eh, true. Either way its a free mod, and it works, so thats good enough. Quote
Equinox Posted September 13, 2010 Posted September 13, 2010 Yeah, and I said it was a nice mod ;) Just giving you comments, as I'm sure you wanted. Gaining a little bit of knowledge isn't bad :p Quote
lucky3809 Posted September 17, 2010 Posted September 17, 2010 +1 Thanks for the free mod nice work!! Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.