Thanks,

    would you plz explain me broadly and iff possible with a little
example. that'll be big help to my works!

Mynul.


--- In phpexperts@yahoogroups.com, ashrafur Rahman <faisal10dec@...>
wrote:
>
> i think you already have a table where country , city and state
names are saved.
>   you make your table design like this ID(int), City(varchar),
State(varchar), Country (varcahr).
>
>   when the page load write "select distinct country from tableName"
>   then on the selectedChangeEvent of this combobox write query for
state "select distinct State from tableName where
Country=ddlCountry.text" and so on .
>
>   i think u understand. if not then tell me i will describe u
broadly.
>
>
> ---------------------------------
> Want to start your own business? Learn how on  Yahoo! Small
Business.
>

Hi,

Some articles say HTTP_REFERER can be spoofed and not reliable.
Furthermore, it is not available on some environments. I tried it on
XP, Apache2 and it does not exist at runtime. I tried using
session_register() and verifying with session_is_registered() in
form validation etc. but still it does not prevent a user from using
his own HTML form in creating/adding rows because there is always an
active session.

Thoughts?




--- In phpexperts@yahoogroups.com, Elie Zedeck RANDRIAMIANDRIRAY
<elie.zedeck@...> wrote:
>
> Hi,
>
> For my form, I add a condition check, which checks, where the form
has been
> taken from.
> You can check that with the PHP $_SERVER['HTTP_REFERER'] is equal
to your
> form's URL. If not, then you can ban the IP right away, because
only hackers
> know how to do that.
> Normal users will not have the curiosity to do that.
>
> But the very best solution, is to filter the input data correctly.
You have
> the Regular expression, which is a powerful tool for filtering,
and checking
> the usage of your form.
> Remember also, to correctly escape the input data. Failling to do
that is the
> main cause of Form attack, especially SQL Injection.
>
> You could also buy the "Advanced PHP Security" book, because it's
a very very
> important resource for those who are concerned with PHP form
security.
>
> Hope that will help.
>
> Regards,
> Elie Zedeck.
>
> On Tuesday 31 October 2006 20:26, screenmates1 wrote:
> > I'm trying to figure out how to go about prevening CSRF but
could only
> > implement 50% of the logic which is not really fool-proof. What
I am
> > doing is generate a hash based on certain form attributes as a
context
> > (different for each action, id...) and adding that as a hidden
input.
> > When the form is submitted, I regenerate the same hash and see
if it
> > matches with the submitted hidden input. The form fails
validation if
> > the hash does not match. However, a hacker can copy the hash
into his
> > own HTML form and submit which works. I'm more interested in
> > preventing add action.
> >
> > Any ideas?
> >
> > TIA
> >
> >
> >
> >
> >
> > Visit phpXperts website at www.phpxperts.com
> > Yahoo! Groups Links
> >
> >
> >
>

*Microsoft Opens PHP Door*

http://www.internetnews.com/dev-news/article.php/3641101

:)



--
Ishtiaque Ahmed (Foisal)
http://foisal.wordpress.com
My pageflakes : http://www.pageflakes.com/darklord.ashx

--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

wanted for US company urgently -- PhP and mySQL programmer

Must:
-MUST have minimum 4 + years recent relevant SOLID industry experience
developing websites in Php and MySQL
-MUST be able to work from your home/ office
-MUST be able to work a minimum of 5 hours each day.
-MUST have a reliable high speed internet connection at home and work.
-MUST be RELIABLE and flexible
-MUST be contactable at most of the day via email,IM, telephone
etc......preferably during US time zones.
- Must be open to working 7 days a week.

pls send us your hourly rates per hour in US $.


pls do NOT send resumes and attachments

pls reply to avacohen1000@...

Microsoft's Product Unit Manager for Internet Information Services
(IIS), announced a new collaboration with Zend to improve
performance and stability of PHP on Windows.
This isn't just vaporware, either.  During Andi Gutmans' keynote
(Andi is one of the creators of PHP and co-founder of Zend), Bill
announced the availability of a technical preview release of FastCGI
for IIS and demoed it for the audience as well.
FastCGI is a new component for Microsoft's Web server platform that
is available for download & evaluation today. It works IIS 6.0 in
Windows 2003 Server and IIS 5.1 in Windows XP. Even cooler, it also
works with the brand new IIS 7.0 making its debut with Windows Vista
and, later, as part of Windows Server code-named "Longhorn."
This announcement continues to solidfy IIS as the premiere Web
application server whether you are developing sites with ASP.NET or
any other server framework. Moreover, regardless of the programming
language or framework they choose, developers building sites of any
size can leverage the full capabilities of the Microsoft platform
with enterprise-class security, speed and stability.


Posted: Tuesday, October 31, 2006 11:38 AM by keiths

Hi,


Yes, I absolutely know that HTTP_REFERER can actually be spoofed; even using
the socket functions of PHP, you can do that.

That is why, I said, that you just rely on the inner processor of the form to
block malicious actions.
For me, I completely ban the IP address that did any malicious action and I
don't give any warning message.

I also put unique Stamps on each new form, that I record on the database (for
later use), and when the form is submitted, the form processor checks first
for the HTTP_REFERER, and if good, checks for the presence of the stamp and
if it is recorded on the database.
If any of these fails, then I ban the IP address from my site.

We all should do our best, to maximize the complexity of the Hacker's work.
They will never stop from finding new tricks to hack our sites. I guess, that
is the only way out to prevent them.
That is why we should place security measure that are harder to break.

Elie Zedeck.

On Thursday 02 November 2006 00:43, Shekar C. Reddy wrote:
> Hi,
>
> Some articles say HTTP_REFERER can be spoofed and not reliable.
> Furthermore, it is not available on some environments. I tried it on
> XP, Apache2 and it does not exist at runtime. I tried using
> session_register() and verifying with session_is_registered() in
> form validation etc. but still it does not prevent a user from using
> his own HTML form in creating/adding rows because there is always an
> active session.
>
> Thoughts?
>
>
>
>
> --- In phpexperts@yahoogroups.com, Elie Zedeck RANDRIAMIANDRIRAY
>
> <elie.zedeck@...> wrote:
> > Hi,
> >
> > For my form, I add a condition check, which checks, where the form
>
> has been
>
> > taken from.
> > You can check that with the PHP $_SERVER['HTTP_REFERER'] is equal
>
> to your
>
> > form's URL. If not, then you can ban the IP right away, because
>
> only hackers
>
> > know how to do that.
> > Normal users will not have the curiosity to do that.
> >
> > But the very best solution, is to filter the input data correctly.
>
> You have
>
> > the Regular expression, which is a powerful tool for filtering,
>
> and checking
>
> > the usage of your form.
> > Remember also, to correctly escape the input data. Failling to do
>
> that is the
>
> > main cause of Form attack, especially SQL Injection.
> >
> > You could also buy the "Advanced PHP Security" book, because it's
>
> a very very
>
> > important resource for those who are concerned with PHP form
>
> security.
>
> > Hope that will help.
> >
> > Regards,
> > Elie Zedeck.
> >
> > On Tuesday 31 October 2006 20:26, screenmates1 wrote:
> > > I'm trying to figure out how to go about prevening CSRF but
>
> could only
>
> > > implement 50% of the logic which is not really fool-proof. What
>
> I am
>
> > > doing is generate a hash based on certain form attributes as a
>
> context
>
> > > (different for each action, id...) and adding that as a hidden
>
> input.
>
> > > When the form is submitted, I regenerate the same hash and see
>
> if it
>
> > > matches with the submitted hidden input. The form fails
>
> validation if
>
> > > the hash does not match. However, a hacker can copy the hash
>
> into his
>
> > > own HTML form and submit which works. I'm more interested in
> > > preventing add action.
> > >
> > > Any ideas?
> > >
> > > TIA
> > >
> > >
> > >
> > >
> > >
> > > Visit phpXperts website at www.phpxperts.com
> > > Yahoo! Groups Links
>
> Visit phpXperts website at www.phpxperts.com
> Yahoo! Groups Links
>
>
>

myspace has been the fastest growing website online the past few
months (for anyone who's been sitting in the dark lately). I've been
trying to come up with an idea for a website that would be very
successful. I've managed schematicsforfree.com for the past few years
and that has become very successful from the start, and could afford
to hire help if needed. my idea is to create yet another blog
community website like myspace, but of course it would be much bigger
and better and more fun for guests. I'd like to use my ProSiteManager
cms as a base and write modules for it to run the free community site.
if anyone is interested, please shoot me an email or contact me on msn
messenger. there's plenty of work to be done and plenty of money on
the internet to be made. btw, the site will be themooncafe.com

Matt

Hello again from this newbie,

I have a problem extracting the body from an email when the email has
attachments. Instead of just getting the body of the mail I am getting
something like (where the body is simply 'another attachment' plus
some other ads from yahoo):

the body is
--0-2110610319-1162423120=:97503Content-Type: text/plain; charset=iso-
8859-1Content-Transfer-Encoding: 8bitanother attachment --------------
------------------- (some yahoo ads) ---------------------------------
(more ads.--0-2110610319-1162423120=:97503Content-Type: text/html;
charset=iso-8859-1Content-Transfer-Encoding: 8bit
another attachment

----------------------------------------------------------------------
----------
(yahoo ad)
(yahoo url)
index">(yahoo ad)

----------------------------------------------------------------------
----------

(yahoo ad)
(yahoo url).--0-2110610319-1162423120=:97503--

end of body

My code for this is :

$arr["body"] = imap_fetchbody($this->stream,$this->msg_uid,1,FT_UID);
echo "<br>the body is<br> " . $arr["body"] . "<br>";
echo "<br> end of body <br>";

Thanks for your time and tips!

Thanks

hidden form items are not actually the best way to do this, anyone
who knows html can easily copy the values in it, why not do it server-
side

try experimenting with "header", you can use this to send custom
headers that you can check on your php page, that way its safe unless
they know what the header name and value of it, which would be
unlikely unless you shared it to someone or has access to your files

btw, header names are formatted differently from declaration to
referencing, dash (-) and space ( ) are replaced with underscore (_),
and also it's upcased (as far as i can remember XD), plus it has a
prefix "HTTP_"

so when you create a header like "this is my-header", it should be
referenced as "$_SERVER['HTTP_THIS_IS_MY_HEADER']"

its value will stay the same, so all you need to do is create this
header in your pages and check if it exists and has the correct value
as needed

hope that helps

cheers!


--- In phpexperts@yahoogroups.com, "Shekar C. Reddy"
<powerobject@...> wrote:
>
> Hi,
>
> Some articles say HTTP_REFERER can be spoofed and not reliable.
> Furthermore, it is not available on some environments. I tried it
on
> XP, Apache2 and it does not exist at runtime. I tried using
> session_register() and verifying with session_is_registered() in
> form validation etc. but still it does not prevent a user from
using
> his own HTML form in creating/adding rows because there is always
an
> active session.
>
> Thoughts?
>
>
>
>
> --- In phpexperts@yahoogroups.com, Elie Zedeck RANDRIAMIANDRIRAY
> <elie.zedeck@> wrote:
> >
> > Hi,
> >
> > For my form, I add a condition check, which checks, where the
form
> has been
> > taken from.
> > You can check that with the PHP $_SERVER['HTTP_REFERER'] is equal
> to your
> > form's URL. If not, then you can ban the IP right away, because
> only hackers
> > know how to do that.
> > Normal users will not have the curiosity to do that.
> >
> > But the very best solution, is to filter the input data
correctly.
> You have
> > the Regular expression, which is a powerful tool for filtering,
> and checking
> > the usage of your form.
> > Remember also, to correctly escape the input data. Failling to do
> that is the
> > main cause of Form attack, especially SQL Injection.
> >
> > You could also buy the "Advanced PHP Security" book, because it's
> a very very
> > important resource for those who are concerned with PHP form
> security.
> >
> > Hope that will help.
> >
> > Regards,
> > Elie Zedeck.
> >
> > On Tuesday 31 October 2006 20:26, screenmates1 wrote:
> > > I'm trying to figure out how to go about prevening CSRF but
> could only
> > > implement 50% of the logic which is not really fool-proof. What
> I am
> > > doing is generate a hash based on certain form attributes as a
> context
> > > (different for each action, id...) and adding that as a hidden
> input.
> > > When the form is submitted, I regenerate the same hash and see
> if it
> > > matches with the submitted hidden input. The form fails
> validation if
> > > the hash does not match. However, a hacker can copy the hash
> into his
> > > own HTML form and submit which works. I'm more interested in
> > > preventing add action.
> > >
> > > Any ideas?
> > >
> > > TIA
> > >
> > >
> > >
> > >
> > >
> > > Visit phpXperts website at www.phpxperts.com
> > > Yahoo! Groups Links
> > >
> > >
> > >
> >
>

Hello everybody

When I run this script:

<code>
$struct = imap_fetchstructure($this->stream,$this->uid);
$partscount = count($struct->parts);
echo "No of parts of this message is " . $partscount;
</code>

where $this->uid represents an email without attachments...
I get:

No of parts of this message is 2

which is strange since the email message has no attachments
and I get the same figure(2) for emails with one attachment.

Can someone explain this mystery?

kalikaye

Hello everyone...

I'm developing a system where user has a previlage to select
his/her address section using COUNTRY then STATE then CITY
respectively. i've put all the Country names, State names and City
name in a Drop-Down combos which is filled dynamically from the
MySQL
database. Now my problem is that i want it in such a way that if
one
select USA as COUNTRY then all the STATE(s) of USA should be
displayed
on the STATE combo not any other. and then when user selects the
STATE
in the next combo the CITY combo should be populated with cities
related to that STATE only and not with any other. I hope i could
make
my point clear!!

It's a long form and lots of data in the form and i've tried some
classes to do that but didn't work in my way. So if anyone can help
me
regarding this matter ...plz plz plz do so!!! if possible provide me
some help code also! (I've came to know about Ajax, and working on
that but i need to develop that system within short time...)


Thanx
Mynul.

We need an expert joomla developer (NOT someone that knows how to
install and modify and insert components/mods!  We need
developer/programmer) who knows the following/ most of them/ or at
least able to manage in short time.

1. php language (extreme knowledge)
2. joomla 1.5 Beta version
a.  ability to incorporate existing software to joomla as a:
   I. component
  II. Module
  III. mambot
b. ability to make from scratch programs and make:
   I. component
  II. Module
  III. mambot

ALL COMPATIBLE WITH NEW JOOMLA 1.5 BETA VERSION at  joomla.org

3. RSS feeds (specifically a feedgator open source component of Joomla
that needs to be modified)

a. modify existing RSS to joomla components and modules regarding
RSS and add features and customize further to our needs.

b. be able to incorporate the above RSS to joomla components and
modules into the other desired components of Joomla (that I have in
mind and would like it to be confidential as part of the goal of the
job).

4. MySql database writing and modification (EXTREME requirement )
5. java language
6. Smarty Template system (good knowledge required)
7. html language
8. logo / template design
9. SEO (search engine optimization) (is very important)***

we' ll give more information to the developer/programmer.
We would really need to start a project with 1-2 developer/programmers.
Only SEO experts can also apply
Job place will be at Grameen Software.
Mirpur-2, Dhaka – 1216.
------------------------------------------------------------
send you resume to <sekram@...>sekram(at)gmail(dot)com
-------------------------------------------------------------

Many times I started read Smarty's offical documentation. But I am really confused why I did not get any interest on that manual. Finally, few days ago I decided to learn Smarty in any way. So, I need a good tutor. I am confident Smarty by Hasin Hayder, J. P. Maia, and L. Gheorge is really my great smarty tutor.

This book lucidly described the benefits of using Smarty in web application, installing smarty, how to design web pages & write codes with smarty and debug them without hair-loss, how smarty can decrease your server load (even in multi-server environment)  with its Caching functionality and even how to extend smarty by writing your own smarty plugins and through Internationalization.

The most interesting & helpful thing of this book is the division of work which means how designers & developers can work seperately with minimal collaboration and finally cobine their works. So this book is perfect for both template designers and developers.

After reading this book, I pulled out few of my hairs blamming me why I did not learn smarty earlier. If I would spent some time earlier learning Smarty, I would have more sleepy nights:D.

The book explained every aspect of Smarty but not hazardously. The explantion is step by step so that any small to big big web developer can read the book. So, I easily skipped sections which was not needed/suitable for me.

The book is written on Smarty for PHP Developers. Logically it has less explanation on PHP code and broad explantion on Smarty codes. So, if anyone very new to PHP, he/she may need little bit study on php before studying this book.

I believe, that after reading this book, you will not want to develop any application without using Smarty. Because, smarty is not just an Engine but a big blessing for designers & developers.

Even in a paid project, the owner can modify his project with expensing less. If he wants to change outlook of this application, he can simply higher a smarty designer. On the other hand, he his business logic is changed, he can simply higher a php developer. So, he does not need to hire the full team.

I strongly critcize this book's first example. The example was not as easy as beginning one should be. Morevoer, it is for PHP5. If any developer is not familiar with differences in PHP4 & PHP5, he may face trouble at this stage. But dont worry, the latter examples are started from scratch. Another thing, in some examples, the authors used PEAR features which also may be uncomfortable for few developers.

Finally to say, you should not be such an unlucky who did not read this book and did not learn SMARTY.

For details:

This Book

Smarty

btw, you can use hashes too, combine it with a custom header and
youll have a unique value for it which you can also verify for
authenticity, just make sure that you dont just hash a value, a way
better to do this is append something to your target (its like having
your own seed/key), that way it wont be that easy to generate the
same hash value without knowing the key.

just a thought...

cheers!

--- In phpexperts@yahoogroups.com, Elie Zedeck RANDRIAMIANDRIRAY
<elie.zedeck@...> wrote:
>
> Hi,
>
>
> Yes, I absolutely know that HTTP_REFERER can actually be spoofed;
even using
> the socket functions of PHP, you can do that.
>
> That is why, I said, that you just rely on the inner processor of
the form to
> block malicious actions.
> For me, I completely ban the IP address that did any malicious
action and I
> don't give any warning message.
>
> I also put unique Stamps on each new form, that I record on the
database (for
> later use), and when the form is submitted, the form processor
checks first
> for the HTTP_REFERER, and if good, checks for the presence of the
stamp and
> if it is recorded on the database.
> If any of these fails, then I ban the IP address from my site.
>
> We all should do our best, to maximize the complexity of the
Hacker's work.
> They will never stop from finding new tricks to hack our sites. I
guess, that
> is the only way out to prevent them.
> That is why we should place security measure that are harder to
break.
>
> Elie Zedeck.
>
> On Thursday 02 November 2006 00:43, Shekar C. Reddy wrote:
> > Hi,
> >
> > Some articles say HTTP_REFERER can be spoofed and not reliable.
> > Furthermore, it is not available on some environments. I tried it
on
> > XP, Apache2 and it does not exist at runtime. I tried using
> > session_register() and verifying with session_is_registered() in
> > form validation etc. but still it does not prevent a user from
using
> > his own HTML form in creating/adding rows because there is always
an
> > active session.
> >
> > Thoughts?
> >
> >
> >
> >
> > --- In phpexperts@yahoogroups.com, Elie Zedeck RANDRIAMIANDRIRAY
> >
> > <elie.zedeck@> wrote:
> > > Hi,
> > >
> > > For my form, I add a condition check, which checks, where the
form
> >
> > has been
> >
> > > taken from.
> > > You can check that with the PHP $_SERVER['HTTP_REFERER'] is
equal
> >
> > to your
> >
> > > form's URL. If not, then you can ban the IP right away, because
> >
> > only hackers
> >
> > > know how to do that.
> > > Normal users will not have the curiosity to do that.
> > >
> > > But the very best solution, is to filter the input data
correctly.
> >
> > You have
> >
> > > the Regular expression, which is a powerful tool for filtering,
> >
> > and checking
> >
> > > the usage of your form.
> > > Remember also, to correctly escape the input data. Failling to
do
> >
> > that is the
> >
> > > main cause of Form attack, especially SQL Injection.
> > >
> > > You could also buy the "Advanced PHP Security" book, because
it's
> >
> > a very very
> >
> > > important resource for those who are concerned with PHP form
> >
> > security.
> >
> > > Hope that will help.
> > >
> > > Regards,
> > > Elie Zedeck.
> > >
> > > On Tuesday 31 October 2006 20:26, screenmates1 wrote:
> > > > I'm trying to figure out how to go about prevening CSRF but
> >
> > could only
> >
> > > > implement 50% of the logic which is not really fool-proof.
What
> >
> > I am
> >
> > > > doing is generate a hash based on certain form attributes as a
> >
> > context
> >
> > > > (different for each action, id...) and adding that as a hidden
> >
> > input.
> >
> > > > When the form is submitted, I regenerate the same hash and see
> >
> > if it
> >
> > > > matches with the submitted hidden input. The form fails
> >
> > validation if
> >
> > > > the hash does not match. However, a hacker can copy the hash
> >
> > into his
> >
> > > > own HTML form and submit which works. I'm more interested in
> > > > preventing add action.
> > > >
> > > > Any ideas?
> > > >
> > > > TIA
> > > >
> > > >
> > > >
> > > >
> > > >
> > > > Visit phpXperts website at www.phpxperts.com
> > > > Yahoo! Groups Links
> >
> > Visit phpXperts website at www.phpxperts.com
> > Yahoo! Groups Links
> >
> >
> >
>

Hello everyone...

I'm developing a system where user has a previlage to select
his/her address section using COUNTRY then STATE then CITY
respectively. i've put all the Country names, State names and City
name in a Drop-Down combos which is filled dynamically from the
MySQL
database. Now my problem is that i want it in such a way that if
one
select USA as COUNTRY then all the STATE(s) of USA should be
displayed
on the STATE combo not any other. and then when user selects the
STATE
in the next combo the CITY combo should be populated with cities
related to that STATE only and not with any other. I hope i could
make
my point clear!!

It's a long form and lots of data in the form and i've tried some
classes to do that but didn't work in my way. So if anyone can help
me
regarding this matter ...plz plz plz do so!!! if possible provide me
some help code also! (I've came to know about Ajax, and working on
that but i need to develop that system within short time...)

Thanx
Mynul.

Walaikum salam and Thanks,

Can u plz download the files below and let me know in details... it
will be a great help.

http://www.dandylink.com/combotest.zip



Thanks again.



-- In phpexperts@yahoogroups.com, ahsan shahzad <wisdomseekar@...>
wrote:
>
> ----- Original Message ----
> From: Mynul Islam <mynul9280@...>
> To: phpexperts@yahoogroups.com
> Sent: Sunday, November 5, 2006 8:14:16 AM
> Subject: [phpXperts] Need urgent help on data loading...
>
> Hello everyone...
>
> I'm developing a system where user has a previlage to select
> his/her address section using COUNTRY then STATE then CITY
> respectively. i've put all the Country names, State names and City
> name in a Drop-Down combos which is filled dynamically from the
> MySQL
> database. Now my problem is that i want it in such a way that if
> one
> select USA as COUNTRY then all the STATE(s) of USA should be
> displayed
> on the STATE combo not any other. and then when user selects the
> STATE
> in the next combo the CITY combo should be populated with cities
> related to that STATE only and not with any other. I hope i could
> make
> my point clear!!
>
> It's a long form and lots of data in the form and i've tried some
> classes to do that but didn't work in my way. So if anyone can
help
> me
> regarding this matter ...plz plz plz do so!!! if possible provide
me
> some help code also! (I've came to know about Ajax, and working on
> that but i need to develop that system within short time...)
>
> Thanx
> Mynul.
>
>
>
> Aslam-o-alikum,
>                          you can achieve ur required mechanism
thorough some follwing steps
>  1st :At start ,execute query to select and populate Country drop
down menu, you must make disable to State and City drop down
menues ,untill user selects Country,so that user couldn't be able to
select State and City before Country menu
> (you can achieve that through java scripting easily,by just
changing 'diasabled' propert of those drop downs )
>  2nd : now when user select Country menu then execute a query (on
onselect event of Country menu)that retrives all state related data
and fills in State drop down menu.
> 3rd: Same above scenario you can use (in which Country was Parent
menu and State was child menu) while treating State as parent menu
and City as child menu
>
> I hope u'l understand and can implement it easily but if u still
feel problems then tell me again ,to help you,
>
                                           Ahsan Shahzad
>
                                           Ingenious Zone
>

Hi there,

I just seen your code, and I am shocked to see, that even with the Cross-site
scripting discussion going often here, there are still people that doesn't
pay enough attention as to escape their input data to avoid hacking attempts.

I hardly recommend you to replace the line with

	 WHERE CountryID = $_GET("CountryID")

with this one; and for all your input data:

	 WHERE CountryID = ".addslashes($_GET['CountryID'])." -- End of your query

Keep that in mind everytime that you take data from the user, and pass them to
the database, or even passing them back to the user (for that, you use
htmlentities() function).

Regards,
Elie.

On Monday 06 November 2006 11:33, fci asd2 wrote:
> hello
>    you should filter your city query according to your country id
>   for example
>   if this is my country query
>   SELECT CountyID,CountryName FROM tblCountrys
>    and then sent event onchange on county combo to send countryID to url
>
>   my City query will be
>   SELECT CityID,CityName FROM tblCitys
>   WHERE CountryID = $_GET("CountryID")
>   and etc...
>   i hope this help
>
> Mynul Islam <mynul9280@...> wrote:
>           Hello everyone...
>
> I'm developing a system where user has a previlage to select
> his/her address section using COUNTRY then STATE then CITY
> respectively. i've put all the Country names, State names and City
> name in a Drop-Down combos which is filled dynamically from the
> MySQL
> database. Now my problem is that i want it in such a way that if
> one
> select USA as COUNTRY then all the STATE(s) of USA should be
> displayed
> on the STATE combo not any other. and then when user selects the
> STATE
> in the next combo the CITY combo should be populated with cities
> related to that STATE only and not with any other. I hope i could
> make
> my point clear!!
>
> It's a long form and lots of data in the form and i've tried some
> classes to do that but didn't work in my way. So if anyone can help
> me
> regarding this matter ...plz plz plz do so!!! if possible provide me
> some help code also! (I've came to know about Ajax, and working on
> that but i need to develop that system within short time...)
>
> Thanx
> Mynul.
>
>
>
>
>
>
> ---------------------------------
> Sponsored Link
>
> Mortgage rates near historic lows: $150,000 loan as low as $579/mo.
> Intro-*Terms
>
> ---------------------------------
> Check out the all-new Yahoo! Mail - Fire up a more powerful email and get
> things done faster.

Walaikum salam and Thanks,

Can u plz download the files below and let me know in details... it
will be a great help.

http://www.dandylink.com/combotest.zip

Thanks again.

-- In phpexperts@yahoogroups.com, ahsan shahzad <wisdomseekar@...>
wrote:
>
> ----- Original Message ----
> From: Mynul Islam <mynul9280@...>
> To: phpexperts@yahoogroups.com
> Sent: Sunday, November 5, 2006 8:14:16 AM
> Subject: [phpXperts] Need urgent help on data loading...
>
> Hello everyone...
>
> I'm developing a system where user has a previlage to select
> his/her address section using COUNTRY then STATE then CITY
> respectively. i've put all the Country names, State names and City
> name in a Drop-Down combos which is filled dynamically from the
> MySQL
> database. Now my problem is that i want it in such a way that if
> one
> select USA as COUNTRY then all the STATE(s) of USA should be
> displayed
> on the STATE combo not any other. and then when user selects the
> STATE
> in the next combo the CITY combo should be populated with cities
> related to that STATE only and not with any other. I hope i could
> make
> my point clear!!
>
> It's a long form and lots of data in the form and i've tried some
> classes to do that but didn't work in my way. So if anyone can
help
> me
> regarding this matter ...plz plz plz do so!!! if possible provide
me
> some help code also! (I've came to know about Ajax, and working on
> that but i need to develop that system within short time...)
>
> Thanx
> Mynul.
>
>
>
> Aslam-o-alikum,
> you can achieve ur required mechanism
thorough some follwing steps
> 1st :At start ,execute query to select and populate Country drop
down menu, you must make disable to State and City drop down
menues ,untill user selects Country,so that user couldn't be able to
select State and City before Country menu
> (you can achieve that through java scripting easily,by just
changing 'diasabled' propert of those drop downs )
> 2nd : now when user select Country menu then execute a query (on
onselect event of Country menu)that retrives all state related data
and fills in State drop down menu.
> 3rd: Same above scenario you can use (in which Country was Parent
menu and State was child menu) while treating State as parent menu
and City as child menu
>
> I hope u'l understand and can implement it easily but if u still
feel problems then tell me again ,to help you,
>
Ahsan Shahzad
>
Ingenious Zone
>