Jump to content

Recommended Posts

Posted

So, for some reasons I deleted all my previous shares. But I saw that many game masters appreciated this share, so I re-share it.

 

It is an account manager written in pure php by me, which allows players to change password, delete account, and do some other things that I don't remember.

 

Also, admin is able to put items to players' inventories.

 

Have fun.

 

Preview:

http://l2knockout.com/acc/

http://l2family.com/acc/

 

Download:

Download

 

(It was written by me many months ago and it is a little bad-coded. Maybe, I will share a new acm coded in jquery and php. Anyway, it works perfectly.)

Posted

Thanks man, but i if you say [quote author=Pauler

it is a little bad-coded. Maybe, I will share a new acm coded in jquery and php. Anyway, it works perfectly.)

I wait new version :)

Posted

(It was written by me many months ago and it is a little bad-coded. Maybe, I will share a new acm coded in jquery and php. Anyway, it works perfectly.) Waiting :)

Posted

(It was written by me many months ago and it is a little bad-coded. Maybe, I will share a new acm coded in jquery and php. Anyway, it works perfectly.) Waiting :)

You may have to wait a little because I am busy these days.
Posted

Not to be a buzz kill but

 

1) You should use OO and keep everything organized into generic classes. You've mixed the HTML presentation along with PHP functionality. Now it can be difficult to seperate the two incase somebody wanted to have a different implementation. Also if you're talking about involving jquery, I'd say just don't.

 

2) You send the password plaintext in a plain unsecured post request.

http://stackoverflow.com/questions/1008668/how-secure-is-a-http-post

 

3) You only ask for a username and a password and theres no confirmation. Simple, yes. However somebody could easily make a typing mistake and has no way of confirming it.

 

4) connect.php, instead of having some kind of secure configuration file the mysql connection information is slapped right in the file. It should be kept in a secure file.

Posted

Not to be a buzz kill but

 

1) You should use OO and keep everything organized into generic classes. You've mixed the HTML presentation along with PHP functionality. Now it can be difficult to seperate the two incase somebody wanted to have a different implementation. Also if you're talking about involving jquery, I'd say just don't.

 

2) You send the password plaintext in a plain unsecured post request.

http://stackoverflow.com/questions/1008668/how-secure-is-a-http-post

 

3) You only ask for a username and a password and theres no confirmation. Simple, yes. However somebody could easily make a typing mistake and has no way of confirming it.

 

4) connect.php, instead of having some kind of secure configuration file the mysql connection information is slapped right in the file. It should be kept in a secure file.

 

First of all, I think you ignored the last two lines of my first post. That means I have to ignore your 1, 2 and 3 because the have to do with what I said at my last two lines.

 

About the forth one. Why should it be kept in a secure file? Php is a server side programming language. That means that user can see only the staff which are echoed out. It is impossible for a user to see the database information even if he writes connect.php in his browser. The only way to see the php part is if you have ftp access to the files.

 

Also, I noticed that you said, not to use ajax. Jquery `ajax` will make acm run smoothly without refresing the browser and without overloading server.

 

Thank you for your feedback.

Posted
(It was written by me many months ago and it is a little bad-coded. Maybe, I will share a new acm coded in jquery and php. Anyway, it works perfectly.)

 

That's hardly an excuse for you to write shit. I should start telling my customers "Oh by the way I'm going to give you a terrible program and you can't comment on it because I told you ahead of time."

 

And as for the secure file, PHP is as secure as you make it. What if you don't set your permissions right? What if you're using windows which'll automatically set it's permissions for you? Server side or not, what do you think happens when you write a post request? PHP files are still read by a seperate executable.

 

Even if you use AJAX or Jquery, you're still going to have to write something server-side. Jquery and AJAX only run off the client machine as a presentation. Your presentation should be seperate from your application.

 

 

Posted

That's hardly an excuse for you to write shit.

 

And as for the secure file, PHP is as secure as you make it. What if you don't set your permissions right? What if you're using windows which'll automatically set it's permissions for you? Server side or not, what do you think happens when you write a post request? PHP files are still read by a seperate executable.

 

Even if you use AJAX or Jquery, you're still going to have to write something server-side. Jquery and AJAX only run off the client machine as a presentation. Your presentation should be seperate from your application.

 

First of all, it's just a share. Also, nobody forced you to download it.

 

And I said, above it is IMPOSSIBLE to stole php code without having access at files.

 

Futhermore, I guess you have to idea what ajax is according to your last three lines of crap.

 

With Ajax, web applications can send data to, and retrieve data from, a server asynchronously (in the background) without interfering with the display and behavior of the existing page. Data is usually retrieved using the XMLHttpRequest object. Despite the name, the use of XML is not needed (JSON is often used instead), and the requests do not need to be asynchronous.[2]

Ajax is not a single technology, but a group of technologies. HTML and CSS can be used in combination to mark up and style information. The DOM is accessed with JavaScript to dynamically display, and to allow the user to interact with the information presented. JavaScript and the XMLHttpRequest object provide a method for exchanging data asynchronously between browser and server to avoid full page reloads.

 

<=> Less server usage.

Posted
First of all, it's just a share. Also, nobody forced you to download it.

True. Now I'll play that card: Since you posted it in the public domain I can say what I want about it and it sucks. People that know what they're doing and not just trying to bump their post count here won't be using this.

 

And I said, above it is IMPOSSIBLE to stole php code without having access at files.

Ideally and normally yes, however:

http://www.cyberciti.biz/tips/php-script-downloaded-as-source-code.html

It can still happen. And it shows what kind of a programmer you are if you're saying 'why should I secure it?'.

 

Futhermore, I guess you have to idea what ajax is according to your last three lines of crap.

http://en.wikipedia.org/wiki/Ajax_(programming)

Ajax (also AJAX; pronounced /ˈeɪdʒæks/; an acronym for Asynchronous JavaScript and XML)[1] is a group of interrelated web development techniques used on the client-side to create asynchronous web applications.

 

Also, it's not like your PHP script is going to actually use that much of your resources. It doesn't matter how you do it your server is still going to be processing some kind of information. There is still a seperate between the presentation and information, you just don't see it.

Posted

Many people already use it and no one faced a single problem.

 

Ok, I thing now I fed the troll enough.

 

Posted

If you make a new ACM you should use suggestions that "dpbBryan" gave you....

Anyway thanks for that waiting for new ^_^(Help Me On This Click Me

They were not excactly suggestions. He said some things which I know about, but some of these do not exist in acm because this was made long ago.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Posts

    • @Mobius I only asked you one question! All your previous versions are sh*t and the last version is the best ? Because this is what you said.
    • Close that LOLserver. And change name to L2Wipe&Money.
    • Open Beta January 17th & 21:00 UTC +2 Launch Date January 24th & 21:00 UTC +2 Click Here to Explore Vanilla Gracia Final Low-Rate Server. Join our Discord Community     Following the success of our Vanilla project, we decided to launch it again as Last PlayINERA’s Server! Core Settings *Vanilla will have Strict Botting & Client Limitation Rules and Chronicle Progression from Gracia Final to Gracia Epilogue to H5 in Long term! XP: x4 SP: x4 Adena: x2 Drop: x2 Spoil: x3 Manor: x0.4 (60% reduction) - Festive sweeper enabled! Seal Stones: x2 Herbs: x1 Safe Enchant: +3 Maximum Enchant: Retail Enchant Rate: Dynamic General Settings Auto-loot Can be toggled Buffs Adventurer Guide buffs are free, retail level limit removed. Buff Slots: 20 (+ 4) Summon buffs will remain on re-summoning & on death while Noblesse blessing is applied! (Olympiad excluded) Pet buffs will be saved on relog but not during summon/unsummon. Event Buffer [NEW] Event Buffer is enabled and will spawn randomly between 18:00 ~ 23:00 in Giran for 10 minutes, it will apply Farm Only buffs that are cancelled in PvP, Siege / Epic PvP zones & while in a chaotic state! Duration: 1-hour! Territory Wars every two weeks on Saturday. Castle sieges every two weeks on Sunday Class Transfer 1st Class Transfer: Available for purchase with either Adena or iCoin 2nd Class Transfer: Available for purchase with either Adena or iCoin 3rd Class Transfer: Quest or iCoin (the 3rd class transfer will become available for purchase with iCoin as soon as someone has entered the Hall of Fame for completing the 3rd class transfer quest for the class in question) Hellbound Hellbound Lv. 0-6: ATOD x1 Hellbound Lv. 7-12: ATOD x2 Tiat & Ekimus will become available at Stage 12 Hellbound can only be leveled up by killing monsters. No quests or raids are needed To open Hellbound, a party must kill Baylor in the Crystal Caverns The following items are now tradable: Ancient Tome of the Demon  Hidden First Page  Hidden Second Page  Demon Contract Fragment INERA Hub Library Clan Recruitment System Options Services Milestone Rewards Earn rewards for reaching various daily/one-time goals Client Limit: 1 (+1 with Standard Premium) Shift + Click Information on Monsters SP are required to learn new skills Offline shops Lasts for 15 days Olympiad Olympiad period: 1st and 15th day of the month (14th & Last day of month is the last day) 3 Vs. 3 match disabled Class-based matches will be held over the weekends One registration per HWID (PC) Minimum participants: 9 Party Matching System Earn bonuses for finding a group via the Party Matching system Vote Reward System World Chat No limits for first day! Available from level 20 Raid Bosses Epic Raid Boss zones will turn into a PvP zone while the Epic Raid Boss is alive ( + means Random) Server will start with all grand raids dead. Normal Raids: 12h (+6 hours random). Subclass raids, respawn 12h (+6 hours random). Noblesse Barakiel 12h (+6 hours random, PvP zone). Anakim & Lilith are static 24 hours respawn. Queen Ant: 24 hours (+2 hours random). Core: 40 hours (+2 hours random). Orfen: 32 hours (+2 hours random). Antharas Respawn: 8 Days. Randomly spawns at 19:00 ~ 21:00 Boosted to level 83 on Hellbound stage 7. Valakas Respawn: 10 Days. Randomly spawns at 19:00 ~ 21:00 Baium Respawn: 5 Days. Randomly spawns at 21:00 ~ 23:00 Boosted to level 83 on Hellbound stage 7. Frintezza Respawn: 2 Days. Randomly spawns at 21:00 ~ 23:00 Instanced Zaken Zaken (Day): Monday, Wednesday, Friday at 6:30. Zaken (Day): 9 players, LvL 55-65, 1hr max. Zaken (Night): Wednesday at 6:30 Zaken (Night): 18-45 players, LvL 55-65, 6hr max. Tiat: Saturday at 6:30, 18-36 players, 2 hrs max. Boosted to level 85. Ekimus: 24h at 6:30, 18-27 players, 1hr max. Tully’s Workshop (Darion & Tully): 24h +-1h. Tower of Naia (Beleth): 5 days, 18 min. & 36 max.
  • Topics

×
×
  • Create New...