Posted by NC on 12/24/07 17:48

On Dec 24, 4:42 am, shror <shahi...@gmail.com> wrote:
>
> What I am trying to do is to create a tutorial for my beginning
> students for JavaScript and PHP, using a very simple online editor
> like the one @ w3schools
> So the left window will be the text file code, such as
>
> <html>
> <body>
> <script>document.write("This is a test.");</script>
> </body>
> </html>
>
> And the right hand window would display
>
> This is a test.
>
> User can change the text file to make it display differently.
>
> If the left hand side has PHP file, I just want it to be
> displayed as a server-processed file, but not to endanger
> the system, any way to avoid it from danger or hacking??

Nope. You want to execute arbitrary PHP code on your server, so there
is no way of "avoiding danger or hacking"... The only half-safe
solution I can think of is that the PHP server on which the user-
supplied code runs is virtual (so whatever damage the hackers do will
disappear when the server is restarted) and separate from the server
on which the application is hosted.

Cheers,
NC

• Next in forum: Re: new MVC web framework
• Prev in forum: Re: emailing data from my DB...??
• Thread view: Re: I want to create web page acting as text Editor???

[Reply to this message]