<![CDATA[Moonbat's Lair]]> Sat, 06 Feb 2010 06:30:41 +0000 admin@dreamincode.net (Dream.In.Code) IP.Blog 60 PHP to C#
One, C# is what is known as a strongly typed language. Pretty much everything has a type. Unlike PHP, where we just make a variable with $ and then forget about what it holds, C# depends a lot on types. There are basic ones, like 'string' and 'int' but then there are other, less familiar types like 'DateTime'. If you don't have previous experience with a language other than PHP, prepare for a flurry of compiler errors along the lines of 'Cannot implicitly convert type X to type Y'

C# is also object-oriented. *gasps of awe and amazement*

If you haven't experimented with object-oriented programming in PHP, you'll feel very awkward moving to C#, so I'd suggest getting some experience using PHP's OOP capabilities.

That's about it really. So if you are learning C# as a PHP programmer, or are looking for a new language to learn after PHP, consider C#. It's easy to pickup and fun to use :D]]> Mon, 03 Nov 2008 16:56:28 +0000 RSA Encryption in PHP
I've completed a class in PHP that generates a public and private key using the algorithm for RSA. Read more about RSA at [1].

The bad news is, this theoretically works. The public key generates fast, but generating the private key takes forever and I have yet to have a successful test run. Well, anyway, here is the code, which includes the class and a test run.

<?php
/**************************************************
 * RSA Algorithm Private and Public Key Generator *
 *              Coded by Moonbat                  *
 *              October 22, 2008                  *
 **************************************************/
set_time_limit(0);

class RSA {
	
	var $p; 	  /* Prime number #1 */
	var $q; 	  /* Prime number #2 */
	var $n; 	  /* Modulus to be used */
	var $totient; /* Totient of $n, used to find public key $e */
	var $e; 	  /* The public key */
	var $d; 	  /* The private key */
	
	public function __construct() {
		$this->p = $this->GeneratePrime();
		$this->q = $this->GeneratePrime();
		$this->n = $this->p * $this->q;
		$this->totient = ($this->p - 1) * ($this->q - 1);
	}

	public function IsPrime($number) {
		if ($number < 2) { /* We don't want zero or one showing up as prime */
			return FALSE;
		}
		for ($i=2; $i<=($number / 2); $i++) {
			if($number % $i == 0) { /* Modulus operator, very useful */
				return FALSE;
			}
		}
		return TRUE;
	}
	
	public function GeneratePrime() {
		$number = 0;
		while (!$this->IsPrime($number)) { /* Keep going till we get a prime number */
			$number = rand();
		}
		return $number;
	}
	
	/* FindGCF Function - Credit goes to [url="http://us2.php.net/manual/en/function.gmp-gcd.php#69189"]http://us2.php.net/manual/en/function.gmp-gcd.php#69189[/url] */
	public  function FindGCF($z, $totient) {
    	return ($z % $totient) ? $this->FindGCF($totient, $z % $totient) : $totient;
	}
	
	public function GeneratePublicKey() {
		$this->e = rand(2, $this->totient);
		while ($this->FindGCF($this->e, $this->totient) != 1) { // Keep going till $e is coprime with $totient
			$this->e = rand(2, $this->totient);
		}
	}
	
	public function GeneratePrivateKey() {
		$this->d = rand();
		while (($this->d % $this->totient) != ($this->e % $this->totient)) {
			$this->d = rand();
		}
	}
		
}

$encrypt = new RSA();
$encrypt->GeneratePublicKey();
$encrypt->GeneratePrivateKey();

echo "p = $encrypt->p <br>";
echo "q = $encrypt->q <br>";
echo "n = $encrypt->n <br>";
echo "Totient of n = $encrypt->totient";
echo "<br><br>";
echo "The public key is <font color='green'><b>(n = $encrypt->n, e = $encrypt->e)</b></font><br>";
echo "The private key is <font color='red'><b>(n = $encrypt->n, d = $encrypt->d)</b></font>";

?>


If you just want the private key, comment out this line:

$encrypt->GeneratePrivateKey();


I'll be working on a way to fix the huge time requirement. This oughta be fun :ph34r:

[1] - http://en.wikipedia.org/wiki/Rsa]]> Wed, 22 Oct 2008 21:47:32 +0000 A Lesson In Anonimity
If you haven't heard about how the United States Republican Vice-Presidential nominee Sarah Palin had her Yahoo! email hacked, read about it at [1]

Now, according to [2] an Anonymous member with the handle "Rubico" used the proxy at http://www.ctunnel.com/ to mask his activities. But the owner of ctunnel.com, Gabriel Ramuglia, voluntarily offered the logs to the FBI containing the IP address of Rubico.

So, like I said. Don't trust web proxies. They will not cover you, because behind every proxy site is an owner who does not want to get arrested for obstruction of justice. Or even worse, an owner who is willing sacrifice the percieved anonimity of its users just to get one little quote published in an article.

Oh, if you were wondering, Rubico was discovered. He's a 20-year old named David Kernell in Tennessee. Turns out that when Kernell was posting his hack on the Web, he used the email address that was tied to all of his other less scrupulous activities. So, lesson #2, don't use your true email when doing something illegal.

Are people this stupid nowadays?

[1] - http://www.time.com/time/politics/article/...1842097,00.html
[2] - http://www.tgdaily.com/html_tmp/content-view-39405-108.html]]> Wed, 22 Oct 2008 02:31:38 +0000 PHP-GTK GtkHtml
After a little playing around with the ways of organizing the GUI (GtkHBox and GtkVBox), I had a simple web browser look. All I needed way a way to show the page.

I figured I would just use a file_get_contents() to get the HTML of the page, then just put it in a GtkLabel. But sadly, it doesn't parse HTML. Then I looked up GtkHtml, an extension for PHP-GTK that would parse HTML.

I followed about 5 different tutorials. I switched between versions 2.0.0 and 2.0.1 many times. I edited the php.ini file in my php-gtk2 directory so many times I've memorized it. Yet, I cannot get the GtkHtml extension to work on Windows. :angry:

If anyone has any advice to get it to work, I'm all ears. I've done everything to get it to work with no luck.]]> Thu, 11 Sep 2008 22:14:09 +0000 MoonBlog is DONE!

You can read about it here - http://www.dreamincode.net/forums/showtopic61625.htm

Coding was easy enough, and besides the installer, everything else was a piece of cake. The hardest part was making it look nice. CSS and HTML are easy enough, but making it come together was difficult. I'm a programmer, not a designer. Heck, the only image I have on the blog is the little logo at the top. But all in all this was a great experience, and I've learned more than I ever would have if I'd just sat around making little 10-20 line scripts.

I'd suggest anybody wanting to learn advanced PHP start working on a CMS.

As for updates to MoonBlog, unless there are any security vulnerbilities (which I'm pretty sure there aren't) or I'm really bored, I don't plan on it. Adding more stuff will mean editing the design, which will be a huge pain for me. :P

EDIT: I guess I kind of made this post in the heat of the moment after finishing my blog. After looking through my code again, it looks like someone took an object-oriented crap in my toilet bowl of procedural code. I am proud of having made my first CMS, but I defintely will not be updating it. For now it will serve the purpose of sitting on my HD to remind me in a few years of what I was like as a programmer. :D]]> Mon, 25 Aug 2008 23:06:57 +0000 Looking Back... (PHP Edition)
1. Base64 != 1337 3ncryp710n t00L
I've seen this especially with 'web shells' used to exploit remote file inclusion vulnerabilities. Honestly, what is the point of it? To all those people who make web shells and then backdoor them, your Base64 won't hide anything. Sure it'll take a whole two seconds to decode it, but once it's decoded, the DB details from the connection being made by your 5-minute-hackjob of a backdoor are clear as day.


2. // Commenting every line no matter how mundane or obvious
I know that md5() hashes a string using the MD5 algorithim, thanks.


3. Spaghetti includes
Problem 1 - Create a function similar to foreach() to iterate through an array, but only if the array consists of nothing but integers. Be sure to have it include a file which includes a file that includes another three files that include the first file and also include two other files that include the second file included by the file that is included by the first file, which should also make use of require on four new files that include each other and require at least one other file.

See how hard that is to understand? Now imagine reading through code that uses include() and/or require() in such a manner.


4. ASCII art in code (art courtesy of http://chris.com/ascii/)
					@=====@
				  #=@	   @=#_
				 # \/\/\/\/\/\ #\
				 @@|  _   _  |@@(
				 @@|\|_|-|_|/|@@ )
				  @|	/\   |@ (
				   |  \~~~~/ |   )
				   |   ~~~~  |   |
					\_______/	|
			 _________|   |_______(____
			/		 \   /	  (	 `\
		   /  / |  fvk \ /	  |-\---,  \
   _______/  /__|_______@_______|__)___\  \________
  |\	  \  \___   ______________#	 |  |__	 \
  |\\	  /\ \  ', |\ # W W W W @@ \   /ooo  `,	\
  ||\\	'  ooo   \\#\ # W W W W @@ \ '		\	\
  || \\	\	 ; \#\___o_o_o_o____\ \	 ;	 \
  \|_|\\	`,_____/  \|______________|  `,_____/	  \
	   \\											   \
		\\											   \
		 \\_______________________________________________\
		  \  ___________________________________________  |
		  || |										 || |
		  || |										 || |
		  || |										 || |
		  \|_|										 \|_|

It looks cool, but my personal view is that it has no place in code, especially if it's as big as this one (which I've seen before). I've seen people brag about 1000+ lines of code. Heads up, ASCII art doesn't (well, shouldn't) count. Also, be sure to notice how much longer this post looks due to the ASCII art.


5. $Overuse['Of']['Multidimensional']['Arrays']
I hate it when multidimensional arrays are abused like this. I have seen an array like this being used to hold stuff like pathnames, username and password details, etc. It's confusing and, frankly, why not use something like classes to hold all this stuff?

Thanks for reading my first post, and I hope you enjoy it.]]> Mon, 18 Aug 2008 23:48:21 +0000