hi here are some php things i want to tell you

[Agnostic Bear]

1) security comes before performance in all aspects of programming, php or not
2) learn to love () ? : (ternary operator)
3) use "and" and "or" instead of && and ||, much easier to read and understand, does exactly the same thing
4) never use $_REQUEST, very easy to forge things
5) "" and '' perform the same, stop being eejits and saying one performs faster than the other, they don't any more, use either
6) use , instead of . in echo, it's faster
7) use echo instead of print unless you want to hang on to the variable, it's faster
8) use cookies instead of sessions unless you specifically need sessions
9) use strstr instead of foreach / for loop for replacing things

that is all you can go now

[Skajo]

completely went over my head.

[Fehm]

Lol it'll come in handy Im sure
I think you should right a guide on PHP security Because the only things I know are stripslashes and mysql_real_escape_string, md5 and sha1 :L:L

?

[DeejayMachoo$]

There are some things I thought I should point out in your post.

Number two it's really personal preference although I must agree that when assigning variables with the ternary operator it does look nicer.

Number three is iffy, yes they're easier to read and understand, but there is a slight difference between them. The "&&" and "||" have a higher operator precedence than "AND" and "OR", but most people won't encounter a situation where this will be a problem.

Number five is wrong, single quotes are faster unless you concatenate which then in most cases double quotes is faster. But the speed difference is negligible.

Number seven is confusing, you say use echo instead of print unless you want to hang onto the variable? If you echo a variable, it doesn't unset it, same goes with print - either way you'll hang onto it.

Number eight I can disagree with, because cookies can be more easily manipulated than sessions, so you need to justify when you should use cookies over sessions - and this contradicts with number one, as by using sessions it's more secure than cookies in most cases.

[Agnostic Bear]

There are some things I thought I should point out in your post.

ok

Number three is iffy, yes they're easier to read and understand, but there is a slight difference between them. The "&&" and "||" have a higher operator precedence than "AND" and "OR", but most people won't encounter a situation where this will be a problem.

Nobody will ever encounter a situation where that will be a problem, I can see no reason for it ever to be a problem ever.

Number five is wrong, single quotes are faster unless you concatenate which then in most cases double quotes is faster. But the speed difference is negligible.

No. Single quotes are as fast as double quotes and vice-versa, I don't consider 0.007 seconds faster over 100,000 loop test to be faster, I consider it to be the same time.

Number seven is confusing, you say use echo instead of print unless you want to hang onto the variable? If you echo a variable, it doesn't unset it, same goes with print - either way you'll hang onto it.

print holds the printed string in a variable, echo doesn't

Number eight I can disagree with, because cookies can be more easily manipulated than sessions, so you need to justify when you should use cookies over sessions - and this contradicts with number one, as by using sessions it's more secure than cookies in most cases.

no they're not, cookies are just as secure as sessions if you know how to keep them secure, sessions are based on a cookie with the session id anyway

[BoyBetterKnow]

1) security comes before performance in all aspects of programming, php or not
Naturally.
2) learn to love () ? : (ternary operator)
Have married it.
3) use "and" and "or" instead of && and ||, much easier to read and understand, does exactly the same thing
Mm. Personal preferance IMO, I use | and & and they work fine.
4) never use $_REQUEST, very easy to forge things
mmhm.
5) "" and '' perform the same, stop being eejits and saying one performs faster than the other, they don't any more, use either
I think that ' looks nicer. Personal pref.
6) use , instead of . in echo, it's faster
How much faster?
7) use echo instead of print unless you want to hang on to the variable, it's faster
already do
8) use cookies instead of sessions unless you specifically need sessions
Use both...
9) use strstr instead of foreach / for loop for replacing things
fairs

that is all you can go now

CHEERS JEWISH BEAR.

[Iszak]

No. Single quotes are as fast as double quotes and vice-versa, I don't consider 0.007 seconds faster over 100,000 loop test to be faster, I consider it to be the same time.

Although you may not consider it to be faster - it is faster none the less, but I agree with Matt, it's negligible.

print holds the printed string in a variable, echo doesn't

No it doesn't, It doesn't specify it in the documentation, I can't find it anywhere, prove me wrong?

cookies are just as secure as sessions if you know how to keep them secure, sessions are based on a cookie with the session id anyway

I'm not even going to argue with this - cookies shouldn't be used for sensitive data no matter how much you can "secure" it with encrypting or hashing and I think that's what Matt was getting at.

[Agnostic Bear]

Although you may not consider it to be faster - it is faster none the less, but I agree with Matt, it's negligible.

0.007 over 100,000 loops is not faster in a real-world situation.

No it doesn't, It doesn't specify it in the documentation, I can't find it anywhere, prove me wrong?

It returns 1 always, so you can set it in a variable, forgot to add "printed string 1" obviously >.>

I'm not even going to argue with this - cookies shouldn't be used for sensitive data no matter how much you can "secure" it with encrypting or hashing and I think that's what Matt was getting at.

Awesome, you should stop using every forum and website in the world that uses cookies for sensitive data (which is: nearly every website that uses cookies).

This forum, every forum you've ever been on. Cookies are as secure as the computer they're stored on, which in my case happens to be very.

[Devestation]

Wow dan, not much more to teach someone in 10 seconds now is there?
Thanks for these tips - They'll help with my PHP skills.

[Iszak]

Dan, grow the **** up - I don't know if it's just me, but I'm sick of your constant trolling, and pointless threads that seem as if they're just to get "praised" for a few hours of work.

Don't bother replying to this, because I'm never going to reply to you again.