Home page
  Home Page   Contact Us   Our History   Advertise with Us   Sponsor List   Link to Us   Compare Levels   Member Agreement   Privacy Policy   About C3VR
  Community Forums   Active Threads   Forum Search   Top Posters List   Private Messenger   C3VR Email System
  Members Vettes & Pictures   Member Stories   Member Stats   Real Time Member Map   Member Search   Lifetime Member List   Member Calendar Entry Form   Who's Online
  C3 Registry Data   C3 Corvette Statistics   C3 Corvette Tips & Tricks   C3 Corvette How-Tos   Corvette Club Listing   Corvette Event Listing   Mechanic Directory   Corvette VIN Decoder   Save the Wave   Corvette Emblem History   C3 Corvette Birthday Calculator   C3 Corvette Build Dates   Corvette Parts Illustration Catalog   Shark Bytes - Online
  C3 Corvette Parts Auctions on eBay   Corvette Books   C3VR Member Name Badges   C3VR In-Stock Apparel & Accessories   C3VR Custom Apparel & Accessories @ Zazzle   C3VR Window Stickers   C3VR Member Deals & Discounts   C3VR Member Calendars   Shop Amazon.com
SPONSOR AD

Support our Vendors!  |  Advertise Here

Topic: My feelings are hurt, now

in Forum: Official C3 Vette Registry Support/Issues/Comments


Already a Member?
Login
Not yet a Member?
Register for Free!

New Topic New Topic
Post Reply Reply
New Poll New Poll
Search Search
Hide Signatures

Back to top of thread

My feelings are hurt, now (3/13)
 10/5/05 10:06pm
Adam WartellLifetime Member
Lifetime Member
C3VR Founder
Send Private Message

Eagleville, PA - USA

Vette(s):
Used to own a 1979 Corvette now owned by JB79

Joined: 11/1/2001
Posts: 17637

Try now. I think I fixed it.

______________

-Adam Wartell
NCM Lifetime Member #1222
Founder: C3 Vette Registry 
C4 Vette Registry, C6 Vette Registry

My first Vette, now owned by JB79:

Reply Reply
Quote Reply w/Quote
My feelings are hurt, now (4/13)
 10/5/05 11:01pm
Adams' AppleLifetime Member
Lifetime Member
Moderator
Send Private Message

Duncanville, TX - USA

Vette(s):
#1-1974 L-48 4spd Cp Med Red Metallic/Black deluxe int w/AC/tilt/tele./p/w-p/b/ Am-Fm/map light National/Regional/Chapter NCRS "Top Flight" #2-1985 Bright Red/Carmine Cp.L-98/auto Member: NCRS, NCRS Texas, Corvette Legends of Texas

Joined: 11/8/2003
Posts: 20128

Thanx, guys!!!

______________

Joel Adams
C3VR Lifetime Member #56    
My Link


(click for Texas-sized view!)             NCRS

"Money can't buy happiness -- but somehow it's more comforting to cry in a CORVETTE than in a Kia"

Reply Reply
Quote Reply w/Quote
My feelings are hurt, now (5/13)
 10/5/05 11:02pm
Iron82Lifetime Member
Lifetime Member
Send Private Message


Vette(s):
1982 Collector Edition #3413

Joined: 7/24/2003
Posts: 2150

Get some sleep now....    
Reply Reply
Quote Reply w/Quote
My feelings are hurt, now (6/13)
 10/6/05 9:54pm
Adams' AppleLifetime Member
Lifetime Member
Moderator
Send Private Message

Duncanville, TX - USA

Vette(s):
#1-1974 L-48 4spd Cp Med Red Metallic/Black deluxe int w/AC/tilt/tele./p/w-p/b/ Am-Fm/map light National/Regional/Chapter NCRS "Top Flight" #2-1985 Bright Red/Carmine Cp.L-98/auto Member: NCRS, NCRS Texas, Corvette Legends of Texas

Joined: 11/8/2003
Posts: 20128

Just some info for others who might have had this same problem Adam & Mike(Iron82) helped to solve the mystery(or decided to finally let me play with the "Big Dogs" ).
It was the fact that my screen name, Adams' Apple has an apostrophy in it. Seems the software didn't recognize/accept this type of data. Only took 2years to to discover this 'glitch'!!
Just kiddin, guys!

Thanks for the help on this, Adam & Mike!!! I really enjoyed being able to join in a little last nite. (I think Mike wanted to drive me even closer to the brink, cause he would I/M me at the same time I was "chatting", causing a considerable amount of cornfusion on my part, which, in reality, ain't all that hard to do! )
btw.....who put the fat, nekkid chick on my desktop? Adams' Apple38632.7912384259

______________

Joel Adams
C3VR Lifetime Member #56    
My Link


(click for Texas-sized view!)             NCRS

"Money can't buy happiness -- but somehow it's more comforting to cry in a CORVETTE than in a Kia"

Reply Reply
Quote Reply w/Quote
My feelings are hurt, now (7/13)
 10/7/05 8:01am
Ron 78Lifetime Member
Lifetime Member
Moderator
Send Private Message

BINGHAMTON, NY - USA

Vette(s):


Joined: 7/19/2003
Posts: 3808

Fat,NEKKID CHICK ......?????

______________

C3VR Lifetime Member #93
 
Reply Reply
Quote Reply w/Quote
My feelings are hurt, now (8/13)
 10/7/05 8:37pm
74-454Lifetime Member
Lifetime Member
Send Private Message

, - Canada

Vette(s):
Coupe 74 - 454 Drive it like you stole it!

Joined: 8/6/2004
Posts: 533

The apostrophy is a string delimiter in the SQL language (Structured Query Language).  By having one in your name, it terminates the one that was started at the beginning of your name and therefor, not including "Apple" AND making the reminder of the SQL command un-compilable. bla bla bla
 
Anyway, I could talk about it all night, but the reason I'm posting, is that I wonder how it was fixed.  Just by adding a second apostrophy to Adam's user name ? or by setting an option somewhere ?
 
If only by adding a second one; you still have a security exposure. It is called "SQL injection".  One of the oldest (and easiest) way to hack a website.  Adam, you can do some google search to familiarize yourself with this kind of threat and then ask your hosting company (and/or the maker of this forum software) if they include some kind of protection for this).  Make sure you tell them that you allow screen name with single quote.
 
In Adam's Apple case, it was a single quote problem, but Iron82 gave some good pointer if it happens to anybody else.  The "chat" might be working on a different port than your http proxy and you could have to punch a whole in your firewall/router if you have a recent and secured one or if you run any application like "Norton" or "ZoneLabs".  It could also be related to a browser that blocks pop-up (mine does : AvantBrowser).
 
Glad you can now get in after that long.
 
Reply Reply
Quote Reply w/Quote
My feelings are hurt, now (9/13)
 10/7/05 9:58pm
Adams' AppleLifetime Member
Lifetime Member
Moderator
Send Private Message

Duncanville, TX - USA

Vette(s):
#1-1974 L-48 4spd Cp Med Red Metallic/Black deluxe int w/AC/tilt/tele./p/w-p/b/ Am-Fm/map light National/Regional/Chapter NCRS "Top Flight" #2-1985 Bright Red/Carmine Cp.L-98/auto Member: NCRS, NCRS Texas, Corvette Legends of Texas

Joined: 11/8/2003
Posts: 20128

Huh? Adams' Apple38632.7922222222

______________

Joel Adams
C3VR Lifetime Member #56    
My Link


(click for Texas-sized view!)             NCRS

"Money can't buy happiness -- but somehow it's more comforting to cry in a CORVETTE than in a Kia"

Reply Reply
Quote Reply w/Quote
My feelings are hurt, now (10/13)
 10/7/05 11:21pm
Adam WartellLifetime Member
Lifetime Member
C3VR Founder
Send Private Message

Eagleville, PA - USA

Vette(s):
Used to own a 1979 Corvette now owned by JB79

Joined: 11/1/2001
Posts: 17637

Stephane,

You are right about it being an issue with SQL Server.

As a programmer, I know all too well about the ' in SQL Queries causing a failier.  And when I coded the majority of the pages for this site, I made sure to account for it.  However, I did not write the code for the Chat Room. Apparently that person didn't account for ' in a user name.

The unfortunate part for Adams' Apple, was that he wasn't getting an error message that he could tell me about, and my site didn't report any errors (again, probably because I didn't write that code).

So, for Stephane and other techies... here's the fix:

strSQL = "SELECT * FROM Users WHERE UserName = '" & replace(strUserName, "'", "''") & "'"

Which causes each single ' to turn into two ' right next to each other like this: ''

That tells the database to use the '' as a single ' in the user name and not as part of the database query command.

Everyone confused now?



______________

-Adam Wartell
NCM Lifetime Member #1222
Founder: C3 Vette Registry 
C4 Vette Registry, C6 Vette Registry

My first Vette, now owned by JB79:

Reply Reply
Quote Reply w/Quote
My feelings are hurt, now (11/13)
 10/7/05 11:40pm
Ron 78Lifetime Member
Lifetime Member
Moderator
Send Private Message

BINGHAMTON, NY - USA

Vette(s):


Joined: 7/19/2003
Posts: 3808

YUP

______________

C3VR Lifetime Member #93
 
Reply Reply
Quote Reply w/Quote
My feelings are hurt, now (12/13)
 10/8/05 6:01pm
74-454Lifetime Member
Lifetime Member
Send Private Message

, - Canada

Vette(s):
Coupe 74 - 454 Drive it like you stole it!

Joined: 8/6/2004
Posts: 533

Well, the important is that Joel is able to use the chat and Adam has got it under control.
 
Adam, very nice job, I didn't know you were coding it.  I was under the impression that is was a package offered by the hosting company.
Reply Reply
Quote Reply w/Quote
My feelings are hurt, now (13/13)
 10/8/05 10:16pm
Adams' AppleLifetime Member
Lifetime Member
Moderator
Send Private Message

Duncanville, TX - USA

Vette(s):
#1-1974 L-48 4spd Cp Med Red Metallic/Black deluxe int w/AC/tilt/tele./p/w-p/b/ Am-Fm/map light National/Regional/Chapter NCRS "Top Flight" #2-1985 Bright Red/Carmine Cp.L-98/auto Member: NCRS, NCRS Texas, Corvette Legends of Texas

Joined: 11/8/2003
Posts: 20128

Adam is DA MAN!!!



______________

Joel Adams
C3VR Lifetime Member #56    
My Link


(click for Texas-sized view!)             NCRS

"Money can't buy happiness -- but somehow it's more comforting to cry in a CORVETTE than in a Kia"

Reply Reply
Quote Reply w/Quote
Our Sponsors help support C3VR