A few days ago, I moved the system to a new PC, also moved to a new version of MySQL and I apparently was in too much of a hurry because I screwed a bunch of the db privileges up in the process. I was trying to get it back online as quickly as possible and as such didn't test it thoroughly. I just now fixed a problem with the browse section that made it useless for the past week.
koitsu: Thanks for the insight, in response to some of the things brought up:
Spitting back a bunch of MySQL errors at the end-user doesn't give people the impression "things are being worked on". It gives people the impression something is broken
Error messages regarding search queries are being output on purpose to make it easy for people to copy & paste the error to tell me about it. Can easily be shut off if I want. However, this is the only place it should be doing this, if you know of others, please let me know.
Seems most of the things I tried failed due to use of mysql_real_escape_string()...
I hate the implementation of this function as well (it's even more of a pain in the C API!) but are you implying I should be doing something else?
The Section Browser dumps the section character you want directly from $_GET into the query.
I can't seem to reproduce this error with the example given, but yes if you enter some nonsense character in there it can give you an error message. Certainly can be fixed, but hardly a pressing matter IMHO, as you'd have to intentionally be doing this.
Also, in the Advanced Search, probably pertaining to magic_quotes_gpc being turned on. All PHP configurations at this point in time should have this disabled globally and code developed to assume it's off -- the feature has been removed entirely in PHP 6 due to the security risks of it.
Yes magic quotes are enabled and I know that is a bad thing. I guess if they will not be available in the next major version of PHP I will have no choice but to stop using that 'feature'
Anyone else having trouble downloading the database?
I haven't been able to connect since the update. Also, I notice I can't click the software link since the update.
Yes unfortunately the updated software is still unavailable. I hope to have things ready ASAP. Also the DB download function is no longer going to be part of the software and will be integrated into the website instead, should be a better experience for all.