wildcard of table field?

roly

$query = "select * from some_table WHERE word_black like '$guestcomment'";

i don't know if anyone can help, i'm a bit of a newbie but what i'm trying to do is have a banned word or phrase field for a guestbook i'm writing (just a small project to help get me going in php/mysql). The thing is i know i could have a wildcard on '%$guestcomment%' the user comments submitted but what i want is for any banned word or phrase that's listed in the word_black field of the table to check against the user comments submitted and if one of the words that are banned are in the comments throw an error. i understand what to do apart from the wild card searching bit.

e.g. a banned word in the word_black field of the table is swearword

i want to search for any occurance of swearword in the submitted comments like this:

"this is my submitted comments but they include a swearword"

I tried to put wildcard characters around the fieldname like this:

$query = "select * from some_table WHERE %word_black% like '$guestcomment'";

but that didn't work, has anyone any ideas? I'm sure i've made this sound a lot more complicated than it is, sorry!

thanks in advance

roland

chads2k2

What up man... I used this script a while ago when I had a teenager fourm up. I had to check for bad words and someone from here actually helped me quite a bit with this script. I put everything that is used for the database. Make sure that you run the field where they put in their comment for the guestbook through a htmlspecialchars($string)! That will cut out all the <?php phpinfo(); ?> kids.

Here is the script that I used below with the bad words already in it. It works for a large amount of time but there are ways around it.

<?
function checkBadWords($thought_thought) {
$badWords = array('fuck', 'cunt', 'whore','hoe','gay','homosexual','homo','gayism','faggot','lesbian','lesbo','lessie','lessy','chad smith','melanie perry','chris crothers','matt brainard','flaming','porno','stupid','slut','g a y','pics','pictures','butt','ass','bastard','dick','dike','crack','pipe','maryj','pcp','alcohol','speed','drugs','druggie','drugy','shot','heneiken','beer','loser','penis','vagina','fucker','fuckster','fucking','fuckalot','fuckingman','asshole','@$$','hole','fker','cuntbreaker','butthole','butt','butts','jackass','jack whore','f u c k','f uc k','fu ck','fk','a s s','as s','fuc k','f uck','fkuc','nieps','hunter','holman','thompson','damn','Mr. Hunter','Mr. Holman','Mr. thompson','mr.hunter','mr.holman','mr.thompson','shit','$hit','mother fucker','mother fuckster','mother fuck','mother ass hole','motherfucker','bull','bull shit','pu$$y LickKer','brest','breast','sh1t','fckin','pu$$y','raper','di-ck','tits','tit','midget','short person','cum','sex','sexual','sexy','sexist','petifile','punami','pootey tang','pootey','A-sS-h-ole','f_u_c_k','f_uc_k','f_uck','f_u_c_k','rape','pubic','pubic hair','hard on','hard-on','hard-onn','haard-on','clit','nipples','errect','erect','f-u-c-k','f-uc-k','fu-ck','anal','oral','penetration','arse','analyst','sex lover','same sex lover','chad r. smith','weed','bluws','goats','fking','anus','G-A-Y','gayy','porn','kiddie','se><','SNORTS','FECES','faggat','fagget','nipple','g_ay','ga_y','g_A_Y','_gay','g_ya');
foreach ($badWords as $badWord) {
if (eregi($badWord, $thought_thought)) {
$theword = $badWord;
print("<h1>Bad Word Is: $theword</h1>");
return false;
}
}
return true;
}
if (!checkBadWords($thought_thought)) {
print("<h1>You used the word $theword...Which is bad! Try again!</h1>");
print("<meta http-equiv='refresh' content='3; url=randomthoughts.php'>");
print("</head><body><a href='randomthoughts.php'><font face='arial,helvetica'><b>If it does not come up. Please click here. This will take you back.</b></font></a></body></html>");
exit;
}
$thought_date = date("Y-m-d G:i:s");
$ip = $GLOBALS['REMOTE_ADDR'];
$db = mysql_connect("localhost");
mysql_select_db("olentangy", $db);
$sql = "INSERT INTO thought
VALUES(NULL,'$thought_name','$thought_grade','$thought_thought','$ip','$thought_date')";
mysql_query($sql);
?>

That is the script I used with all the information from mysql still in it! So just modify it. Thought_thought was the box they put stuff in. Hope this helps. If not then its all good.

Chad

eoghain

You will need to split your guest comments into single words and then search on them individually.

Something like this:

<?php
   $words = explode(" ", $guestcomment); //split comment by spaces

   $query = "select count(*) from badwords where upper(word) in (";
   $sep = "";

   for (reset($words); $key = key($words); next($words) {
      // remove puctuation and convert all words to uppercase

  $query = $sep . "'" . $words[$key] . "'";
  $sep = ", ";
   }
?>

That should build you a query that looks something like:

select count(*)
from badwords
where upper(word) in ('THIS', 'IS', 'MY', 'COMMENT')

You'll have to check for the proper function to use in your database for upper casing a field. Also you will have to make sure that the longest comment that someone can post won't overflow your databases query size.

There are other ways to do this, but this one fits with how you are currently thinking. You should probably look at the preg_match() function and see how you could do this using pattern matching.

roly

Thanks guys, your help is very much appreciated. i'll go try it out and let you know how i get on.

thanks again

roly