943,879 Members | Top Members by Rank

Web Development > PHP > php file upload script help
Ad:
  • PHP Discussion Thread
  • Unsolved
  • Views: 698
  • PHP RSS
Permalink
Jan 15th, 2009
0

php file upload script help

Expand Post »
Hi I make a php file upload script and uploaded in my ftp server. And works fine when I changed the permission of the folder into full ( ie world can write, execute and read ) . The images are saved in that folder......
How much it is secured ?? Is any one can view this folder or any Hack ???

Please Help me ...
Similar Threads
Reputation Points: 10
Solved Threads: 0
Posting Whiz in Training
rajeesh_rsn is offline Offline
265 posts
since Sep 2008
Permalink
Jan 15th, 2009
0

Re: php file upload script help

You should be fine as long as you only allow certain file types to be uploaded. For instance, you don't want people to be able to upload files that may contain malicious code to your website. You will want to check the file type of what is being uploaded to ensure that it is an image. If you've already done that, you shouldn't have any problems.
Reputation Points: 21
Solved Threads: 11
Junior Poster
MVied is offline Offline
111 posts
since Aug 2008
Permalink
Jan 15th, 2009
0

Re: php file upload script help

let's say you have uploaded "abc.JPEG" on that directory... if someone knows the directory name and the "abc.JPEG", they could just directly type that on the URL and they get to access "abc.JPEG".
Reputation Points: 7
Solved Threads: 1
Junior Poster in Training
it2051229 is offline Offline
82 posts
since May 2007
Permalink
Jan 16th, 2009
0

Re: php file upload script help

Well if that were the case, you could write a .htaccess file that only allows requests from localhost to access the files in the directory.
Reputation Points: 21
Solved Threads: 11
Junior Poster
MVied is offline Offline
111 posts
since Aug 2008

This thread is more than three months old

No one has posted to this discussion for at least three months. Please let old threads die and do not reply to them unless you feel you have something new and valuable to contribute that absolutely must be added to make the discussion complete. Otherwise, please start a new thread in this forum instead.
Message:
Previous Thread in PHP Forum Timeline: Gather HTTP headers
Next Thread in PHP Forum Timeline: Excellent Image Rating Script:Need Help





About Us | Contact Us | Advertise | Acceptable Use Policy
Forum Index | Build Custom RSS Feed


Follow us on Twitter


© 2011 DaniWeb® LLC