files access access deneid

Question

madmax9922 0 Newbie Poster

9 Years Ago

Hi have this code to manage my main page.
Everything works fine on my local server at home,i'm using easyphp.
But on my webhosting server i got this error:

Warning: scandir(D:\Hosting\12067690\html/,D:\Hosting\12067690\html/) [function.scandir]: Access is denied. (code: 5) in D:\Hosting\12067690\html\index_menu.php on line 65

Any ideas?
thank you in advance.

<?php
          $dir = $_SERVER['DOCUMENT_ROOT'].stripslashes(dirname($_SERVER['PHP_SELF'])).'/';

            if(!empty($_GET['p'])){

                $pages = scandir($dir, 0);
                unset($pages[0], $pages[1]);

                $p = $_GET['p'];

                if (in_array($p.'.htm', $pages)){
                    include($dir.'/'.$p.'.htm');
                }else{
                echo 'Sorry, page introuvable';                     
                }
            }else{
                include($dir.'/enter_index01.htm');
            }
        ?>

file-access hosting microsoft-access php

Edited 9 Years Ago by madmax9922

4 Contributors
7 Replies
2K Views
3 Weeks Discussion Span
Latest Post 9 Years Ago Latest Post by broj1

All 7 Replies

hericles 289 Master Poster

9 Years Ago

Sounds like a permissions issue.You don't have the rights to access the file. You can check this with the is_readable('/location/') function.

broj1 356 Humble servant

9 Years Ago

You could make it simpler by using file_exists instead of using all the scandir stuff:

$p = $_GET['p']; // WARNING: sanitize this before using it in production app

if (file_exists($dir.'/'.$p.'.htm')){
    include($dir.'/'.$p.'.htm');
} else {
    echo 'Sorry, page introuvable';
}

And sanitize user input (such as limiting it to certain path, whitelisting etc).

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

madmax9922 0 Newbie Poster · Answer 1 · 2015-03-14T22:58:19+00:00

Thank you. i would like to know how i'm suppose to do that proprely in my code. how i can give access to my folder to read those files. localy i don't have to do that.
Thanks.

madmax9922 0 Newbie Poster · Answer 2 · 2015-04-08T23:41:55+00:00

madmax9922 0 Newbie Poster

9 Years Ago

thanks! how i can sanitize user input?
please.

jj.dcruz 0 Junior Poster · Answer 3 · 2015-04-09T01:32:07+00:00

sanitizing your code:

$p = $_GET['p'];
$new_p = filter_var($p, FILTER_SANITIZE_STRING);

for example

this is input of the user that has html codes
$p = <h1>Hello</h1>

this is the one sanitized it will remove all unwanted characters
$new_p = Hello

madmax9922 0 Newbie Poster · Answer 4 · 2015-04-09T04:54:56+00:00

madmax9922 0 Newbie Poster

9 Years Ago

thanks a lot! Everthing works fine now!

broj1 356 Humble servant Featured Poster · Answer 5 · 2015-04-09T05:59:20+00:00

broj1 356 Humble servant

9 Years Ago

Cool. Please mark the tread solved. Happy coding :-)

files access access deneid

Recommended Answers Collapse Answers

All 7 Replies

Recommended Answers