A
Anonymous
Guest
Here is my algo:
1'st you have create database for your upload section(in ex: for storing uploaded file names,user id's,uploader ip's,timestamp,MD5 CHeck SUm of file)
2'nd lets say when new user joins as member (if all sanitization +validation successfull) automatically create
then insert that path name to database with corresponding USER ID(unique)
And on the root level of that /home/useruploads/ folder you have create .htaccess
In ex:
First line will prevent of execution of any php script(code)
Second line will prevent any download like
It is a bit secure+Antibrute of user files in any case aka Guess Attack with GET request)
In ex:
3'rd When user uploads files check check file extension+basename($ofuploadfile)
(do any sanitization +validation on file name)
If that uploaded successfully move it to user folder(You need to get it from database.table.USER_ID)
Write to database to that file name+Give to that Unique FIle ID+Check MD5 of that file on file system then insert to database it,IP address of uploader etc etc.)
Ok seems thats all with upload.
But how to download that files?
Instead of using file name when downloading that userfiles:
1'st check is downloader user authenticated on your system?(SESSION check)
2'nd make your download URL's like:
In exThis is snippet from my one project which i yet realised)
If it is successfull:
Using that FILEID will prevent you from traversal attacks!
It has really advantages.
This is possible and IMHO it is easy if you know what you are doing.
Sorry for late reply & sorry for Bumping old Thread)
Cheers
1'st you have create database for your upload section(in ex: for storing uploaded file names,user id's,uploader ip's,timestamp,MD5 CHeck SUm of file)
2'nd lets say when new user joins as member (if all sanitization +validation successfull) automatically create
Code:
/home/useruploads/randomUIDPath/randomUIDSaltedGarbageGoesHere/And on the root level of that /home/useruploads/ folder you have create .htaccess
In ex:
Code:
php_flag engine off
deny from allSecond line will prevent any download like
It is a bit secure+Antibrute of user files in any case aka Guess Attack with GET request)In ex:
Code:
http://yoursite.name/andomUIDPath/randomUIDSaltedGarbageGoesHere/somefile.extension3'rd When user uploads files check check file extension+basename($ofuploadfile)
(do any sanitization +validation on file name)
If that uploaded successfully move it to user folder(You need to get it from database.table.USER_ID)
Write to database to that file name+Give to that Unique FIle ID+Check MD5 of that file on file system then insert to database it,IP address of uploader etc etc.)
Ok seems thats all with upload.
But how to download that files?
Instead of using file name when downloading that userfiles:
1'st check is downloader user authenticated on your system?(SESSION check)
2'nd make your download URL's like:
Code:
http://mysite.name/download.php?uid=USERID&fileID=fromDatabaseUNIQUEID&md5checksum=MD5CHECKSUMOFCORRESPONDINGFILEIn ex
This is snippet from my one project which i yet realised)
Code:
if (!isset($_GET['getid']) || empty($_GET['getid']) || !isset($_GET['token']) || empty($_GET['token']))@header("Location: index.php");
if (!ctype_digit($_GET['getid']))@header("Location: index.php");
if (isset($_SESSION['user']) && isset($_GET['getid']) && !empty($_GET['getid']) && isset($_GET['token']) && !empty($_GET['token']))
{
$fileiddown=(int)$_GET['getid'];
$hash=mysql_real_escape_string(htmlspecialchars($_GET['token']));
sanitize($hash,$die=1);
if (strlen($hash) !==32)@header("Location: main.php?flist");
//$fileiddown=(int)$_GET['getid'];//
$getfromdir='./uploads/';
sanitize($fileiddown,$die=1);
$fetchfromgetparamname=@mysql_result(mysql_query("select `upl`.`fname` from `uploads` `upl` where `upl`.`id`='$fileiddown' AND `upl`.`md5sum`='$hash' order by `upl`.`id` desc limit 0,1"),0);
if (!empty($fetchfromgetparamname))
{
$fetchfromgetparamname=str_ireplace('..','',str_ireplace('/','',$fetchfromgetparamname));
@header('Content-Disposition: attachment; filename="'.$fetchfromgetparamname.'"');
echo @file_get_contents($getfromdir.$fetchfromgetparamname);
}
else
{
die('<script>location.replace("?");</script>');
}If it is successfull:
Code:
@header('Content-Disposition: attachment; filename="'.$fetchfromgetparamname.'"');
echo @file_get_contents($getfromdir.$fetchfromgetparamname);Using that FILEID will prevent you from traversal attacks!
It has really advantages.
This is possible and IMHO it is easy if you know what you are doing.
Sorry for late reply & sorry for Bumping old Thread)
Cheers