Comments on: More secure PHP image upload class tutorial http://kreoton.net/more-secure-php-image-upload-class-tutorial-8.html Just another WordPress weblog Wed, 20 Aug 2008 02:21:16 +0000 http://wordpress.org/?v=2.2 By: sigam http://kreoton.net/more-secure-php-image-upload-class-tutorial-8.html#comment-1384 sigam Fri, 16 May 2008 20:47:51 +0000 http://kreoton.net/more-secure-php-image-upload-class-tutorial-8.html#comment-1384 To treat user uploaded image files (gif/jpg/png only) I do as below: - get basename. - determine type using exif_imagetype(). - if result is neither IMAGETYPE_GIF nor IMAGETYPE_JPEG nor IMAGETYPE_PNG, discard file. - give my own name to file with correct extension (see above). - it\'s now safe to store within a public folder where browsers can access them as images. I have also read suggestions to chmod the stored files to prevent execution, but I\'m not sure how it improves security as properly named gif/jpg/png files won\'t get executed. Also I believe the files are 644 by default. To treat user uploaded image files (gif/jpg/png only) I do as below:

- get basename.
- determine type using exif_imagetype().
- if result is neither IMAGETYPE_GIF nor IMAGETYPE_JPEG nor IMAGETYPE_PNG, discard file.
- give my own name to file with correct extension (see above).
- it\’s now safe to store within a public folder where browsers can access them as images.

I have also read suggestions to chmod the stored files to prevent execution, but I\’m not sure how it improves security as properly named gif/jpg/png files won\’t get executed. Also I believe the files are 644 by default.

]]> By: Green Bang http://kreoton.net/more-secure-php-image-upload-class-tutorial-8.html#comment-1062 Green Bang Fri, 18 Apr 2008 14:01:06 +0000 http://kreoton.net/more-secure-php-image-upload-class-tutorial-8.html#comment-1062 I have a doubt in the above code. What if the names are same? I mean say we upload a file named \ I have a doubt in the above code.

What if the names are same? I mean say we upload a file named \

]]> By: Code http://kreoton.net/more-secure-php-image-upload-class-tutorial-8.html#comment-1039 Code Wed, 16 Apr 2008 13:01:44 +0000 http://kreoton.net/more-secure-php-image-upload-class-tutorial-8.html#comment-1039 i have a problem with exif in function exif...exif is enable. more example to use exif? thx i have a problem with exif in function exif…exif is enable.
more example to use exif?

thx

]]> By: Karl Schulz http://kreoton.net/more-secure-php-image-upload-class-tutorial-8.html#comment-365 Karl Schulz Fri, 11 Jan 2008 21:50:28 +0000 http://kreoton.net/more-secure-php-image-upload-class-tutorial-8.html#comment-365 $_SERVER['DOCUMENT_ROOT'].'/tnimg/'.$IM->tmp_image['name'] flaw: 'name' is user input example: tmp_image['name'] = '../../../../etc/file' solution: use basename() Suggestions: - finfo_file for file type validation (fileinfo extension) - just getimagesize (reads header) for "all" images types - pay attention to damn magic quotes in file names $_SERVER[’DOCUMENT_ROOT’].’/tnimg/’.$IM->tmp_image[’name’]

flaw: ‘name’ is user input
example: tmp_image[’name’] = ‘../../../../etc/file’
solution: use basename()

Suggestions:
- finfo_file for file type validation (fileinfo extension)
- just getimagesize (reads header) for “all” images types
- pay attention to damn magic quotes in file names

]]> By: Eric http://kreoton.net/more-secure-php-image-upload-class-tutorial-8.html#comment-266 Eric Sat, 22 Dec 2007 20:57:33 +0000 http://kreoton.net/more-secure-php-image-upload-class-tutorial-8.html#comment-266 The PHP Image Upload Script you have available to download appears to have a major bug within it, if possible email me and I will discuss it further. The PHP Image Upload Script you have available to download appears to have a major bug within it, if possible email me and I will discuss it further.

]]>