安全的PHP文件上传脚本 [英] Secure PHP File Upload Script
问题描述
我想问这个问题两次,但这是我第一次接近这个。我计划允许用户上传和下载他们的文件(.pdf,.doc,.exl,.ppt,.png,.jpg,.gif)。
这些提示是否足够:
http://blogs.sans.org/appsecstreetfighter/2009/12/28/8-basic-规则到实施安全文件上传/
另外,有没有我可以利用的脚本,我是新的PHP 。
延迟响应,但我认为你的脚本应该基于这个:
http://blog.creatdesigns.com/2009/01/安全文件上传在php-web-applications /
它涵盖了安全的所有方面,并解释了所有有效的点。我希望这有助于。
编辑:上面的链接已经死了,这里是该文章的缓存版本。
I have asked this question twice i think, but this is the first time i have gotten close to this. I am planning on allowing users to upload and download their files (.pdf, .doc, .exl, .ppt, .png, .jpg, .gif).
Will these tips be suffice:
http://blogs.sans.org/appsecstreetfighter/2009/12/28/8-basic-rules-to-implement-secure-file-uploads/
Also, is there a script I can utilize, i am new to php.
a late response, but i think your script should be based on this: http://blog.insicdesigns.com/2009/01/secure-file-upload-in-php-web-applications/
it covers all aspects of security and explains all valid points. I hope this helps.
EDIT: The above link is dead, here is a cached version of that article.
这篇关于安全的PHP文件上传脚本的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!