Re: secure file uploads and downloads
- From: "Steve" <no.one@xxxxxxxxxxx>
- Date: Tue, 18 Dec 2007 08:10:49 -0600
"Jerry Stuckle" <jstucklex@xxxxxxxxxxxxx> wrote in message
news:QbGdnZMmiIWPpvranZ2dnUVZ_uPinZ2d@xxxxxxxxxxxxxx
Steve wrote:
"Jerry Stuckle" <jstucklex@xxxxxxxxxxxxx> wrote in message
news:Zd-dnVuLcOXoavvanZ2dnUVZ_u7inZ2d@xxxxxxxxxxxxxx
Steve wrote:
"Jerry Stuckle" <jstucklex@xxxxxxxxxxxxx> wrote in messageBackpedaling again, troll. Let's see you hijack ANY PHP session of
news:ReOdnUOsIs3vaPvanZ2dnUVZ_ubinZ2d@xxxxxxxxxxxxxx
Steve wrote:give me such a system and i'll be more than happy to.
"Jerry Stuckle" <jstucklex@xxxxxxxxxxxxx> wrote in messageAh, let's see how you do it, troll.
news:A8idnRGGZqmzc_vanZ2dnUVZ_rCtnZ2d@xxxxxxxxxxxxxx
Dave wrote:and it works like a charm...right up to the point when i hijack your
Hello,Dave,
Not sure if this is php related or not, but i'd like to have
certain users who have the ability to upload files to my site, and
others to download files.
I thought about .htaccess and basic authentication, but then i
thought that's not very secure i was wondering if there was a php
solution, something that splits user uploads and downloads in to
two separate sections? I checked out some scripts on phpbuilder.com
but they don't seem to work with php5 which is what i'm using.
Thanks.
Dave.
Sure, it's rather easy to do. You obviously have some sign-on
capability on your site. Have two flags stored somewhere (i.e.
database or where ever else you keep your user info). One flag says
allow uploads, the other says allow downloads.
When they log in, store their login information (i.e. user id) in
the $_SESSION variable. You could also store the flags in
$_SESSION; it's up to you. I might do that because they're so
small.
session.
mine. Say on SourceForge? Or any other major site?
in case you missed it, i said 'ok'. give me a site that implements your
suggestion and i'll be happy to. backpeddling, you illiterate twit, would
involve me saying, no, i won't do it. you should know that though since
you do it so often yourself.
Not at all. You said you could hijack my session. If you can hijack that
session, you can hijack ANY session. Let's see you do it, troll.
you moron. put up or shut up. the point of hijacking YOUR sessions is the
point because YOU think you're invincible and a programmer that knows
everything...no exageration. give me one of YOUR sites, programmed as you've
JUST explained to the op, and i'll turn it into spaghetti.
as for backpeddling, you mindless nub, let me quote YOUR challenge:
<quote>
Let's see you hijack ANY PHP session of mine.
</quote>
i said ok...and now you want me to hijack SOMEONE ELSE'S. that's
backpeddling. all i said to your challenge was, OK. so, ok, i accept your
original challenge. give me a site of YOURs. your challenge means that there
are no legal ramifications for hacking it...you're asking me to. if i pick
anyone elses, there would be consequences. had you a brain, you'd think of
that.
.
- References:
- secure file uploads and downloads
- From: Dave
- Re: secure file uploads and downloads
- From: Jerry Stuckle
- Re: secure file uploads and downloads
- From: Steve
- Re: secure file uploads and downloads
- From: Jerry Stuckle
- Re: secure file uploads and downloads
- From: Steve
- Re: secure file uploads and downloads
- From: Jerry Stuckle
- Re: secure file uploads and downloads
- From: Steve
- Re: secure file uploads and downloads
- From: Jerry Stuckle
- secure file uploads and downloads
- Prev by Date: Re: printf / sprintf function usage
- Next by Date: Re: unavailable email question
- Previous by thread: Re: secure file uploads and downloads
- Next by thread: Re: secure file uploads and downloads
- Index(es):
Relevant Pages
|
|
