class.upload.php
class.upload.php is a powerful and mature PHP class to manage uploaded files, and manipulate images in many ways. The script is available under a GPL license.
class.upload.php is a powerful and mature PHP class to manage uploaded files, and manipulate images in many ways. The script is available under a GPL license.
1. a methode to configure which extensions are dangerous to upload. i.e. adding .inc to the default set of dangerous extensions.
2. a methode, which checks, if an uploaded file could be dangerous BEFORE processing it. so i could check the uploaded file and decide, if i want to save the name in a database. if i could do this before processing the file, i save some performance and i do not need to unlink the file, which has after processing an other extension (.txt) as the original uploaded file.
what do you mean about these features?
2. It is not possible with the class as it is written now. But this should be doable in the upcoming compete rewrite of the class. That said, you can remove most of the "dangerous checking" if you wish (see no_script for instance)
1. the apache configuration uses extensions to determine which file should be parsed as i.e. php-file. and your upload-class changes the extension of some dangerous text-files. i would like to configure which extension will be transformed.
2. thank you.