Reply to Re: How To Block Fake image Files

class.upload.php

class.upload.php is a powerful and mature PHP class to manage uploaded files, and manipulate images in many ways. The script is available under a GPL license.

more info about the class

Reply to Re: How To Block Fake image Files

Re: How To Block Fake image Files new!

# Reply

by colin, 14 years, 5 months ago

Mime doesn't work on your system

- Checking MIME type with Fileinfo PECL extension
Fileinfo PECL extension not available
- Checking MIME type with UNIX file() command
UNIX file() command not availabled
- Checking MIME type with mime.magic file (mime_content_type())
MIME type detected as by mime_content_type()
- Checking MIME type with getimagesize()
getimagesize() failed
- MIME type detected as image/jpeg by browser

So the class has to rely on what the browser sends as MIME type: image/jpeg, which cannot be trusted.

You need to have either Fileinfo, the unix file command, or mime.magic method working on your server to be able to determine the MIME type securely.Reply

Name *
Email
Title *
Text *
Enter the code displayed on the image: Click on the image to generate another one if it is hard to read it. The case is important

verot.net

quality web development

Overview

Download it!

Docs and support

Help out!

class.upload.php

Reply to Re: How To Block Fake image Files

Your reply