Et opplastningsskript i PHP

[S_J]

Dette er en server kun for amatørbruk, uansett så er det uaktuelt med debian eller ubuntu.

 

Er ikke sikker på om jeg kjører PHP i CGI, er det ikke flere måter det kan kjøre på?

 

Og jeg kan laste ned en FTP-server gratis, men dette ville vært bedre.

[stian90_2]

hvorfor er ubuntu / debian / GNU/Linux uaktuelt ?

 

Ja, men det er uendelige mange ting som kan være grunn til at scriptet ikke fungerer..

 

 

prøv denne koden først

 

 

<?php

phpinfo();

?>

 

og lim inn det du får, så får vi lese litt om systemet ditt, så vi kan hjelpe deg.

[S_J]

PHP Logo
PHP Version 5.2.5

System 	Windows NT MASKIN 6.0 build 6000
Build Date 	Nov 8 2007 23:18:08
Configure Command 	cscript /nologo configure.js "--enable-snapshot-build" "--with-gd=shared"
Server API 	ISAPI
Virtual Directory Support 	enabled
Configuration File (php.ini) Path 	C:\Windows
Loaded Configuration File 	C:\Windows\php.ini
PHP API 	20041225
PHP Extension 	20060613
Zend Extension 	220060519
Debug Build 	no
Thread Safety 	enabled
Zend Memory Manager 	enabled
IPv6 Support 	enabled
Registered PHP Streams 	php, file, data, http, ftp, compress.zlib
Registered Stream Socket Transports 	tcp, udp
Registered Stream Filters 	convert.iconv.*, string.rot13, string.toupper, string.tolower, string.strip_tags, convert.*, consumed, zlib.*

Zend logo This program makes use of the Zend Scripting Language Engine:
Zend Engine v2.2.0, Copyright (c) 1998-2007 Zend Technologies

PHP Credits
Configuration
PHP Core
Directive	Local Value	Master Value
allow_call_time_pass_reference	On	On
allow_url_fopen	On	On
allow_url_include	Off	Off
always_populate_raw_post_data	Off	Off
arg_separator.input	&	&
arg_separator.output	&	&
asp_tags	Off	Off
auto_append_file	no value	no value
auto_globals_jit	On	On
auto_prepend_file	no value	no value
browscap	no value	no value
default_charset	no value	no value
default_mimetype	text/html	text/html
define_syslog_variables	Off	Off
disable_classes	no value	no value
disable_functions	no value	no value
display_errors	On	On
display_startup_errors	Off	Off
doc_root	no value	no value
docref_ext	no value	no value
docref_root	no value	no value
enable_dl	On	On
error_append_string	no value	no value
error_log	no value	no value
error_prepend_string	no value	no value
error_reporting	6135	6135
expose_php	On	On
extension_dir	./	./
file_uploads	On	On
highlight.bg	#FFFFFF	#FFFFFF
highlight.comment	#FF8000	#FF8000
highlight.default	#0000BB	#0000BB
highlight.html	#000000	#000000
highlight.keyword	#007700	#007700
highlight.string	#DD0000	#DD0000
html_errors	On	On
ignore_repeated_errors	Off	Off
ignore_repeated_source	Off	Off
ignore_user_abort	Off	Off
implicit_flush	Off	Off
include_path	.;C:\php5\pear	.;C:\php5\pear
log_errors	Off	Off
log_errors_max_len	1024	1024
magic_quotes_gpc	On	On
magic_quotes_runtime	Off	Off
magic_quotes_sybase	Off	Off
mail.force_extra_parameters	no value	no value
max_execution_time	30	30
max_input_nesting_level	64	64
max_input_time	60	60
memory_limit	128M	128M
open_basedir	no value	no value
output_buffering	no value	no value
output_handler	no value	no value
post_max_size	8M	8M
precision	12	12
realpath_cache_size	16K	16K
realpath_cache_ttl	120	120
register_argc_argv	On	On
register_globals	Off	Off
register_long_arrays	On	On
report_memleaks	On	On
report_zend_debug	On	On
safe_mode	Off	Off
safe_mode_exec_dir	no value	no value
safe_mode_gid	Off	Off
safe_mode_include_dir	no value	no value
sendmail_from	no value	no value
sendmail_path	no value	no value
serialize_precision	100	100
short_open_tag	On	On
SMTP	localhost	localhost
smtp_port	25	25
sql.safe_mode	Off	Off
track_errors	Off	Off
unserialize_callback_func	no value	no value
upload_max_filesize	2M	2M
upload_tmp_dir	no value	no value
user_dir	no value	no value
variables_order	EGPCS	EGPCS
xmlrpc_error_number	0	0
xmlrpc_errors	Off	Off
y2k_compliance	On	On
zend.ze1_compatibility_mode	Off	Off

bcmath
BCMath support 	enabled

calendar
Calendar support 	enabled

com_dotnet
COM support	enabled
DCOM support	disabled
.Net support	enabled

Directive	Local Value	Master Value
com.allow_dcom	0	0
com.autoregister_casesensitive	1	1
com.autoregister_typelib	0	0
com.autoregister_verbose	0	0
com.code_page	no value	no value
com.typelib_file	no value	no value

ctype
ctype functions 	enabled

date
date/time support 	enabled
"Olson" Timezone Database Version 	2007.9
Timezone Database 	internal
Default timezone 	Europe/Paris

Directive	Local Value	Master Value
date.default_latitude	31.7667	31.7667
date.default_longitude	35.2333	35.2333
date.sunrise_zenith	90.583333	90.583333
date.sunset_zenith	90.583333	90.583333
date.timezone	no value	no value

dom
DOM/XML 	enabled
DOM/XML API Version 	20031129
libxml Version 	2.6.26
HTML Support 	enabled
XPath Support 	enabled
XPointer Support 	enabled
Schema Support 	enabled
RelaxNG Support 	enabled

filter
Input Validation and Filtering 	enabled
Revision 	$Revision: 1.52.2.39 $

Directive	Local Value	Master Value
filter.default	unsafe_raw	unsafe_raw
filter.default_flags	no value	no value

ftp
FTP support 	enabled

hash
hash support 	enabled
Hashing Engines 	md2 md4 md5 sha1 sha256 sha384 sha512 ripemd128 ripemd160 ripemd256 ripemd320 whirlpool tiger128,3 tiger160,3 tiger192,3 tiger128,4 tiger160,4 tiger192,4 snefru gost adler32 crc32 crc32b haval128,3 haval160,3 haval192,3 haval224,3 haval256,3 haval128,4 haval160,4 haval192,4 haval224,4 haval256,4 haval128,5 haval160,5 haval192,5 haval224,5 haval256,5

iconv
iconv support 	enabled
iconv implementation 	"libiconv"
iconv library version 	1.9

Directive	Local Value	Master Value
iconv.input_encoding	ISO-8859-1	ISO-8859-1
iconv.internal_encoding	ISO-8859-1	ISO-8859-1
iconv.output_encoding	ISO-8859-1	ISO-8859-1

ISAPI
Server Variable	Value
CONTENT_LENGTH 	0
PATH_TRANSLATED 	C:\inetpub\wwwroot\a.php
REMOTE_ADDR 	::1
REMOTE_HOST 	::1
REQUEST_METHOD 	GET
SERVER_NAME 	localhost
SERVER_PORT 	80
SERVER_PROTOCOL 	HTTP/1.1
SERVER_SOFTWARE 	Microsoft-IIS/7.0
APPL_MD_PATH 	/LM/W3SVC/1/ROOT
APPL_PHYSICAL_PATH 	C:\inetpub\wwwroot
INSTANCE_ID 	1
INSTANCE_META_PATH 	/LM/W3SVC/1
URL 	/a.php
ALL_HTTP 	HTTP_CONNECTION:keep-alive HTTP_KEEP_ALIVE:300 HTTP_ACCEPT:text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 HTTP_ACCEPT_CHARSET:ISO-8859-1,utf-8;q=0.7,*;q=0.7 HTTP_ACCEPT_ENCODING:gzip,deflate HTTP_ACCEPT_LANGUAGE:nb,no;q=0.9,nn;q=0.8,da;q=0.7,en-gb;q=0.6,en-us;q=0.5,en;q=0.4,sv;q=0.3,de-de;q=0.2,de;q=0.1 HTTP_COOKIE:uploader_username=BRUKER; uploader_userid=1; uploader_password=ecab665e4bf8bc8eb9b1ad0fc80578b7; uploader_session=uploader_session HTTP_HOST:localhost HTTP_USER_AGENT:Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.8.1.11pre) Gecko/20071206 Firefox/2.0.0.11 Navigator/9.0.0.5
HTTPS 	off
SCRIPT_NAME 	/a.php
SERVER_PORT_SECURE 	0

json
json support 	enabled
json version 	1.2.1

libxml
libXML support 	active
libXML Version 	2.6.26
libXML streams 	enabled

odbc
ODBC Support	enabled
Active Persistent Links 	0
Active Links 	0
ODBC library 	Win32

Directive	Local Value	Master Value
odbc.allow_persistent	On	On
odbc.check_persistent	On	On
odbc.default_db	no value	no value
odbc.default_pw	no value	no value
odbc.default_user	no value	no value
odbc.defaultbinmode	return as is	return as is
odbc.defaultlrl	return up to 4096 bytes	return up to 4096 bytes
odbc.max_links	Unlimited	Unlimited
odbc.max_persistent	Unlimited	Unlimited

pcre
PCRE (Perl Compatible Regular Expressions) Support 	enabled
PCRE Library Version 	7.3 2007-08-28

Directive	Local Value	Master Value
pcre.backtrack_limit	100000	100000
pcre.recursion_limit	100000	100000

Reflection
Reflection	enabled
Version 	$Id: php_reflection.c,v 1.164.2.33.2.47 2007/10/28 13:47:14 iliaa Exp $

session
Session Support 	enabled
Registered save handlers 	files user
Registered serializer handlers 	php php_binary wddx

Directive	Local Value	Master Value
session.auto_start	Off	Off
session.bug_compat_42	On	On
session.bug_compat_warn	On	On
session.cache_expire	180	180
session.cache_limiter	nocache	nocache
session.cookie_domain	no value	no value
session.cookie_httponly	Off	Off
session.cookie_lifetime	0	0
session.cookie_path	/	/
session.cookie_secure	Off	Off
session.entropy_file	no value	no value
session.entropy_length	0	0
session.gc_divisor	100	100
session.gc_maxlifetime	1440	1440
session.gc_probability	1	1
session.hash_bits_per_character	4	4
session.hash_function	0	0
session.name	PHPSESSID	PHPSESSID
session.referer_check	no value	no value
session.save_handler	files	files
session.save_path	no value	no value
session.serialize_handler	php	php
session.use_cookies	On	On
session.use_only_cookies	Off	Off
session.use_trans_sid	0	0

SimpleXML
Simplexml support	enabled
Revision 	$Revision: 1.151.2.22.2.35 $
Schema support 	enabled

SPL
SPL support	enabled
Interfaces 	Countable, OuterIterator, RecursiveIterator, SeekableIterator, SplObserver, SplSubject
Classes 	AppendIterator, ArrayIterator, ArrayObject, BadFunctionCallException, BadMethodCallException, CachingIterator, DirectoryIterator, DomainException, EmptyIterator, FilterIterator, InfiniteIterator, InvalidArgumentException, IteratorIterator, LengthException, LimitIterator, LogicException, NoRewindIterator, OutOfBoundsException, OutOfRangeException, OverflowException, ParentIterator, RangeException, RecursiveArrayIterator, RecursiveCachingIterator, RecursiveDirectoryIterator, RecursiveFilterIterator, RecursiveIteratorIterator, RecursiveRegexIterator, RegexIterator, RuntimeException, SimpleXMLIterator, SplFileInfo, SplFileObject, SplObjectStorage, SplTempFileObject, UnderflowException, UnexpectedValueException

standard
Regex Library 	Bundled library enabled
Dynamic Library Support 	enabled
Internal Sendmail Support for Windows 	enabled

Directive	Local Value	Master Value
assert.active	1	1
assert.bail	0	0
assert.callback	no value	no value
assert.quiet_eval	0	0
assert.warning	1	1
auto_detect_line_endings	0	0
default_socket_timeout	60	60
safe_mode_allowed_env_vars	PHP_	PHP_
safe_mode_protected_env_vars	LD_LIBRARY_PATH	LD_LIBRARY_PATH
url_rewriter.tags	a=href,area=href,frame=src,input=src,form=,fieldset=	a=href,area=href,frame=src,input=src,form=,fieldset=
user_agent	no value	no value

tokenizer
Tokenizer Support 	enabled

wddx
WDDX Support	enabled
WDDX Session Serializer 	enabled

xml
XML Support 	active
XML Namespace Support 	active
libxml2 Version 	2.6.26

xmlreader
XMLReader 	enabled

xmlwriter
XMLWriter 	enabled

zlib
ZLib Support 	enabled
Stream Wrapper support 	compress.zlib://
Stream Filter support 	zlib.inflate, zlib.deflate
Compiled Version 	1.2.3
Linked Version 	1.2.3

Directive	Local Value	Master Value
zlib.output_compression	Off	Off
zlib.output_compression_level	-1	-1
zlib.output_handler	no value	no value

Additional Modules
Module Name

Environment
Variable	Value
ALLUSERSPROFILE 	C:\ProgramData
APPDATA 	C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming
CLASSPATH 	.;C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip
CommonProgramFiles 	C:\Program Files\Common Files
COMPUTERNAME 	MASKIN
ComSpec 	C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK 	NO
LOCALAPPDATA 	C:\Windows\ServiceProfiles\NetworkService\AppData\Local
NUMBER_OF_PROCESSORS 	2
OS 	Windows_NT
Path 	C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\PROGRA~1\COMMON~1\ULEADS~1\MPEG;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Apple\QuickTime\QTSystem\
PATHEXT 	.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE 	x86
PROCESSOR_IDENTIFIER 	x86 Family 6 Model 14 Stepping 12, GenuineIntel
PROCESSOR_LEVEL 	6
PROCESSOR_REVISION 	0e0c
ProgramData 	C:\ProgramData
ProgramFiles 	C:\Program Files
PUBLIC 	C:\Users\Public
QTJAVA 	C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip
SystemDrive 	C:
SystemRoot 	C:\Windows
TEMP 	C:\Windows\SERVIC~2\NETWOR~1\AppData\Local\Temp
TMP 	C:\Windows\SERVIC~2\NETWOR~1\AppData\Local\Temp
USERDOMAIN 	GRUPPE
USERNAME 	MASKIN$
USERPROFILE 	C:\Windows\ServiceProfiles\NetworkService
windir 	C:\Windows

PHP Variables
Variable	Value
_REQUEST["uploader_username"]	BRUKER
_REQUEST["uploader_userid"]	1
_REQUEST["uploader_password"]	ecab665e4bf8bc8eb9b1ad0fc80578b7
_REQUEST["uploader_session"]	uploader_session
_COOKIE["uploader_username"]	BRUKER
_COOKIE["uploader_userid"]	1
_COOKIE["uploader_password"]	ecab665e4bf8bc8eb9b1ad0fc80578b7
_COOKIE["uploader_session"]	uploader_session
_SERVER["ALL_HTTP"]	HTTP_CONNECTION:keep-alive HTTP_KEEP_ALIVE:300 HTTP_ACCEPT:text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 HTTP_ACCEPT_CHARSET:ISO-8859-1,utf-8;q=0.7,*;q=0.7 HTTP_ACCEPT_ENCODING:gzip,deflate HTTP_ACCEPT_LANGUAGE:nb,no;q=0.9,nn;q=0.8,da;q=0.7,en-gb;q=0.6,en-us;q=0.5,en;q=0.4,sv;q=0.3,de-de;q=0.2,de;q=0.1 HTTP_COOKIE:uploader_username=BRUKER; uploader_userid=1; uploader_password=ecab665e4bf8bc8eb9b1ad0fc80578b7; uploader_session=uploader_session HTTP_HOST:localhost HTTP_USER_AGENT:Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.8.1.11pre) Gecko/20071206 Firefox/2.0.0.11 Navigator/9.0.0.5
_SERVER["HTTPS"]	off
_SERVER["SCRIPT_NAME"]	/a.php
_SERVER["HTTP_COOKIE"]	uploader_username=BRUKER; uploader_userid=1; uploader_password=ecab665e4bf8bc8eb9b1ad0fc80578b7; uploader_session=uploader_session
_SERVER["AUTH_PASSWORD"]	no value
_SERVER["AUTH_TYPE"]	no value
_SERVER["AUTH_USER"]	no value
_SERVER["CONTENT_LENGTH"]	0
_SERVER["CONTENT_TYPE"]	no value
_SERVER["PATH_TRANSLATED"]	C:\inetpub\wwwroot
_SERVER["QUERY_STRING"]	no value
_SERVER["REMOTE_ADDR"]	::1
_SERVER["REMOTE_HOST"]	::1
_SERVER["REMOTE_USER"]	no value
_SERVER["REQUEST_METHOD"]	GET
_SERVER["SERVER_NAME"]	localhost
_SERVER["SERVER_PORT"]	80
_SERVER["SERVER_PROTOCOL"]	HTTP/1.1
_SERVER["SERVER_SOFTWARE"]	Microsoft-IIS/7.0
_SERVER["APPL_MD_PATH"]	/LM/W3SVC/1/ROOT
_SERVER["APPL_PHYSICAL_PATH"]	C:\inetpub\wwwroot
_SERVER["INSTANCE_ID"]	1
_SERVER["INSTANCE_META_PATH"]	/LM/W3SVC/1
_SERVER["LOGON_USER"]	no value
_SERVER["REQUEST_URI"]	/a.php
_SERVER["URL"]	/a.php
_SERVER["SCRIPT_FILENAME"]	C:\inetpub\wwwroot\a.php
_SERVER["ORIG_PATH_INFO"]	/a.php
_SERVER["PATH_INFO"]	no value
_SERVER["ORIG_PATH_TRANSLATED"]	C:\inetpub\wwwroot\a.php
_SERVER["DOCUMENT_ROOT"]	C:\inetpub\wwwroot
_SERVER["PHP_SELF"]	/a.php
_SERVER["HTTP_CONNECTION"]	keep-alive
_SERVER["HTTP_KEEP_ALIVE"]	300
_SERVER["HTTP_ACCEPT"]	text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
_SERVER["HTTP_ACCEPT_CHARSET"]	ISO-8859-1,utf-8;q=0.7,*;q=0.7
_SERVER["HTTP_ACCEPT_ENCODING"]	gzip,deflate
_SERVER["HTTP_ACCEPT_LANGUAGE"]	nb,no;q=0.9,nn;q=0.8,da;q=0.7,en-gb;q=0.6,en-us;q=0.5,en;q=0.4,sv;q=0.3,de-de;q=0.2,de;q=0.1
_SERVER["HTTP_HOST"]	localhost
_SERVER["HTTP_USER_AGENT"]	Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.8.1.11pre) Gecko/20071206 Firefox/2.0.0.11 Navigator/9.0.0.5
_SERVER["REQUEST_TIME"]	1202247959
_SERVER["argv"]	

Array
(
)

_SERVER["argc"]	0
_ENV["ALLUSERSPROFILE"]	C:\ProgramData
_ENV["APPDATA"]	C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming
_ENV["CLASSPATH"]	.;C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip
_ENV["CommonProgramFiles"]	C:\Program Files\Common Files
_ENV["COMPUTERNAME"]	MASKIN
_ENV["ComSpec"]	C:\Windows\system32\cmd.exe
_ENV["FP_NO_HOST_CHECK"]	NO
_ENV["LOCALAPPDATA"]	C:\Windows\ServiceProfiles\NetworkService\AppData\Local
_ENV["NUMBER_OF_PROCESSORS"]	2
_ENV["OS"]	Windows_NT
_ENV["Path"]	C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\PROGRA~1\COMMON~1\ULEADS~1\MPEG;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Apple\QuickTime\QTSystem\
_ENV["PATHEXT"]	.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
_ENV["PROCESSOR_ARCHITECTURE"]	x86
_ENV["PROCESSOR_IDENTIFIER"]	x86 Family 6 Model 14 Stepping 12, GenuineIntel
_ENV["PROCESSOR_LEVEL"]	6
_ENV["PROCESSOR_REVISION"]	0e0c
_ENV["ProgramData"]	C:\ProgramData
_ENV["ProgramFiles"]	C:\Program Files
_ENV["PUBLIC"]	C:\Users\Public
_ENV["QTJAVA"]	C:\Program Files\Java\jre1.6.0\lib\ext\QTJava.zip
_ENV["SystemDrive"]	C:
_ENV["SystemRoot"]	C:\Windows
_ENV["TEMP"]	C:\Windows\SERVIC~2\NETWOR~1\AppData\Local\Temp
_ENV["TMP"]	C:\Windows\SERVIC~2\NETWOR~1\AppData\Local\Temp
_ENV["USERDOMAIN"]	GRUPPE
_ENV["USERNAME"]	MASKIN$
_ENV["USERPROFILE"]	C:\Windows\ServiceProfiles\NetworkService
_ENV["windir"]	C:\Windows

PHP License

This program is free software; you can redistribute it and/or modify it under the terms of the PHP License as published by the PHP Group and included in the distribution in the file: LICENSE

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

If you did not receive a copy of the PHP license, or have any questions about PHP licensing, please contact [email protected].

Dette er det hele, byttet bare ut maskinnavn, brukernavn ol.

Endret 6. februar 2008 av Jarmo

[S_J]

Kan det ha noe med funksjonsdelegering å gjøre?

[S_J]

<bump>

[Sjark]

<?php
$password = 'passord'; //jada, vi kan vel md5 kryptere det om vi vil.. gidder bare ikke nå
$save = 'upload';	 //plassen du vil lagre filene
if(!isset($_POST['submit']))
{
?>
<form action="" method="post" enctype="multipart/form-data">
<b>Passord</b><br>
<input type="password" name="pass"><br>
<b>Fil</b><br>
<input type="file" name="file"><br>
<input type="submit" name="submit" value="Last opp fil">
</form>
<?php
}
else
{
if(!is_dir($save)) {
	mkdir($save);
}
chmod($save, 0777);
$file = $_FILES['file']['tmp_name'];
$filename = $_FILES['file']['name'];
$pass = htmlspecialchars($_POST['pass']);
if($pass == $password)
{
/*laste opp filen */
if(move_uploaded_file($file, "$save/$filename"))
	echo 'Filen '.$filename.' ble lastet opp';
else
	echo 'noe gikk galt';

}
else
	echo 'Feil passord';


}
?>

 

Prøv den

[S_J]

Nei, får frem feilmeldingen (noe gikk galt). Skriptet kan lage mappen, men ikke laste opp filer.

[Sjark]

Nei, får frem feilmeldingen (noe gikk galt). Skriptet kan lage mappen, men ikke laste opp filer.

Det var rart, har ikke testet dt selv, men burde fungere, skal teste dt når jeg kommer hjem, evt skrive nytt til dg

[S_J]

ingen som vet noe om funksjonsdelegering i IIS her da? ser ut som om det kanskje kan være noe der

[S_J]

Løste det etter litt endring på et ASP-skript.

 

Må si at ASP(.net) ser ut til å være bedre enn PHP (sier ikke dette kun pga. at jeg klarte det kun i ASP da).

[Lsass]

Scriptet funket utmerket.. men, veldig usikkert ja testet bare for å teste ;D

 

lagde en mappe, ga den chmod 777, anga denne mappen i scriptet.

ga også chmod 777 til selve fila jeg lastet opp, php scriptet.

endret passord.

 

 

så funket det fett...

 

planlegger å bygge litt mere sikkerhet, og checkups rundt dette scriptet.

- maxstørrelse

- og filtype, bilder only ;D

[Lsass]

Angående det, kan jeg bare legge inn noe som dette;

 if ((($_FILES["file"]["type"] == "image/gif")
 || ($_FILES["file"]["type"] == "image/jpeg")
 || ($_FILES["file"]["type"] == "image/pjpeg")
 || ($_FILES["file"]["type"] == "image/png"))
 && ($_FILES["file"]["size"] < 2000000))
 {

?

 

Forat bildeformatet må enten være gif,jpeg,pjpeg eller png? og at de skal være mindre enn 2mb?

 

sånn at scriptet blir sånn;

<?php
$password = 'ok'; //jada, vi kan vel md5 kryptere det om vi vil.. gidder bare ikke nå
$save = 'pics/fupload';	 //plassen du vil lagre filene
if(!isset($_POST['submit']))
{
if ((($_FILES["file"]["type"] == "image/gif")
 || ($_FILES["file"]["type"] == "image/jpeg")
 || ($_FILES["file"]["type"] == "image/pjpeg")
 || ($_FILES["file"]["type"] == "image/png"))
 && ($_FILES["file"]["size"] < 2000000))
 {
?>
<form action="" method="post" enctype="multipart/form-data">
<b>Passord</b><br>
<input type="password" name="pass"><br>
<b>Fil</b><br>
<input type="file" name="file"><br>
<input type="submit" name="submit" value="Last opp fil">
</form>
<?php
}
else
{
$file = $_FILES['file']['tmp_name'];
$filename = $_FILES['file']['name'];
$pass = htmlspecialchars($_POST['pass']);
if($pass == $password)
{
/*laste opp filen */
if(move_uploaded_file($file, "$save/$filename"))
	echo 'Filen '.$filename.' ble lastet opp';
else
	echo 'noe gikk galt';

}
else
	echo 'Feil passord';


}
?>

?

 

testet, men fikk ikke engang opp siden engang, ble blaaank :o regner med at noe er feil ;D

 

noen som ser den?

[stian90_2]

Kan du forklare meg hvorfor du puttet koden akuratt der ? for der skal nemlig upload formen være, og ikke selve opplastningen..

 

rett:

 

<?php
$password = 'ok'; //jada, vi kan vel md5 kryptere det om vi vil.. gidder bare ikke nå
$save = 'pics/fupload';	 //plassen du vil lagre filene
if(!isset($_POST['submit']))
{
?>
<form action="" method="post" enctype="multipart/form-data">
<b>Passord</b><br>
<input type="password" name="pass"><br>
<b>Fil</b><br>
<input type="file" name="file"><br>
<input type="submit" name="submit" value="Last opp fil">
</form>
<?php
}
else
{
$file = $_FILES['file']['tmp_name'];
$filename = $_FILES['file']['name'];
$pass = htmlspecialchars($_POST['pass']);
if($pass == $password)
{
if ((($_FILES["file"]["type"] == "image/gif")
 || ($_FILES["file"]["type"] == "image/jpeg")
 || ($_FILES["file"]["type"] == "image/pjpeg")
 || ($_FILES["file"]["type"] == "image/png"))
 && ($_FILES["file"]["size"] < 2000000))
 {
/*laste opp filen */
if(move_uploaded_file($file, "$save/$filename"))
	echo 'Filen '.$filename.' ble lastet opp';
else
	echo 'noe gikk galt';
}
else
echo 'Feil filtype';
}
else
	echo 'Feil passord';
}
?>

[Lsass]

okey, takk ;D nei, min feil, trøtt ;p bare pastet inn :o

 

 

<?php
$password = 'secret'; //jada, vi kan vel md5 kryptere det om vi vil.. gidder bare ikke nå
$save = 'pics/secret';	 //plassen du vil lagre filene
if(!isset($_POST['submit']))
{
?>
<form action="" method="post" enctype="multipart/form-data">
<b>Passord</b><br>
<input type="password" name="pass"><br>
<b>Fil</b><br>
<input type="file" name="file"><br>
<input type="submit" name="submit" value="Last opp fil">
</form>
<?php
}
else
{
$file = $_FILES['file']['tmp_name'];
$filename = $_FILES['file']['name'];
$pass = htmlspecialchars($_POST['pass']);
if($pass == $password)
{
if ((($_FILES["file"]["type"] == "image/gif")
 || ($_FILES["file"]["type"] == "image/jpeg")
 || ($_FILES["file"]["type"] == "image/pjpeg")
 || ($_FILES["file"]["type"] == "image/png"))
 && ($_FILES["file"]["size"] < 2000000))
 {
/*laste opp filen */
if(move_uploaded_file($file, "$save/$filename"))
	echo 'Filen '.$filename.' ble lastet opp til '.$save/$filname.'';
else
	echo 'Det var noe som gikk galt, prøv igjen.';
}
else
echo 'Feil filtype, du kan bare laste opp bilder under 2mb med format (gif,jpeg,pjpeg eller png)';
}
else
	echo 'Passordet du skrev inn er feil. <br>om du gjerne vil laste opp noe, og kjenner Olav, så ta kontakt for å få passord!';
}
?>

 

Noen få spørsmål:

1.blir dette: "&& ($_FILES["file"]["size"] < 2000000))" 2MB?

2. endret echo beskjeden til; " echo 'Filen '.$filename.' ble lastet opp til '.$save/$filname.'';" for å prøve å få vist hvor den ble lastet opp, men det jeg egentlig vil er å gi en direktelink til filen som ble lastet opp.. må jeg bruke variabler? eller?

3. Vanskelig og kryptere dette, så det blir sikrere?

Endret 7. mars 2008 av Lsass

[j--]

Prøv å skifte ut:

	else
	echo 'noe gikk galt';
}

med

	else
	echo 'noe gikk galt<br>' . "\n";
	if(!is_dir($save)){echo $save . ' er ikke en mappe<br>' . "\n";}else{echo $save . ' er en mappe<br>' . "\n";}
	if(!is_writable($save)){echo $save . ' er ikke skrivbar<br>' . "\n";}else{echo $save . ' er skrivbar<br>' . "\n";}
	echo 'rettigheter på ' . $save . ': ' . fileperms($save) . '<br>' . "\n";
}

 

Aner ikke hvor mye av dette som fungerer med windows, men du kan jo prøve

[S_J]

noe gikk galt

b er en mappe

b er skrivbar

rettigheter på b: 16895

[Lsass]

nice ;D

 

funka fett....

 

 

har nå denne koden:

 

<?php
$password = 'orienterare'; //jada, vi kan vel md5 kryptere det om vi vil.. gidder bare ikke nå
$save = 'pics/fupload';	 //plassen du vil lagre filene
if(!isset($_POST['submit']))
{
?>
<form action="" method="post" enctype="multipart/form-data">
<b>Passord</b><br>
<input type="password" name="pass"><br>
<b>Fil</b><br>
<input type="file" name="file"><br>
<input type="submit" name="submit" value="Last opp fil">
</form>
<?php
}
else
{
$file = $_FILES['file']['tmp_name'];
$filename = $_FILES['file']['name'];
$pass = htmlspecialchars($_POST['pass']);
if($pass == $password)
{
if ((($_FILES["file"]["type"] == "image/gif")
 || ($_FILES["file"]["type"] == "image/jpeg")
 || ($_FILES["file"]["type"] == "image/pjpeg")
 || ($_FILES["file"]["type"] == "image/png"))
 && ($_FILES["file"]["size"] < 2000000))
 {
/*laste opp filen */
if(move_uploaded_file($file, "$save/$filename"))
	echo 'Filen '.$filename.' ble lastet opp til '.$save/$filname.'';
else
	echo 'Prøv igjen, noe gikk galt.<br>' . "\n";
	if(!is_dir($save)){echo $save . ' er ikke en mappe<br>' . "\n";}else{echo $save . ' som er en mappe:<br> <a href="http://oestbye.net/upp.php">Trykk her for å se bildene som har blitt lastet opp, og for å se bildet ditt. »</a> <br><br>Direkte-link til dette bildet er:<br> <a href="http://oestbye.net/pics/fupload/'.$filename.'">http://oestbye.net/pics/fupload/'.$filename.'</a> <br>' . "\n";}
	if(!is_writable($save)){echo $save . ' <br>er ikke skrivbar<br><br>' . "\n";}else{echo $save . ' er skrivbar<br>' . "\n";}
	echo 'rettigheter på ' . $save . ': ' . fileperms($save) . '<br>' . "\n";
}
else
echo 'Feil filtype, du kan bare laste opp bilder under 2mb med format (gif,jpeg,pjpeg eller png)';
}
else
	echo 'Passordet du skrev inn er feil. <br>om du gjerne vil laste opp noe, og kjenner Olav, så ta kontakt for å få passord!';
}
?>

 

FUNKER FETT ;D

 

fiksa directlink osv...

 

 

trenger fortsatt mere sikkerhet!

 

 

hjeeelp? kryptering!

[S_J]

Passord er ikke noe problem, har passord på serveren min.

 

Får feil filtype uansett hva jeg prøver å laste opp.

[stian90_2]

Se om det er forskjell på store og små bokstaver i JPEG og jpeg, og jpg og JPG

[Lsass]

Det har jo ingenting å si...

 

Om han kopierer inn scriptet jeg la ut sist, skal det funke uten problemer..

 

Bare å lage en mappe, og idenne chmod 777 i din ftp klient.

 

deretter endre litt i scriptet:

 

$save = 'pics/fupload'; <--endre pics/fupload til mappen du lagde i sted og ga chmod 777.

 

$password = 'orienterare'; <-- endre "orienterare" til det passordet du ønsker.

 

 

Deretter skal alt funke fett : )