zero_ZX Posted August 11, 2010 Share Posted August 11, 2010 Hi, I have a script where employees of a company can upload invoices to their clients. This is done via a simple upload form. My question is, What would be most secure way to do this? How should i upload files, should i make different directories for each customer, or should i have one huge, where file names will be random or, what would you do? Link to comment https://forums.phpfreaks.com/topic/210476-uploading-files/ Share on other sites More sharing options...
Exabyte Posted August 11, 2010 Share Posted August 11, 2010 protect the upload folder with a htaccess file and only serve the files through a php script. Link to comment https://forums.phpfreaks.com/topic/210476-uploading-files/#findComment-1098252 Share on other sites More sharing options...
zero_ZX Posted August 11, 2010 Author Share Posted August 11, 2010 Htaccess so users cannot access files directly but only if they download from a link or..? Link to comment https://forums.phpfreaks.com/topic/210476-uploading-files/#findComment-1098266 Share on other sites More sharing options...
Exabyte Posted August 11, 2010 Share Posted August 11, 2010 right, have a php file send the invoice file to the user Link to comment https://forums.phpfreaks.com/topic/210476-uploading-files/#findComment-1098288 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.