User upload file above web root with php

Posted by Chris on Stack Overflow See other posts from Stack Overflow or by Chris
Published on 2010-03-17T22:01:18Z Indexed on 2010/03/17 22:21 UTC
Read the original article Hit count: 294

Filed under:

php

|

fileupload

|

lamp

|

music

|

best-practices

I have a website where local bands can have a profile page, I'm implementing an upload system so that they can add songs to their profile.

I want to make sure that clever visitors to my website cannot download their songs.

I was thinking about uploading them to above the folder for my domain so that they cannot be accessed directly. Is this a good idea and/or possible? If not, what do you suggest I do to try and avoid users downloading songs. I'm already using a flash player to try and prevent downloads.

© Stack Overflow or respective owner

Related posts about php

Magento, NGINX, PHP-FPM, APC, MEMCACHED, 16gb Ram CentOS, Spiking PHP-FPM to 100% CPU

as seen on Server Fault - Search for 'Server Fault'
I have been trying to resolve my issue of spiking cpu caused by php-fpm processes. I've reduced the php-fpm config settings to: pm = ondemand pm.max_children = 12 pm.start_servers = 2 pm.min_spare_servers = 2 pm.max_spare_servers = 10 pm.max_requests = 500 php_admin_value[memory_limit] = 128M Problem… >>> More
PHP Pear Installation on CentOS

as seen on Server Fault - Search for 'Server Fault'
[root@ip ~]# yum install php-pear* Reducing CentOS-5 Testing to included packages only Finished Setting up Install Process Package 1:php-pear-1.8.1-2.el5.centos.noarch already installed and latest versio … >>> More
Apache configurations for php "AddType text/html php" or "AddType application/x-httpd-php php .php"

as seen on Server Fault - Search for 'Server Fault'
I am taking over an application server and discover that it contain the following settings: AddType text/html php Although it works, but my understanding is that it should set as following: AddType application/x-httpd-php php .php What are the key differences between the two settings?… >>> More
mod_rewrite settings causes server to throw HTTP 500 errors instead of 404

as seen on Server Fault - Search for 'Server Fault'
Hello. I have a server with VBulletin forum (working under Apache 2.2, CentOS). The default settings for it in .htaccess are as follows: RewriteEngine on RewriteCond %{HTTP_HOST} ^gsmforum\.ru RewriteRule (.*) http://www.gsmforum.ru/$1 [R=301,L] # If you are having problems or are using VirtualDocumentRoot… >>> More
Problems installing Memcache (PECL extension)

as seen on Server Fault - Search for 'Server Fault'
I have installed memcached fine, and now I will need to install PECL extension memcache. Im running RedHat x86_64 es5. The installation gives me this: downloading memcache-2.2.6.tgz ... Starting to download memcache-2.2.6.tgz (35,957 bytes) ..........done: 35,957 bytes 11 source files, building running:… >>> More

Related posts about fileupload

fileupload control to show only excel files ?

as seen on Stack Overflow - Search for 'Stack Overflow'
i have a fileupload control in a web page writen in asp & c#.net . on clicking the browse button it shows all the files in the upload dialog,i want to show only files of excel to be shown .how can it be done? else do we have any other tools to show only excel files on clicking browse buttons? >>> More
Apache Commons FileUpload Does not behave like expected

as seen on Stack Overflow - Search for 'Stack Overflow'
I just want to assure you guys that before I post this, I have read couple of similar post but none solved my problem. So here it is. I use Ajax taglib for my form since it wont refresh my screen <%@ taglib uri="WEB-INF/taglib.tld" prefix="a" %> <a:AjaxUpload action="UploadServlet">… >>> More
Getting extension of the file in FileUpload Control

as seen on Stack Overflow - Search for 'Stack Overflow'
Hi At the moment i get file extension of the file like : string fileExt = System.IO.Path.GetExtension(filUpload.FileName); But if the user change the file extension of the file ( for example user could rename "test.txt" to "text.jpg" ), I can't get the real extension . What's the solution ? >>> More
rich:fileupload inside rich:modalpanel doesnt send uploadcomplete event

as seen on Stack Overflow - Search for 'Stack Overflow'
I'm trying to use the rich:fileupload from inside a rich:modalpanel component. The problem is that, when inside modalpanel, fileupload doesn't doesnt start the fileuploadeventlistener method. The same fileupload component works fine outside of modalpanel. (Although it doesn't rerender the components… >>> More
GoogleAppEngine : possible to disable FileUpload?

as seen on Stack Overflow - Search for 'Stack Overflow'
Hi, When I deploy my application to GoogleAppEngine I keep getting the following error Uncaught exception from servlet java.lang.NoClassDefFoundError: java.io.FileOutputStream is a restricted class. Please see the Google App Engine developer's guide for more details. at com.google.apphosting… >>> More