[nycphp-talk] Bullet proofing "rmdir" command
Jeff
jsiegel1 at optonline.net
Tue Aug 12 10:28:57 EDT 2003
Hans,
See my comment to David Sklar. I think this handles the
issue...especially since I'm not using relative dirs.
Jeff
-----Original Message-----
From: talk-bounces at lists.nyphp.org [mailto:talk-bounces at lists.nyphp.org]
On Behalf Of Hans Zaunere
Sent: Tuesday, August 12, 2003 9:19 AM
To: NYPHP Talk
Subject: Re: [nycphp-talk] Bullet proofing "rmdir" command
Jeff wrote:
> I have a specific subdirectory on my site where users can upload
images
> files associated with some text stored in a database. The question
> concerns deleting those uploaded images. Deleting the record is the
easy
> part...even deleting the images and subdirectory is easy. However, my
> concern is what precautions should I take to make sure that the wrong
> subdir (or the whole site!!) doesn't get blown away. In the code below
> I'm using file_exists to delete the images and subdir but is there
> anything else that I should do to bullet proof the procedure?
>
> //Note: $sSubDir is the subdirectory path stored in the corresponding
> MySQL record.
is_dir()/is_file() is good for this, since it'll check the inode type
and ensure a real path (which may, however, be relative to the current
working dir).
for( $i = 0; $i < 5; ++$i ) {
$sImageName = "{$sSubDir}image{$i}.jpg";
if( is_file($sImageName) )
unlink($sImageName);
}
if( is_dir($sSubDir) )
rmdir($sSubDir);
H
_______________________________________________
talk mailing list
talk at lists.nyphp.org
http://lists.nyphp.org/mailman/listinfo/talk
More information about the talk
mailing list