How do I make the data loaded by PHP safe during transfer?

Question

How do I make the data loaded by PHP safe during transfer?

I am allowing authorized users to upload image files using my PHP application. Supposing I have created the necessary protection to make sure the file itself is valid, is there any way to intercept the http file in any way? If so, how can I secure the file transfer? Will HTTPS go?

In addition, the web server running the application can only be accessed by authenticated users. Does this mean that the HTTP data stream is also secure? It seems to me that this is so.

+1

security http file php https

lynn May 22 '09 at 13:06

a source to share

4 answers

If there is Main in The Middle , it can sniff the contents of the transferred file. You must use a secure connection to prevent this. So HTTPS will be the answer.

+1

Maciej Łebkowski May 22 '09 at 13:24

a source to share

Yes, use HTTPS if you want to make sure the data cannot be intercepted.

+1

Rik Heywood May 22 '09 at 13:24

a source to share

also check if the uploaded file is actually an image and not a script.

0

stefs May 22 '09 at 13:31

a source to share

Gumbo · Accepted Answer · 2009-05-22T13:23:57+0000

If you are using HTTPS, all communication once the connection is established will be encrypted over SSL. This way, the download of files will be encrypted as well

How do I make the data loaded by PHP safe during transfer?

More articles: