Hi, if using the header command for attaching a file really prevents the
user from seeing the actual download link, is it really all that important
that the file is read from behind the document root if it is in a very hard
to guess directory?

"Martin Towell" <[EMAIL PROTECTED]> wrote in message
> Have a page that checks the user's authentication
> if they're "invalid" then display an error msg and exit the script
> otherwise, send the header command(s) for attaching a file (can't remember
> the exact syntax right now)
> read the file from somewhere that's not accessable from the web and spit
> out to the browser
> Martin
> -----Original Message-----
> From: Fargo Lee [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, June 13, 2002 6:15 AM
> Subject: [PHP] How do I hide download link ...
> Hi, my customers go through a password authentication to access a link on
> site to download a file. I want to prevent the distribution of the
> of this file on my server by making it hidden. Is there any php
> that could assist in doing this?
> All I can think of so far is storing the original file in a hard to guess
> directory, when a authenticated customer goes to download it, send them to
> script that copys the original file to a temp directory, they download the
> file in the temp directory and then run a cron every so many minutes to
> clear out the files in the temp directory.
> If anyone has any ideas, examples or a way to improve on what I came up
> please respond. Thanks!
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php

PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to