Posted by Dikkie Dik on 12/03/06 15:57

First, use a session.
For each file you make accessible to the client, create a hash and store
the (hash, filename) pair in the session. Use the hashes for
communication with the client.
This has two advantages:
1. Your filenames will not be sent to the client and ara therefore not
visible.
2. Just trying to submit random other values will not work, as there is
no hash defined for them. So they can not be translated to a file.

Best regards

Brian Huether wrote:
> I have a function that serves audio as a stream. I don't want people to see
> the filename. But I am using urls of this sort:
>
> audio.php?op=serveaudio&file=www.somefile.mp3
>
> 1) How can I encrypt www.somefile.mp3 and then reconstruct it?
>
> 2) How should I really be doing this? Should I be putting the file name into
> a server variable? If so, what would that syntax be?
>
> thanks,
>
> brian
>
>

• Next in forum: Re: php trim
• Prev in forum: Re: FCKEditor open source license: what are the conditions for free use?
• Thread view: Re: encrypting a string (and server varaibles)

[Reply to this message]