File upload problem

Anon

Hi,

I have a problem with my upload script, Once I have a script to upload a file to a directory, My problem is to let the user to upload a file I have to set permission of this directory to all rea adn all write (Which I think it is not secure).So doese any one has any idia to sol'v this problem.

Thanks

Anon

you could use php's ability to chmod directories as it goes, ie chmod the dir, then upload the file, then chmod it back to normal.

Then there is only a short period of time when the directory is all read and all write.

Whilst I haven't tried this myself, it sounds like it would work.
<?
chmod ($dirpath, 0777); / Should chmod the directory /
?>

then chmod it back

Anon

wouldn't there still be a permission problem though? to chmod, you have to own the directory. If someone uploading from a form, the user is set to nobody.nobody.

Unless you can pass ownership when you temporarilly change mod.

Ron