vb.org Archive - HTTP Upload Hack Version 2.0

Page 2 of 4

Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)

- vBulletin 3.0 Full Releases (https://vborg.vbsupport.ru/forumdisplay.php?f=33)

- - HTTP Upload Hack Version 2.0 (https://vborg.vbsupport.ru/showthread.php?t=65325)

Pseudomizer

05-20-2004 07:06 PM

Quote:

Originally Posted by rookie7

I might be wrong but I don't think you can upload more than 2 MB in most hosts since it is configured in php.ini . There's a way around that, but...I don't think your host will be happy if they found out. :nervous:

You are right about the 2MB. But you can go up to 11MB before VBulletin will reject the upload. This only applies for VBulletin uploads.

My hack does not rely on the VBulletin database so there are the following limitations per default:

- 2MB max due to php.ini
- 30 secs due to timeout set in php.ini

The second limitation can be altered via your php file by adding the following line at the beginning of your php file:

PHP Code:


		
			
ini_set("max_execution_time", "3600");

This will give you 10 minutes for uploading but please keep in mind, that many providers are preventing things like this and if you work around their limitation then your account will be disabled very quickly.

The first limitation can not be altered via script. So you need access to the php.ini file to be able to alter this setting.

Cheers,

FleaBag

05-20-2004 09:38 PM

Excellent work. Thanks. :)

msimplay

05-20-2004 09:56 PM

no i mean quotas
quota means a total of allowed diskspace by that user

Pseudomizer

05-20-2004 10:09 PM

Quote:

Originally Posted by msimplay

no i mean quotas
quota means a total of allowed diskspace by that user

I am fully aware of what quotas are. Again the question: How do you want to trace what files have been uploaded and which file size they have ? What if he replaces a file and does not add a new file ?

This is not possible to trace that unless you create something special like:

forum/Folder1 for user hugo
forum/Folder 2 for user martin

in both folders you place the http_upload.php but you have to modify each php file for a specific user. You have to run a command to get the directory size of the specific folder and then calculate what he wants to upload. If the size exceeds a specific size ( which you have to set for each php file individually ( or create one global settings file ) then you block the upload.

But this hack does not have a folder management included, does not have usermanagement included, does not have sizing checks included and does not react on specific user accounts. It just reacts on usergroup permissions.

Your request would be very specific and it would take some time to develop something like this. But i doubt that this request will become very popular or not ?

What is your aim ? What do you want to achieve ?

Cheers,

d3nnis

05-20-2004 11:24 PM

still waiting for you to add on the file type restriction,Pseudomizer :)

Pseudomizer

05-20-2004 11:40 PM

Quote:

Originally Posted by d3nnis

still waiting for you to add on the file type restriction,Pseudomizer :)

D3nnis ? I think you missed something. Please read again all new features for this update. I HAVE implemented a file type restriction. Did you read the whole posting 1 in this thread ?

Cheers,

d3nnis

05-21-2004 05:16 AM

Quote:

Originally Posted by Pseudomizer

D3nnis ? I think you missed something. Please read again all new features for this update. I HAVE implemented a file type restriction. Did you read the whole posting 1 in this thread ?

Cheers,

oops miss that out, sorry! :rolleyes:

by the way since u added this new restriction, i can safely mod it into a image hosting module rite? by the way... where are these files uploaded to?

Pseudomizer

05-21-2004 09:57 AM

Quote:

Originally Posted by d3nnis

oops miss that out, sorry! :rolleyes:

by the way since u added this new restriction, i can safely mod it into a image hosting module rite? by the way... where are these files uploaded to?

In the same directory where you http_upload.php file is located.

Cheers,

d3nnis

05-21-2004 04:56 PM

Quote:

Originally Posted by Pseudomizer

In the same directory where you http_upload.php file is located.

Cheers,

cool, do i need to chmod permission this directory?

Pseudomizer

05-21-2004 06:44 PM

Quote:

Originally Posted by d3nnis

cool, do i need to chmod permission this directory?

Hi D3nnis,

yes. The Webserver needs write access to this directory. Some people just go with 777.

Cheers,

All times are GMT. The time now is 11:15 PM.

Page 2 of 4

Show 40 post(s) from this thread on one page

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.01077 seconds Memory Usage 1,740KB Queries Executed 10 (?)
More Information
Template Usage: (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)bbcode_php_printable (7)bbcode_quote_printable (1)footer (1)gobutton (1)header (1)headinclude (6)option (1)pagenav (1)pagenav_curpage (3)pagenav_pagelink (1)post_thanks_navbar_search (1)printthread (10)printthreadbit (1)spacer_close (1)spacer_open Phrase Groups Available: global postbit showthread	Included Files: ./printthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/class_bbcode_alt.php ./includes/class_bbcode.php ./includes/functions_bigthree.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete printthread_start pagenav_page pagenav_complete bbcode_fetch_tags bbcode_create bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete printthread_post printthread_complete
Messages: