PHP y upload (1)
Posted in Plataforma on Oct 19th, 2009 No Comments »
http://www.bilbaodigital.es/Hacking/php-shell-upload-iv.html
The understanding of the systems architecture is essential to analize its security. PHP file upload architecture:
Files are transferred from client filesystem to server RAM.
Apache process will check httpd.conf and php.ini directives.
Once completed, file will be dumped into the server’s default temporary directory, unless another location has been given with the upload_tmp_dir directive in php.ini. The temporary [...]