How to Build a Secure Image Upload Script?

Full Secure Image Upload Script

Despite the extensive measures discussed in the question, a comprehensive image upload security script should address the following additional aspects:

Client-Side Validation:

• Use HTML5 input type="file" attribute to filter out unsupported file types.

File Renaming:

• Rename uploaded files with a unique and random name to prevent filename guesswork.
• Remove any sensitive information from the filename (e.g., extension).

File Extension Validation:

• Create a whitelist of allowed file extensions and validate the uploaded file's extension against it.
• Check for double file extensions (e.g., "image.jpg.exe").

Image Analysis:

• Use image analysis techniques to identify if the uploaded file is a valid image and not a malicious file disguised as an image.

File Storage:

• Store uploaded images in a secure location outside of the website's root directory.
• Use a file system that supports access control lists (ACLs) to restrict access to authorized users.

Database Integration:

• Create a database table to track uploaded images, including their original name, new name, MIME type, and upload date.
• Use the database to retrieve and display images to authorized users.

Example Script:

Here is a revised PHP script that incorporates the above security measures:

<?php

if (!empty($_FILES['image'])) {
  // Validate file extension
  if (!in_array($_FILES['image']['type'], ['image/jpeg', 'image/png', 'image/gif'])) {
    echo 'Invalid file type';
    exit;
  }

  // Validate file size
  if ($_FILES['image']['size'] > 1 * 1024 * 1024) { // 1MB
    echo 'File too large';
    exit;
  }

  // Generate random filename
  $filename = uniqid() . '.' . pathinfo($_FILES['image']['name'], PATHINFO_EXTENSION);

  // Rename and move file
  if (move_uploaded_file($_FILES['image']['tmp_name'], 'uploads/' . $filename)) {
    // Insert into database
    $sql = "INSERT INTO images (name, original_name, mime_type, upload_date) VALUES (:name, :original_name, :mime_type, :upload_date)";
    $stmt = $conn->prepare($sql);
    $stmt->execute([
      ':name' => $filename,
      ':original_name' => $_FILES['image']['name'],
      ':mime_type' => $_FILES['image']['type'],
      ':upload_date' => date('Y-m-d H:i:s')
    ]);

    echo 'Image uploaded successfully';
  } else {
    echo 'Error uploading image';
  }
}
?>

This script validates the file extension, size, and MIME type, renames the file, stores it securely, and adds a record to the database.

Additional Recommendations:

• Use a web application firewall (WAF) to block malicious requests and attacks.
• Monitor the upload directory for suspicious activity.
• Regularly update the PHP version and security libraries to address vulnerabilities.

The above is the detailed content of How to Build a Secure Image Upload Script?. For more information, please follow other related articles on the PHP Chinese website!