stackoom
  简体   繁体   中英

Checking “Magic Bytes” or Mime Types in PHP?

 原文  2013-08-01 02:19:14       php/ mime-types/ magic-numbers

Question

So, I've currently used a few different methods to check the mime type. The user uploads a file using a form, I grab the mime type, if it's application/zip, I allow it, if it's anything else, I deny it. The issue is that something (browsers I assume) is changing the mime type to "application/octet-stream"

I'm wondering how else I can verify a file is .zip upon form upload.

Code: 

  $name = strtolower(end(explode('.', $filename))); 
    $accepted_types = array('application/zip', 'application/x-zip-compressed',   'multipart/x-zip', 'application/x-compressed'); 

  foreach($accepted_types as $good_type) { 
        if($good_type == $type) {   
            $okay = true;  
            break;
        } else {
            $okay = false;
        }
  }

2 answers

solution1
 3  2013-08-01 02:23:16

使用mime-content-type

$type = mime_content_type($filename);

solution2
 2  2016-05-24 13:49:16

FWIW, you can get the magic bytes using bin2hex . According to Wikipedia ( https://en.m.wikipedia.org/wiki/Magic_number_(programming)#Magic_numbers_in_files ), zips have the first 2 hex bytes 50 4B

$zip=file_get_contents("somefile.zip");

echo strtoupper (substr(bin2hex($zip),0,2)); //504B

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to categorize Mime Types (PHP) PHP: image mime type from image bytes PHP - Checking file types PHP Mime type checking alternative way of doing it? Checking image mime type in php unexpected error PHP 5.3.5 fileinfo() MIME Type for MS Office 2007 files - magic.mime updates? Php include() proper Mime-types RackSpace OpenCloud PHP SDK and mime types? Add additional MIME types using .hataccess & PHP Getting Mime-Types Over FTP In PHP
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM