stackoom
  简体   繁体   中英

Check if Zip file is encrypted or password protected using PHP

 原文  2019-10-22 23:23:23       php/ passwords/ zip

Question

I am writing a scanner that will look for possibly hacked/malware files. One requirement is to check if a zip (or any compressed) file is password-protected using some PHP function.

I don't want to add any extra software requirements, so should work on multiple servers, using PHP 5.3+. (Yes I know that 5.3 is old, but the process may need to run on older PHP installations.) If this detection is available in newer PHP versions, then I could have code that would run only on newer PHP version.

I can use the file_get_contents() function to read the file's contents into a string. How do I check that string for an indication that the zip file is password-protected? Note that I don't want to uncompress the file, just check it for password-protection.

Thanks.

1 answers

solution1
 0  2019-10-23 18:08:42

This code appears to work, but might be improved.

The process seems to involve two steps:

  • use zip_open to open the file, returning a resource. No resource, zip couldn't be opened, so it might be passworded

  • use zip_read to read the files inside the zip. If fails, then might be passworded

In either of those two cases, return true, indicating probable password on the zip file.

// try to open a zip file; if it fails, probably password-protected
function check_zip_password($zip_file = '') {
    /*
    open/read a zip file
    return true if passworded
     */
    if (!$zip_file) { // file not specified
        return false;
    }
    $zip = zip_open($zip_file);     // open the file
    if (is_resource($zip)) {        // file opened OK
        $zipfile = zip_read($zip);  // try read of zip file contents
        if (!$zipfile) { // couldn't read inside, so passworded
            return true;
            } 
            else 
            { // file opened and read, so not passworded
            return false;
        }
    } else { // couldn't open the file, might be passworded
        return true;
    }
    return false; // file exists, but not password protected
}

Note that the code only determines that the files inside the zip can't be accessed, so they are probably password-protected. The code doesn't try to do any processing of files inside the zip.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Php through How to check uploaded zip or rar file is password protected or not How to create a password protected zip file on ftp server using php Creating a Password Protected Zip File using PHP in Windows Create password protected ZIP file in PHP How to excel password protected in zip file in php PHP 7.2: How to create password protected zip using PHP 7.2 How to create backup of my directory with password protected zip file in PHP? Opening and creating password protected zip files with PHP Stdin to second command / password protected zip with php Add excel file to password protected zip?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM