You are here

Home » API reference » Acquia Connector 6.2 » archive_tar.inc » Archive_Tar

function Archive_Tar::_maliciousFilename in Acquia Connector 6.2

Detect and report a malicious file name

@access private

Parameters

string $file:

Return value

bool

2 calls to Archive_Tar::_maliciousFilename()
Archive_Tar::_readHeader in acquia_agent/archive_tar.inc
Archive_Tar::_readLongHeader in acquia_agent/archive_tar.inc

File

acquia_agent/archive_tar.inc, line 1363

Class

Archive_Tar
Creates a (compressed) Tar archive

Code

function _maliciousFilename($file) {
  if (strpos($file, '/../') !== false) {
    return true;
  }
  if (strpos($file, '../') === 0) {
    return true;
  }
  return false;
}