function Archive_Tar::_maliciousFilename in Acquia Connector 6.2
Detect and report a malicious file name
@access private
Parameters
string $file:
Return value
bool
2 calls to Archive_Tar::_maliciousFilename()
- Archive_Tar::_readHeader in acquia_agent/
archive_tar.inc - Archive_Tar::_readLongHeader in acquia_agent/
archive_tar.inc
File
- acquia_agent/
archive_tar.inc, line 1363
Class
- Archive_Tar
- Creates a (compressed) Tar archive
Code
function _maliciousFilename($file) {
if (strpos($file, '/../') !== false) {
return true;
}
if (strpos($file, '../') === 0) {
return true;
}
return false;
}