Hiya guys,

So I'm trying to protect a few images because my school wants to "respect the privacy of people contained in photos uploaded to an online site" and I'm stuck doing the site designing.

I've done a great deal of stuff to make sure it's impossibly hard to download the images (at least imo) and I've given up disabling screenshotting. Can someone see if there still are ways to download the image and whether my PHP has vulnerabilities or something of the sort?

or you could recommend a better way to protect the images - I'm doing it with sessions atm and it's a bit crude.

url: http://swcnet.co.cc/

thanks

how about pretending it's "analyze this IV" instead?

i have a full path disclosure if you're interested?

EDIT:
URL:

http://swcnet.co.cc/images/getimage.php?p[]=SnApple.jpg

COOKIE:

PHPSESSID=8e154c31350a14bfbd6e526cd6003cdcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx; 

RESULT:

Warning: session_start() [function.session-start]: open(/overflow/php/sessions/sess_8e154c31350a14bfbd6e526cd6003cdcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx, O_RDWR) failed: File name too long (36) in /home/hxhl95/public_html/images/getimage.php on line 2

Warning: session_start() [function.session-start]: Cannot send session cache limiter - headers already sent (output started at /home/hxhl95/public_html/images/getimage.php:2) in /home/hxhl95/public_html/images/getimage.php on line 2

Warning: htmlspecialchars() expects parameter 1 to be string, array given in /home/hxhl95/public_html/images/getimage.php on line 4
Error

You do not have permission to access this image!

Warning: Unknown: open(/overflow/php/sessions/sess_8e154c31350a14bfbd6e526cd6003cdcxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx, O_RDWR) failed: File name too long (36) in Unknown on line 0

Warning: Unknown: Failed to write session data (files). Please verify that the current setting of session.save_path is correct (/overflow/php/sessions) in Unknown on line 0

a wha?

if you've figured out a way to download the images without using the temporary file or taking a screenshot, I'd be very much interested and please tell me

which images?
The general images used in the template or uploaded user content?
Hard to investigate without some account then

Warning: htmlspecialchars() expects parameter 1 to be string, array given in /home/hxhl95/public_html/images/getimage.php on line 4

Warning: session_start() [function.session-start]: open(/overflow/php/sessions/sess_45162b5bca3822d42a6542e8d53cca3145162b5bca3822d42a6542e8d53cca.......cca3131, O_RDWR) failed: File name too long (36) in /home/hxhl95/public_html/images/getimage.php on line 2

Warning: session_start() [function.session-start]: Cannot send session cache limiter - headers already sent (output started at /home/hxhl95/public_html/images/getimage.php:2) in /home/hxhl95/public_html/images/getimage.php on line 2
Error

You do not have permission to access this image!

Warning: Unknown: open(/overflow/php/sessions/sess_45.........a3131, O_RDWR) failed: File name too long (36) in Unknown on line 0

Warning: Unknown: Failed to write session data (files). Please verify that the current setting of session.save_path is correct (/overflow/php/sessions) in Unknown on line 0



Edit: Do`h .... did not read your post found the same thing, aceldama -.- (or was it only revealed lately?)

nvm...

Maybe you (aceldama) was worried about revealing the full path?

In my opinion it should not be a security risk to know the full path, altho other people might think different there.

When thinking of impact of a full path disclosure, the following stuff comes up to my mind:

- Knowledge of unix user account names
- Needed for further attacks

Somebody got another point?

the problem comes in when you have a shared system. some sites are hackable from other websites on the same server. now in this case there's no real risk because (i'm guessing that) it's not sharing with anyone. like bright-shadows has quite a few "neighbours" and some of them give out some really juicy php errors...

1) www.kurtmayerfilm.com ( Click here to view this site )
2) www.suchimweb.de ( Click here to view this site )
3) bright-shadows.net ( Click here to view this site )
4) www.wolke23.de ( Click here to view this site )
5) swimmersinthedesert.com ( Click here to view this site )
6) www.muzik23.de ( Click here to view this site )
7) www.tubeaudiopro.de ( Click here to view this site )
8) www.rheine-mesum.de ( Click here to view this site )
9) prater-derfilm.com ( Click here to view this site )
10) www.alfred-hofmann.de ( Click here to view this site )
11) www.norwegen-live.de ( Click here to view this site )
12) www.festeburgkonzerte.de ( Click here to view this site )
13) schwimmerinderwueste.com ( Click here to view this site )
14) www.meinhosting.de ( Click here to view this site )
15) deutsche-al.com ( Click here to view this site )
16) environment-waste.com ( Click here to view this site )
17) www.sabine-ehlers.de ( Click here to view this site )
18) www.tertan.de ( Click here to view this site )
19) www.andreas-dorna.de ( Click here to view this site )
20) lichtung.org ( Click here to view this site )
21) www.eklektik.de ( Click here to view this site )
22) www.hagen-schmidt.de ( Click here to view this site )
23) www.prater-derfilm.com ( Click here to view this site )
24) www.audio-sicherheitstechnik.de ( Click here to view this site )
25) www.bright-shadows.net ( Click here to view this site )
26) www.rohtech.de ( Click here to view this site )
27) www.alcatraz-zaunanlagen.de ( Click here to view this site )
28) www.deaalversuper.de ( Click here to view this site )
29) www.ladyfitness-ingolstadt.de ( Click here to view this site )
30) www.partnershirt.com ( Click here to view this site )
31) www.insane-incest.de ( Click here to view this site )
32) www.ikaron-theater.com ( Click here to view this site )
33) www.wildbadapotheke.de ( Click here to view this site )
34) www.sgosnabrueck.de ( Click here to view this site )
35) clown-begleitung.de ( Click here to view this site )
36) www.giantsonthemove.com ( Click here to view this site )
37) claudiatschida.com ( Click here to view this site )
38) djnoxx.net ( Click here to view this site )
39) shm-gmbh.com ( Click here to view this site )
40) vathor.com ( Click here to view this site )
41) www.rohtech-dst.de ( Click here to view this site )

point of reference? http://bright-shadows.net/challenges/exploit_rhc5/index.php

EDIT:
source of ip neighbours - http://www.aexcea.com/domains/