. */ $TAR_BINARY = "/bin/tar"; # Add arbitrary parameters to tar $TAR_FLAGS = ""; # send content length for browsers to display the progress bar # note : won't work if the http server uses Chunked transfer encoding (http://en.wikipedia.org/wiki/Chunked_transfer_encoding) # probably the case with gzip content-encoding. # For this we need to tar files to /dev/null before the real tar $SEND_CONTENT_LENGTH = true; ######################## $bizouRootFromHere = '../..'; require "$bizouRootFromHere/config.php"; if (isset($_SERVER["PATH_INFO"])) { $simplePath = $_SERVER["PATH_INFO"]; } else { $simplePath = '/'; } if (strpos($simplePath, '..') !== false) die(".. found in url"); $realDir = "$bizouRootFromHere/".IMAGES_DIR.$simplePath; if ( ! is_dir($realDir) ) { header("HTTP/1.1 404 Not Found"); die("Directory Not Found"); } function escapePath($path) { # same as escapeshellarg function but this supports utf8 regardless of locale return "'".str_replace("'", "'\\''", $path)."'"; } $path = escapePath(realpath(dirname($realDir))); $filesarg = escapePath(basename($realDir)); # compute and send content-length header if ($SEND_CONTENT_LENGTH) { $out = exec("$TAR_BINARY $TAR_FLAGS --totals -cf /dev/null " . "-C $path $filesarg 2>&1", $output, $ret); preg_match('/^Total bytes written: ([0-9]+) /', $out, $matches); $totalsize = $matches[1]; ($totalsize > 1000 and $ret === 0) or die("Could not tar: $filesarg. Try checking permissions."); header("Content-Length: $totalsize"); } # final step : stream the directory content via tar header('Content-Type: application/x-tar'); header('Content-Disposition: attachment; filename="'.basename($realDir).'.tar"'); passthru("$TAR_BINARY $TAR_FLAGS -C $path -c $filesarg"); ?>