JONNY DOVKA'S PGP EXPERIENCE!
OK. Before I begin, YES I did this on an IIS Windows system (my boss doesn't
like Apache for some reason). YES, it uses a non-US form of PGP found at this
web-address (I'm British, but im sure the code can easily be adapted):
The below code is similar to the code in the PHP Manual, but there are many small
considerations you'll need to account for before PGP decides it likes you and works.
1. Make sure the path to your PGP directory is in your websystem's path. You
can check this by doing a phpinfo(); and looking under the _ENV['PATH']
key. This is very important, especially if you develop on a network!
2. CHECK what the command line arguments your version of PGP accepts. Here, I'm
using -sfa, -f being the important one (filter allows data through STDIN/STDOUT
to be checked by the PGP binary. -z supplies your password, so make sure you
change that one (no, you don't need the >).
3. $DATA_TO_ENCRYPT is the data you wish to...err, encrypt. The chr(26) is actually
the same as hitting CTRL+Z (^Z) in DOS, which is commonly known as the EOF char.
4. $pgpBuffer is a string that contains the output of the PGP binary. With that, you
can then (for example, as I have done) use it to e-mail someone!
I hope this helps someone. I'm only putting it on here because it was such a pain in
the butt to get working. If it doesn't work, check your paths, consider using chdir()
to fix the problem, and have a look at the output from PGP in error.txt!
$descriptorspec = array(
0 => array("pipe", "r"), // STDIN
1 => array("pipe", "w"), // STDOUT
2 => array("file", "error.txt", "a") // STDERR
$proc = proc_open("pgp -sfa -z >", $descriptorspec, $pipes);
fwrite($pipes, $DATA_TO_ENCRYPT . "nn" . chr(26) . chr(26));
$pgpBuffer .= fgets($pipes, 1024);
$return_value = proc_close($proc);
// echo $pgpBuffer;
|A damaged image generator (class) for validating text.
CAPTCHA - Completely Automated Public Turing test to tell Computers and Humans Apart|
Categories : PHP, PHP Classes, Security, GD image library, Security
|Distribute PHP Software Protected by a License Key.|
Categories : PHP, Cryptography, Security, Software
|Protect your mailto: email addresses from bots - pure PHP|
Categories : PHP, Email, Security
|Generating and Matching Secure and Strong Password Hash|
Categories : PHP, PHP Classes, Cryptography, Security
|Function to generate readable/remeberable random password|
Categories : PHP, Security, Security
|Protect your email links from being spidered by spam email robots!|
Categories : PHP, Security, Mail, Email
|send_mail function to defeat Header Injection Hacking/Spamming|
Categories : PHP, Email, Form Processing, Security
Categories : PHP, Security, HTTP
|Sending email with random details|
Categories : PHP, Email, Debugging
|Use of bitmasks to represent permissions|
Categories : PHP, Authentication, Bitwise Operators, Security, PHP Classes
|A web-based php3 IMAP email client supporting address books, attachements (downloading and sending), LDAP searching, and much much more.|
Categories : Email, PHP, LDAP
|EAvalidator - This class can be used to validate an e-mail address by checking its domain.|
Categories : PHP, PHP Classes, Email, Regexps
|A login page that require username, password and userlevel.|
Categories : PHP, Security, Sessions, MySQL, Databases
|Securing Web Forms with Simple PHP-CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart)
Categories : PHP, Security, GD image library, Sessions
|An email validation script that actually checks against the recipient's mail server.|
Categories : Email, Complete Programs, PHP, Network, Debugging