urgent security mod for script which uses a form to upload files.
the script is written in php and anyone is allowed to upload files inside and folder.i want to put various restrictions and only the requested text file information to can be uploaded.
If you have experience with internet security and hacking you will be prefered.
the script runs on a apache server with php enabled.
ftp access will be provided.
it would be better if the information inside .dat or .txt files could be parsed, and then stored on the server in a similar named file, using filters to read, evaluate and allow or disallow the information included.
it also would be better if i could restrict the information uploaded to only files containing lists with ip adresses( this is the purpose of the script)
also pls check if the script works with register globals set to "off"
and if not make the necessary changes.