x0.at Filehost

Warning: php.ini: %s (%s) set lower than %s (%s)\n", $ini_name, $ini_val, $var_name, $var_val); } // runs a file through clamdscan // fails silently(!) if clamd is not running or something function clam($path) { $cmd = 'clamdscan --quiet ' . escapeshellarg($path); $out = ''; $ret = -1; exec($cmd, $out, $ret); return $ret != 1; } //extract extension from a path (does not include the dot) function get_ext($path) { global $MAX_EXT_LEN; $ext = pathinfo($path, PATHINFO_EXTENSION); //special handling of .tar.* archives $ext2 = pathinfo(substr($path,0,-(strlen($ext)+1)), PATHINFO_EXTENSION); if ($ext2 === 'tar') { $ext = $ext2.'.'.$ext; } //trim extension to max. 7 chars $ext = substr($ext, 0, $MAX_EXT_LEN); return $ext; } // store an uploaded file, given its name and temporary path (e.g. values straight out of $_FILES) // files are stored wit a randomised name, but with their original extension // // $name: original filename // $tmpFile: temporary path of uploaded file // $formatted: set to true to display formatted message instead of bare link function store_file($name, $tmpFile, $formatted = false) { global $STORE_PATH; global $ID_LENGTH; global $HTTP_PROTO; global $DOWNLOAD_PATH; global $MAX_FILESIZE; global $CLAM_SCAN; global $LOG_PATH; //create folder, if it doesn't exist if (!file_exists($STORE_PATH)) { mkdir($STORE_PATH, 0750, true); //TODO: error handling } //check file size if (filesize($tmpFile) > $MAX_FILESIZE * 1024 * 1024) { header("HTTP/1.0 507 Max File Size Exceeded"); return; } $ext = get_ext($name); $tries_per_len=3; //try random names a few times before upping the length for ($len = $ID_LENGTH; ; ++$len) { for ($n=0; $n<=$tries_per_len; ++$n) { $id = rnd_str($len); $basename = $id . (empty($ext) ? '' : '.' . $ext); $target_file = $STORE_PATH . $basename; if (!file_exists($target_file)) break 2; } } $res = move_uploaded_file($tmpFile, $target_file); if ($res) { //scan file using clam if ($CLAM_SCAN && !clam($target_file)) { unlink($target_file); header("HTTP/1.0 400 Bad Request"); print("Error 400: File rejected by malware scan"); return; } //print the download link of the file $url = sprintf('%s://%s/'.$DOWNLOAD_PATH, $HTTP_PROTO, $_SERVER["SERVER_NAME"], $basename); if ($formatted) { printf('

Access your file here: %s

', $url, $url); } else { printf($url); } // log uploader's IP, original filename, etc. if ($LOG_PATH) { file_put_contents( $LOG_PATH, implode("\t", array( date('c'), $_SERVER['REMOTE_ADDR'], filesize($tmpFile), escapeshellarg($name), $basename )) . "\n", FILE_APPEND ); } } else { //TODO: proper error handling? header("HTTP/1.0 520 Unknown Error"); } } // purge all files older than their retention period allows. function purge_files() { global $STORE_PATH; global $MAX_FILEAGE; global $MAX_FILESIZE; global $MIN_FILEAGE; global $DECAY_EXP; $num_del = 0; //number of deleted files $total_size = 0; //total size of deleted files //for each stored file foreach (scandir($STORE_PATH) as $file) { //skip virtual . and .. files if ($file === '.' || $file === '..') { continue; } $file = $STORE_PATH . $file; $file_size = filesize($file) / (1024*1024); //size in MiB $file_age = (time()-filemtime($file)) / (60*60*24); //age in days //keep all files below the min age if ($file_age < $MIN_FILEAGE) { continue; } //calculate the maximum age in days for this file $file_max_age = $MIN_FILEAGE + ($MAX_FILEAGE - $MIN_FILEAGE) * pow(1-($file_size/$MAX_FILESIZE),$DECAY_EXP); //delete if older if ($file_age > $file_max_age) { unlink($file); printf("deleted \"%s\", %d MiB, %d days old\n", $file, $file_size, $file_age); $num_del += 1; $total_size += $file_size; } } printf("Deleted %d files totalling %d MiB\n", $num_del, $total_size); } // send a ShareX custom uploader config as .json function send_sharex_config() { global $HTTP_PROTO; $host = $_SERVER["HTTP_HOST"]; $filename = $host.".sxcu"; $content = << x0.at Filehost

 === How To Upload ===
You can upload files to this site via a simple HTTP POST, e.g. using curl:
curl -F "file=@/path/to/your/file.jpg" $url

On Windows, you can use ShareX and import this custom uploader.
On Android, you can use an app called Hupl with this uploader.


Or simply choose a file and click "Upload" below:
(Hint: If you're lucky, your browser may support drag-and-drop onto the file 
selection input.)



 === File Sizes etc. ===
The maximum allowed file size is $MAX_FILESIZE MiB.

Files are kept for a minimum of $MIN_FILEAGE, and a maximum of $MAX_FILEAGE Days.

How long a file is kept, depends on its size. Larger files are deleted earlier 
than small ones. This relation is non-linear and skewed in favour of small 
files.

The exact formula for determining the maximum age for a file is:

MIN_AGE + (MAX_AGE - MIN_AGE) * (1-(FILE_SIZE/MAX_SIZE))^$DECAY_EXP


 === Source ===
The PHP script used to provide this service is open source and available on 
GitHub


 === Contact ===
If you want to report abuse of this service, or have any other inquiries, 
please write an email to $ADMIN_EMAIL

EOT; } // decide what to do, based on POST parameters etc. if (isset($_FILES["file"]["name"]) && isset($_FILES["file"]["tmp_name"]) && is_uploaded_file($_FILES["file"]["tmp_name"])) { //file was uploaded, store it $formatted = isset($_GET["formatted"]) || isset($_POST["formatted"]); store_file($_FILES["file"]["name"], $_FILES["file"]["tmp_name"], $formatted); } else if (isset($_GET['sharex'])) { send_sharex_config(); } else if (isset($_GET['hupl'])) { send_hupl_config(); } else if (isset($argv[1]) && $argv[1] === 'purge') { purge_files(); } else { check_config(); print_index(); }