MD5 Download Link

Draco0283 · August 28, 2007, 6:52pm

Hey, Im trying to make it so you can download a file and never see its location. I was told to play with the MD5 encryption to do this.

Here is the download link
[php]

<?php $id = "status.zip"; $url = "www.yoursite.com"; $fieid = md5 ($id); $fileurl = md5 ($url); echo 'Direct download link'; ?>

[/php]

It encrypts it beautifully and sends it to another file which would start downloading

[php]

<?php $url = $_GET['file']; $file = $_GET['relid']; echo ($url); echo ($file); ?>

[/php]

2 questions for all of you experienced programmers out there, 1 am I heading the right direction, is this how you secure a URL? and 2 how do you decrypt md5, I know md5 (string) encrypts it but I havent found any site that tels how to reverse it. Thanks
Draco

Q1712 · August 28, 2007, 7:44pm

md5 is a hash, not an encyption. that means there is no decryption, and a md5-hash don’t have to be unique (in this case it may be because there are fast more md5 variations than files).

i’m afraid, ur hading the wrong direction

Draco0283 · August 28, 2007, 7:57pm

ok, Ill keep researching it. If anyone want to point me in the right direction I appreciate it.

Ragster00 · August 28, 2007, 9:17pm

I could be wrong in this, but I would look in to the mcrypt_encrypt() and mcrypt_decrypt() functions. These might be of help.

Draco0283 · August 28, 2007, 10:10pm

It has promise, though the decryption doesnt = what was encrypted but I think its becuase it was carried over url and its weird characters not allowed in a url. So I need to find a way to post to another php file without a form.

Thanks for putting me on that trail though!

Q1712 · August 28, 2007, 10:59pm

why do u want to have an url hidden?
maby u have to solve the problem behind that question, instead of trying to hide it.

an other thing u could do is, storing the files u need in a MySQL Table and then just submit the key of the row.

try to find out werther theres a better solution for ur prob than a url encryption.

Draco0283 · August 28, 2007, 11:25pm

THE SQL table is brilliant I will give that a go. I am basically setting it so people can download files from me without easily seeing where they are downloading it from. I know there is always a way around it but the majority wont know how.