I will have clients upload pdf files with sensitive information. I’m planning on having

Question

0

Asked: May 25, 20262026-05-25T22:03:44+00:00 2026-05-25T22:03:44+00:00

I will have clients upload pdf files with sensitive information. I’m planning on having

0

I will have clients upload pdf files with sensitive information. I’m planning on having the directory outside public_html. When a client want to download his/her file they will get a php link that will authenticate them. Is more I can do to protect such files?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-25T22:03:44+00:00

Editorial Team

2026-05-25T22:03:44+00:00Added an answer on May 25, 2026 at 10:03 pm

Place the files outside docroot,
make the temporary links (www.oink.com/abd73df10e92/whatever.pdf) expire,
never direct link the files, use a php wrapper to readfile out the contents
never use the stored filename,
make sure the files have the least permissions
if the files are really sensitive, provide them over only HTTPS

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I will have clients upload pdf files with sensitive information. I’m planning on having

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply