[GELÖST] Webcam Zeitraffer

rolwalca · 08. Februar 2012 19:53

Hallo zusammen,

ich soll für einen Kunden auf einer Website webcam-Bilder darstellen.

Jede halbe Stunde kommt ein Bild hinzu in einen fest vorgegebenen Ordner.
So soll z.B. ein Fortschritt bei einer Baustelle veranschaulicht werden.

So ähnlich stellt er es sich vor. Beispiel-Link

Wie mache ich das am besten? Gibt es ein Modul was sich da eignet?
Ich kenne natürlich gallery und album aber so eine Zeitrafferfunktion
gibt´s da ja nicht. Oder?

Hat irgendjemand damit schon Erfahrungen gesammelt?

nockenfell · 08. Februar 2012 20:35

So auf die kürze findet sich nur ein Shareware Script welches einiges kostet. Alles in allem müsstest du hier wahrscheinlich ein eigenes Plugin schreiben welches den Ordner ausliest und das JavaScript generiert welches für den Zeitraffer notwendig ist.

Ein Script (javascript) zu suchen dürfte hier jedoch recht aufwändig sein. Der PHP Teil ist noch das einfachere daran.

rolwalca · 08. Februar 2012 20:56

Meinst Du ein spezielles Shareware Script? Hast Du einen Link?

Ich glaube, ich brauche da eine fertige Lösung. Darf auch etwas kosten.
Muss der Kunde dann eben zahlen.

Eigenes Plugin schreiben etc. hört sich für mich zu kompliziert an.

nockenfell · 08. Februar 2012 20:58

http://www.meyweb.ch/meysoft/webcam_zei … script.php

nockenfell · 08. Februar 2012 21:00

Ich habe schon wieder ein wenig zu weit gedacht. Das Beispiel-Script welches du gepostet hat, eignet sich natürlich auch für deine Zwecke. Hier musst du einzig ein PHP Script schreiben welches dir die Bilder ausliest, sortiert und anschliessend als Javascipt ausgibt.

rolwalca · 08. Februar 2012 21:32

Ist wahrscheinlich nicht so schwer zu schreiben für jemanden der sich damit auskennt.
Tue ich aber nicht. sad

Ich bin mehr so der Webdesigner. HTML, CSS, CMSMS alles schön und gut.
Wenn´s an PHP, Smarty, Templates von Modulen etc. geht, kriege ich immer schnell die
Krise.

Aber der Link ist super. Das scheint genau die Lösung zu sein die ich brauche.

Danke

Andynium · 08. Februar 2012 22:23

rolwalca schrieb:

Ist wahrscheinlich nicht so schwer zu schreiben für jemanden der sich damit auskennt.
Tue ich aber nicht.

Dafür haben wir ja hier auch das Board für "kommerzielle" Anfragen wink .

http://www.cmsmadesimple.de/forum/viewforum.php?id=16

rolwalca · 11. Juni 2012 09:39

Was lange währt...

Wenn´s noch wen interessiert. Hier ist das fertige Script im Einsatz. Link
Das von nockenfell empfohlene Script war eigentlich passend aber hatte keine Möglichkeit in das Bild zu zoomen (war vom Auftraggeber gewünscht).

So habe ich mich in einem php-Forum umgeschaut und da jemanden gefunden der mir das Script geschrieben hat.

Immer wenn ich hier auf ein Problem mit CMCms stosse, wurde mir hier bisher immer schnell und kompetent geholfen.
Seltsamerweise im kommerziellen Board (wo es ja was zu verdienen gibt) gab es keine Resonanz. - Komisch aber doch irgendwie sympathisch.

nockenfell · 11. Juni 2012 12:16

Danke für den Link. Schön das du eine Lösung gefunden hast.

Machst du das Script frei verfügbar oder ist das "Closed Source"? Deine Problemstellung haben wahrscheinlich noch weitere Leute.

rolwalca · 12. Juni 2012 09:21

Nein, kein "Closed Source". Kann ich gerne hier posten:

Also: zunächst eine Index.html

Hier klicken, um den Code zum Kopieren zu markieren

[== HTML ==]
<html>  <head>   <title>Zeitraffer</title>   <script src="https://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js"></script>   <script src="https://ajax.googleapis.com/ajax/libs/jqueryui/1.8.16/jquery-ui.min.js"></script>   <link rel="stylesheet" href="http://ajax.googleapis.com/ajax/libs/jqueryui/1.7.2/themes/base/jquery-ui.css" type="text/css" />         <link rel="stylesheet" href="css/zeit.css" type="text/css" />    <script src="js/jquery.smoothZoom.min.js"></script>   <script src="js/jquery.timer.js"></script>   <style>   .icon-arrow-left { background: url("css/arrow_left.png"); }   .icon-arrow-right { background: url("css/arrow_right.png"); }   .icon-play { background: url("css/arrow_play.png"); }   </style>   <script>        var configTT = {  	 "getFilesTT": "getFilesTT.php" 	 }; 	 function getDirs() { 	  var items = ""; 	  var lastTMP = 0;  	  $.getJSON(configTT.getFilesTT+'?do=getLatestDirs', function(data) { 	   $.each(data, function(key, val) { 	    items += '<option  id="dirs-'+val+'" value="' + val + '">' + val + '</li>'; 	    lastTMP = key;  	   }); 	   $('#dir-select').html("<option value=null></option>"+items+"<option value=null></option>"); 	   $('#dirs-'+lastTMP).attr("selected", "selected");  	   setDate($('#dir-select option').last().prev().attr("value")); 	  }); 	 } 	 function switchDay(direction) 	 { 	  var newDay;  	  if(direction == -1) 	   newDay  = $('#dir-select option:selected').prev();  	  else 	   if(direction == 1) 	    newDay = $('#dir-select option:selected').next();     	   if(newDay.attr("value")!="null") 	   { 	    setDate(newDay.attr("value")); 	    getImages(true, (direction==1)); 	   } 	   else 	    stopAuto();   	  } 	  	 function setDate(date) { 	  $('#date').datepicker("setDate", date); 	  $("#dir-select").attr('selectedIndex', '-1').children("option:selected").removeAttr("selected"); 	  $('#images-bar').attr("alt", date);  	  $('#dir-select option[value="'+date+'"]').attr('selected', 'selected'); 	 } 	 function getDate() 	 { 	  return $('#images-bar').attr("alt");  	 }      function getImages(first, showFirst) {       $('#hint-select-date').hide();  	  $(".navigation-images-gallerie-button").fadeIn(); 	  var date = getDate();        $.getJSON(configTT.getFilesTT+'?do=getLatestImages&date='+date, function(data) {        var items = ""; 	   var lastTMP = 0;         $.each(data, function(key, val) {         items += '<li id="image-' + key + '" name="' + val + '">' + val + '</li>'; 	    lastTMP = key;         });        $('#images-bar').html(items); 	   $('#images-showcase-image').attr("name", lastTMP);  	   if(first) 	   {    	 // stopAuto(true);  	    $('#images-showcase-image').css("opacity", "0.9"); 	    if(showFirst) 	    { 	     $('#images-showcase-image').attr("alt", 0);   	     $('#images-showcase-image').attr("src", $('#image-0').attr("name"));  	    } 	    else 	    { 	     $('#images-showcase-image').attr("alt", lastTMP);  	     $('#images-showcase-image').attr("src", $('#image-'+lastTMP).attr("name"));  	    } 	    $('#images-showcase-image').fadeIn(); 	    $('#images-showcase-image').animate({"opacity":"1"}); 	   }       });      }     function nextImage() {      getImages();      var nextImage = $('#images-showcase-image').attr("alt");  	 nextImage++;  	 if($('#images-showcase-image').attr("name") >= nextImage) 	 { 	  $('#images-showcase-image').css("opacity", "0.9"); 	  $('#images-showcase-image').attr("src",$('#image-'+nextImage).attr("name"));  	  $('#images-showcase-image').attr("alt", nextImage);   	  $('#images-showcase-image').animate({"opacity":"1"});  	 }  	 else  	  switchDay(1);     }     function prevImage() {      getImages();      var prevImage = $('#images-showcase-image').attr("alt");  	 prevImage--;  	 if(0 <= prevImage) 	 { 	  $('#images-showcase-image').css("opacity", "0.9"); 	  $('#images-showcase-image').attr("src", $('#image-'+prevImage).attr("name"));  	  $('#images-showcase-image').attr("alt", prevImage);  	  $('#images-showcase-image').animate({"opacity":"1"}); 	 } 	  	 else  	  switchDay(-1);     }     function startAuto() {      $('#do-auto-switch-image').val(1); 	 $('#auto-time').everyTime(3300, "do-auto-timer", function(i) {      if(!stopAuto(false))      {       nextImage(); 	  var nextImageN = $('#images-showcase-image').attr("alt"); 	 	  nextImageN++;  	  if($('#images-showcase-image').attr("name") < nextImageN)	   	   stopAuto();       } 	 }, 200); 	} 	function stopAuto(force) { 	 if($('#do-auto-switch-image').val() == 0 || force) { 	  $('#auto-time').stopTime("do-auto-timer");  	  $('#do-auto-switch-image').val(0); 	  return true; 	 } 	 return false;  	}   </script>  </head>  <body>   	<div id="banner" > <a href="http://www.ewar-nordhorn.de/"><img src="css/header-1.png" ></a> 	 </div>                  <div id="Top_text" >         <h2>Um die Bilder im 2-Sekunden-Takt abzuspielen  dr&uuml;cken und <span class="unerstrich">HALTEN </span> Sie bitte den Play-Button</h2> 	<h3>Powered by <a href="mailto:ewar-cam@dilano.de">DILANO GmbH Nordhorn</a></h3>         </div>            <center>    <div style="width:1024px;height:768px;background:#eee;" id="images-showcase" oncontextmenu="return false;" >       <div  id="hint-select-date" class="ui-widget" style="width:430px;"> <br>       <div class="ui-state-highlight ui-corner-all" style="margin-top: 20px; padding: 0 .7em;">        <p>Bitte w&auml;hlen Sie ein Datum aus</p>       </div>            </div>      <img id="images-showcase-image" alt="" src="#" onload=" $('#images-showcase-image').smoothZoom({		width: 1024,		height: 768	});" style="display:none;width:1024px;height:768px;">     <br>    <select id="dir-select" style="display:none;">     <option value="" disabled>Wird geladen...</option>    </select>    <input type="hidden" id="do-auto-switch-image" value="0">    <input type="hidden" id="auto-time">    <!--     <div style="height:60px;"  id="do-auto-off-title">    Alle    <input type="text" id="auto-time" size=3 value="1" onkeyup="if(this.value<=0)this.value='1';">    Sekunden automatisch wechseln.    (     An  <input onclick="startAuto();" type="radio" name="do-auto" value="1">     Aus <input id="do-auto-off" type="radio" name="do-auto" value="0" checked>    )    </div> -->    </div>      <div type="text" id="date" style="z-index:19;"></div>      <div id="navigation-images-gallerie" style="z-index:19;width:200px !important;">      <button style="display:none;z-index:19;height:52px;width:52px;padding:0;margin-right:5px;" class="navigation-images-gallerie-button" id="previous-image" href="#" onClick="prevImage();return false;"><img src="css/arrow_left.png"></button>      <button style="display:none;z-index:19;height:52px;width:52px;margin-right:5px;" class="navigation-images-gallerie-button" id="auto-switch-image" onMouseDown="startAuto();" onMouseOut="stopAuto(true);" onMouseUp="stopAuto(true);"><img src="css/play.png"></button>      <button style="display:none;z-index:19;height:52px;width:52px;" class="navigation-images-gallerie-button" id="next-image" href="#" onClick="nextImage();return false;"><img src="css/arrow_right.png"></button>      </div>     <div id="images-bar" alt="0" style="display:none;"></div>   </center>   <div id="footer">                 <h4><img alt="Counter" src="/system-cgi/count/count.php?id=9&amp;x=60&amp;y=30&amp;size=20&amp;bg=%23999999&amp;fg=%236d6969&amp;lenght=5&amp;transbg=false&amp;"></a></h4>           </div>   <script> $(document).ready(function() {          $.datepicker.regional['de'] = {clearText: 'l&ouml;schen', clearStatus: 'aktuelles Datum l&ouml;schen',                 closeText: 'schlie&szlig;en', closeStatus: 'ohne &Auml;nderungen schlie&szlig;en',                 prevText: 'zur&uuml;ck', prevStatus: 'letzten Monat zeigen',                 nextText: 'Vor', nextStatus: 'n&auml;chsten Monat zeigen',                 currentText: 'heute', currentStatus: '',                 monthNames: ['Januar','Februar','M&auml;rz','April','Mai','Juni',                 'Juli','August','September','Oktober','November','Dezember'],                 monthNamesShort: ['Jan','Feb','M&auml;r','Apr','Mai','Jun',                 'Jul','Aug','Sep','Okt','Nov','Dez'],                 monthStatus: 'anderen Monat anzeigen', yearStatus: 'anderes Jahr anzeigen',                 weekHeader: 'Wo', weekStatus: 'Woche des Monats',                 dayNames: ['Sonntag','Montag','Dienstag','Mittwoch','Donnerstag','Freitag','Samstag'],                 dayNamesShort: ['So','Mo','Di','Mi','Do','Fr','Sa'],                 dayNamesMin: ['So','Mo','Di','Mi','Do','Fr','Sa'],                 dayStatus: 'Setze DD als ersten Wochentag', dateStatus: 'W&auml;hle D, M d',                 dateFormat: 'dd.mm.yy', firstDay: 1,                 isRTL: false};         $.datepicker.setDefaults($.datepicker.regional['de']);  getDirs(); $('#date').datepicker({  dateFormat: 'dd.mm.yy',  onSelect: function(dateText, inst) {   if($('#images-showcase-image').attr("src") == "#")  {   $( "#date" ).position({ of: $( "#images-showcase" ),		at: "right bottom",		  offset: "-152 -116"	});   $( "#navigation-images-gallerie" ).position({ of: $( "#date" ),		at: "bottom", 		  offset: "250 -58" });  }  setDate(dateText);  getImages(true, true);	    },   beforeShowDay: function(date){   var m = date.getMonth();   m = m+1;     var datekey = 'dirs-'+((date.getDate() < 10) ? "0" : "")+date.getDate()+'.'+((m < 10) ? "0" : "")+m+'.'+date.getFullYear();   if(document.getElementById(datekey)!=null){    return [true,""];   } else {    return [false,""];   }  } }); $( "#previous-image" ).button(); $( "#next-image" ).button(); $( "#auto-switch-image" ).button(); $("#ui-datepicker-div").hide(); // jQueryUI Debug  $( "#date" ).css( "opacity", 0.9 ); $( "#navigation-images-gallerie" ).css( "opacity", 0.9 );   }); 	    </script>  </body> </html>

Dann eine getFilesTT.php

Hier klicken, um den Code zum Kopieren zu markieren

[== PHP ==]
<?php   ini_set("display_errors", 1);     // Bilder-Verzeichnis (mit / am Ende)  define("DIR_IMAGES", "img/");   // Strutkur der Ordnernamen  define("DIR_IMAGES_NAME_STRUCTURE", "Y-m-d");  // Name des ersten Bildes im Ordner   define("IMAGES_NAME", "001");    // Wie weit duerfen die Bilder maximal zurueckliegen? (Angabe in Tagen)  define("OLDEST_DIR", 100);  // Wie viele Ordner sollen in der select-box angezeigt werden?    define("SHOW_DIRS", 10);   // Datum-Format der Ausgabe   define("DATE_FORMAT", "d.m.Y");     // Gibt den Ordner-Namen des juengsten Ordners im Format DIR_IMAGES_NAME_STRUCTURE zurueck  function getLatestDir()  {   $i = 0;    $latestDirName = DIR_IMAGES.date(DIR_IMAGES_NAME_STRUCTURE, strtotime("-".$i." day"));    while(!is_dir($latestDirName))   {    $i++;     $latestDirName = DIR_IMAGES.date(DIR_IMAGES_NAME_STRUCTURE, strtotime("-".$i." day"));     if(($i > OLDEST_DIR)) break;    }   if($i > OLDEST_DIR) exit("Der neuste Ordner ist &auml;lter als ".OLDEST_DIR." Tage");   return $latestDirName."/";   }  // Gibt die letzen SHOW_DIRS Ordner im Formar DIR_IMAGES_NAME_STRUCTURE zurueck, jedoch keinen Ordner der laenger als OLDEST_DIR Tage zurueck liegt  function getLatestDirs()  {   $i = 0;    $f = 0;    $latestDirNames = array();    while($f < SHOW_DIRS)   {     $latestDirName = DIR_IMAGES.date(DIR_IMAGES_NAME_STRUCTURE, strtotime("-".$i." day"));     if(is_dir($latestDirName))    {     $latestDirNames[] = date("Y/m/d", strtotime("-".$i." day"));  	$f++;     }	 	if($i > OLDEST_DIR) break;     $i++;   }  sort($latestDirNames);  foreach($latestDirNames as $K => $N)   {   unset($latestDirNames[$K]);   $latestDirNames[$K] = date(DATE_FORMAT, strtotime($N));   }      return ($latestDirNames);   }  // Liest $dirName aus und gibt alle Dateien zurueck  function scanImagesDir($dirName)   {   $dir = scandir($dirName);    $files = array();    foreach($dir as $file)   {    if($file == "." || $file == ".." || is_dir($dirName.$file)) continue;     $files[] = 'image.php?w=1024&zc=1&src='.$dirName.$file;    }   sort($files);    return $files;   }    // Pruefen welche Operation ausgefuehrt werden soll   switch($_GET["do"])  {   case "getLatestImages":     if((int)$_GET["date"] === 0)     echo json_encode(scanImagesDir(getLatestDir()));  	    else     echo json_encode(scanImagesDir(DIR_IMAGES.date(DIR_IMAGES_NAME_STRUCTURE, strtotime($_GET["date"])).'/'));  	exit;    break;    case "getLatestDirs": echo json_encode(getLatestDirs()); exit; break;    default: die("Keine Operation angegeben."); break;   } ?>

sowie eine image.php

Hier klicken, um den Code zum Kopieren zu markieren

[== PHP ==]
<?php $temp = parse_url($_SERVER["HTTP_REFERER"]);  if($_SERVER["HTTP_HOST"] != $temp["host"]) exit; /**  * TimThumb by Ben Gillbanks and Mark Maunder  * Based on work done by Tim McDaniels and Darren Hoyt  * http://code.google.com/p/timthumb/  *   * GNU General Public License, version 2  * http://www.gnu.org/licenses/old-licenses/gpl-2.0.html  *  * Examples and documentation available on the project homepage  * http://www.binarymoon.co.uk/projects/timthumb/  *   * $Rev$  */  /*  * --- TimThumb CONFIGURATION ---  * To edit the configs it is best to create a file called timthumb-config.php  * and define variables you want to customize in there. It will automatically be  * loaded by timthumb. This will save you having to re-edit these variables  * everytime you download a new version */ define ('VERSION', '2.8.10');																		// Version of this script  //Load a config file if it exists. Otherwise, use the values below if( file_exists(dirname(__FILE__) . '/timthumb-config.php'))	require_once('timthumb-config.php'); if(! defined('DEBUG_ON') )					define ('DEBUG_ON', false);								// Enable debug logging to web server error log (STDERR) if(! defined('DEBUG_LEVEL') )				define ('DEBUG_LEVEL', 1);								// Debug level 1 is less noisy and 3 is the most noisy if(! defined('MEMORY_LIMIT') )				define ('MEMORY_LIMIT', '30M');							// Set PHP memory limit if(! defined('BLOCK_EXTERNAL_LEECHERS') ) 	define ('BLOCK_EXTERNAL_LEECHERS', false);				// If the image or webshot is being loaded on an external site, display a red "No Hotlinking" gif.  //Image fetching and caching if(! defined('ALLOW_EXTERNAL') )			define ('ALLOW_EXTERNAL', TRUE);						// Allow image fetching from external websites. Will check against ALLOWED_SITES if ALLOW_ALL_EXTERNAL_SITES is false if(! defined('ALLOW_ALL_EXTERNAL_SITES') ) 	define ('ALLOW_ALL_EXTERNAL_SITES', false);				// Less secure.  if(! defined('FILE_CACHE_ENABLED') ) 		define ('FILE_CACHE_ENABLED', TRUE);					// Should we store resized/modified images on disk to speed things up? if(! defined('FILE_CACHE_TIME_BETWEEN_CLEANS'))	define ('FILE_CACHE_TIME_BETWEEN_CLEANS', 86400);	// How often the cache is cleaned   if(! defined('FILE_CACHE_MAX_FILE_AGE') ) 	define ('FILE_CACHE_MAX_FILE_AGE', 86400);				// How old does a file have to be to be deleted from the cache if(! defined('FILE_CACHE_SUFFIX') ) 		define ('FILE_CACHE_SUFFIX', '.timthumb.txt');			// What to put at the end of all files in the cache directory so we can identify them if(! defined('FILE_CACHE_PREFIX') ) 		define ('FILE_CACHE_PREFIX', 'timthumb');				// What to put at the beg of all files in the cache directory so we can identify them if(! defined('FILE_CACHE_DIRECTORY') ) 		define ('FILE_CACHE_DIRECTORY', './cache');				// Directory where images are cached. Left blank it will use the system temporary directory (which is better for security) if(! defined('MAX_FILE_SIZE') )				define ('MAX_FILE_SIZE', 10485760);						// 10 Megs is 10485760. This is the max internal or external file size that we'll process.   if(! defined('CURL_TIMEOUT') )				define ('CURL_TIMEOUT', 20);							// Timeout duration for Curl. This only applies if you have Curl installed and aren't using PHP's default URL fetching mechanism. if(! defined('WAIT_BETWEEN_FETCH_ERRORS') )	define ('WAIT_BETWEEN_FETCH_ERRORS', 3600);				//Time to wait between errors fetching remote file  //Browser caching if(! defined('BROWSER_CACHE_MAX_AGE') ) 	define ('BROWSER_CACHE_MAX_AGE', 864000);				// Time to cache in the browser if(! defined('BROWSER_CACHE_DISABLE') ) 	define ('BROWSER_CACHE_DISABLE', false);				// Use for testing if you want to disable all browser caching  //Image size and defaults if(! defined('MAX_WIDTH') ) 			define ('MAX_WIDTH', 1500);									// Maximum image width if(! defined('MAX_HEIGHT') ) 			define ('MAX_HEIGHT', 1500);								// Maximum image height if(! defined('NOT_FOUND_IMAGE') )		define ('NOT_FOUND_IMAGE', '');								// Image to serve if any 404 occurs  if(! defined('ERROR_IMAGE') )			define ('ERROR_IMAGE', '');									// Image to serve if an error occurs instead of showing error message  if(! defined('PNG_IS_TRANSPARENT') ) 	define ('PNG_IS_TRANSPARENT', FALSE);  //42 Define if a png image should have a transparent background color. Use False value if you want to display a custom coloured canvas_colour  if(! defined('DEFAULT_Q') )				define ('DEFAULT_Q', 90);									// Default image quality. Allows overrid in timthumb-config.php if(! defined('DEFAULT_ZC') )			define ('DEFAULT_ZC', 1);									// Default zoom/crop setting. Allows overrid in timthumb-config.php if(! defined('DEFAULT_F') )				define ('DEFAULT_F', '');									// Default image filters. Allows overrid in timthumb-config.php if(! defined('DEFAULT_S') )				define ('DEFAULT_S', 0);									// Default sharpen value. Allows overrid in timthumb-config.php if(! defined('DEFAULT_CC') )			define ('DEFAULT_CC', 'ffffff');							// Default canvas colour. Allows overrid in timthumb-config.php   //Image compression is enabled if either of these point to valid paths  //These are now disabled by default because the file sizes of PNGs (and GIFs) are much smaller than we used to generate.  //They only work for PNGs. GIFs and JPEGs are not affected. if(! defined('OPTIPNG_ENABLED') ) 		define ('OPTIPNG_ENABLED', false);   if(! defined('OPTIPNG_PATH') ) 			define ('OPTIPNG_PATH', '/usr/bin/optipng'); //This will run first because it gives better compression than pngcrush.  if(! defined('PNGCRUSH_ENABLED') ) 		define ('PNGCRUSH_ENABLED', false);  if(! defined('PNGCRUSH_PATH') ) 		define ('PNGCRUSH_PATH', '/usr/bin/pngcrush'); //This will only run if OPTIPNG_PATH is not set or is not valid  /* 	-------====Website Screenshots configuration - BETA====------- 	 	If you just want image thumbnails and don't want website screenshots, you can safely leave this as is.	 	 	If you would like to get website screenshots set up, you will need root access to your own server.  	Enable ALLOW_ALL_EXTERNAL_SITES so you can fetch any external web page. This is more secure now that we're using a non-web folder for cache. 	Enable BLOCK_EXTERNAL_LEECHERS so that your site doesn't generate thumbnails for the whole Internet.  	Instructions to get website screenshots enabled on Ubuntu Linux:  	1. Install Xvfb with the following command: sudo apt-get install subversion libqt4-webkit libqt4-dev g++ xvfb 	2. Go to a directory where you can download some code 	3. Check-out the latest version of CutyCapt with the following command: svn co https://cutycapt.svn.sourceforge.net/svnroot/cutycapt 	4. Compile CutyCapt by doing: cd cutycapt/CutyCapt 	5. qmake 	6. make 	7. cp CutyCapt /usr/local/bin/ 	8. Test it by running: xvfb-run --server-args="-screen 0, 1024x768x24" CutyCapt --url="http://markmaunder.com/" --out=test.png 	9. If you get a file called test.png with something in it, it probably worked. Now test the script by accessing it as follows: 	10. http://yoursite.com/path/to/timthumb.php?src=http://markmaunder.com/&webshot=1  	Notes on performance:  	The first time a webshot loads, it will take a few seconds. 	From then on it uses the regular timthumb caching mechanism with the configurable options above 	and loading will be very fast.  	--ADVANCED USERS ONLY-- 	If you'd like a slight speedup (about 25%) and you know Linux, you can run the following command which will keep Xvfb running in the background. 	nohup Xvfb :100 -ac -nolisten tcp -screen 0, 1024x768x24 > /dev/null 2>&1 & 	Then set WEBSHOT_XVFB_RUNNING = true below. This will save your server having to fire off a new Xvfb server and shut it down every time a new shot is generated.  	You will need to take responsibility for keeping Xvfb running in case it crashes. (It seems pretty stable) 	You will also need to take responsibility for server security if you're running Xvfb as root.    */ if(! defined('WEBSHOT_ENABLED') ) 	define ('WEBSHOT_ENABLED', false);			//Beta feature. Adding webshot=1 to your query string will cause the script to return a browser screenshot rather than try to fetch an image. if(! defined('WEBSHOT_CUTYCAPT') ) 	define ('WEBSHOT_CUTYCAPT', '/usr/local/bin/CutyCapt'); //The path to CutyCapt.  if(! defined('WEBSHOT_XVFB') ) 		define ('WEBSHOT_XVFB', '/usr/bin/xvfb-run');		//The path to the Xvfb server if(! defined('WEBSHOT_SCREEN_X') ) 	define ('WEBSHOT_SCREEN_X', '1024');			//1024 works ok if(! defined('WEBSHOT_SCREEN_Y') ) 	define ('WEBSHOT_SCREEN_Y', '768');			//768 works ok if(! defined('WEBSHOT_COLOR_DEPTH') ) 	define ('WEBSHOT_COLOR_DEPTH', '24');			//I haven't tested anything besides 24 if(! defined('WEBSHOT_IMAGE_FORMAT') ) 	define ('WEBSHOT_IMAGE_FORMAT', 'png');			//png is about 2.5 times the size of jpg but is a LOT better quality if(! defined('WEBSHOT_TIMEOUT') ) 	define ('WEBSHOT_TIMEOUT', '20');			//Seconds to wait for a webshot if(! defined('WEBSHOT_USER_AGENT') ) 	define ('WEBSHOT_USER_AGENT', "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-GB; rv:1.9.2.18) Gecko/20110614 Firefox/3.6.18"); //I hate to do this, but a non-browser robot user agent might not show what humans see. So we pretend to be Firefox if(! defined('WEBSHOT_JAVASCRIPT_ON') ) define ('WEBSHOT_JAVASCRIPT_ON', true);			//Setting to false might give you a slight speedup and block ads. But it could cause other issues. if(! defined('WEBSHOT_JAVA_ON') ) 	define ('WEBSHOT_JAVA_ON', false);			//Have only tested this as fase if(! defined('WEBSHOT_PLUGINS_ON') ) 	define ('WEBSHOT_PLUGINS_ON', true);			//Enable flash and other plugins if(! defined('WEBSHOT_PROXY') ) 	define ('WEBSHOT_PROXY', '');				//In case you're behind a proxy server.  if(! defined('WEBSHOT_XVFB_RUNNING') )	define ('WEBSHOT_XVFB_RUNNING', false);			//ADVANCED: Enable this if you've got Xvfb running in the background.   // If ALLOW_EXTERNAL is true and ALLOW_ALL_EXTERNAL_SITES is false, then external images will only be fetched from these domains and their subdomains.  if(! isset($ALLOWED_SITES)){ 	$ALLOWED_SITES = array ( 		'flickr.com', 		'staticflickr.com', 		'picasa.com', 		'img.youtube.com', 		'upload.wikimedia.org', 		'photobucket.com', 		'imgur.com', 		'imageshack.us', 		'tinypic.com', 	); } // ------------------------------------------------------------- // -------------- STOP EDITING CONFIGURATION HERE -------------- // -------------------------------------------------------------  timthumb::start();  class timthumb { 	protected $src = ""; 	protected $is404 = false; 	protected $docRoot = ""; 	protected $lastURLError = false; 	protected $localImage = ""; 	protected $localImageMTime = 0; 	protected $url = false; 	protected $myHost = ""; 	protected $isURL = false; 	protected $cachefile = ''; 	protected $errors = array(); 	protected $toDeletes = array(); 	protected $cacheDirectory = ''; 	protected $startTime = 0; 	protected $lastBenchTime = 0; 	protected $cropTop = false; 	protected $salt = ""; 	protected $fileCacheVersion = 1; //Generally if timthumb.php is modifed (upgraded) then the salt changes and all cache files are recreated. This is a backup mechanism to force regen. 	protected $filePrependSecurityBlock = "<?php die('Execution denied!'); //"; //Designed to have three letter mime type, space, question mark and greater than symbol appended. 6 bytes total. 	protected static $curlDataWritten = 0; 	protected static $curlFH = false; 	public static function start(){ 		$tim = new timthumb(); 		$tim->handleErrors(); 		$tim->securityChecks(); 		if($tim->tryBrowserCache()){ 			exit(0); 		} 		$tim->handleErrors(); 		if(FILE_CACHE_ENABLED && $tim->tryServerCache()){ 			exit(0); 		} 		$tim->handleErrors(); 		$tim->run(); 		$tim->handleErrors(); 		exit(0); 	} 	public function __construct(){ 		global $ALLOWED_SITES; 		$this->startTime = microtime(true); 		date_default_timezone_set('UTC'); 		$this->debug(1, "Starting new request from " . $this->getIP() . " to " . $_SERVER['REQUEST_URI']); 		$this->calcDocRoot(); 		//On windows systems I'm assuming fileinode returns an empty string or a number that doesn't change. Check this. 		$this->salt = @filemtime(__FILE__) . '-' . @fileinode(__FILE__); 		$this->debug(3, "Salt is: " . $this->salt); 		if(FILE_CACHE_DIRECTORY){ 			if(! is_dir(FILE_CACHE_DIRECTORY)){ 				@mkdir(FILE_CACHE_DIRECTORY); 				if(! is_dir(FILE_CACHE_DIRECTORY)){ 					$this->error("Could not create the file cache directory."); 					return false; 				} 			} 			$this->cacheDirectory = FILE_CACHE_DIRECTORY; 			if (!touch($this->cacheDirectory . '/index.html')) { 				$this->error("Could not create the index.html file - to fix this create an empty file named index.html file in the cache directory."); 			} 		} else { 			$this->cacheDirectory = sys_get_temp_dir(); 		} 		//Clean the cache before we do anything because we don't want the first visitor after FILE_CACHE_TIME_BETWEEN_CLEANS expires to get a stale image.  		$this->cleanCache(); 		 		$this->myHost = preg_replace('/^www\./i', '', $_SERVER['HTTP_HOST']); 		$this->src = $this->param('src'); 		$this->url = parse_url($this->src); 		$this->src = preg_replace('/https?:\/\/(?:www\.)?' . $this->myHost . '/i', '', $this->src); 		 		if(strlen($this->src) <= 3){ 			$this->error("No image specified"); 			return false; 		} 		if(BLOCK_EXTERNAL_LEECHERS && array_key_exists('HTTP_REFERER', $_SERVER) && (! preg_match('/^https?:\/\/(?:www\.)?' . $this->myHost . '(?:$|\/)/i', $_SERVER['HTTP_REFERER']))){ 			// base64 encoded red image that says 'no hotlinkers' 			// nothing to worry about! :) 			$imgData = base64_decode("R0lGODlhUAAMAIAAAP8AAP///yH5BAAHAP8ALAAAAABQAAwAAAJpjI+py+0Po5y0OgAMjjv01YUZ\nOGplhWXfNa6JCLnWkXplrcBmW+spbwvaVr/cDyg7IoFC2KbYVC2NQ5MQ4ZNao9Ynzjl9ScNYpneb\nDULB3RP6JuPuaGfuuV4fumf8PuvqFyhYtjdoeFgAADs="); 			header('Content-Type: image/gif'); 			header('Content-Length: ' . sizeof($imgData)); 			header('Cache-Control: no-store, no-cache, must-revalidate, max-age=0'); 			header("Pragma: no-cache"); 			header('Expires: ' . gmdate ('D, d M Y H:i:s', time())); 			echo $imgData; 			return false; 			exit(0); 		} 		if(preg_match('/^https?:\/\/[^\/]+/i', $this->src)){ 			$this->debug(2, "Is a request for an external URL: " . $this->src); 			$this->isURL = true; 		} else { 			$this->debug(2, "Is a request for an internal file: " . $this->src); 		} 		if($this->isURL && (! ALLOW_EXTERNAL)){ 			$this->error("You are not allowed to fetch images from an external website."); 			return false; 		} 		if($this->isURL){ 			if(ALLOW_ALL_EXTERNAL_SITES){ 				$this->debug(2, "Fetching from all external sites is enabled."); 			} else { 				$this->debug(2, "Fetching only from selected external sites is enabled."); 				$allowed = false; 				foreach($ALLOWED_SITES as $site){ 					if ((strtolower(substr($this->url['host'],-strlen($site)-1)) === strtolower(".$site")) || (strtolower($this->url['host'])===strtolower($site))) { 						$this->debug(3, "URL hostname {$this->url['host']} matches $site so allowing."); 						$allowed = true; 					} 				} 				if(! $allowed){ 					return $this->error("You may not fetch images from that site. To enable this site in timthumb, you can either add it to \$ALLOWED_SITES and set ALLOW_EXTERNAL=true. Or you can set ALLOW_ALL_EXTERNAL_SITES=true, depending on your security needs."); 				} 			} 		}  		$cachePrefix = ($this->isURL ? '_ext_' : '_int_'); 		if($this->isURL){ 			$arr = explode('&', $_SERVER ['QUERY_STRING']); 			asort($arr); 			$this->cachefile = $this->cacheDirectory . '/' . FILE_CACHE_PREFIX . $cachePrefix . md5($this->salt . implode('', $arr) . $this->fileCacheVersion) . FILE_CACHE_SUFFIX; 		} else { 			$this->localImage = $this->getLocalImagePath($this->src); 			if(! $this->localImage){ 				$this->debug(1, "Could not find the local image: {$this->localImage}"); 				$this->error("Could not find the internal image you specified."); 				$this->set404(); 				return false; 			} 			$this->debug(1, "Local image path is {$this->localImage}"); 			$this->localImageMTime = @filemtime($this->localImage); 			//We include the mtime of the local file in case in changes on disk. 			$this->cachefile = $this->cacheDirectory . '/' . FILE_CACHE_PREFIX . $cachePrefix . md5($this->salt . $this->localImageMTime . $_SERVER ['QUERY_STRING'] . $this->fileCacheVersion) . FILE_CACHE_SUFFIX; 		} 		$this->debug(2, "Cache file is: " . $this->cachefile);  		return true; 	} 	public function __destruct(){ 		foreach($this->toDeletes as $del){ 			$this->debug(2, "Deleting temp file $del"); 			@unlink($del); 		} 	} 	public function run(){ 		if($this->isURL){ 			if(! ALLOW_EXTERNAL){ 				$this->debug(1, "Got a request for an external image but ALLOW_EXTERNAL is disabled so returning error msg."); 				$this->error("You are not allowed to fetch images from an external website."); 				return false; 			} 			$this->debug(3, "Got request for external image. Starting serveExternalImage."); 			if($this->param('webshot')){ 				if(WEBSHOT_ENABLED){ 					$this->debug(3, "webshot param is set, so we're going to take a webshot."); 					$this->serveWebshot(); 				} else { 					$this->error("You added the webshot parameter but webshots are disabled on this server. You need to set WEBSHOT_ENABLED == true to enable webshots."); 				} 			} else { 				$this->debug(3, "webshot is NOT set so we're going to try to fetch a regular image."); 				$this->serveExternalImage();  			} 		} else { 			$this->debug(3, "Got request for internal image. Starting serveInternalImage()"); 			$this->serveInternalImage(); 		} 		return true; 	} 	protected function handleErrors(){ 		if($this->haveErrors()){  			if(NOT_FOUND_IMAGE && $this->is404()){ 				if($this->serveImg(NOT_FOUND_IMAGE)){ 					exit(0); 				} else { 					$this->error("Additionally, the 404 image that is configured could not be found or there was an error serving it."); 				} 			} 			if(ERROR_IMAGE){ 				if($this->serveImg(ERROR_IMAGE)){ 					exit(0); 				} else { 					$this->error("Additionally, the error image that is configured could not be found or there was an error serving it."); 				} 			} 			$this->serveErrors();  			exit(0);  		} 		return false; 	} 	protected function tryBrowserCache(){ 		if(BROWSER_CACHE_DISABLE){ $this->debug(3, "Browser caching is disabled"); return false; } 		if(!empty($_SERVER['HTTP_IF_MODIFIED_SINCE']) ){ 			$this->debug(3, "Got a conditional get"); 			$mtime = false; 			//We've already checked if the real file exists in the constructor 			if(! is_file($this->cachefile)){ 				//If we don't have something cached, regenerate the cached image. 				return false; 			} 			if($this->localImageMTime){ 				$mtime = $this->localImageMTime; 				$this->debug(3, "Local real file's modification time is $mtime"); 			} else if(is_file($this->cachefile)){ //If it's not a local request then use the mtime of the cached file to determine the 304 				$mtime = @filemtime($this->cachefile); 				$this->debug(3, "Cached file's modification time is $mtime"); 			} 			if(! $mtime){ return false; }  			$iftime = strtotime($_SERVER['HTTP_IF_MODIFIED_SINCE']); 			$this->debug(3, "The conditional get's if-modified-since unixtime is $iftime"); 			if($iftime < 1){ 				$this->debug(3, "Got an invalid conditional get modified since time. Returning false."); 				return false; 			} 			if($iftime < $mtime){ //Real file or cache file has been modified since last request, so force refetch. 				$this->debug(3, "File has been modified since last fetch."); 				return false; 			} else { //Otherwise serve a 304 				$this->debug(3, "File has not been modified since last get, so serving a 304."); 				header ($_SERVER['SERVER_PROTOCOL'] . ' 304 Not Modified'); 				$this->debug(1, "Returning 304 not modified"); 				return true; 			} 		} 		return false; 	} 	protected function tryServerCache(){ 		$this->debug(3, "Trying server cache"); 		if(file_exists($this->cachefile)){ 			$this->debug(3, "Cachefile {$this->cachefile} exists"); 			if($this->isURL){ 				$this->debug(3, "This is an external request, so checking if the cachefile is empty which means the request failed previously."); 				if(filesize($this->cachefile) < 1){ 					$this->debug(3, "Found an empty cachefile indicating a failed earlier request. Checking how old it is."); 					//Fetching error occured previously 					if(time() - @filemtime($this->cachefile) > WAIT_BETWEEN_FETCH_ERRORS){ 						$this->debug(3, "File is older than " . WAIT_BETWEEN_FETCH_ERRORS . " seconds. Deleting and returning false so app can try and load file."); 						@unlink($this->cachefile); 						return false; //to indicate we didn't serve from cache and app should try and load 					} else { 						$this->debug(3, "Empty cachefile is still fresh so returning message saying we had an error fetching this image from remote host."); 						$this->set404(); 						$this->error("An error occured fetching image."); 						return false;  					} 				} 			} else { 				$this->debug(3, "Trying to serve cachefile {$this->cachefile}"); 			} 			if($this->serveCacheFile()){ 				$this->debug(3, "Succesfully served cachefile {$this->cachefile}"); 				return true; 			} else { 				$this->debug(3, "Failed to serve cachefile {$this->cachefile} - Deleting it from cache."); 				//Image serving failed. We can't retry at this point, but lets remove it from cache so the next request recreates it 				@unlink($this->cachefile); 				return true; 			} 		} 	} 	protected function error($err){ 		$this->debug(3, "Adding error message: $err"); 		$this->errors[] = $err; 		return false;  	} 	protected function haveErrors(){ 		if(sizeof($this->errors) > 0){ 			return true; 		} 		return false; 	} 	protected function serveErrors(){ 		header ($_SERVER['SERVER_PROTOCOL'] . ' 400 Bad Request'); 		$html = '<ul>'; 		foreach($this->errors as $err){ 			$html .= '<li>' . htmlentities($err) . '</li>'; 		} 		$html .= '</ul>'; 		echo '<h1>A TimThumb error has occured</h1>The following error(s) occured:<br />' . $html . '<br />'; 		echo '<br />Query String : ' . htmlentities ($_SERVER['QUERY_STRING']); 		echo '<br />TimThumb version : ' . VERSION . '</pre>'; 	} 	protected function serveInternalImage(){ 		$this->debug(3, "Local image path is $this->localImage"); 		if(! $this->localImage){ 			$this->sanityFail("localImage not set after verifying it earlier in the code."); 			return false; 		} 		$fileSize = filesize($this->localImage); 		if($fileSize > MAX_FILE_SIZE){ 			$this->error("The file you specified is greater than the maximum allowed file size."); 			return false; 		} 		if($fileSize <= 0){ 			$this->error("The file you specified is <= 0 bytes."); 			return false; 		} 		$this->debug(3, "Calling processImageAndWriteToCache() for local image."); 		if($this->processImageAndWriteToCache($this->localImage)){ 			$this->serveCacheFile(); 			return true; 		} else {  			return false; 		} 	} 	protected function cleanCache(){ 		if (FILE_CACHE_TIME_BETWEEN_CLEANS < 0) { 			return; 		} 		$this->debug(3, "cleanCache() called"); 		$lastCleanFile = $this->cacheDirectory . '/timthumb_cacheLastCleanTime.touch'; 		 		//If this is a new timthumb installation we need to create the file 		if(! is_file($lastCleanFile)){ 			$this->debug(1, "File tracking last clean doesn't exist. Creating $lastCleanFile"); 			if (!touch($lastCleanFile)) { 				$this->error("Could not create cache clean timestamp file."); 			} 			return; 		} 		if(@filemtime($lastCleanFile) < (time() - FILE_CACHE_TIME_BETWEEN_CLEANS) ){ //Cache was last cleaned more than 1 day ago 			$this->debug(1, "Cache was last cleaned more than " . FILE_CACHE_TIME_BETWEEN_CLEANS . " seconds ago. Cleaning now."); 			// Very slight race condition here, but worst case we'll have 2 or 3 servers cleaning the cache simultaneously once a day. 			if (!touch($lastCleanFile)) { 				$this->error("Could not create cache clean timestamp file."); 			} 			$files = glob($this->cacheDirectory . '/*' . FILE_CACHE_SUFFIX); 			if ($files) { 				$timeAgo = time() - FILE_CACHE_MAX_FILE_AGE; 				foreach($files as $file){ 					if(@filemtime($file) < $timeAgo){ 						$this->debug(3, "Deleting cache file $file older than max age: " . FILE_CACHE_MAX_FILE_AGE . " seconds"); 						@unlink($file); 					} 				} 			} 			return true; 		} else { 			$this->debug(3, "Cache was cleaned less than " . FILE_CACHE_TIME_BETWEEN_CLEANS . " seconds ago so no cleaning needed."); 		} 		return false; 	} 	protected function processImageAndWriteToCache($localImage){ 		$sData = getimagesize($localImage); 		$origType = $sData[2]; 		$mimeType = $sData['mime'];  		$this->debug(3, "Mime type of image is $mimeType"); 		if(! preg_match('/^image\/(?:gif|jpg|jpeg|png)$/i', $mimeType)){ 			return $this->error("The image being resized is not a valid gif, jpg or png."); 		}  		if (!function_exists ('imagecreatetruecolor')) { 		    return $this->error('GD Library Error: imagecreatetruecolor does not exist - please contact your webhost and ask them to install the GD library'); 		}  		if (function_exists ('imagefilter') && defined ('IMG_FILTER_NEGATE')) { 			$imageFilters = array ( 				1 => array (IMG_FILTER_NEGATE, 0), 				2 => array (IMG_FILTER_GRAYSCALE, 0), 				3 => array (IMG_FILTER_BRIGHTNESS, 1), 				4 => array (IMG_FILTER_CONTRAST, 1), 				5 => array (IMG_FILTER_COLORIZE, 4), 				6 => array (IMG_FILTER_EDGEDETECT, 0), 				7 => array (IMG_FILTER_EMBOSS, 0), 				8 => array (IMG_FILTER_GAUSSIAN_BLUR, 0), 				9 => array (IMG_FILTER_SELECTIVE_BLUR, 0), 				10 => array (IMG_FILTER_MEAN_REMOVAL, 0), 				11 => array (IMG_FILTER_SMOOTH, 0), 			); 		}  		// get standard input properties		 		$new_width =  (int) abs ($this->param('w', 0)); 		$new_height = (int) abs ($this->param('h', 0)); 		$zoom_crop = (int) $this->param('zc', DEFAULT_ZC); 		$quality = (int) abs ($this->param('q', DEFAULT_Q)); 		$align = $this->cropTop ? 't' : $this->param('a', 'c'); 		$filters = $this->param('f', DEFAULT_F); 		$sharpen = (bool) $this->param('s', DEFAULT_S); 		$canvas_color = $this->param('cc', DEFAULT_CC); 		$canvas_trans = (bool) $this->param('ct', '1');  		// set default width and height if neither are set already 		if ($new_width == 0 && $new_height == 0) { 		    $new_width = 100; 		    $new_height = 100; 		}  		// ensure size limits can not be abused 		$new_width = min ($new_width, MAX_WIDTH); 		$new_height = min ($new_height, MAX_HEIGHT);  		// set memory limit to be able to have enough space to resize larger images 		$this->setMemoryLimit();  		// open the existing image 		$image = $this->openImage ($mimeType, $localImage); 		if ($image === false) { 			return $this->error('Unable to open image.'); 		}  		// Get original width and height 		$width = imagesx ($image); 		$height = imagesy ($image); 		$origin_x = 0; 		$origin_y = 0;  		// generate new w/h if not provided 		if ($new_width && !$new_height) { 			$new_height = floor ($height * ($new_width / $width)); 		} else if ($new_height && !$new_width) { 			$new_width = floor ($width * ($new_height / $height)); 		}  		// scale down and add borders 		if ($zoom_crop == 3) {  			$final_height = $height * ($new_width / $width);  			if ($final_height > $new_height) { 				$new_width = $width * ($new_height / $height); 			} else { 				$new_height = $final_height; 			}  		}  		// create a new true color image 		$canvas = imagecreatetruecolor ($new_width, $new_height); 		imagealphablending ($canvas, false);  		if (strlen($canvas_color) == 3) { //if is 3-char notation, edit string into 6-char notation 			$canvas_color =  str_repeat(substr($canvas_color, 0, 1), 2) . str_repeat(substr($canvas_color, 1, 1), 2) . str_repeat(substr($canvas_color, 2, 1), 2);  		} else if (strlen($canvas_color) != 6) { 			$canvas_color = DEFAULT_CC; // on error return default canvas color  		}  		$canvas_color_R = hexdec (substr ($canvas_color, 0, 2)); 		$canvas_color_G = hexdec (substr ($canvas_color, 2, 2)); 		$canvas_color_B = hexdec (substr ($canvas_color, 4, 2));  		// Create a new transparent color for image 	    // If is a png and PNG_IS_TRANSPARENT is false then remove the alpha transparency  		// (and if is set a canvas color show it in the background) 		if(preg_match('/^image\/png$/i', $mimeType) && !PNG_IS_TRANSPARENT && $canvas_trans){  			$color = imagecolorallocatealpha ($canvas, $canvas_color_R, $canvas_color_G, $canvas_color_B, 127);		 		}else{ 			$color = imagecolorallocatealpha ($canvas, $canvas_color_R, $canvas_color_G, $canvas_color_B, 0); 		}   		// Completely fill the background of the new image with allocated color. 		imagefill ($canvas, 0, 0, $color);  		// scale down and add borders 		if ($zoom_crop == 2) {  			$final_height = $height * ($new_width / $width);  			if ($final_height > $new_height) {  				$origin_x = $new_width / 2; 				$new_width = $width * ($new_height / $height); 				$origin_x = round ($origin_x - ($new_width / 2));  			} else {  				$origin_y = $new_height / 2; 				$new_height = $final_height; 				$origin_y = round ($origin_y - ($new_height / 2));  			}  		}  		// Restore transparency blending 		imagesavealpha ($canvas, true);  		if ($zoom_crop > 0) {  			$src_x = $src_y = 0; 			$src_w = $width; 			$src_h = $height;  			$cmp_x = $width / $new_width; 			$cmp_y = $height / $new_height;  			// calculate x or y coordinate and width or height of source 			if ($cmp_x > $cmp_y) {  				$src_w = round ($width / $cmp_x * $cmp_y); 				$src_x = round (($width - ($width / $cmp_x * $cmp_y)) / 2);  			} else if ($cmp_y > $cmp_x) {  				$src_h = round ($height / $cmp_y * $cmp_x); 				$src_y = round (($height - ($height / $cmp_y * $cmp_x)) / 2);  			}  			// positional cropping! 			if ($align) { 				if (strpos ($align, 't') !== false) { 					$src_y = 0; 				} 				if (strpos ($align, 'b') !== false) { 					$src_y = $height - $src_h; 				} 				if (strpos ($align, 'l') !== false) { 					$src_x = 0; 				} 				if (strpos ($align, 'r') !== false) { 					$src_x = $width - $src_w; 				} 			}  			imagecopyresampled ($canvas, $image, $origin_x, $origin_y, $src_x, $src_y, $new_width, $new_height, $src_w, $src_h);  		} else {  			// copy and resize part of an image with resampling 			imagecopyresampled ($canvas, $image, 0, 0, 0, 0, $new_width, $new_height, $width, $height);  		}  		if ($filters != '' && function_exists ('imagefilter') && defined ('IMG_FILTER_NEGATE')) { 			// apply filters to image 			$filterList = explode ('|', $filters); 			foreach ($filterList as $fl) {  				$filterSettings = explode (',', $fl); 				if (isset ($imageFilters[$filterSettings[0]])) {  					for ($i = 0; $i < 4; $i ++) { 						if (!isset ($filterSettings[$i])) { 							$filterSettings[$i] = null; 						} else { 							$filterSettings[$i] = (int) $filterSettings[$i]; 						} 					}  					switch ($imageFilters[$filterSettings[0]][1]) {  						case 1:  							imagefilter ($canvas, $imageFilters[$filterSettings[0]][0], $filterSettings[1]); 							break;  						case 2:  							imagefilter ($canvas, $imageFilters[$filterSettings[0]][0], $filterSettings[1], $filterSettings[2]); 							break;  						case 3:  							imagefilter ($canvas, $imageFilters[$filterSettings[0]][0], $filterSettings[1], $filterSettings[2], $filterSettings[3]); 							break;  						case 4:  							imagefilter ($canvas, $imageFilters[$filterSettings[0]][0], $filterSettings[1], $filterSettings[2], $filterSettings[3], $filterSettings[4]); 							break;  						default:  							imagefilter ($canvas, $imageFilters[$filterSettings[0]][0]); 							break;  					} 				} 			} 		}  		// sharpen image 		if ($sharpen && function_exists ('imageconvolution')) {  			$sharpenMatrix = array ( 					array (-1,-1,-1), 					array (-1,16,-1), 					array (-1,-1,-1), 					);  			$divisor = 8; 			$offset = 0;  			imageconvolution ($canvas, $sharpenMatrix, $divisor, $offset);  		} 		//Straight from Wordpress core code. Reduces filesize by up to 70% for PNG's 		if ( (IMAGETYPE_PNG == $origType || IMAGETYPE_GIF == $origType) && function_exists('imageistruecolor') && !imageistruecolor( $image ) && imagecolortransparent( $image ) > 0 ){ 			imagetruecolortopalette( $canvas, false, imagecolorstotal( $image ) ); 		}  		$imgType = ""; 		$tempfile = tempnam($this->cacheDirectory, 'timthumb_tmpimg_'); 		if(preg_match('/^image\/(?:jpg|jpeg)$/i', $mimeType)){  			$imgType = 'jpg'; 			imagejpeg($canvas, $tempfile, $quality);  		} else if(preg_match('/^image\/png$/i', $mimeType)){  			$imgType = 'png'; 			imagepng($canvas, $tempfile, floor($quality * 0.09)); 		} else if(preg_match('/^image\/gif$/i', $mimeType)){ 			$imgType = 'gif'; 			imagegif($canvas, $tempfile); 		} else { 			return $this->sanityFail("Could not match mime type after verifying it previously."); 		}  		if($imgType == 'png' && OPTIPNG_ENABLED && OPTIPNG_PATH && @is_file(OPTIPNG_PATH)){ 			$exec = OPTIPNG_PATH; 			$this->debug(3, "optipng'ing $tempfile"); 			$presize = filesize($tempfile); 			$out = `$exec -o1 $tempfile`; //you can use up to -o7 but it really slows things down 			clearstatcache(); 			$aftersize = filesize($tempfile); 			$sizeDrop = $presize - $aftersize; 			if($sizeDrop > 0){ 				$this->debug(1, "optipng reduced size by $sizeDrop"); 			} else if($sizeDrop < 0){ 				$this->debug(1, "optipng increased size! Difference was: $sizeDrop"); 			} else { 				$this->debug(1, "optipng did not change image size."); 			} 		} else if($imgType == 'png' && PNGCRUSH_ENABLED && PNGCRUSH_PATH && @is_file(PNGCRUSH_PATH)){ 			$exec = PNGCRUSH_PATH; 			$tempfile2 = tempnam($this->cacheDirectory, 'timthumb_tmpimg_'); 			$this->debug(3, "pngcrush'ing $tempfile to $tempfile2"); 			$out = `$exec $tempfile $tempfile2`; 			$todel = ""; 			if(is_file($tempfile2)){ 				$sizeDrop = filesize($tempfile) - filesize($tempfile2); 				if($sizeDrop > 0){ 					$this->debug(1, "pngcrush was succesful and gave a $sizeDrop byte size reduction"); 					$todel = $tempfile; 					$tempfile = $tempfile2; 				} else { 					$this->debug(1, "pngcrush did not reduce file size. Difference was $sizeDrop bytes."); 					$todel = $tempfile2; 				} 			} else { 				$this->debug(3, "pngcrush failed with output: $out"); 				$todel = $tempfile2; 			} 			@unlink($todel); 		}  		$this->debug(3, "Rewriting image with security header."); 		$tempfile4 = tempnam($this->cacheDirectory, 'timthumb_tmpimg_'); 		$context = stream_context_create (); 		$fp = fopen($tempfile,'r',0,$context); 		file_put_contents($tempfile4, $this->filePrependSecurityBlock . $imgType . ' ?' . '>'); //6 extra bytes, first 3 being image type  		file_put_contents($tempfile4, $fp, FILE_APPEND); 		fclose($fp); 		@unlink($tempfile); 		$this->debug(3, "Locking and replacing cache file."); 		$lockFile = $this->cachefile . '.lock'; 		$fh = fopen($lockFile, 'w'); 		if(! $fh){ 			return $this->error("Could not open the lockfile for writing an image."); 		} 		if(flock($fh, LOCK_EX)){ 			@unlink($this->cachefile); //rename generally overwrites, but doing this in case of platform specific quirks. File might not exist yet. 			rename($tempfile4, $this->cachefile); 			flock($fh, LOCK_UN); 			fclose($fh); 			@unlink($lockFile); 		} else { 			fclose($fh); 			@unlink($lockFile); 			@unlink($tempfile4); 			return $this->error("Could not get a lock for writing."); 		} 		$this->debug(3, "Done image replace with security header. Cleaning up and running cleanCache()"); 		imagedestroy($canvas); 		imagedestroy($image); 		return true; 	} 	protected function calcDocRoot(){ 		$docRoot = @$_SERVER['DOCUMENT_ROOT']; 		if (defined('LOCAL_FILE_BASE_DIRECTORY')) { 			$docRoot = LOCAL_FILE_BASE_DIRECTORY;    		} 		if(!isset($docRoot)){  			$this->debug(3, "DOCUMENT_ROOT is not set. This is probably windows. Starting search 1."); 			if(isset($_SERVER['SCRIPT_FILENAME'])){ 				$docRoot = str_replace( '\\', '/', substr($_SERVER['SCRIPT_FILENAME'], 0, 0-strlen($_SERVER['PHP_SELF']))); 				$this->debug(3, "Generated docRoot using SCRIPT_FILENAME and PHP_SELF as: $docRoot"); 			}  		} 		if(!isset($docRoot)){  			$this->debug(3, "DOCUMENT_ROOT still is not set. Starting search 2."); 			if(isset($_SERVER['PATH_TRANSLATED'])){ 				$docRoot = str_replace( '\\', '/', substr(str_replace('\\\\', '\\', $_SERVER['PATH_TRANSLATED']), 0, 0-strlen($_SERVER['PHP_SELF']))); 				$this->debug(3, "Generated docRoot using PATH_TRANSLATED and PHP_SELF as: $docRoot"); 			}  		} 		if($docRoot && $_SERVER['DOCUMENT_ROOT'] != '/'){ $docRoot = preg_replace('/\/$/', '', $docRoot); } 		$this->debug(3, "Doc root is: " . $docRoot); 		$this->docRoot = $docRoot;  	} 	protected function getLocalImagePath($src){ 		$src = ltrim($src, '/'); //strip off the leading '/' 		if(! $this->docRoot){ 			$this->debug(3, "We have no document root set, so as a last resort, lets check if the image is in the current dir and serve that."); 			//We don't support serving images outside the current dir if we don't have a doc root for security reasons. 			$file = preg_replace('/^.*?([^\/\\\\]+)$/', '$1', $src); //strip off any path info and just leave the filename. 			if(is_file($file)){ 				return $this->realpath($file); 			} 			return $this->error("Could not find your website document root and the file specified doesn't exist in timthumbs directory. We don't support serving files outside timthumb's directory without a document root for security reasons."); 		} //Do not go past this point without docRoot set  		//Try src under docRoot 		if(file_exists ($this->docRoot . '/' . $src)) { 			$this->debug(3, "Found file as " . $this->docRoot . '/' . $src); 			$real = $this->realpath($this->docRoot . '/' . $src); 			if(stripos($real, $this->docRoot) === 0){ 				return $real; 			} else { 				$this->debug(1, "Security block: The file specified occurs outside the document root."); 				//allow search to continue 			} 		} 		//Check absolute paths and then verify the real path is under doc root 		$absolute = $this->realpath('/' . $src); 		if($absolute && file_exists($absolute)){ //realpath does file_exists check, so can probably skip the exists check here 			$this->debug(3, "Found absolute path: $absolute"); 			if(! $this->docRoot){ $this->sanityFail("docRoot not set when checking absolute path."); } 			if(stripos($absolute, $this->docRoot) === 0){ 				return $absolute; 			} else { 				$this->debug(1, "Security block: The file specified occurs outside the document root."); 				//and continue search 			} 		} 		 		$base = $this->docRoot; 		 		// account for Windows directory structure 		if (strstr($_SERVER['SCRIPT_FILENAME'],':')) { 			$sub_directories = explode('\\', str_replace($this->docRoot, '', $_SERVER['SCRIPT_FILENAME'])); 		} else { 			$sub_directories = explode('/', str_replace($this->docRoot, '', $_SERVER['SCRIPT_FILENAME'])); 		}  		foreach ($sub_directories as $sub){ 			$base .= $sub . '/'; 			$this->debug(3, "Trying file as: " . $base . $src); 			if(file_exists($base . $src)){ 				$this->debug(3, "Found file as: " . $base . $src); 				$real = $this->realpath($base . $src); 				if(stripos($real, $this->realpath($this->docRoot)) === 0){ 					return $real; 				} else { 					$this->debug(1, "Security block: The file specified occurs outside the document root."); 					//And continue search 				} 			} 		} 		return false; 	} 	protected function realpath($path){ 		//try to remove any relative paths 		$remove_relatives = '/\w+\/\.\.\//'; 		while(preg_match($remove_relatives,$path)){ 		    $path = preg_replace($remove_relatives, '', $path); 		} 		//if any remain use PHP realpath to strip them out, otherwise return $path 		//if using realpath, any symlinks will also be resolved 		return preg_match('#^\.\./|/\.\./#', $path) ? realpath($path) : $path; 	} 	protected function toDelete($name){ 		$this->debug(3, "Scheduling file $name to delete on destruct."); 		$this->toDeletes[] = $name; 	} 	protected function serveWebshot(){ 		$this->debug(3, "Starting serveWebshot"); 		$instr = "Please follow the instructions at http://code.google.com/p/timthumb/ to set your server up for taking website screenshots."; 		if(! is_file(WEBSHOT_CUTYCAPT)){ 			return $this->error("CutyCapt is not installed. $instr"); 		} 		if(! is_file(WEBSHOT_XVFB)){ 			return $this->Error("Xvfb is not installed. $instr"); 		} 		$cuty = WEBSHOT_CUTYCAPT; 		$xv = WEBSHOT_XVFB; 		$screenX = WEBSHOT_SCREEN_X; 		$screenY = WEBSHOT_SCREEN_Y; 		$colDepth = WEBSHOT_COLOR_DEPTH; 		$format = WEBSHOT_IMAGE_FORMAT; 		$timeout = WEBSHOT_TIMEOUT * 1000; 		$ua = WEBSHOT_USER_AGENT; 		$jsOn = WEBSHOT_JAVASCRIPT_ON ? 'on' : 'off'; 		$javaOn = WEBSHOT_JAVA_ON ? 'on' : 'off'; 		$pluginsOn = WEBSHOT_PLUGINS_ON ? 'on' : 'off'; 		$proxy = WEBSHOT_PROXY ? ' --http-proxy=' . WEBSHOT_PROXY : ''; 		$tempfile = tempnam($this->cacheDirectory, 'timthumb_webshot'); 		$url = $this->src; 		if(! preg_match('/^https?:\/\/[a-zA-Z0-9\.\-]+/i', $url)){ 			return $this->error("Invalid URL supplied."); 		} 		$url = preg_replace('/[^A-Za-z0-9\-\.\_\~:\/\?\#\[\]\@\!\$\&\'\(\)\*\+\,\;\=]+/', '', $url); //RFC 3986 		//Very important we don't allow injection of shell commands here. URL is between quotes and we are only allowing through chars allowed by a the RFC  		// which AFAIKT can't be used for shell injection.  		if(WEBSHOT_XVFB_RUNNING){ 			putenv('DISPLAY=:100.0'); 			$command = "$cuty $proxy --max-wait=$timeout --user-agent=\"$ua\" --javascript=$jsOn --java=$javaOn --plugins=$pluginsOn --js-can-open-windows=off --url=\"$url\" --out-format=$format --out=$tempfile"; 		} else { 			$command = "$xv --server-args=\"-screen 0, {$screenX}x{$screenY}x{$colDepth}\" $cuty $proxy --max-wait=$timeout --user-agent=\"$ua\" --javascript=$jsOn --java=$javaOn --plugins=$pluginsOn --js-can-open-windows=off --url=\"$url\" --out-format=$format --out=$tempfile"; 		} 		$this->debug(3, "Executing command: $command"); 		$out = `$command`; 		$this->debug(3, "Received output: $out"); 		if(! is_file($tempfile)){ 			$this->set404(); 			return $this->error("The command to create a thumbnail failed."); 		} 		$this->cropTop = true; 		if($this->processImageAndWriteToCache($tempfile)){ 			$this->debug(3, "Image processed succesfully. Serving from cache"); 			return $this->serveCacheFile(); 		} else { 			return false; 		} 	} 	protected function serveExternalImage(){ 		if(! preg_match('/^https?:\/\/[a-zA-Z0-9\-\.]+/i', $this->src)){ 			$this->error("Invalid URL supplied."); 			return false; 		} 		$tempfile = tempnam($this->cacheDirectory, 'timthumb'); 		$this->debug(3, "Fetching external image into temporary file $tempfile"); 		$this->toDelete($tempfile); 		#fetch file here 		if(! $this->getURL($this->src, $tempfile)){ 			@unlink($this->cachefile); 			touch($this->cachefile); 			$this->debug(3, "Error fetching URL: " . $this->lastURLError); 			$this->error("Error reading the URL you specified from remote host." . $this->lastURLError); 			return false; 		}  		$mimeType = $this->getMimeType($tempfile); 		if(! preg_match("/^image\/(?:jpg|jpeg|gif|png)$/i", $mimeType)){ 			$this->debug(3, "Remote file has invalid mime type: $mimeType"); 			@unlink($this->cachefile); 			touch($this->cachefile); 			$this->error("The remote file is not a valid image."); 			return false; 		} 		if($this->processImageAndWriteToCache($tempfile)){ 			$this->debug(3, "Image processed succesfully. Serving from cache"); 			return $this->serveCacheFile(); 		} else { 			return false; 		} 	} 	public static function curlWrite($h, $d){ 		fwrite(self::$curlFH, $d); 		self::$curlDataWritten += strlen($d); 		if(self::$curlDataWritten > MAX_FILE_SIZE){ 			return 0; 		} else { 			return strlen($d); 		} 	} 	protected function serveCacheFile(){ 		$this->debug(3, "Serving {$this->cachefile}"); 		if(! is_file($this->cachefile)){ 			$this->error("serveCacheFile called in timthumb but we couldn't find the cached file."); 			return false; 		} 		$fp = fopen($this->cachefile, 'rb'); 		if(! $fp){ return $this->error("Could not open cachefile."); } 		fseek($fp, strlen($this->filePrependSecurityBlock), SEEK_SET); 		$imgType = fread($fp, 3); 		fseek($fp, 3, SEEK_CUR); 		if(ftell($fp) != strlen($this->filePrependSecurityBlock) + 6){ 			@unlink($this->cachefile); 			return $this->error("The cached image file seems to be corrupt."); 		} 		$imageDataSize = filesize($this->cachefile) - (strlen($this->filePrependSecurityBlock) + 6); 		$this->sendImageHeaders($imgType, $imageDataSize); 		$bytesSent = @fpassthru($fp); 		fclose($fp); 		if($bytesSent > 0){ 			return true; 		} 		$content = file_get_contents ($this->cachefile); 		if ($content != FALSE) { 			$content = substr($content, strlen($this->filePrependSecurityBlock) + 6); 			echo $content; 			$this->debug(3, "Served using file_get_contents and echo"); 			return true; 		} else { 			$this->error("Cache file could not be loaded."); 			return false; 		} 	} 	protected function sendImageHeaders($mimeType, $dataSize){ 		if(! preg_match('/^image\//i', $mimeType)){ 			$mimeType = 'image/' . $mimeType; 		} 		if(strtolower($mimeType) == 'image/jpg'){ 			$mimeType = 'image/jpeg'; 		} 		$gmdate_expires = gmdate ('D, d M Y H:i:s', strtotime ('now +10 days')) . ' GMT'; 		$gmdate_modified = gmdate ('D, d M Y H:i:s') . ' GMT'; 		// send content headers then display image 		header ('Content-Type: ' . $mimeType); 		header ('Accept-Ranges: none'); //Changed this because we don't accept range requests 		header ('Last-Modified: ' . $gmdate_modified); 		header ('Content-Length: ' . $dataSize); 		if(BROWSER_CACHE_DISABLE){ 			$this->debug(3, "Browser cache is disabled so setting non-caching headers."); 			header('Cache-Control: no-store, no-cache, must-revalidate, max-age=0'); 			header("Pragma: no-cache"); 			header('Expires: ' . gmdate ('D, d M Y H:i:s', time())); 		} else { 			$this->debug(3, "Browser caching is enabled"); 			header('Cache-Control: max-age=' . BROWSER_CACHE_MAX_AGE . ', must-revalidate'); 			header('Expires: ' . $gmdate_expires); 		} 		return true; 	} 	protected function securityChecks(){ 	} 	protected function param($property, $default = ''){ 		if (isset ($_GET[$property])) { 			return $_GET[$property]; 		} else { 			return $default; 		} 	} 	protected function openImage($mimeType, $src){ 		switch ($mimeType) { 			case 'image/jpeg': 				$image = imagecreatefromjpeg ($src); 				break;  			case 'image/png': 				$image = imagecreatefrompng ($src); 				break;  			case 'image/gif': 				$image = imagecreatefromgif ($src); 				break; 			 			default: 				$this->error("Unrecognised mimeType"); 		}  		return $image; 	} 	protected function getIP(){ 		$rem = @$_SERVER["REMOTE_ADDR"]; 		$ff = @$_SERVER["HTTP_X_FORWARDED_FOR"]; 		$ci = @$_SERVER["HTTP_CLIENT_IP"]; 		if(preg_match('/^(?:192\.168|172\.16|10\.|127\.)/', $rem)){  			if($ff){ return $ff; } 			if($ci){ return $ci; } 			return $rem; 		} else { 			if($rem){ return $rem; } 			if($ff){ return $ff; } 			if($ci){ return $ci; } 			return "UNKNOWN"; 		} 	} 	protected function debug($level, $msg){ 		if(DEBUG_ON && $level <= DEBUG_LEVEL){ 			$execTime = sprintf('%.6f', microtime(true) - $this->startTime); 			$tick = sprintf('%.6f', 0); 			if($this->lastBenchTime > 0){ 				$tick = sprintf('%.6f', microtime(true) - $this->lastBenchTime); 			} 			$this->lastBenchTime = microtime(true); 			error_log("TimThumb Debug line " . __LINE__ . " [$execTime : $tick]: $msg"); 		} 	} 	protected function sanityFail($msg){ 		return $this->error("There is a problem in the timthumb code. Message: Please report this error at <a href='http://code.google.com/p/timthumb/issues/list'>timthumb's bug tracking page</a>: $msg"); 	} 	protected function getMimeType($file){ 		$info = getimagesize($file); 		if(is_array($info) && $info['mime']){ 			return $info['mime']; 		} 		return ''; 	} 	protected function setMemoryLimit(){ 		$inimem = ini_get('memory_limit'); 		$inibytes = timthumb::returnBytes($inimem); 		$ourbytes = timthumb::returnBytes(MEMORY_LIMIT); 		if($inibytes < $ourbytes){ 			ini_set ('memory_limit', MEMORY_LIMIT); 			$this->debug(3, "Increased memory from $inimem to " . MEMORY_LIMIT); 		} else { 			$this->debug(3, "Not adjusting memory size because the current setting is " . $inimem . " and our size of " . MEMORY_LIMIT . " is smaller."); 		} 	} 	protected static function returnBytes($size_str){ 		switch (substr ($size_str, -1)) 		{ 			case 'M': case 'm': return (int)$size_str * 1048576; 			case 'K': case 'k': return (int)$size_str * 1024; 			case 'G': case 'g': return (int)$size_str * 1073741824; 			default: return $size_str; 		} 	} 	protected function getURL($url, $tempfile){ 		$this->lastURLError = false; 		$url = preg_replace('/ /', '%20', $url); 		if(function_exists('curl_init')){ 			$this->debug(3, "Curl is installed so using it to fetch URL."); 			self::$curlFH = fopen($tempfile, 'w'); 			if(! self::$curlFH){ 				$this->error("Could not open $tempfile for writing."); 				return false; 			} 			self::$curlDataWritten = 0; 			$this->debug(3, "Fetching url with curl: $url"); 			$curl = curl_init($url); 			curl_setopt ($curl, CURLOPT_TIMEOUT, CURL_TIMEOUT); 			curl_setopt ($curl, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.122 Safari/534.30"); 			curl_setopt ($curl, CURLOPT_RETURNTRANSFER, TRUE); 			curl_setopt ($curl, CURLOPT_HEADER, 0); 			curl_setopt ($curl, CURLOPT_SSL_VERIFYPEER, FALSE); 			curl_setopt ($curl, CURLOPT_WRITEFUNCTION, 'timthumb::curlWrite'); 			@curl_setopt ($curl, CURLOPT_FOLLOWLOCATION, true); 			@curl_setopt ($curl, CURLOPT_MAXREDIRS, 10); 			 			$curlResult = curl_exec($curl); 			fclose(self::$curlFH); 			$httpStatus = curl_getinfo($curl, CURLINFO_HTTP_CODE); 			if($httpStatus == 404){ 				$this->set404(); 			} 			if($curlResult){ 				curl_close($curl); 				return true; 			} else { 				$this->lastURLError = curl_error($curl); 				curl_close($curl); 				return false; 			} 		} else { 			$img = @file_get_contents ($url); 			if($img === false){ 				$err = error_get_last(); 				if(is_array($err) && $err['message']){ 					$this->lastURLError = $err['message']; 				} else { 					$this->lastURLError = $err; 				} 				if(preg_match('/404/', $this->lastURLError)){ 					$this->set404(); 				}  				return false; 			} 			if(! file_put_contents($tempfile, $img)){ 				$this->error("Could not write to $tempfile."); 				return false; 			} 			return true; 		}  	} 	protected function serveImg($file){ 		$s = getimagesize($file); 		if(! ($s && $s['mime'])){ 			return false; 		} 		header ('Content-Type: ' . $s['mime']); 		header ('Content-Length: ' . filesize($file) ); 		header ('Cache-Control: no-store, no-cache, must-revalidate, max-age=0'); 		header ("Pragma: no-cache"); 		$bytes = @readfile($file); 		if($bytes > 0){ 			return true; 		} 		$content = @file_get_contents ($file); 		if ($content != FALSE){ 			echo $content; 			return true; 		} 		return false;  	} 	protected function set404(){ 		$this->is404 = true; 	} 	protected function is404(){ 		return $this->is404; 	} }

Dann gibt´s die Ordner: zoom_assets und js (verschiedene Javascripts siehe index.html) die kann man vermutlich frei irgendwo runterladen.

Ferner den Ordner img, in dem die Baustellen-Kamara-Bilder für jeden Tag in einem seperaten Ordner gespeichert werden. Zuletzt eine Datei mit Namen css, in der aber nur drei Bildchen drin sind (Play, vor und Zurück-Pfeil, wie auf der Website zu sehen).

aus der Readme.txt: Folgendes bei der Installation beachten:
Der Ordner /cache/ muss beschreibbar sein, sprich die Rechte 0777

WICHTIG
Die Datei .htaccess erstellen, Inhalt ist "deny from all" (ohne Anführungszeichen) und in die Ordner /cache/ und /img/ kopieren

VERWEIS
Diverse Konfigurationsmöglichkeiten sind in der getFilesTT.php vorhanden

Das müsste alles sein. Viel Spaß beim ausprobieren.

nockenfell · 12. Juni 2012 09:23

Danke. Kannst du den Code nochmals neu einfügen. Wenn das ganze auf eine einzige Linie gepresst ist, ist er sehr schlecht lesbar.

rolwalca · 12. Juni 2012 12:16

Kein Problem:

Index.htm

Hier klicken, um den Code zum Kopieren zu markieren

<html>
 <head>
  <title>Zeitraffer</title>
  <script src="https://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js"></script>
  <script src="https://ajax.googleapis.com/ajax/libs/jqueryui/1.8.16/jquery-ui.min.js"></script>
  <link rel="stylesheet" href="http://ajax.googleapis.com/ajax/libs/jqueryui/1.7.2/themes/base/jquery-ui.css" type="text/css" />
        <link rel="stylesheet" href="css/zeit.css" type="text/css" />

  <script src="js/jquery.smoothZoom.min.js"></script>
  <script src="js/jquery.timer.js"></script>
  <style>
  .icon-arrow-left { background: url("css/arrow_left.png"); }
  .icon-arrow-right { background: url("css/arrow_right.png"); }
  .icon-play { background: url("css/arrow_play.png"); }
  </style>
  <script>  
     var configTT = { 
	 "getFilesTT": "getFilesTT.php"
	 };
	 function getDirs() {
	  var items = "";
	  var lastTMP = 0; 
	  $.getJSON(configTT.getFilesTT+'?do=getLatestDirs', function(data) {
	   $.each(data, function(key, val) {
	    items += '<option  id="dirs-'+val+'" value="' + val + '">' + val + '</li>';
	    lastTMP = key; 
	   });
	   $('#dir-select').html("<option value=null></option>"+items+"<option value=null></option>");
	   $('#dirs-'+lastTMP).attr("selected", "selected"); 
	   setDate($('#dir-select option').last().prev().attr("value"));
	  });
	 }
	 function switchDay(direction)
	 {
	  var newDay; 
	  if(direction == -1)
	   newDay  = $('#dir-select option:selected').prev(); 
	  else
	   if(direction == 1)
	    newDay = $('#dir-select option:selected').next();    
	   if(newDay.attr("value")!="null")
	   {
	    setDate(newDay.attr("value"));
	    getImages(true, (direction==1));
	   }
	   else
	    stopAuto();  
	  }
	 
	 function setDate(date) {
	  $('#date').datepicker("setDate", date);
	  $("#dir-select").attr('selectedIndex', '-1').children("option:selected").removeAttr("selected");
	  $('#images-bar').attr("alt", date); 
	  $('#dir-select option[value="'+date+'"]').attr('selected', 'selected');
	 }
	 function getDate()
	 {
	  return $('#images-bar').attr("alt"); 
	 }
     function getImages(first, showFirst) {
      $('#hint-select-date').hide(); 
	  $(".navigation-images-gallerie-button").fadeIn();
	  var date = getDate(); 
      $.getJSON(configTT.getFilesTT+'?do=getLatestImages&date='+date, function(data) {
       var items = "";
	   var lastTMP = 0; 
       $.each(data, function(key, val) {
        items += '<li id="image-' + key + '" name="' + val + '">' + val + '</li>';
	    lastTMP = key; 
       });
       $('#images-bar').html(items);
	   $('#images-showcase-image').attr("name", lastTMP); 
	   if(first)
	   {   
	 // stopAuto(true); 
	    $('#images-showcase-image').css("opacity", "0.9");
	    if(showFirst)
	    {
	     $('#images-showcase-image').attr("alt", 0);  
	     $('#images-showcase-image').attr("src", $('#image-0').attr("name")); 
	    }
	    else
	    {
	     $('#images-showcase-image').attr("alt", lastTMP); 
	     $('#images-showcase-image').attr("src", $('#image-'+lastTMP).attr("name")); 
	    }
	    $('#images-showcase-image').fadeIn();
	    $('#images-showcase-image').animate({"opacity":"1"});
	   }
      });
     }
    function nextImage() {
     getImages();
     var nextImage = $('#images-showcase-image').attr("alt"); 
	 nextImage++; 
	 if($('#images-showcase-image').attr("name") >= nextImage)
	 {
	  $('#images-showcase-image').css("opacity", "0.9");
	  $('#images-showcase-image').attr("src",$('#image-'+nextImage).attr("name")); 
	  $('#images-showcase-image').attr("alt", nextImage);  
	  $('#images-showcase-image').animate({"opacity":"1"});
 	 }
 	 else
 	  switchDay(1);
    }
    function prevImage() {
     getImages();
     var prevImage = $('#images-showcase-image').attr("alt"); 
	 prevImage--; 
	 if(0 <= prevImage)
	 {
	  $('#images-showcase-image').css("opacity", "0.9");
	  $('#images-showcase-image').attr("src", $('#image-'+prevImage).attr("name")); 
	  $('#images-showcase-image').attr("alt", prevImage); 
	  $('#images-showcase-image').animate({"opacity":"1"});
	 } 	 
	 else
 	  switchDay(-1);
    }
    function startAuto() {
     $('#do-auto-switch-image').val(1);
	 $('#auto-time').everyTime(3300, "do-auto-timer", function(i) {
     if(!stopAuto(false))
     {
      nextImage();
	  var nextImageN = $('#images-showcase-image').attr("alt"); 	
	  nextImageN++; 
	  if($('#images-showcase-image').attr("name") < nextImageN)	  
	   stopAuto();
      }
	 }, 200);
	}
	function stopAuto(force) {
	 if($('#do-auto-switch-image').val() == 0 || force) {
	  $('#auto-time').stopTime("do-auto-timer"); 
	  $('#do-auto-switch-image').val(0);
	  return true;
	 }
	 return false; 
	}
  </script>
 </head>
 <body>
 
	<div id="banner" > <a href="http://www.ewar-nordhorn.de/"><img src="css/header-1.png" ></a>
	 </div>
        
        <div id="Top_text" >
        <h2>Um die Bilder im 2-Sekunden-Takt abzuspielen  dr&uuml;cken und <span class="unerstrich">HALTEN </span> Sie bitte den Play-Button</h2>
	<h3>Powered by <a href="mailto:ewar-cam@dilano.de">DILANO GmbH Nordhorn</a></h3>
        </div>
        
  <center>
   <div style="width:1024px;height:768px;background:#eee;" id="images-showcase" oncontextmenu="return false;" >
      <div  id="hint-select-date" class="ui-widget" style="width:430px;"> <br>
      <div class="ui-state-highlight ui-corner-all" style="margin-top: 20px; padding: 0 .7em;">
       <p>Bitte w&auml;hlen Sie ein Datum aus</p>
      </div>
     
     </div>
     <img id="images-showcase-image" alt="" src="#" onload=" $('#images-showcase-image').smoothZoom({		width: 1024,		height: 768	});" style="display:none;width:1024px;height:768px;"> 
   <br>
   <select id="dir-select" style="display:none;">
    <option value="" disabled>Wird geladen...</option>
   </select>
   <input type="hidden" id="do-auto-switch-image" value="0">
   <input type="hidden" id="auto-time">
   <!-- 
   <div style="height:60px;"  id="do-auto-off-title">
   Alle
   <input type="text" id="auto-time" size=3 value="1" onkeyup="if(this.value<=0)this.value='1';">
   Sekunden automatisch wechseln.
   (
    An  <input onclick="startAuto();" type="radio" name="do-auto" value="1">
    Aus <input id="do-auto-off" type="radio" name="do-auto" value="0" checked>
   ) 
  </div> -->
   </div>
     <div type="text" id="date" style="z-index:19;"></div>

    <div id="navigation-images-gallerie" style="z-index:19;width:200px !important;">
     <button style="display:none;z-index:19;height:52px;width:52px;padding:0;margin-right:5px;" class="navigation-images-gallerie-button" id="previous-image" href="#" onClick="prevImage();return false;"><img src="css/arrow_left.png"></button>
     <button style="display:none;z-index:19;height:52px;width:52px;margin-right:5px;" class="navigation-images-gallerie-button" id="auto-switch-image" onMouseDown="startAuto();" onMouseOut="stopAuto(true);" onMouseUp="stopAuto(true);"><img src="css/play.png"></button>
     <button style="display:none;z-index:19;height:52px;width:52px;" class="navigation-images-gallerie-button" id="next-image" href="#" onClick="nextImage();return false;"><img src="css/arrow_right.png"></button> 
    </div>
    <div id="images-bar" alt="0" style="display:none;"></div>
  </center>
  <div id="footer">
               
<h4><img alt="Counter" src="/system-cgi/count/count.php?id=9&amp;x=60&amp;y=30&amp;size=20&amp;bg=%23999999&amp;fg=%236d6969&amp;lenght=5&amp;transbg=false&amp;"></a></h4>

         </div>
  <script>
$(document).ready(function() { 
        $.datepicker.regional['de'] = {clearText: 'l&ouml;schen', clearStatus: 'aktuelles Datum l&ouml;schen',
                closeText: 'schlie&szlig;en', closeStatus: 'ohne &Auml;nderungen schlie&szlig;en',
                prevText: 'zur&uuml;ck', prevStatus: 'letzten Monat zeigen',
                nextText: 'Vor', nextStatus: 'n&auml;chsten Monat zeigen',
                currentText: 'heute', currentStatus: '',
                monthNames: ['Januar','Februar','M&auml;rz','April','Mai','Juni',
                'Juli','August','September','Oktober','November','Dezember'],
                monthNamesShort: ['Jan','Feb','M&auml;r','Apr','Mai','Jun',
                'Jul','Aug','Sep','Okt','Nov','Dez'],
                monthStatus: 'anderen Monat anzeigen', yearStatus: 'anderes Jahr anzeigen',
                weekHeader: 'Wo', weekStatus: 'Woche des Monats',
                dayNames: ['Sonntag','Montag','Dienstag','Mittwoch','Donnerstag','Freitag','Samstag'],
                dayNamesShort: ['So','Mo','Di','Mi','Do','Fr','Sa'],
                dayNamesMin: ['So','Mo','Di','Mi','Do','Fr','Sa'],
                dayStatus: 'Setze DD als ersten Wochentag', dateStatus: 'W&auml;hle D, M d',
                dateFormat: 'dd.mm.yy', firstDay: 1,
                isRTL: false};
        $.datepicker.setDefaults($.datepicker.regional['de']);

getDirs();
$('#date').datepicker({
 dateFormat: 'dd.mm.yy',
 onSelect: function(dateText, inst) { 
 if($('#images-showcase-image').attr("src") == "#")
 {
  $( "#date" ).position({ of: $( "#images-showcase" ),		at: "right bottom",		  offset: "-152 -116"	});
  $( "#navigation-images-gallerie" ).position({ of: $( "#date" ),		at: "bottom", 		  offset: "250 -58" });
 }
 setDate(dateText);
 getImages(true, true);	  
 }, 
 beforeShowDay: function(date){
  var m = date.getMonth();
  m = m+1;  
  var datekey = 'dirs-'+((date.getDate() < 10) ? "0" : "")+date.getDate()+'.'+((m < 10) ? "0" : "")+m+'.'+date.getFullYear();
  if(document.getElementById(datekey)!=null){
   return [true,""];
  } else {
   return [false,""];
  }
 }
});
$( "#previous-image" ).button();
$( "#next-image" ).button();
$( "#auto-switch-image" ).button();
$("#ui-datepicker-div").hide(); // jQueryUI Debug

$( "#date" ).css( "opacity", 0.9 );
$( "#navigation-images-gallerie" ).css( "opacity", 0.9 );


}); 	 
  </script>
 </body>
</html>

getFilesTT.php

Hier klicken, um den Code zum Kopieren zu markieren

<?php 
 ini_set("display_errors", 1); 
 
 // Bilder-Verzeichnis (mit / am Ende)
 define("DIR_IMAGES", "img/"); 
 // Strutkur der Ordnernamen
 define("DIR_IMAGES_NAME_STRUCTURE", "Y-m-d");
 // Name des ersten Bildes im Ordner 
 define("IMAGES_NAME", "001");  
 // Wie weit duerfen die Bilder maximal zurueckliegen? (Angabe in Tagen)
 define("OLDEST_DIR", 100);
 // Wie viele Ordner sollen in der select-box angezeigt werden?  
 define("SHOW_DIRS", 10); 
 // Datum-Format der Ausgabe 
 define("DATE_FORMAT", "d.m.Y"); 
 
 // Gibt den Ordner-Namen des juengsten Ordners im Format DIR_IMAGES_NAME_STRUCTURE zurueck
 function getLatestDir()
 {
  $i = 0; 
  $latestDirName = DIR_IMAGES.date(DIR_IMAGES_NAME_STRUCTURE, strtotime("-".$i." day")); 
  while(!is_dir($latestDirName))
  {
   $i++; 
   $latestDirName = DIR_IMAGES.date(DIR_IMAGES_NAME_STRUCTURE, strtotime("-".$i." day")); 
   if(($i > OLDEST_DIR)) break; 
  }
  if($i > OLDEST_DIR) exit("Der neuste Ordner ist &auml;lter als ".OLDEST_DIR." Tage");
  return $latestDirName."/"; 
 }
 // Gibt die letzen SHOW_DIRS Ordner im Formar DIR_IMAGES_NAME_STRUCTURE zurueck, jedoch keinen Ordner der laenger als OLDEST_DIR Tage zurueck liegt
 function getLatestDirs()
 {
  $i = 0; 
  $f = 0; 
  $latestDirNames = array(); 
  while($f < SHOW_DIRS)
  { 
   $latestDirName = DIR_IMAGES.date(DIR_IMAGES_NAME_STRUCTURE, strtotime("-".$i." day")); 
   if(is_dir($latestDirName))
   {
    $latestDirNames[] = date("Y/m/d", strtotime("-".$i." day")); 
	$f++; 
   }	
	if($i > OLDEST_DIR) break;
    $i++;
  }
 sort($latestDirNames);
 foreach($latestDirNames as $K => $N) 
 {
  unset($latestDirNames[$K]);
  $latestDirNames[$K] = date(DATE_FORMAT, strtotime($N)); 
 }
  
  return ($latestDirNames); 
 }
 // Liest $dirName aus und gibt alle Dateien zurueck
 function scanImagesDir($dirName) 
 {
  $dir = scandir($dirName); 
  $files = array(); 
  foreach($dir as $file)
  {
   if($file == "." || $file == ".." || is_dir($dirName.$file)) continue; 
   $files[] = 'image.php?w=1024&zc=1&src='.$dirName.$file; 
  }
  sort($files); 
  return $files; 
 }
 
 // Pruefen welche Operation ausgefuehrt werden soll 
 switch($_GET["do"])
 {
  case "getLatestImages": 
   if((int)$_GET["date"] === 0)
    echo json_encode(scanImagesDir(getLatestDir())); 
	
   else
    echo json_encode(scanImagesDir(DIR_IMAGES.date(DIR_IMAGES_NAME_STRUCTURE, strtotime($_GET["date"])).'/')); 
	exit; 
  break; 
  case "getLatestDirs": echo json_encode(getLatestDirs()); exit; break; 
  default: die("Keine Operation angegeben."); break; 
 }
?>

image.php

Hier klicken, um den Code zum Kopieren zu markieren

<?php
$temp = parse_url($_SERVER["HTTP_REFERER"]); 
if($_SERVER["HTTP_HOST"] != $temp["host"]) exit;
/**
 * TimThumb by Ben Gillbanks and Mark Maunder
 * Based on work done by Tim McDaniels and Darren Hoyt
 * [url]http://code.google.com/p/timthumb/[/url]
 * 
 * GNU General Public License, version 2
 * [url]http://www.gnu.org/licenses/old-licenses/gpl-2.0.html[/url]
 *
 * Examples and documentation available on the project homepage
 * [url]http://www.binarymoon.co.uk/projects/timthumb/[/url]
 * 
 * $Rev$
 */

/*
 * --- TimThumb CONFIGURATION ---
 * To edit the configs it is best to create a file called timthumb-config.php
 * and define variables you want to customize in there. It will automatically be
 * loaded by timthumb. This will save you having to re-edit these variables
 * everytime you download a new version
*/
define ('VERSION', '2.8.10');																		// Version of this script 
//Load a config file if it exists. Otherwise, use the values below
if( file_exists(dirname(__FILE__) . '/timthumb-config.php'))	require_once('timthumb-config.php');
if(! defined('DEBUG_ON') )					define ('DEBUG_ON', false);								// Enable debug logging to web server error log (STDERR)
if(! defined('DEBUG_LEVEL') )				define ('DEBUG_LEVEL', 1);								// Debug level 1 is less noisy and 3 is the most noisy
if(! defined('MEMORY_LIMIT') )				define ('MEMORY_LIMIT', '30M');							// Set PHP memory limit
if(! defined('BLOCK_EXTERNAL_LEECHERS') ) 	define ('BLOCK_EXTERNAL_LEECHERS', false);				// If the image or webshot is being loaded on an external site, display a red "No Hotlinking" gif.

//Image fetching and caching
if(! defined('ALLOW_EXTERNAL') )			define ('ALLOW_EXTERNAL', TRUE);						// Allow image fetching from external websites. Will check against ALLOWED_SITES if ALLOW_ALL_EXTERNAL_SITES is false
if(! defined('ALLOW_ALL_EXTERNAL_SITES') ) 	define ('ALLOW_ALL_EXTERNAL_SITES', false);				// Less secure. 
if(! defined('FILE_CACHE_ENABLED') ) 		define ('FILE_CACHE_ENABLED', TRUE);					// Should we store resized/modified images on disk to speed things up?
if(! defined('FILE_CACHE_TIME_BETWEEN_CLEANS'))	define ('FILE_CACHE_TIME_BETWEEN_CLEANS', 86400);	// How often the cache is cleaned 

if(! defined('FILE_CACHE_MAX_FILE_AGE') ) 	define ('FILE_CACHE_MAX_FILE_AGE', 86400);				// How old does a file have to be to be deleted from the cache
if(! defined('FILE_CACHE_SUFFIX') ) 		define ('FILE_CACHE_SUFFIX', '.timthumb.txt');			// What to put at the end of all files in the cache directory so we can identify them
if(! defined('FILE_CACHE_PREFIX') ) 		define ('FILE_CACHE_PREFIX', 'timthumb');				// What to put at the beg of all files in the cache directory so we can identify them
if(! defined('FILE_CACHE_DIRECTORY') ) 		define ('FILE_CACHE_DIRECTORY', './cache');				// Directory where images are cached. Left blank it will use the system temporary directory (which is better for security)
if(! defined('MAX_FILE_SIZE') )				define ('MAX_FILE_SIZE', 10485760);						// 10 Megs is 10485760. This is the max internal or external file size that we'll process.  
if(! defined('CURL_TIMEOUT') )				define ('CURL_TIMEOUT', 20);							// Timeout duration for Curl. This only applies if you have Curl installed and aren't using PHP's default URL fetching mechanism.
if(! defined('WAIT_BETWEEN_FETCH_ERRORS') )	define ('WAIT_BETWEEN_FETCH_ERRORS', 3600);				//Time to wait between errors fetching remote file

//Browser caching
if(! defined('BROWSER_CACHE_MAX_AGE') ) 	define ('BROWSER_CACHE_MAX_AGE', 864000);				// Time to cache in the browser
if(! defined('BROWSER_CACHE_DISABLE') ) 	define ('BROWSER_CACHE_DISABLE', false);				// Use for testing if you want to disable all browser caching

//Image size and defaults
if(! defined('MAX_WIDTH') ) 			define ('MAX_WIDTH', 1500);									// Maximum image width
if(! defined('MAX_HEIGHT') ) 			define ('MAX_HEIGHT', 1500);								// Maximum image height
if(! defined('NOT_FOUND_IMAGE') )		define ('NOT_FOUND_IMAGE', '');								// Image to serve if any 404 occurs 
if(! defined('ERROR_IMAGE') )			define ('ERROR_IMAGE', '');									// Image to serve if an error occurs instead of showing error message 
if(! defined('PNG_IS_TRANSPARENT') ) 	define ('PNG_IS_TRANSPARENT', FALSE);  //42 Define if a png image should have a transparent background color. Use False value if you want to display a custom coloured canvas_colour 
if(! defined('DEFAULT_Q') )				define ('DEFAULT_Q', 90);									// Default image quality. Allows overrid in timthumb-config.php
if(! defined('DEFAULT_ZC') )			define ('DEFAULT_ZC', 1);									// Default zoom/crop setting. Allows overrid in timthumb-config.php
if(! defined('DEFAULT_F') )				define ('DEFAULT_F', '');									// Default image filters. Allows overrid in timthumb-config.php
if(! defined('DEFAULT_S') )				define ('DEFAULT_S', 0);									// Default sharpen value. Allows overrid in timthumb-config.php
if(! defined('DEFAULT_CC') )			define ('DEFAULT_CC', 'ffffff');							// Default canvas colour. Allows overrid in timthumb-config.php


//Image compression is enabled if either of these point to valid paths

//These are now disabled by default because the file sizes of PNGs (and GIFs) are much smaller than we used to generate. 
//They only work for PNGs. GIFs and JPEGs are not affected.
if(! defined('OPTIPNG_ENABLED') ) 		define ('OPTIPNG_ENABLED', false);  
if(! defined('OPTIPNG_PATH') ) 			define ('OPTIPNG_PATH', '/usr/bin/optipng'); //This will run first because it gives better compression than pngcrush. 
if(! defined('PNGCRUSH_ENABLED') ) 		define ('PNGCRUSH_ENABLED', false); 
if(! defined('PNGCRUSH_PATH') ) 		define ('PNGCRUSH_PATH', '/usr/bin/pngcrush'); //This will only run if OPTIPNG_PATH is not set or is not valid

/*
	-------====Website Screenshots configuration - BETA====-------
	
	If you just want image thumbnails and don't want website screenshots, you can safely leave this as is.	
	
	If you would like to get website screenshots set up, you will need root access to your own server.

	Enable ALLOW_ALL_EXTERNAL_SITES so you can fetch any external web page. This is more secure now that we're using a non-web folder for cache.
	Enable BLOCK_EXTERNAL_LEECHERS so that your site doesn't generate thumbnails for the whole Internet.

	Instructions to get website screenshots enabled on Ubuntu Linux:

	1. Install Xvfb with the following command: sudo apt-get install subversion libqt4-webkit libqt4-dev g++ xvfb
	2. Go to a directory where you can download some code
	3. Check-out the latest version of CutyCapt with the following command: svn co [url]https://cutycapt.svn.sourceforge.net/svnroot/cutycapt[/url]
	4. Compile CutyCapt by doing: cd cutycapt/CutyCapt
	5. qmake
	6. make
	7. cp CutyCapt /usr/local/bin/
	8. Test it by running: xvfb-run --server-args="-screen 0, 1024x768x24" CutyCapt --url="http://markmaunder.com/" --out=test.png
	9. If you get a file called test.png with something in it, it probably worked. Now test the script by accessing it as follows:
	10. [url]http://yoursite.com/path/to/timthumb.php?src=http://markmaunder.com/&webshot=1[/url]

	Notes on performance: 
	The first time a webshot loads, it will take a few seconds.
	From then on it uses the regular timthumb caching mechanism with the configurable options above
	and loading will be very fast.

	--ADVANCED USERS ONLY--
	If you'd like a slight speedup (about 25%) and you know Linux, you can run the following command which will keep Xvfb running in the background.
	nohup Xvfb :100 -ac -nolisten tcp -screen 0, 1024x768x24 > /dev/null 2>&1 &
	Then set WEBSHOT_XVFB_RUNNING = true below. This will save your server having to fire off a new Xvfb server and shut it down every time a new shot is generated. 
	You will need to take responsibility for keeping Xvfb running in case it crashes. (It seems pretty stable)
	You will also need to take responsibility for server security if you're running Xvfb as root. 


*/
if(! defined('WEBSHOT_ENABLED') ) 	define ('WEBSHOT_ENABLED', false);			//Beta feature. Adding webshot=1 to your query string will cause the script to return a browser screenshot rather than try to fetch an image.
if(! defined('WEBSHOT_CUTYCAPT') ) 	define ('WEBSHOT_CUTYCAPT', '/usr/local/bin/CutyCapt'); //The path to CutyCapt. 
if(! defined('WEBSHOT_XVFB') ) 		define ('WEBSHOT_XVFB', '/usr/bin/xvfb-run');		//The path to the Xvfb server
if(! defined('WEBSHOT_SCREEN_X') ) 	define ('WEBSHOT_SCREEN_X', '1024');			//1024 works ok
if(! defined('WEBSHOT_SCREEN_Y') ) 	define ('WEBSHOT_SCREEN_Y', '768');			//768 works ok
if(! defined('WEBSHOT_COLOR_DEPTH') ) 	define ('WEBSHOT_COLOR_DEPTH', '24');			//I haven't tested anything besides 24
if(! defined('WEBSHOT_IMAGE_FORMAT') ) 	define ('WEBSHOT_IMAGE_FORMAT', 'png');			//png is about 2.5 times the size of jpg but is a LOT better quality
if(! defined('WEBSHOT_TIMEOUT') ) 	define ('WEBSHOT_TIMEOUT', '20');			//Seconds to wait for a webshot
if(! defined('WEBSHOT_USER_AGENT') ) 	define ('WEBSHOT_USER_AGENT', "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-GB; rv:1.9.2.18) Gecko/20110614 Firefox/3.6.18"); //I hate to do this, but a non-browser robot user agent might not show what humans see. So we pretend to be Firefox
if(! defined('WEBSHOT_JAVASCRIPT_ON') ) define ('WEBSHOT_JAVASCRIPT_ON', true);			//Setting to false might give you a slight speedup and block ads. But it could cause other issues.
if(! defined('WEBSHOT_JAVA_ON') ) 	define ('WEBSHOT_JAVA_ON', false);			//Have only tested this as fase
if(! defined('WEBSHOT_PLUGINS_ON') ) 	define ('WEBSHOT_PLUGINS_ON', true);			//Enable flash and other plugins
if(! defined('WEBSHOT_PROXY') ) 	define ('WEBSHOT_PROXY', '');				//In case you're behind a proxy server. 
if(! defined('WEBSHOT_XVFB_RUNNING') )	define ('WEBSHOT_XVFB_RUNNING', false);			//ADVANCED: Enable this if you've got Xvfb running in the background.


// If ALLOW_EXTERNAL is true and ALLOW_ALL_EXTERNAL_SITES is false, then external images will only be fetched from these domains and their subdomains. 
if(! isset($ALLOWED_SITES)){
	$ALLOWED_SITES = array (
		'flickr.com',
		'staticflickr.com',
		'picasa.com',
		'img.youtube.com',
		'upload.wikimedia.org',
		'photobucket.com',
		'imgur.com',
		'imageshack.us',
		'tinypic.com',
	);
}
// -------------------------------------------------------------
// -------------- STOP EDITING CONFIGURATION HERE --------------
// -------------------------------------------------------------

timthumb::start();

class timthumb {
	protected $src = "";
	protected $is404 = false;
	protected $docRoot = "";
	protected $lastURLError = false;
	protected $localImage = "";
	protected $localImageMTime = 0;
	protected $url = false;
	protected $myHost = "";
	protected $isURL = false;
	protected $cachefile = '';
	protected $errors = array();
	protected $toDeletes = array();
	protected $cacheDirectory = '';
	protected $startTime = 0;
	protected $lastBenchTime = 0;
	protected $cropTop = false;
	protected $salt = "";
	protected $fileCacheVersion = 1; //Generally if timthumb.php is modifed (upgraded) then the salt changes and all cache files are recreated. This is a backup mechanism to force regen.
	protected $filePrependSecurityBlock = "<?php die('Execution denied!'); //"; //Designed to have three letter mime type, space, question mark and greater than symbol appended. 6 bytes total.
	protected static $curlDataWritten = 0;
	protected static $curlFH = false;
	public static function start(){
		$tim = new timthumb();
		$tim->handleErrors();
		$tim->securityChecks();
		if($tim->tryBrowserCache()){
			exit(0);
		}
		$tim->handleErrors();
		if(FILE_CACHE_ENABLED && $tim->tryServerCache()){
			exit(0);
		}
		$tim->handleErrors();
		$tim->run();
		$tim->handleErrors();
		exit(0);
	}
	public function __construct(){
		global $ALLOWED_SITES;
		$this->startTime = microtime(true);
		date_default_timezone_set('UTC');
		$this->debug(1, "Starting new request from " . $this->getIP() . " to " . $_SERVER['REQUEST_URI']);
		$this->calcDocRoot();
		//On windows systems I'm assuming fileinode returns an empty string or a number that doesn't change. Check this.
		$this->salt = @filemtime(__FILE__) . '-' . @fileinode(__FILE__);
		$this->debug(3, "Salt is: " . $this->salt);
		if(FILE_CACHE_DIRECTORY){
			if(! is_dir(FILE_CACHE_DIRECTORY)){
				@mkdir(FILE_CACHE_DIRECTORY);
				if(! is_dir(FILE_CACHE_DIRECTORY)){
					$this->error("Could not create the file cache directory.");
					return false;
				}
			}
			$this->cacheDirectory = FILE_CACHE_DIRECTORY;
			if (!touch($this->cacheDirectory . '/index.html')) {
				$this->error("Could not create the index.html file - to fix this create an empty file named index.html file in the cache directory.");
			}
		} else {
			$this->cacheDirectory = sys_get_temp_dir();
		}
		//Clean the cache before we do anything because we don't want the first visitor after FILE_CACHE_TIME_BETWEEN_CLEANS expires to get a stale image. 
		$this->cleanCache();
		
		$this->myHost = preg_replace('/^www\./i', '', $_SERVER['HTTP_HOST']);
		$this->src = $this->param('src');
		$this->url = parse_url($this->src);
		$this->src = preg_replace('/https?:\/\/(?:www\.)?' . $this->myHost . '/i', '', $this->src);
		
		if(strlen($this->src) <= 3){
			$this->error("No image specified");
			return false;
		}
		if(BLOCK_EXTERNAL_LEECHERS && array_key_exists('HTTP_REFERER', $_SERVER) && (! preg_match('/^https?:\/\/(?:www\.)?' . $this->myHost . '(?:$|\/)/i', $_SERVER['HTTP_REFERER']))){
			// base64 encoded red image that says 'no hotlinkers'
			// nothing to worry about! :)
			$imgData = base64_decode("R0lGODlhUAAMAIAAAP8AAP///yH5BAAHAP8ALAAAAABQAAwAAAJpjI+py+0Po5y0OgAMjjv01YUZ\nOGplhWXfNa6JCLnWkXplrcBmW+spbwvaVr/cDyg7IoFC2KbYVC2NQ5MQ4ZNao9Ynzjl9ScNYpneb\nDULB3RP6JuPuaGfuuV4fumf8PuvqFyhYtjdoeFgAADs=");
			header('Content-Type: image/gif');
			header('Content-Length: ' . sizeof($imgData));
			header('Cache-Control: no-store, no-cache, must-revalidate, max-age=0');
			header("Pragma: no-cache");
			header('Expires: ' . gmdate ('D, d M Y H:i:s', time()));
			echo $imgData;
			return false;
			exit(0);
		}
		if(preg_match('/^https?:\/\/[^\/]+/i', $this->src)){
			$this->debug(2, "Is a request for an external URL: " . $this->src);
			$this->isURL = true;
		} else {
			$this->debug(2, "Is a request for an internal file: " . $this->src);
		}
		if($this->isURL && (! ALLOW_EXTERNAL)){
			$this->error("You are not allowed to fetch images from an external website.");
			return false;
		}
		if($this->isURL){
			if(ALLOW_ALL_EXTERNAL_SITES){
				$this->debug(2, "Fetching from all external sites is enabled.");
			} else {
				$this->debug(2, "Fetching only from selected external sites is enabled.");
				$allowed = false;
				foreach($ALLOWED_SITES as $site){
					if ((strtolower(substr($this->url['host'],-strlen($site)-1)) === strtolower(".$site")) || (strtolower($this->url['host'])===strtolower($site))) {
						$this->debug(3, "URL hostname {$this->url['host']} matches $site so allowing.");
						$allowed = true;
					}
				}
				if(! $allowed){
					return $this->error("You may not fetch images from that site. To enable this site in timthumb, you can either add it to \$ALLOWED_SITES and set ALLOW_EXTERNAL=true. Or you can set ALLOW_ALL_EXTERNAL_SITES=true, depending on your security needs.");
				}
			}
		}

		$cachePrefix = ($this->isURL ? '_ext_' : '_int_');
		if($this->isURL){
			$arr = explode('&', $_SERVER ['QUERY_STRING']);
			asort($arr);
			$this->cachefile = $this->cacheDirectory . '/' . FILE_CACHE_PREFIX . $cachePrefix . md5($this->salt . implode('', $arr) . $this->fileCacheVersion) . FILE_CACHE_SUFFIX;
		} else {
			$this->localImage = $this->getLocalImagePath($this->src);
			if(! $this->localImage){
				$this->debug(1, "Could not find the local image: {$this->localImage}");
				$this->error("Could not find the internal image you specified.");
				$this->set404();
				return false;
			}
			$this->debug(1, "Local image path is {$this->localImage}");
			$this->localImageMTime = @filemtime($this->localImage);
			//We include the mtime of the local file in case in changes on disk.
			$this->cachefile = $this->cacheDirectory . '/' . FILE_CACHE_PREFIX . $cachePrefix . md5($this->salt . $this->localImageMTime . $_SERVER ['QUERY_STRING'] . $this->fileCacheVersion) . FILE_CACHE_SUFFIX;
		}
		$this->debug(2, "Cache file is: " . $this->cachefile);

		return true;
	}
	public function __destruct(){
		foreach($this->toDeletes as $del){
			$this->debug(2, "Deleting temp file $del");
			@unlink($del);
		}
	}
	public function run(){
		if($this->isURL){
			if(! ALLOW_EXTERNAL){
				$this->debug(1, "Got a request for an external image but ALLOW_EXTERNAL is disabled so returning error msg.");
				$this->error("You are not allowed to fetch images from an external website.");
				return false;
			}
			$this->debug(3, "Got request for external image. Starting serveExternalImage.");
			if($this->param('webshot')){
				if(WEBSHOT_ENABLED){
					$this->debug(3, "webshot param is set, so we're going to take a webshot.");
					$this->serveWebshot();
				} else {
					$this->error("You added the webshot parameter but webshots are disabled on this server. You need to set WEBSHOT_ENABLED == true to enable webshots.");
				}
			} else {
				$this->debug(3, "webshot is NOT set so we're going to try to fetch a regular image.");
				$this->serveExternalImage();

			}
		} else {
			$this->debug(3, "Got request for internal image. Starting serveInternalImage()");
			$this->serveInternalImage();
		}
		return true;
	}
	protected function handleErrors(){
		if($this->haveErrors()){ 
			if(NOT_FOUND_IMAGE && $this->is404()){
				if($this->serveImg(NOT_FOUND_IMAGE)){
					exit(0);
				} else {
					$this->error("Additionally, the 404 image that is configured could not be found or there was an error serving it.");
				}
			}
			if(ERROR_IMAGE){
				if($this->serveImg(ERROR_IMAGE)){
					exit(0);
				} else {
					$this->error("Additionally, the error image that is configured could not be found or there was an error serving it.");
				}
			}
			$this->serveErrors(); 
			exit(0); 
		}
		return false;
	}
	protected function tryBrowserCache(){
		if(BROWSER_CACHE_DISABLE){ $this->debug(3, "Browser caching is disabled"); return false; }
		if(!empty($_SERVER['HTTP_IF_MODIFIED_SINCE']) ){
			$this->debug(3, "Got a conditional get");
			$mtime = false;
			//We've already checked if the real file exists in the constructor
			if(! is_file($this->cachefile)){
				//If we don't have something cached, regenerate the cached image.
				return false;
			}
			if($this->localImageMTime){
				$mtime = $this->localImageMTime;
				$this->debug(3, "Local real file's modification time is $mtime");
			} else if(is_file($this->cachefile)){ //If it's not a local request then use the mtime of the cached file to determine the 304
				$mtime = @filemtime($this->cachefile);
				$this->debug(3, "Cached file's modification time is $mtime");
			}
			if(! $mtime){ return false; }

			$iftime = strtotime($_SERVER['HTTP_IF_MODIFIED_SINCE']);
			$this->debug(3, "The conditional get's if-modified-since unixtime is $iftime");
			if($iftime < 1){
				$this->debug(3, "Got an invalid conditional get modified since time. Returning false.");
				return false;
			}
			if($iftime < $mtime){ //Real file or cache file has been modified since last request, so force refetch.
				$this->debug(3, "File has been modified since last fetch.");
				return false;
			} else { //Otherwise serve a 304
				$this->debug(3, "File has not been modified since last get, so serving a 304.");
				header ($_SERVER['SERVER_PROTOCOL'] . ' 304 Not Modified');
				$this->debug(1, "Returning 304 not modified");
				return true;
			}
		}
		return false;
	}
	protected function tryServerCache(){
		$this->debug(3, "Trying server cache");
		if(file_exists($this->cachefile)){
			$this->debug(3, "Cachefile {$this->cachefile} exists");
			if($this->isURL){
				$this->debug(3, "This is an external request, so checking if the cachefile is empty which means the request failed previously.");
				if(filesize($this->cachefile) < 1){
					$this->debug(3, "Found an empty cachefile indicating a failed earlier request. Checking how old it is.");
					//Fetching error occured previously
					if(time() - @filemtime($this->cachefile) > WAIT_BETWEEN_FETCH_ERRORS){
						$this->debug(3, "File is older than " . WAIT_BETWEEN_FETCH_ERRORS . " seconds. Deleting and returning false so app can try and load file.");
						@unlink($this->cachefile);
						return false; //to indicate we didn't serve from cache and app should try and load
					} else {
						$this->debug(3, "Empty cachefile is still fresh so returning message saying we had an error fetching this image from remote host.");
						$this->set404();
						$this->error("An error occured fetching image.");
						return false; 
					}
				}
			} else {
				$this->debug(3, "Trying to serve cachefile {$this->cachefile}");
			}
			if($this->serveCacheFile()){
				$this->debug(3, "Succesfully served cachefile {$this->cachefile}");
				return true;
			} else {
				$this->debug(3, "Failed to serve cachefile {$this->cachefile} - Deleting it from cache.");
				//Image serving failed. We can't retry at this point, but lets remove it from cache so the next request recreates it
				@unlink($this->cachefile);
				return true;
			}
		}
	}
	protected function error($err){
		$this->debug(3, "Adding error message: $err");
		$this->errors[] = $err;
		return false;

	}
	protected function haveErrors(){
		if(sizeof($this->errors) > 0){
			return true;
		}
		return false;
	}
	protected function serveErrors(){
		header ($_SERVER['SERVER_PROTOCOL'] . ' 400 Bad Request');
		$html = '<ul>';
		foreach($this->errors as $err){
			$html .= '<li>' . htmlentities($err) . '</li>';
		}
		$html .= '</ul>';
		echo '<h1>A TimThumb error has occured</h1>The following error(s) occured:<br />' . $html . '<br />';
		echo '<br />Query String : ' . htmlentities ($_SERVER['QUERY_STRING']);
		echo '<br />TimThumb version : ' . VERSION . '</pre>';
	}
	protected function serveInternalImage(){
		$this->debug(3, "Local image path is $this->localImage");
		if(! $this->localImage){
			$this->sanityFail("localImage not set after verifying it earlier in the code.");
			return false;
		}
		$fileSize = filesize($this->localImage);
		if($fileSize > MAX_FILE_SIZE){
			$this->error("The file you specified is greater than the maximum allowed file size.");
			return false;
		}
		if($fileSize <= 0){
			$this->error("The file you specified is <= 0 bytes.");
			return false;
		}
		$this->debug(3, "Calling processImageAndWriteToCache() for local image.");
		if($this->processImageAndWriteToCache($this->localImage)){
			$this->serveCacheFile();
			return true;
		} else { 
			return false;
		}
	}
	protected function cleanCache(){
		if (FILE_CACHE_TIME_BETWEEN_CLEANS < 0) {
			return;
		}
		$this->debug(3, "cleanCache() called");
		$lastCleanFile = $this->cacheDirectory . '/timthumb_cacheLastCleanTime.touch';
		
		//If this is a new timthumb installation we need to create the file
		if(! is_file($lastCleanFile)){
			$this->debug(1, "File tracking last clean doesn't exist. Creating $lastCleanFile");
			if (!touch($lastCleanFile)) {
				$this->error("Could not create cache clean timestamp file.");
			}
			return;
		}
		if(@filemtime($lastCleanFile) < (time() - FILE_CACHE_TIME_BETWEEN_CLEANS) ){ //Cache was last cleaned more than 1 day ago
			$this->debug(1, "Cache was last cleaned more than " . FILE_CACHE_TIME_BETWEEN_CLEANS . " seconds ago. Cleaning now.");
			// Very slight race condition here, but worst case we'll have 2 or 3 servers cleaning the cache simultaneously once a day.
			if (!touch($lastCleanFile)) {
				$this->error("Could not create cache clean timestamp file.");
			}
			$files = glob($this->cacheDirectory . '/*' . FILE_CACHE_SUFFIX);
			if ($files) {
				$timeAgo = time() - FILE_CACHE_MAX_FILE_AGE;
				foreach($files as $file){
					if(@filemtime($file) < $timeAgo){
						$this->debug(3, "Deleting cache file $file older than max age: " . FILE_CACHE_MAX_FILE_AGE . " seconds");
						@unlink($file);
					}
				}
			}
			return true;
		} else {
			$this->debug(3, "Cache was cleaned less than " . FILE_CACHE_TIME_BETWEEN_CLEANS . " seconds ago so no cleaning needed.");
		}
		return false;
	}
	protected function processImageAndWriteToCache($localImage){
		$sData = getimagesize($localImage);
		$origType = $sData[2];
		$mimeType = $sData['mime'];

		$this->debug(3, "Mime type of image is $mimeType");
		if(! preg_match('/^image\/(?:gif|jpg|jpeg|png)$/i', $mimeType)){
			return $this->error("The image being resized is not a valid gif, jpg or png.");
		}

		if (!function_exists ('imagecreatetruecolor')) {
		    return $this->error('GD Library Error: imagecreatetruecolor does not exist - please contact your webhost and ask them to install the GD library');
		}

		if (function_exists ('imagefilter') && defined ('IMG_FILTER_NEGATE')) {
			$imageFilters = array (
				1 => array (IMG_FILTER_NEGATE, 0),
				2 => array (IMG_FILTER_GRAYSCALE, 0),
				3 => array (IMG_FILTER_BRIGHTNESS, 1),
				4 => array (IMG_FILTER_CONTRAST, 1),
				5 => array (IMG_FILTER_COLORIZE, 4),
				6 => array (IMG_FILTER_EDGEDETECT, 0),
				7 => array (IMG_FILTER_EMBOSS, 0),
				8 => array (IMG_FILTER_GAUSSIAN_BLUR, 0),
				9 => array (IMG_FILTER_SELECTIVE_BLUR, 0),
				10 => array (IMG_FILTER_MEAN_REMOVAL, 0),
				11 => array (IMG_FILTER_SMOOTH, 0),
			);
		}

		// get standard input properties		
		$new_width =  (int) abs ($this->param('w', 0));
		$new_height = (int) abs ($this->param('h', 0));
		$zoom_crop = (int) $this->param('zc', DEFAULT_ZC);
		$quality = (int) abs ($this->param('q', DEFAULT_Q));
		$align = $this->cropTop ? 't' : $this->param('a', 'c');
		$filters = $this->param('f', DEFAULT_F);
		$sharpen = (bool) $this->param('s', DEFAULT_S);
		$canvas_color = $this->param('cc', DEFAULT_CC);
		$canvas_trans = (bool) $this->param('ct', '1');

		// set default width and height if neither are set already
		if ($new_width == 0 && $new_height == 0) {
		    $new_width = 100;
		    $new_height = 100;
		}

		// ensure size limits can not be abused
		$new_width = min ($new_width, MAX_WIDTH);
		$new_height = min ($new_height, MAX_HEIGHT);

		// set memory limit to be able to have enough space to resize larger images
		$this->setMemoryLimit();

		// open the existing image
		$image = $this->openImage ($mimeType, $localImage);
		if ($image === false) {
			return $this->error('Unable to open image.');
		}

		// Get original width and height
		$width = imagesx ($image);
		$height = imagesy ($image);
		$origin_x = 0;
		$origin_y = 0;

		// generate new w/h if not provided
		if ($new_width && !$new_height) {
			$new_height = floor ($height * ($new_width / $width));
		} else if ($new_height && !$new_width) {
			$new_width = floor ($width * ($new_height / $height));
		}

		// scale down and add borders
		if ($zoom_crop == 3) {

			$final_height = $height * ($new_width / $width);

			if ($final_height > $new_height) {
				$new_width = $width * ($new_height / $height);
			} else {
				$new_height = $final_height;
			}

		}

		// create a new true color image
		$canvas = imagecreatetruecolor ($new_width, $new_height);
		imagealphablending ($canvas, false);

		if (strlen($canvas_color) == 3) { //if is 3-char notation, edit string into 6-char notation
			$canvas_color =  str_repeat(substr($canvas_color, 0, 1), 2) . str_repeat(substr($canvas_color, 1, 1), 2) . str_repeat(substr($canvas_color, 2, 1), 2); 
		} else if (strlen($canvas_color) != 6) {
			$canvas_color = DEFAULT_CC; // on error return default canvas color
 		}

		$canvas_color_R = hexdec (substr ($canvas_color, 0, 2));
		$canvas_color_G = hexdec (substr ($canvas_color, 2, 2));
		$canvas_color_B = hexdec (substr ($canvas_color, 4, 2));

		// Create a new transparent color for image
	    // If is a png and PNG_IS_TRANSPARENT is false then remove the alpha transparency 
		// (and if is set a canvas color show it in the background)
		if(preg_match('/^image\/png$/i', $mimeType) && !PNG_IS_TRANSPARENT && $canvas_trans){ 
			$color = imagecolorallocatealpha ($canvas, $canvas_color_R, $canvas_color_G, $canvas_color_B, 127);		
		}else{
			$color = imagecolorallocatealpha ($canvas, $canvas_color_R, $canvas_color_G, $canvas_color_B, 0);
		}


		// Completely fill the background of the new image with allocated color.
		imagefill ($canvas, 0, 0, $color);

		// scale down and add borders
		if ($zoom_crop == 2) {

			$final_height = $height * ($new_width / $width);

			if ($final_height > $new_height) {

				$origin_x = $new_width / 2;
				$new_width = $width * ($new_height / $height);
				$origin_x = round ($origin_x - ($new_width / 2));

			} else {

				$origin_y = $new_height / 2;
				$new_height = $final_height;
				$origin_y = round ($origin_y - ($new_height / 2));

			}

		}

		// Restore transparency blending
		imagesavealpha ($canvas, true);

		if ($zoom_crop > 0) {

			$src_x = $src_y = 0;
			$src_w = $width;
			$src_h = $height;

			$cmp_x = $width / $new_width;
			$cmp_y = $height / $new_height;

			// calculate x or y coordinate and width or height of source
			if ($cmp_x > $cmp_y) {

				$src_w = round ($width / $cmp_x * $cmp_y);
				$src_x = round (($width - ($width / $cmp_x * $cmp_y)) / 2);

			} else if ($cmp_y > $cmp_x) {

				$src_h = round ($height / $cmp_y * $cmp_x);
				$src_y = round (($height - ($height / $cmp_y * $cmp_x)) / 2);

			}

			// positional cropping!
			if ($align) {
				if (strpos ($align, 't') !== false) {
					$src_y = 0;
				}
				if (strpos ($align, 'b') !== false) {
					$src_y = $height - $src_h;
				}
				if (strpos ($align, 'l') !== false) {
					$src_x = 0;
				}
				if (strpos ($align, 'r') !== false) {
					$src_x = $width - $src_w;
				}
			}

			imagecopyresampled ($canvas, $image, $origin_x, $origin_y, $src_x, $src_y, $new_width, $new_height, $src_w, $src_h);

		} else {

			// copy and resize part of an image with resampling
			imagecopyresampled ($canvas, $image, 0, 0, 0, 0, $new_width, $new_height, $width, $height);

		}

		if ($filters != '' && function_exists ('imagefilter') && defined ('IMG_FILTER_NEGATE')) {
			// apply filters to image
			$filterList = explode ('|', $filters);
			foreach ($filterList as $fl) {

				$filterSettings = explode (',', $fl);
				if (isset ($imageFilters[$filterSettings[0]])) {

					for ($i = 0; $i < 4; $i ++) {
						if (!isset ($filterSettings[$i])) {
							$filterSettings[$i] = null;
						} else {
							$filterSettings[$i] = (int) $filterSettings[$i];
						}
					}

					switch ($imageFilters[$filterSettings[0]][1]) {

						case 1:

							imagefilter ($canvas, $imageFilters[$filterSettings[0]][0], $filterSettings[1]);
							break;

						case 2:

							imagefilter ($canvas, $imageFilters[$filterSettings[0]][0], $filterSettings[1], $filterSettings[2]);
							break;

						case 3:

							imagefilter ($canvas, $imageFilters[$filterSettings[0]][0], $filterSettings[1], $filterSettings[2], $filterSettings[3]);
							break;

						case 4:

							imagefilter ($canvas, $imageFilters[$filterSettings[0]][0], $filterSettings[1], $filterSettings[2], $filterSettings[3], $filterSettings[4]);
							break;

						default:

							imagefilter ($canvas, $imageFilters[$filterSettings[0]][0]);
							break;

					}
				}
			}
		}

		// sharpen image
		if ($sharpen && function_exists ('imageconvolution')) {

			$sharpenMatrix = array (
					array (-1,-1,-1),
					array (-1,16,-1),
					array (-1,-1,-1),
					);

			$divisor = 8;
			$offset = 0;

			imageconvolution ($canvas, $sharpenMatrix, $divisor, $offset);

		}
		//Straight from Wordpress core code. Reduces filesize by up to 70% for PNG's
		if ( (IMAGETYPE_PNG == $origType || IMAGETYPE_GIF == $origType) && function_exists('imageistruecolor') && !imageistruecolor( $image ) && imagecolortransparent( $image ) > 0 ){
			imagetruecolortopalette( $canvas, false, imagecolorstotal( $image ) );
		}

		$imgType = "";
		$tempfile = tempnam($this->cacheDirectory, 'timthumb_tmpimg_');
		if(preg_match('/^image\/(?:jpg|jpeg)$/i', $mimeType)){ 
			$imgType = 'jpg';
			imagejpeg($canvas, $tempfile, $quality); 
		} else if(preg_match('/^image\/png$/i', $mimeType)){ 
			$imgType = 'png';
			imagepng($canvas, $tempfile, floor($quality * 0.09));
		} else if(preg_match('/^image\/gif$/i', $mimeType)){
			$imgType = 'gif';
			imagegif($canvas, $tempfile);
		} else {
			return $this->sanityFail("Could not match mime type after verifying it previously.");
		}

		if($imgType == 'png' && OPTIPNG_ENABLED && OPTIPNG_PATH && @is_file(OPTIPNG_PATH)){
			$exec = OPTIPNG_PATH;
			$this->debug(3, "optipng'ing $tempfile");
			$presize = filesize($tempfile);
			$out = `$exec -o1 $tempfile`; //you can use up to -o7 but it really slows things down
			clearstatcache();
			$aftersize = filesize($tempfile);
			$sizeDrop = $presize - $aftersize;
			if($sizeDrop > 0){
				$this->debug(1, "optipng reduced size by $sizeDrop");
			} else if($sizeDrop < 0){
				$this->debug(1, "optipng increased size! Difference was: $sizeDrop");
			} else {
				$this->debug(1, "optipng did not change image size.");
			}
		} else if($imgType == 'png' && PNGCRUSH_ENABLED && PNGCRUSH_PATH && @is_file(PNGCRUSH_PATH)){
			$exec = PNGCRUSH_PATH;
			$tempfile2 = tempnam($this->cacheDirectory, 'timthumb_tmpimg_');
			$this->debug(3, "pngcrush'ing $tempfile to $tempfile2");
			$out = `$exec $tempfile $tempfile2`;
			$todel = "";
			if(is_file($tempfile2)){
				$sizeDrop = filesize($tempfile) - filesize($tempfile2);
				if($sizeDrop > 0){
					$this->debug(1, "pngcrush was succesful and gave a $sizeDrop byte size reduction");
					$todel = $tempfile;
					$tempfile = $tempfile2;
				} else {
					$this->debug(1, "pngcrush did not reduce file size. Difference was $sizeDrop bytes.");
					$todel = $tempfile2;
				}
			} else {
				$this->debug(3, "pngcrush failed with output: $out");
				$todel = $tempfile2;
			}
			@unlink($todel);
		}

		$this->debug(3, "Rewriting image with security header.");
		$tempfile4 = tempnam($this->cacheDirectory, 'timthumb_tmpimg_');
		$context = stream_context_create ();
		$fp = fopen($tempfile,'r',0,$context);
		file_put_contents($tempfile4, $this->filePrependSecurityBlock . $imgType . ' ?' . '>'); //6 extra bytes, first 3 being image type 
		file_put_contents($tempfile4, $fp, FILE_APPEND);
		fclose($fp);
		@unlink($tempfile);
		$this->debug(3, "Locking and replacing cache file.");
		$lockFile = $this->cachefile . '.lock';
		$fh = fopen($lockFile, 'w');
		if(! $fh){
			return $this->error("Could not open the lockfile for writing an image.");
		}
		if(flock($fh, LOCK_EX)){
			@unlink($this->cachefile); //rename generally overwrites, but doing this in case of platform specific quirks. File might not exist yet.
			rename($tempfile4, $this->cachefile);
			flock($fh, LOCK_UN);
			fclose($fh);
			@unlink($lockFile);
		} else {
			fclose($fh);
			@unlink($lockFile);
			@unlink($tempfile4);
			return $this->error("Could not get a lock for writing.");
		}
		$this->debug(3, "Done image replace with security header. Cleaning up and running cleanCache()");
		imagedestroy($canvas);
		imagedestroy($image);
		return true;
	}
	protected function calcDocRoot(){
		$docRoot = @$_SERVER['DOCUMENT_ROOT'];
		if (defined('LOCAL_FILE_BASE_DIRECTORY')) {
			$docRoot = LOCAL_FILE_BASE_DIRECTORY;   
		}
		if(!isset($docRoot)){ 
			$this->debug(3, "DOCUMENT_ROOT is not set. This is probably windows. Starting search 1.");
			if(isset($_SERVER['SCRIPT_FILENAME'])){
				$docRoot = str_replace( '\\', '/', substr($_SERVER['SCRIPT_FILENAME'], 0, 0-strlen($_SERVER['PHP_SELF'])));
				$this->debug(3, "Generated docRoot using SCRIPT_FILENAME and PHP_SELF as: $docRoot");
			} 
		}
		if(!isset($docRoot)){ 
			$this->debug(3, "DOCUMENT_ROOT still is not set. Starting search 2.");
			if(isset($_SERVER['PATH_TRANSLATED'])){
				$docRoot = str_replace( '\\', '/', substr(str_replace('\\\\', '\\', $_SERVER['PATH_TRANSLATED']), 0, 0-strlen($_SERVER['PHP_SELF'])));
				$this->debug(3, "Generated docRoot using PATH_TRANSLATED and PHP_SELF as: $docRoot");
			} 
		}
		if($docRoot && $_SERVER['DOCUMENT_ROOT'] != '/'){ $docRoot = preg_replace('/\/$/', '', $docRoot); }
		$this->debug(3, "Doc root is: " . $docRoot);
		$this->docRoot = $docRoot;

	}
	protected function getLocalImagePath($src){
		$src = ltrim($src, '/'); //strip off the leading '/'
		if(! $this->docRoot){
			$this->debug(3, "We have no document root set, so as a last resort, lets check if the image is in the current dir and serve that.");
			//We don't support serving images outside the current dir if we don't have a doc root for security reasons.
			$file = preg_replace('/^.*?([^\/\\\\]+)$/', '$1', $src); //strip off any path info and just leave the filename.
			if(is_file($file)){
				return $this->realpath($file);
			}
			return $this->error("Could not find your website document root and the file specified doesn't exist in timthumbs directory. We don't support serving files outside timthumb's directory without a document root for security reasons.");
		} //Do not go past this point without docRoot set

		//Try src under docRoot
		if(file_exists ($this->docRoot . '/' . $src)) {
			$this->debug(3, "Found file as " . $this->docRoot . '/' . $src);
			$real = $this->realpath($this->docRoot . '/' . $src);
			if(stripos($real, $this->docRoot) === 0){
				return $real;
			} else {
				$this->debug(1, "Security block: The file specified occurs outside the document root.");
				//allow search to continue
			}
		}
		//Check absolute paths and then verify the real path is under doc root
		$absolute = $this->realpath('/' . $src);
		if($absolute && file_exists($absolute)){ //realpath does file_exists check, so can probably skip the exists check here
			$this->debug(3, "Found absolute path: $absolute");
			if(! $this->docRoot){ $this->sanityFail("docRoot not set when checking absolute path."); }
			if(stripos($absolute, $this->docRoot) === 0){
				return $absolute;
			} else {
				$this->debug(1, "Security block: The file specified occurs outside the document root.");
				//and continue search
			}
		}
		
		$base = $this->docRoot;
		
		// account for Windows directory structure
		if (strstr($_SERVER['SCRIPT_FILENAME'],':')) {
			$sub_directories = explode('\\', str_replace($this->docRoot, '', $_SERVER['SCRIPT_FILENAME']));
		} else {
			$sub_directories = explode('/', str_replace($this->docRoot, '', $_SERVER['SCRIPT_FILENAME']));
		}

		foreach ($sub_directories as $sub){
			$base .= $sub . '/';
			$this->debug(3, "Trying file as: " . $base . $src);
			if(file_exists($base . $src)){
				$this->debug(3, "Found file as: " . $base . $src);
				$real = $this->realpath($base . $src);
				if(stripos($real, $this->realpath($this->docRoot)) === 0){
					return $real;
				} else {
					$this->debug(1, "Security block: The file specified occurs outside the document root.");
					//And continue search
				}
			}
		}
		return false;
	}
	protected function realpath($path){
		//try to remove any relative paths
		$remove_relatives = '/\w+\/\.\.\//';
		while(preg_match($remove_relatives,$path)){
		    $path = preg_replace($remove_relatives, '', $path);
		}
		//if any remain use PHP realpath to strip them out, otherwise return $path
		//if using realpath, any symlinks will also be resolved
		return preg_match('#^\.\./|/\.\./#', $path) ? realpath($path) : $path;
	}
	protected function toDelete($name){
		$this->debug(3, "Scheduling file $name to delete on destruct.");
		$this->toDeletes[] = $name;
	}
	protected function serveWebshot(){
		$this->debug(3, "Starting serveWebshot");
		$instr = "Please follow the instructions at [url]http://code.google.com/p/timthumb/[/url] to set your server up for taking website screenshots.";
		if(! is_file(WEBSHOT_CUTYCAPT)){
			return $this->error("CutyCapt is not installed. $instr");
		}
		if(! is_file(WEBSHOT_XVFB)){
			return $this->Error("Xvfb is not installed. $instr");
		}
		$cuty = WEBSHOT_CUTYCAPT;
		$xv = WEBSHOT_XVFB;
		$screenX = WEBSHOT_SCREEN_X;
		$screenY = WEBSHOT_SCREEN_Y;
		$colDepth = WEBSHOT_COLOR_DEPTH;
		$format = WEBSHOT_IMAGE_FORMAT;
		$timeout = WEBSHOT_TIMEOUT * 1000;
		$ua = WEBSHOT_USER_AGENT;
		$jsOn = WEBSHOT_JAVASCRIPT_ON ? 'on' : 'off';
		$javaOn = WEBSHOT_JAVA_ON ? 'on' : 'off';
		$pluginsOn = WEBSHOT_PLUGINS_ON ? 'on' : 'off';
		$proxy = WEBSHOT_PROXY ? ' --http-proxy=' . WEBSHOT_PROXY : '';
		$tempfile = tempnam($this->cacheDirectory, 'timthumb_webshot');
		$url = $this->src;
		if(! preg_match('/^https?:\/\/[a-zA-Z0-9\.\-]+/i', $url)){
			return $this->error("Invalid URL supplied.");
		}
		$url = preg_replace('/[^A-Za-z0-9\-\.\_\~:\/\?\#\[\]\@\!\$\&\'\(\)\*\+\,\;\=]+/', '', $url); //RFC 3986
		//Very important we don't allow injection of shell commands here. URL is between quotes and we are only allowing through chars allowed by a the RFC 
		// which AFAIKT can't be used for shell injection. 
		if(WEBSHOT_XVFB_RUNNING){
			putenv('DISPLAY=:100.0');
			$command = "$cuty $proxy --max-wait=$timeout --user-agent=\"$ua\" --javascript=$jsOn --java=$javaOn --plugins=$pluginsOn --js-can-open-windows=off --url=\"$url\" --out-format=$format --out=$tempfile";
		} else {
			$command = "$xv --server-args=\"-screen 0, {$screenX}x{$screenY}x{$colDepth}\" $cuty $proxy --max-wait=$timeout --user-agent=\"$ua\" --javascript=$jsOn --java=$javaOn --plugins=$pluginsOn --js-can-open-windows=off --url=\"$url\" --out-format=$format --out=$tempfile";
		}
		$this->debug(3, "Executing command: $command");
		$out = `$command`;
		$this->debug(3, "Received output: $out");
		if(! is_file($tempfile)){
			$this->set404();
			return $this->error("The command to create a thumbnail failed.");
		}
		$this->cropTop = true;
		if($this->processImageAndWriteToCache($tempfile)){
			$this->debug(3, "Image processed succesfully. Serving from cache");
			return $this->serveCacheFile();
		} else {
			return false;
		}
	}
	protected function serveExternalImage(){
		if(! preg_match('/^https?:\/\/[a-zA-Z0-9\-\.]+/i', $this->src)){
			$this->error("Invalid URL supplied.");
			return false;
		}
		$tempfile = tempnam($this->cacheDirectory, 'timthumb');
		$this->debug(3, "Fetching external image into temporary file $tempfile");
		$this->toDelete($tempfile);
		#fetch file here
		if(! $this->getURL($this->src, $tempfile)){
			@unlink($this->cachefile);
			touch($this->cachefile);
			$this->debug(3, "Error fetching URL: " . $this->lastURLError);
			$this->error("Error reading the URL you specified from remote host." . $this->lastURLError);
			return false;
		}

		$mimeType = $this->getMimeType($tempfile);
		if(! preg_match("/^image\/(?:jpg|jpeg|gif|png)$/i", $mimeType)){
			$this->debug(3, "Remote file has invalid mime type: $mimeType");
			@unlink($this->cachefile);
			touch($this->cachefile);
			$this->error("The remote file is not a valid image.");
			return false;
		}
		if($this->processImageAndWriteToCache($tempfile)){
			$this->debug(3, "Image processed succesfully. Serving from cache");
			return $this->serveCacheFile();
		} else {
			return false;
		}
	}
	public static function curlWrite($h, $d){
		fwrite(self::$curlFH, $d);
		self::$curlDataWritten += strlen($d);
		if(self::$curlDataWritten > MAX_FILE_SIZE){
			return 0;
		} else {
			return strlen($d);
		}
	}
	protected function serveCacheFile(){
		$this->debug(3, "Serving {$this->cachefile}");
		if(! is_file($this->cachefile)){
			$this->error("serveCacheFile called in timthumb but we couldn't find the cached file.");
			return false;
		}
		$fp = fopen($this->cachefile, 'rb');
		if(! $fp){ return $this->error("Could not open cachefile."); }
		fseek($fp, strlen($this->filePrependSecurityBlock), SEEK_SET);
		$imgType = fread($fp, 3);
		fseek($fp, 3, SEEK_CUR);
		if(ftell($fp) != strlen($this->filePrependSecurityBlock) + 6){
			@unlink($this->cachefile);
			return $this->error("The cached image file seems to be corrupt.");
		}
		$imageDataSize = filesize($this->cachefile) - (strlen($this->filePrependSecurityBlock) + 6);
		$this->sendImageHeaders($imgType, $imageDataSize);
		$bytesSent = @fpassthru($fp);
		fclose($fp);
		if($bytesSent > 0){
			return true;
		}
		$content = file_get_contents ($this->cachefile);
		if ($content != FALSE) {
			$content = substr($content, strlen($this->filePrependSecurityBlock) + 6);
			echo $content;
			$this->debug(3, "Served using file_get_contents and echo");
			return true;
		} else {
			$this->error("Cache file could not be loaded.");
			return false;
		}
	}
	protected function sendImageHeaders($mimeType, $dataSize){
		if(! preg_match('/^image\//i', $mimeType)){
			$mimeType = 'image/' . $mimeType;
		}
		if(strtolower($mimeType) == 'image/jpg'){
			$mimeType = 'image/jpeg';
		}
		$gmdate_expires = gmdate ('D, d M Y H:i:s', strtotime ('now +10 days')) . ' GMT';
		$gmdate_modified = gmdate ('D, d M Y H:i:s') . ' GMT';
		// send content headers then display image
		header ('Content-Type: ' . $mimeType);
		header ('Accept-Ranges: none'); //Changed this because we don't accept range requests
		header ('Last-Modified: ' . $gmdate_modified);
		header ('Content-Length: ' . $dataSize);
		if(BROWSER_CACHE_DISABLE){
			$this->debug(3, "Browser cache is disabled so setting non-caching headers.");
			header('Cache-Control: no-store, no-cache, must-revalidate, max-age=0');
			header("Pragma: no-cache");
			header('Expires: ' . gmdate ('D, d M Y H:i:s', time()));
		} else {
			$this->debug(3, "Browser caching is enabled");
			header('Cache-Control: max-age=' . BROWSER_CACHE_MAX_AGE . ', must-revalidate');
			header('Expires: ' . $gmdate_expires);
		}
		return true;
	}
	protected function securityChecks(){
	}
	protected function param($property, $default = ''){
		if (isset ($_GET[$property])) {
			return $_GET[$property];
		} else {
			return $default;
		}
	}
	protected function openImage($mimeType, $src){
		switch ($mimeType) {
			case 'image/jpeg':
				$image = imagecreatefromjpeg ($src);
				break;

			case 'image/png':
				$image = imagecreatefrompng ($src);
				break;

			case 'image/gif':
				$image = imagecreatefromgif ($src);
				break;
			
			default:
				$this->error("Unrecognised mimeType");
		}

		return $image;
	}
	protected function getIP(){
		$rem = @$_SERVER["REMOTE_ADDR"];
		$ff = @$_SERVER["HTTP_X_FORWARDED_FOR"];
		$ci = @$_SERVER["HTTP_CLIENT_IP"];
		if(preg_match('/^(?:192\.168|172\.16|10\.|127\.)/', $rem)){ 
			if($ff){ return $ff; }
			if($ci){ return $ci; }
			return $rem;
		} else {
			if($rem){ return $rem; }
			if($ff){ return $ff; }
			if($ci){ return $ci; }
			return "UNKNOWN";
		}
	}
	protected function debug($level, $msg){
		if(DEBUG_ON && $level <= DEBUG_LEVEL){
			$execTime = sprintf('%.6f', microtime(true) - $this->startTime);
			$tick = sprintf('%.6f', 0);
			if($this->lastBenchTime > 0){
				$tick = sprintf('%.6f', microtime(true) - $this->lastBenchTime);
			}
			$this->lastBenchTime = microtime(true);
			error_log("TimThumb Debug line " . __LINE__ . " [$execTime : $tick]: $msg");
		}
	}
	protected function sanityFail($msg){
		return $this->error("There is a problem in the timthumb code. Message: Please report this error at <a href='http://code.google.com/p/timthumb/issues/list'>timthumb's bug tracking page</a>: $msg");
	}
	protected function getMimeType($file){
		$info = getimagesize($file);
		if(is_array($info) && $info['mime']){
			return $info['mime'];
		}
		return '';
	}
	protected function setMemoryLimit(){
		$inimem = ini_get('memory_limit');
		$inibytes = timthumb::returnBytes($inimem);
		$ourbytes = timthumb::returnBytes(MEMORY_LIMIT);
		if($inibytes < $ourbytes){
			ini_set ('memory_limit', MEMORY_LIMIT);
			$this->debug(3, "Increased memory from $inimem to " . MEMORY_LIMIT);
		} else {
			$this->debug(3, "Not adjusting memory size because the current setting is " . $inimem . " and our size of " . MEMORY_LIMIT . " is smaller.");
		}
	}
	protected static function returnBytes($size_str){
		switch (substr ($size_str, -1))
		{
			case 'M': case 'm': return (int)$size_str * 1048576;
			case 'K': case 'k': return (int)$size_str * 1024;
			case 'G': case 'g': return (int)$size_str * 1073741824;
			default: return $size_str;
		}
	}
	protected function getURL($url, $tempfile){
		$this->lastURLError = false;
		$url = preg_replace('/ /', '%20', $url);
		if(function_exists('curl_init')){
			$this->debug(3, "Curl is installed so using it to fetch URL.");
			self::$curlFH = fopen($tempfile, 'w');
			if(! self::$curlFH){
				$this->error("Could not open $tempfile for writing.");
				return false;
			}
			self::$curlDataWritten = 0;
			$this->debug(3, "Fetching url with curl: $url");
			$curl = curl_init($url);
			curl_setopt ($curl, CURLOPT_TIMEOUT, CURL_TIMEOUT);
			curl_setopt ($curl, CURLOPT_USERAGENT, "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.122 Safari/534.30");
			curl_setopt ($curl, CURLOPT_RETURNTRANSFER, TRUE);
			curl_setopt ($curl, CURLOPT_HEADER, 0);
			curl_setopt ($curl, CURLOPT_SSL_VERIFYPEER, FALSE);
			curl_setopt ($curl, CURLOPT_WRITEFUNCTION, 'timthumb::curlWrite');
			@curl_setopt ($curl, CURLOPT_FOLLOWLOCATION, true);
			@curl_setopt ($curl, CURLOPT_MAXREDIRS, 10);
			
			$curlResult = curl_exec($curl);
			fclose(self::$curlFH);
			$httpStatus = curl_getinfo($curl, CURLINFO_HTTP_CODE);
			if($httpStatus == 404){
				$this->set404();
			}
			if($curlResult){
				curl_close($curl);
				return true;
			} else {
				$this->lastURLError = curl_error($curl);
				curl_close($curl);
				return false;
			}
		} else {
			$img = @file_get_contents ($url);
			if($img === false){
				$err = error_get_last();
				if(is_array($err) && $err['message']){
					$this->lastURLError = $err['message'];
				} else {
					$this->lastURLError = $err;
				}
				if(preg_match('/404/', $this->lastURLError)){
					$this->set404();
				}

				return false;
			}
			if(! file_put_contents($tempfile, $img)){
				$this->error("Could not write to $tempfile.");
				return false;
			}
			return true;
		}

	}
	protected function serveImg($file){
		$s = getimagesize($file);
		if(! ($s && $s['mime'])){
			return false;
		}
		header ('Content-Type: ' . $s['mime']);
		header ('Content-Length: ' . filesize($file) );
		header ('Cache-Control: no-store, no-cache, must-revalidate, max-age=0');
		header ("Pragma: no-cache");
		$bytes = @readfile($file);
		if($bytes > 0){
			return true;
		}
		$content = @file_get_contents ($file);
		if ($content != FALSE){
			echo $content;
			return true;
		}
		return false;

	}
	protected function set404(){
		$this->is404 = true;
	}
	protected function is404(){
		return $this->is404;
	}
}

faglork · 12. Juni 2012 13:11

Achtung, aufpassen:

"TimThumb by Ben Gillbanks and Mark Maunder"

--> Da gabs mal ne böse Sicherheitslücke, siehe (u.a.):

http://www.heise.de/security/meldung/Kr … 17795.html

das betrifft ja nicht nur Wordpress - dort ist es halt weit verbreitet.

--> check mal ob dein Script davon betroffen ist.

Servus,
Alex

rolwalca · 12. Juni 2012 13:42

danke für den Hinweis.
Werde das mal an meinen Auftraggeber weitergeben.

rolwalca · 12. Juni 2012 18:58

wenn die htaccess wie beschrieben installiert ist scheint es kein Problem zu sein. So zumindest der Entwickler des Scriptes.

O-Ton:

Entwickler schrieb:

"ich habe erneut drüber geschaut, die Option die die Lücke ermöglichte habe ich zusätzlich deaktiviert, bereits auf dem Live-Server. Da aber die jüngste Version von TimThumb verwendet wird, bestand die Lücke nicht mehr. Selbst wenn sich eine neue Lücke auftuen sollte - wovon nicht auszugehen ist - kann der Angreifer nicht auf der Verzeichnis zugreifen, in welches jener eine schädliche Datei einfügen könnte, so dass keine Gefahr besteht."

Forum für CMS/made simple

#1 08. Februar 2012 19:53