Php:How to prevent from OverWrite ImageUpload File

[HyDra_92]

Heys, Guys i need Help i want to stop file overwrite when some upload file its check if file already exit same name like sample.jpeg then it will sample1.jpg

PHP Code: 

<?php


require 'db.inc.php';
if(isset($_POST['up']))
{
    
    
function getExtension($name){
    
    $pos = strpos($name,".");
    $len =strlen($name);
    $str =substr($name,$pos+1,$len);
    return $str;
    }
    
    
    
    for($i=1; $i<=2; $i++)
    {
        $ext = getExtension($_FILES['img'.$i]['name']);
        
    $allowed_filetypes = array("jpg","jpeg","png","gif"); 
        //if($ext !="jpg" and $ext !="gif" and $ext !="jpeg" and $ext !="png")
            if(!in_array($ext,$allowed_filetypes))

        //if($ext!= in_array($Allow))
        {
            echo "Invlaid File"."<br />";
        
        }
        else
        {
            
        
            echo "Valid File"."<br />";
            $path = "images/".$_FILES['img'.$i]['name'];
            $name = $_FILES['img'.$i]['name'];
            copy($_FILES['img'.$i]['tmp_name'],$path);
            echo $path."<br />";
            mysql_query("insert into img_data (url)values('$name') ")or die($query_error);
        }
        
        }
                }
?>

---------- Post added 1st Aug 2012 at 09:56 AM ---------- Previous post was 31st Jul 2012 at 06:21 PM ----------

solved

HyDra_92 Reviewed by HyDra_92 on 1st Aug 2012. Php:How to prevent from OverWrite ImageUpload File Heys, Guys i need Help i want to stop file overwrite when some upload file its check if file already exit same name like sample.jpeg then it will sample1.jpg <?php require 'db.inc.php'; if(isset($_POST)) Rating: 5

[l0calh0st]

Why not added a suffix to all uploaded files? sample_bf87t23r.jpg

[MrOSX]

Why not added a suffix to all uploaded files? sample_bf87t23r.jpg

This would be a prefix not a suffix

[Gavo]

This site is using a hacked database of W junction

[HyDra_92]

i just used rand() and time() Thanks every one

[Lifetalk]

This would be a prefix not a suffix

Oh dear, you need to go check out wikipedia. What localhost posted was a suffix. A prefix, as the name suggests, is added prior to the actual word. 'Pre'.

[jokerhacker]

suffixes are good. But for the name part, you better make it md5 generated. At least it would be homogene and controlled ([a-f0-9]). Then you won't need to worry about special chars or file system issues.

[Lock Down]

Just add the date and time as a prefix or suffix down to the microsecond and you will never have a duplicate and will have the dates to use for sorting.

That would be better than using random and time.