Shell – Script to determine if files are Images

filesimagesshell-script

I would like to create a shell script that will check to make sure all files in a directory are image files.

We recently had an issue where a hacker was able to generate a file in a directory and mask it as a .jpg file. I would like to create a shell script to check all files in the directory to make sure they are real jpg, gif or png files.

Best Answer

I think you want to be very careful about using file in a circumstance where you give it completely untrusted input. For instance, RHEL 5 file will identify this:

GIF87a
<?php
echo "Hello from PHP!\n";
?>

As "GIF image data, version 87a, 15370 x 28735". The PHP interpreter has no trouble executing that input. That lack of trouble is the basis for "local file inclusion" (LFI) problems.

Second, file (and even strings) actually parse input files to tell you what you want to know. These parsers are complicated and have problems.

I'm going to suggest the identify command out of the ImageMagick suite. It isn't fooled by my simple example above, and it only parses image files correctly, so it should be less prone to security flaws than file.

Related Solutions

Program for taking snap-shots of movie

You can use ffmpeg to do this. There are several examples over on the ffmpeg website.

Here are a few of them:

This will create one thumbnail image every minute, named img001.jpg, img002.jpg, img003.jpg, ... (%03d means that ordinal number of each thumbnail image should be formatted using 3 digits)
```
$ ffmpeg -i myvideo.avi -f image2 -vf fps=fps=1/60 img%03d.jpg
```
This will create one thumbnail image every 10 minutes, named thumb0001.bmp, thumb0002.bmp, thumb0003.bmp, ...
```
$ ffmpeg -i test.flv -f image2 -vf fps=fps=1/600 thumb%04d.bmp
```

If you want to make them into a short video you can again enlist the help of ffmpeg. It's discussed on this page of their website.

Here are a few more examples:

Here, each image will have a duration of 5 seconds (the inverse of 1/5 frames per second). By telling FFmpeg to set the input file's FPS option (frames per second) to some very low value, we made FFmpeg duplicate frames at the output and thus we achieved to display each image for some time on screen:
```
$ ffmpeg -f image2 -r 1/5 -i img%03d.png -c:v libx264 -r 30 out.mp4
```
If you don't have images numbered and ordered in series (img001.jpg, img002.jpg, img003.jpg) but rather random bunch of images, ffmpeg also supports bash-style globbing (* represents any number of any characters):
```
$ ffmpeg -f image2 -r 1 -pattern_type glob -i '*.jpg' -c:v libx264 out.mp4
```

or for png images:

    $ ffmpeg -f image2 -r 1 -pattern_type glob -i '*.png' -c:v libx264 out.mp4

To make the resulting video into an animated gif you could use the steps outlined int his SO Q&A titled: How to generate gif from avi using ffmpeg?:

$ ffmpeg -i video.avi -t 10 out%02d.gif

then:

$ gifsicle --delay=10 --loop *.gif > anim.gif

Here's the link to the tool gifsicle.

Shell Script – Sorting Files into Directories and Subdirectories

If all you are looking to do is produce a nice formatted output of all .md files, tree should do exactly what you want:

tree -P '*.md' /home/user/doc

Add -A for pretty lines, it also does interesting things like output to HTML/XML.

Best Answer

Related Solutions

Program for taking snap-shots of movie

Shell Script – Sorting Files into Directories and Subdirectories

Related Question