Re: OT - Public Upload Security

This WebDNA talk-list message is from

2002

It keeps the original formatting. numero = 41476
interpreted = N
texte = Hi Alisha,On Friday, July 12, 2002, at 05:59 PM, Alisha Outridge wrote:> When an upload takes place from a user on your public site - how do you > other programmers make sure it is not something dangerous?Good question :)> I am specifically interested in the uploading of image files at this point > but all media would be useful. Currently I am checking the width and > height of the uploaded image when it is put on my server and before it is > uploaded it is bounced back if it does not have a .gif or .jpg extension.I am about ready to allow my users to upload images as well. I will check as you are doing now as well. I will also be using the [shell] context (ok, I am now on linux, but you should be able to do this with applescript as well) to call the anti-virus program I just bought to check the upload folder prior to doing any further processing.> Do I need some sort of third party software to scan it? I run the platform > MacOS 9 and use Webstar 4.0 with WebCat 3.0.I would look for an anti-virus tool that you can control via applescript. The things I think would be important are the ability to specify the folder and the ability to get some sort of results back - or, that the anti-virus program will move the file for you to a safe folder.> Alisha Outridge> Spec Simple, Inc.> Where the World of Design Connects...Dale-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Associated Messages, from the most recent to the oldest:

Re: OT - Public Upload Security (Robert Wade 2002)
Re: OT - Public Upload Security (Glenn Busbin 2002)
Re: OT - Public Upload Security (dale's stuff 2002)
Re: OT - Public Upload Security (Alisha Outridge 2002)
Re: OT - Public Upload Security (Jesse Williams-Proudman 2002)
Re: OT - Public Upload Security (Christopher Mackay 2002)
OT - Public Upload Security (Alisha Outridge 2002)

Hi Alisha,On Friday, July 12, 2002, at 05:59 PM, Alisha Outridge wrote:> When an upload takes place from a user on your public site - how do you > other programmers make sure it is not something dangerous?Good question :)> I am specifically interested in the uploading of image files at this point > but all media would be useful. Currently I am checking the width and > height of the uploaded image when it is put on my server and before it is > uploaded it is bounced back if it does not have a .gif or .jpg extension.I am about ready to allow my users to upload images as well. I will check as you are doing now as well. I will also be using the [shell] context (ok, I am now on linux, but you should be able to do this with applescript as well) to call the anti-virus program I just bought to check the upload folder prior to doing any further processing.> Do I need some sort of third party software to scan it? I run the platform > MacOS 9 and use Webstar 4.0 with WebCat 3.0.I would look for an anti-virus tool that you can control via applescript. The things I think would be important are the ability to specify the folder and the ability to get some sort of results back - or, that the anti-virus program will move the file for you to a safe folder.> Alisha Outridge> Spec Simple, Inc.> Where the World of Design Connects...Dale-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ dale's stuff

DOWNLOAD WEBDNA NOW!

Re: OT - Public Upload Security

2002

Top Articles:

Related Readings: