Re: Security

This WebDNA talk-list message is from

2006


It keeps the original formatting.
numero = 67430
interpreted = N
texte = I run any and all uploaded files through ImageMagick - I use it to confirm the proper file type. I have tried in the past to upload an application with an allowed graphic extension and IM found each one (actually it just found that the file wasn't a valid image file). Even if the code somehow made it past this check, I also add a watermark and resize most of the images, so I suspect those actions would destroy any code. Clint Davis wrote: > Has anyone checked their file upload scripts for vulnerabilities? > > I only allow certain file extensions, but I'm afraid someone might create > some malicious code, save it as whatever.jpg, and upload to one of my sites. > Don't know how WebDNA/PHP/etc. would handle that scenario. > ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] Security (Stuart Tremain 2015)
  2. [WebDNA] Security (Kenneth Grome 2015)
  3. Re: [WebDNA] Security Problem (Tom Duke 2015)
  4. Re: [WebDNA] Security Problem (Stuart Tremain 2015)
  5. [WebDNA] Security Problem (Stuart Tremain 2015)
  6. [WebDNA] security patches (Olin Lagon 2014)
  7. RE: [WebDNA] Security Groups ("Michael A. DeLorenzo" 2010)
  8. Re: [WebDNA] Security Groups (Govinda 2010)
  9. [WebDNA] Security Groups ("Michael A. DeLorenzo" 2010)
  10. Re: [WebDNA] Security best practice (Donovan Brooke 2009)
  11. Re: [WebDNA] Security best practice (Terry Wilson 2009)
  12. Re: [WebDNA] Security best practice (Clint Davis 2009)
  13. Re: [WebDNA] Security best practice (Terry Wilson 2009)
  14. Re: [WebDNA] Security best practice (Donovan Brooke 2009)
  15. Re: [WebDNA] Security best practice (Donovan Brooke 2009)
  16. [WebDNA] Security best practice ("Tom Duke" 2009)
  17. [BULK] Re: [WebDNA] Security Images (Captcha) ("Psi Prime, Matthew A Perosi " 2008)
  18. Re: [WebDNA] Security Images (Captcha) ( 2008)
  19. Re: [WebDNA] Security Images (Captcha) ("Psi Prime, Matthew A Perosi " 2008)
  20. RE: [WebDNA] Security Images (Captcha) ("Olin Lagon" 2008)
  21. [WebDNA] Security Images (Captcha) ( 2008)
  22. Re: Security ( "Dan Strong" 2006)
  23. Re: Security ( Dale Lists 2006)
  24. Security ( Clint Davis 2006)
  25. Just checking security updates ( Steve Craig 2005)
  26. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  27. Re: [OT] SSL security in browser ( "Will Starck" 2005)
  28. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  29. Re: [OT] SSL security in browser ( WJ Starck 2005)
  30. Re: [OT] SSL security in browser ( WJ Starck 2005)
  31. Re: [OT] SSL security in browser ( WJ Starck 2005)
  32. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  33. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  34. Re: [OT] SSL security in browser ( WJ Starck 2005)
  35. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  36. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  37. Re: [OT] SSL security in browser ( "WebDNA Talk-List Admin" 2005)
  38. Re: [OT] SSL security in browser ( Stuart Tremain 2005)
  39. [OT] SSL security in browser ( WJ Starck 2005)
  40. storebuilder security ( Scott Szretter 2005)
  41. Re: WebDNA security ( Patrick McCormick 2004)
  42. Re: [OT] Security in general [Was] Re: WebDNA security ( Matthew A Perosi 2004)
  43. Re: WebDNA security ( Bob Minor 2004)
  44. Re: WebDNA security ( Larry Hewitt 2004)
  45. Re: WebDNA security ( Patrick McCormick 2004)
  46. Re: WebDNA security ( "Sal D'Anna" 2004)
  47. Re: [OT] Security in general [Was] Re: WebDNA security ( "WebDna @ Inkblot Media" 2004)
  48. Re: WebDNA security ( John Peacock 2004)
  49. Re: WebDNA security ( Donovan Brooke 2004)
  50. [OT] Security in general [Was] Re: WebDNA security ( Alan White 2004)
  51. Re: WebDNA security ( Alan White 2004)
  52. Re: WebDNA security ( John Peacock 2004)
  53. WebDNA security ( Patrick McCormick 2004)
  54. Re: Norton Internet Security filtering out WebDNA processsed ( Robert Schmidt 2004)
  55. Re: Norton Internet Security filtering out WebDNA processsed ( Terry Wilson 2004)
  56. Re: Norton Internet Security filtering out WebDNA processsed ( Frank Nordberg 2004)
  57. Re: Norton Internet Security filtering out WebDNA processsed ( "Sal D'Anna" 2004)
  58. Re: Norton Internet Security filtering out WebDNA processsed ( Matthew A Perosi 2004)
  59. Re: Norton Internet Security filtering out WebDNA processsed ( "Sal D'Anna" 2004)
  60. Re: Norton Internet Security filtering out WebDNA processsed ( John Peacock 2004)
  61. Re: Norton Internet Security filtering out WebDNA processsed ( Phil Herring 2004)
  62. Norton Internet Security filtering out WebDNA processsed pages ( Robert Schmidt 2004)
  63. Re: Poll security ( eLists 2004)
  64. Poll security ( Donovan Brooke 2004)
  65. Re: Security stumper [mildly OT] ( Tim Robinson 2004)
  66. Re: Security stumper [mildly OT] ( John Peacock 2004)
  67. Re: Security stumper [mildly OT] ( Matthew A Perosi 2004)
  68. Security stumper [mildly OT] ( Phil Herring 2004)
  69. Re: Security & Query Strings ( Justin Carroll 2004)
  70. Re: Security & Query Strings ( "Matthew C. Bohne" 2004)
  71. Re: Security & Query Strings ( Clint Davis 2004)
  72. Re: Security & Query Strings ( Justin Carroll 2004)
  73. Re: Security & Query Strings ( Joe D'Andrea 2004)
  74. Security & Query Strings ( Justin Carroll 2004)
  75. Re: Database Security Rev., (Kenneth Grome 2002)
  76. Re: Database Security Rev., (Donovan 2002)
  77. Re: Database Security Rev., (Kenneth Grome 2002)
  78. Re: Database Security Rev., (Jay Van Vark 2002)
  79. Re: Database Security Rev., (Donovan 2002)
  80. Re: Database Security Rev., (Stuart Tremain 2002)
  81. Re: Database Security Rev., (Jay Van Vark 2002)
  82. Re: Database Security Rev., (Donovan 2002)
  83. Re: Database Security Rev., (Andrew Simpson 2002)
  84. Re: Database Security Rev., (Donovan 2002)
  85. Re: Database Security Rev., (Jeff Logan 2002)
  86. Database Security Rev., (Donovan 2002)
  87. Re: [Way OT] Workstation Security (Larry Goodhew 2002)
  88. Re: [Way OT] Workstation Security (Dale-Lists 2002)
  89. Re: [Way OT] Workstation Security (Dan Strong 2002)
  90. Re: [Way OT] Workstation Security (Gary Krockover 2002)
  91. Re: [Way OT] Workstation Security (Dan Strong 2002)
  92. Re: [Way OT] Workstation Security (Stuart Tremain 2002)
  93. Re: [Way OT] Workstation Security (Dan Strong 2002)
  94. Re: [Way OT] Workstation Security (Dan Strong 2002)
  95. Re: [Way OT] Workstation Security (Dale-Lists 2002)
  96. Re: [Way OT] Workstation Security (Dan Strong 2002)
  97. Re: [Way OT] Workstation Security (Donovan Brooke 2002)
  98. Re: [Way OT] Workstation Security (Dan Strong 2002)
  99. Re: [Way OT] Workstation Security (Dan Strong 2002)
  100. Re: [Way OT] Workstation Security (Donovan Brooke 2002)
  101. [Way OT] Workstation Security (Dan Strong 2002)
  102. Re: About the + sign: security alert (Grant Hulbert 2002)
  103. New Security Standard for WebLink and ADC Relay ResponseUsers-FY (Sal D'anna 2002)
  104. Re: Security (Andrew Simpson 2002)
  105. Re: Security (Bob Minor 2002)
  106. Re: Security (John Hill 2002)
  107. Re: Security (Andrew Simpson 2002)
  108. Re: Security (Bob Minor 2002)
  109. Re: Security (Glenn Busbin 2002)
  110. Re: Security (Bob Minor 2002)
  111. Re: Security (Glenn Busbin 2002)
  112. Re: Security (Bob Minor 2002)
  113. Re: Multi-User Security on *nix using mod_rewrite (Alain Russell 2002)
  114. Re: Multi-User Security on *nix using mod_rewrite (Aaron Lynch 2002)
  115. Re: Multi-User Security on *nix using mod_rewrite (Aaron Lynch 2002)
  116. Re: Multi-User Security on *nix using mod_rewrite (Clement Ross 2002)
  117. Re: Multi-User Security on *nix using mod_rewrite (Alain Russell 2002)
  118. Multi-User Security on *nix using mod_rewrite (Michael Davis 2002)
  119. Re: OT - Public Upload Security (Robert Wade 2002)
  120. Re: OT - Public Upload Security (Glenn Busbin 2002)
  121. Re: OT - Public Upload Security (dale's stuff 2002)
  122. Re: OT - Public Upload Security (Alisha Outridge 2002)
  123. Re: OT - Public Upload Security (Jesse Williams-Proudman 2002)
  124. Re: OT - Public Upload Security (Christopher Mackay 2002)
  125. OT - Public Upload Security (Alisha Outridge 2002)
  126. Re: MacOS9 plugin 4.0.2b5 template security error (Dale LaFountain 2000)
  127. Re: MacOS9 plugin 4.0.2b5 template security error (Grant Hulbert 2000)
  128. Re: MacOS9 plugin 4.0.2b5 template security error (Grant Hulbert 2000)
  129. Re: MacOS9 plugin 4.0.2b5 template security error (Dale LaFountain 2000)
  130. Re: MacOS9 plugin 4.0.2b5 template security error (Sam Lewis 2000)
  131. MacOS9 plugin 4.0.2b5 template security error (Dale LaFountain 2000)
  132. Re: [OT] Security Certs (John Peacock 2000)
  133. Re: [OT] Security Certs (Stuart Tremain 2000)
  134. Re: [OT] Security Certs (Stuart Tremain 2000)
  135. Re: [OT] Security Certs (Jesse Proudman (Lists Account) 2000)
  136. [OT] Security Certs (Stuart Tremain 2000)
  137. Re: [OT] Security Certs (Jesse Proudman (Lists Account) 2000)
  138. Re: math variable security [MEDIUM LONG] (Bob Minor 2000)
  139. Re: math variable security [MEDIUM LONG] (John Peacock 2000)
  140. Re: math variable security [MEDIUM LONG] (Bob Minor 2000)
  141. Re: math variable security [VERY LONG] (John Peacock 2000)
  142. Re: Variable security (Kenneth Grome 2000)
  143. Re: Variable security (Bob Minor 2000)
  144. Re: Variable security (Grant Hulbert 2000)
  145. Re: Variable security (Bob Minor 2000)
  146. Re: Variable security (Grant Hulbert 2000)
  147. Variable security (Bob Minor 2000)
  148. Variable security (Bob Minor 2000)
  149. Re: math variable security (Paul Uttermohlen 2000)
  150. Re: math variable security (Bob Minor 2000)
  151. Re: math variable security (WebDNA Support 2000)
  152. Re: math variable security (Bob Minor 2000)
  153. Re: math variable security (WebDNA Support 2000)
  154. math variable security (Bob Minor 2000)
  155. Re: Browser security type (Robert Wade 2000)
  156. Re: Browser security type (John Peacock 2000)
  157. Re: Browser security type (Robert Wade 2000)
  158. Re: Browser security type (John Peacock 2000)
  159. Browser security type (Robert Wade 2000)
  160. Re: unix permissions theory applied to db security? Or...? (John Peacock 2000)
  161. Re: unix permissions theory applied to db security? Or...? (John Butler 2000)
  162. Re: unix permissions theory applied to db security? Or...? (John Butler 2000)
  163. Re: unix permissions theory applied to db security? Or...? (John Peacock 2000)
  164. Re: unix permissions theory applied to db security? Or...? (Kenneth Grome 2000)
  165. Re: unix permissions theory applied to db security? Or...? (Clement Ross 2000)
  166. unix permissions theory applied to db security? Or...? (John Butler 2000)
  167. Re: Webcat 4.0 and security (Christer Olsson 2000)
  168. Re: Webcat 4.0 and security (Grant Hulbert 2000)
  169. Webcat 4.0 and security (Christer Olsson 2000)
  170. Re: [OT] MS Security Flaw (Brad Eisenberg 2000)
  171. Re: [OT] MS Security Flaw (Nicolas Verhaeghe 2000)
  172. Re: [OT] MS Security Flaw (Kenneth Grome 2000)
  173. Re: [OT] MS Security Flaw (Eric Ridgley 2000)
  174. Re: [OT] MS Security Flaw (Vince Medina 2000)
  175. Re: [OT] MS Security Flaw (Kenneth Grome 2000)
  176. Re: [OT] MS Security Flaw (Nicolas Verhaeghe 2000)
  177. Re: [OT] MS Security Flaw (Glenn Busbin 2000)
  178. Re: [OT] MS Security Flaw (Nicolas Verhaeghe 2000)
  179. [OT] MS Security Flaw (Glenn Busbin 2000)
  180. Re: Security problems (Rodolfo de la Garza 2000)
  181. Re: Security problems (WebDNA Support 2000)
  182. Re: Security problems (Jesse Proudman 2000)
  183. Re: [Feature Request] Stronghold security variables that cannot (Nicolas Verhaeghe 2000)
  184. Re: [Feature Request] Stronghold security variables that cannot beforce as formvariables (John Butler 2000)
  185. [Feature Request] Stronghold security variables that cannot be (Nicolas Verhaeghe 2000)
  186. Re: AGAIN: Who's Security? (jpeacock@univpress.com 2000)
  187. AGAIN: Who's Security? (Doug Hardman 2000)
  188. Who's Security? (Doug Hardman 2000)
  189. Re: Security Issue (WebDNA Support 2000)
  190. Re: Security Issue (Kenneth Grome 2000)
  191. Re: Security (jpeacock@univpress.com 2000)
  192. Re: Security (Peter Ostry 2000)
  193. Re: WebCatalog security on NT (JHowarth@smithmicro.com 2000)
  194. Re: WebCatalog security on NT (Kenneth Grome 2000)
  195. Re: WebCatalog security on NT (David M. Dantowitz 2000)
  196. Re: WebCatalog security on NT (Kenneth Grome 2000)
  197. Re: WebCatalog security on NT (Serban Constantinescu 2000)
  198. Re: WebCatalog security on NT (Kenneth Grome 2000)
  199. WebCatalog security on NT (Serban Constantinescu 2000)
  200. Re: Security Levels... Possible? (Therio, Dale 2000)
  201. Re: Security Levels... Possible? (Kim Ingram 2000)
  202. Re: Security Levels... Possible? (Kenneth Grome 2000)
  203. Re: Security Levels... Possible? (Howard Wolosky 2000)
  204. Re: Security Levels... Possible? (Will Starck 2000)
  205. Re: Security Levels... Possible? (Conrad Hubbard 2000)
  206. Re: Security hole in WebCat? (Grant Hulbert 1999)
  207. Re: Security hole in WebCat? (Michael Winston 1999)
  208. Re: Security hole in WebCat? (Michael Winston 1999)
  209. Re: security (https) w webcat (Tim Taylor 1999)
  210. Re: security (https) w webcat (Rob Marquardt 1999)
  211. Re: security (https) w webcat (Bill Taylor ( FMCI) 1999)
  212. Re: security (https) w webcat (Mícheál O Sé 1999)
  213. Re: Q on the best way to set up a security function so users canedit records (Charles Kefauver 1999)
  214. Re: Q on the best way to set up a security function so users can edit records (webcat 1999)
  215. Re: Q on the best way to set up a security function so users canedit records (PCS Technical Support 1999)
  216. Q on the best way to set up a security function so users can edit records (webcat 1999)
  217. Re: Security Issue (Peter Ostry 1999)
  218. Re: Security Issue (Kenneth Grome 1999)
  219. Re: Security Issue (Bob Minor 1999)
  220. Re: Security - 2 (PCS Technical Support 1999)
  221. Re: Security (Brian B. Burton 1999)
  222. Re: Email security (was CC and Europe) (PCS Technical Support 1999)
  223. Re: File Security (PCS Technical Support 1999)
  224. Re: File Security (Kenneth Grome 1999)
  225. File Security (Mike_Davis 1999)
  226. Re: File Security (Dave MacLeay 1999)
  227. On AOL Account Security: Fwd: POSSIBLE PROBLEMS FOR AOL USERS (ToLarry@aol.com 1998)
  228. Re: template security preferences????? (PCS Technical Support 1998)
  229. RE: template security preferences????? (Richard 1998)
  230. Re: template security preferences????? (PCS Technical Support 1998)
  231. Re: template security preferences????? (Kenneth Grome 1998)
  232. template security preferences????? (Richard 1998)
  233. Re: Security (Peter Ostry 1998)
  234. Re: Security (Kenneth Grome 1998)
  235. Re: Security (Peter Ostry 1998)
  236. Re: Security (Kenneth Grome 1998)
  237. Re: Security (Charles Kefauver 1998)
  238. Re: Security (Kevin Mueller 1998)
  239. Re: Security (PCS Technical Support 1998)
  240. Re: Security Hole - NetCloak Update (Paul Uttermohlen 1998)
  241. Re: Security Hole - NetCloak Update (Peter Ostry 1998)
  242. Re: Security Hole - NetCloak Update (John O'Fallon 1998)
  243. Re: Security Hole - NetCloak Update (John O'Fallon 1998)
  244. Re: Security Hole - NetCloak Update (Charles Kefauver 1998)
  245. Re: Major Security Hole (solution with Welcome) (Andreas Pardeike 1998)
  246. Re: Security Hole - NetCloak Update (Paul Uttermohlen 1998)
  247. Re: Security Hole - NetCloak Update (John O'Fallon 1998)
  248. Re: Major Security Hole (Kenneth Grome 1998)
  249. Re: Major Security Hole (Peter Ostry 1998)
  250. Re: Major Security Hole (Paul Uttermohlen 1998)
  251. Re: Major Security Hole (solution with Welcome) (Peter Ostry 1998)
  252. Re: Major Security Hole (Charles Kefauver 1998)
  253. Re: Major Security Hole (solution with Welcome) (Andreas Pardeike 1998)
  254. Re: Major Security Hole (PCS Technical Support 1998)
  255. Re: Major Security Hole (Peter Ostry 1998)
  256. Re: Major Security Hole (Dan Tryon 1998)
  257. Re: Major Security Hole (Jim Turney 1998)
  258. Re: Major Security Hole (Peter Ostry 1998)
  259. Re: Major Security Hole (Paul Uttermohlen 1998)
  260. Re: Major Security Hole (Bob Minor 1998)
  261. Re: Major Security Hole (Dan Tryon 1998)
  262. Re: Major Security Hole (Brian Willson 1998)
  263. Re: Major Security Hole (Britt T. 1998)
  264. Re: Major Security Hole (Paul Uttermohlen 1998)
  265. Re: Major Security Hole (Dave MacLeay 1998)
  266. Re: Major Security Hole (Bob Minor 1998)
  267. Re: Major Security Hole (Peter Ostry 1998)
  268. Re: Major Security Hole (PCS Technical Support 1998)
  269. Major Security Hole (Paul Uttermohlen 1998)
  270. Re: Major Security Hole IIS NT (Bob Minor 1998)
  271. Re: Major Security Hole IIS NT (greg 1998)
  272. Re: Major Security Hole IIS NT (Kenneth Grome 1998)
  273. Re: Major Security Hole IIS NT (Kenneth Grome 1998)
  274. RE: Major Security Hole IIS NT (PCS Technical Support 1998)
  275. RE: Major Security Hole IIS NT (Olin 1998)
  276. Re: Major Security Hole IIS NT (Bob Minor 1998)
  277. Re: Major Security Hole IIS NT (PCS Technical Support 1998)
  278. Re: Major Security Hole IIS NT (Bob Minor 1998)
  279. Re: Major Security Hole IIS NT (Peter Ostry 1998)
  280. Re: Major Security Hole IIS NT (Bob Minor 1998)
  281. Re: Major Security Hole IIS NT (Bob Minor 1998)
  282. Major Security Hole IIS NT (Bob Minor 1998)
  283. Re: Major Security Hole IIS NT (Raymond Hatch 1998)
  284. Re: Major Security Hole IIS NT (Raymond Hatch 1998)
  285. Re: Major Security Hole IIS NT (Chuck Wall 1998)
  286. Re: Major Security Hole IIS NT (Raymond Hatch 1998)
  287. Re: Major Security Hole IIS NT (Raymond Hatch 1998)
  288. Re: Major Security Hole IIS NT (Raymond Hatch 1998)
  289. Re: Major Security Hole IIS NT (Raymond Hatch 1998)
  290. Re: Database Security (talk 1998)
  291. Re: Database Security (PCS Technical Support 1998)
  292. Re: Database Security (PCS Technical Support 1998)
  293. Re: Database Security (Kenneth Grome 1998)
  294. Database Security (Julian Clayton 1998)
  295. Re: Database Security (Raymond Hatch 1998)
  296. Re: Security for malls with different webmasters (Jack Baty 1998)
  297. Re: Security for malls with different webmasters (PCS Technical Support 1998)
  298. Re: Security for malls with different webmasters (Kenneth Grome 1998)
  299. Re: Security for malls with different webmasters (Olin Lagon 1998)
  300. Re: A question about security (Kenneth Grome 1998)
  301. Re: A question about security (Grant Hulbert 1998)
  302. A question about security (Matthias Precht 1998)
  303. Webcat Security (bob 1998)
  304. Re: Entry point? Security w/ dbase helper? (Grant Hulbert 1997)
  305. Entry point? Security w/ dbase helper? (list@9way.com 1997)
  306. Re: Paths, relative paths, webstar server setup and security (Mac) (Sandra L. Pitner 1997)
  307. Re: Paths, relative paths, webstar server setup and security (Mac) (Sandra L. Pitner 1997)
  308. Re: Paths, relative paths, webstar server setup and security (Mac) (Grant Hulbert 1997)
  309. Paths, relative paths, webstar server setup and security (Sandra L. Pitner 1997)
  310. db security on NT (Olin 1997)
  311. Re: Template Security error (a.h.s. boy 1997)
  312. Re: Template Security error (Grant Hulbert 1997)
  313. Template Security error (a.h.s. boy 1997)
  314. Re: Physical Security for WebCatalog Directories (Grant Hulbert 1997)
  315. Re: Physical Security for WebCatalog Directories (Kenneth Grome 1997)
  316. Physical Security for WebCatalog Directories (plake 1997)
  317. Re: Security Issue (Olin 1997)
  318. Re: security (Grant Hulbert 1997)
  319. Re: security (Olin 1997)
  320. Re: security (Grant Hulbert 1997)
  321. Re: Security Question (Kenneth Grome 1997)
  322. Re: Security Question (Grant Hulbert 1997)
  323. Re: Multiple security dbs (John Hill 1997)
  324. Re: Multiple security dbs (John Hill 1997)
  325. Re: security problem (natasha 1997)
  326. Re: Multiple security dbs (Kenneth Grome 1997)
  327. Multiple security dbs (bob 1997)
  328. Re: [Announce]: Web server security and password protection (Rob Schmidt 1997)
  329. [Announce]: Web server security and password protection (John Hill 1997)
  330. Re: Security Tip (Greg Lindberg 1996)
  331. WebCommerce Security Alert! (Grant Hulbert 1996)
  332. Check the Federal Government's Social Security database (Patrick Mac Cormick The )
I run any and all uploaded files through ImageMagick - I use it to confirm the proper file type. I have tried in the past to upload an application with an allowed graphic extension and IM found each one (actually it just found that the file wasn't a valid image file). Even if the code somehow made it past this check, I also add a watermark and resize most of the images, so I suspect those actions would destroy any code. Clint Davis wrote: > Has anyone checked their file upload scripts for vulnerabilities? > > I only allow certain file extensions, but I'm afraid someone might create > some malicious code, save it as whatever.jpg, and upload to one of my sites. > Don't know how WebDNA/PHP/etc. would handle that scenario. > ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Dale Lists

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Help! WebCat2 bug (1997) The List is Changing (1997) Limiting user access to .tmpl files (1997) Odd Cart Behavior (1997) File Upload (1997) Banner DNA (1997) encryption (2003) Frames and cart values (1998) Trouble with [fileinfo] (2004) dates and hex formatting (1997) the dreaded unitShipCost (2003) Credit card processing - UK (1997) Pricing (1998) Server Creation - vendors (2005) Email notification to one of multiple vendors ? (1997) WebCat for Unix?? (1997) Summarising on two fields (1998) [OT] Bookmarking code (2003) Alternating colors (1997) Duplicate record (2005)