i think you guys are talking about the using the gd library, it may be
possible so when you upload check for any php code or other data
On 1/22/06, Rory Browne <rory.browne@xxxxxxxxx> wrote:
I'd be a bit skeptical about the possibly of embedding PHP code inside
a GIF file. Could you outline how he performed the task?
On 1/22/06, jonathan <news_php@xxxxxxxxxxxx> wrote:
> what is the best way to prevent malicious code from being uploaded
> via a .gif file? A friend showed me how php could be embedded within
> the .gif file. Does this problem also exist for .jpeg's?
>
> thanks,
>
> > jon
I have placed data within the header of jpg files (lot's of room
there) and used that data for keeping track of images, but I don't
see how one can make embedded text executable code.
Would be very interested in how to do that.
tedd
--
--------------------------------------------------------------------------------
http://sperling.com/
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
