Am 2006-05-14 00:11:09, schrieb Nick Wilson:
> Hi all,
>
> are there any security concerns with uploaded images?
>
> My thought is that it wouldnt be too hard to have some kind of script
> masquerade as a gif file, and perhaps cause damage.
>
> I cant find anyway to check a file really is a gif/png/jpg (i assume the
> mimetype available in $_FILES could be spoofed).
Use the unix command "file" to determiner what file you have.
I have had the same problem...
> Many thanks!
Greetings
Michelle Konzack
--
Linux-User #280138 with the Linux Counter, http://counter.li.org/
##################### Debian GNU/Linux Consultant #####################
Michelle Konzack Apt. 917 ICQ #328449886
50, rue de Soultz MSM LinuxMichi
0033/6/61925193 67100 Strasbourg/France IRC #Debian (irc.icq.com)
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
