the risk of allowing people to upload picture on your site

Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.

Moderator: General Moderators

Post Reply
User avatar
jaad
Forum Commoner
Posts: 95
Joined: Fri Jan 03, 2014 5:30 am
Location: Vancouver Canada

the risk of allowing people to upload picture on your site

Post by jaad »

I was wondering what kind of risk is involved when allowing people to upload a file to my website. I know there is a way of filtering the kind of file that can be uploaded like .jpg or .png or .gif or tiff. but what if someone just write an executable routine and give it the extension jpg for example? I am really new at programing but I know some people are real magicians with codes and can do anything they want. is this possible to do? can I get my site wiped out by something like that?
User avatar
social_experiment
DevNet Master
Posts: 2793
Joined: Sun Feb 15, 2009 11:08 am
Location: .za

Re: the risk of allowing people to upload picture on your si

Post by social_experiment »

“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.” - Mosher’s Law of Software Engineering
User avatar
jaad
Forum Commoner
Posts: 95
Joined: Fri Jan 03, 2014 5:30 am
Location: Vancouver Canada

Re: the risk of allowing people to upload picture on your si

Post by jaad »

thank you immensely.
User avatar
social_experiment
DevNet Master
Posts: 2793
Joined: Sun Feb 15, 2009 11:08 am
Location: .za

Re: the risk of allowing people to upload picture on your si

Post by social_experiment »

jaad wrote:thank you immensely.
no problem sir :)
“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.” - Mosher’s Law of Software Engineering
Post Reply