LovingTech For Sale: Contact Ryan for more information. (August, 2010)
|
Security Risk in php
|
|
Dec-02-2009, 12:17 PM
Post: #1
|
|||
|
|||
|
Security Risk in php
Hello
Any one can please help me with my php security problem. Actully I want to create an application that stores stuff in the same folder where the php script runs from. I know that this could be quite a security risk, and any one please help me for minimize this risk. Thanks in Advence! PSD to Magento customization from creative glance |
|||
|
|
Dec-02-2009, 04:35 PM
Post: #2
|
|||
|
|||
|
RE: Security Risk in php
Are you wanting uploads?
Ban .php, .asp, .html and .exe's. . |
|||
|
|
|
Dec-02-2009, 06:19 PM
Post: #3
|
|||
|
|||
|
RE: Security Risk in php
1 - Why store it in the same folder?
2 - What type of files are you looking at uploading? C a r b o n i z e Free ebook links (fiction) |
|||
|
|
Jan-13-2010, 12:05 AM
Post: #4
|
|||
|
|||
RE: Security Risk in php
(Dec-02-2009 04:35 PM)peter_anderson Wrote: Are you wanting uploads? This is the opposite of what you should do. What about .php3 .php4 .php5 extensions for example? Instead create a list of permitted file extensions, and also validate the MIME type. As others have said though, why does it need to be within the same directory? |
|||
|
|
|
« Next Oldest | Next Newest »
|