Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Alexey2015-09-24 01:37:44
PHP
Alexey, 2015-09-24 01:37:44

Is checking the type of files sufficient?

Users have the ability to upload pictures to the site. Is such a check on the pictures enough?

if  ((( $_FILES [ "file" ][ "type" ]  ==  "image/gif" ) 
||  ( $_FILES [ "file" ][ "type" ]  ==  "image/jpeg" ) 
||  ( $_FILES [ "file" ][ "type" ]  ==  "image/jpg" ) 
||  ( $_FILES [ "file" ][ "type" ]  ==  "image/png" ))

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
A
Alexander Varakosov, 2015-09-24
@dzheka3d

The most effective option is to prohibit the execution of code from the downloads folder. For example, using rules in .htaccess.

Report
T
TheLostRoot, 2015-09-24
@TheLostRoot

habrahabr.ru/post/44610

Similar questions
G
GRO242019-08-30 15:23:29
Why doesn't Bootstrap 4 align blocks? 2Reply
R
Rooly2021-03-23 11:40:40
How to properly organize apiResource Laravel? 2Reply
H
Healis2022-01-16 18:03:19
How to apply a gradient to an image so that the gradient does not go beyond the edges? 2Reply
M
Max Ba2017-04-06 13:55:11
How to make a key for a TIN? 3Reply
P
Pavel2014-05-18 14:34:20
How to set up Chrome DevTools Autosave on windows? 4Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question