1. Home
  2. Forums Index
  3. Server Side / PHP Server Side Scripting 9:44 am May 1, 2026

Forum Moderators: coopster

Message Too Old, No Replies

File safe download to server

         

orion_rus

8:16 am on Jan 27, 2005 (gmt 0)

10+ Year Member



I have a simple form where with multipart/ecnryption loads a file to a server. Any user can make so.
I need to know is it safe? or i need to make some restriction to this download, or may be remove it at all, to prevent hacking my site?
Any decisions would be great
Thanks in advance

coopster

3:13 am on Jan 30, 2005 (gmt 0)

WebmasterWorld Administrator 10+ Year Member



No, not very safe. If you allowed me to upload a script I could process it and run whatever I want. Allowing file uploads is a very touchy area. Normally it is only for authenticated users and you check the uploads for many, many things, including MIME-type, file extensions, permissions, etc. A quick search should turn up quite a few security risks involved with file uploads.
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

  1. Home
  2. Forums Index
  3. Server Side / PHP Server Side Scripting 9:44 am May 1, 2026