Allowing to upload image

Forum Moderators: open

Message Too Old, No Replies

Allowing to upload image

Is it wise?

fashezee

7:44 pm on Mar 21, 2003 (gmt 0)

I have a site that requires users to provide an image for their product.
I am contemplating whether to have a feature on the site that allows
users to upload there image or just have them sent via email.

However, I am skeptical about the upload feature this due to the bandwidth
and cpu resources it will consume? Anyone have an experience with
allowing users to upload images. Did it work out for you?

Edouard_H

7:52 pm on Mar 21, 2003 (gmt 0)

I use a perl script on a few sites that allows for maximum file size and specification of permitted file types. Uploaded images go to one directory only, which I keep a close eye on. I also restrict access to upload forms and include information about format and file size. Under these conditions I've had no problems.

dropoffx

8:12 pm on Mar 21, 2003 (gmt 0)

Be very careful with your upload code. Make sure that you have a lot of error checking in place to disallow users from uploading malicous PHP or other scripting code and executing it.

aspdaddy

8:27 pm on Mar 21, 2003 (gmt 0)

I use a component if possible that is optimised for security and speed such as ASPUpload or XUpload.

If you cant, then do the checks on size/file type and you may need to increase the script timeout settng for large uploads.

davis

4:18 am on Mar 25, 2003 (gmt 0)

You can do it in PHP very easily.... you just have to remember to set your file size down low...

If you put it in a semi-private directory, you shouldnt have to much of a problem with unwanted people uploading unwanted things... if you do, just put a simple password on it :)

Just my thoughs :)