At 4:34 PM -0500 5/23/06, Richard Lynch wrote:
On Tue, May 23, 2006 9:52 am, tedd wrote:
At 9:45 AM +0100 5/23/06, Rory Browne wrote:
I'm not disagreeing with you, but how would that work? The file would
still have a suffix of ".gif" and as such wouldn't be recognized as
code to execute.
U
On Tue, May 23, 2006 9:52 am, tedd wrote:
> At 9:45 AM +0100 5/23/06, Rory Browne wrote:
> I'm not disagreeing with you, but how would that work? The file would
> still have a suffix of ".gif" and as such wouldn't be recognized as
> code to execute.
Unless you have ANOTHER bug somewhere in those m
On Tue, May 23, 2006 3:45 am, Rory Browne wrote:
>> Use the unix command "file" to determiner what file you have.
>> I have had the same problem...
>
> Don't depend on it.
http://php.net/getimagesize
would be slightly better, as it tries to dig out width/height and
number of colors for any given
At 9:45 AM +0100 5/23/06, Rory Browne wrote:
Use the unix command "file" to determiner what file you have.
I have had the same problem...
Don't depend on it.
graphic.php
GIF89
ANY_GIF_FOOTERS_HERE
should according to file be a gif, but contains embedded php.
Rory:
I'm not disagreeing wi
Use the unix command "file" to determiner what file you have.
I have had the same problem...
Don't depend on it.
graphic.php
GIF89
ANY_GIF_FOOTERS_HERE
should according to file be a gif, but contains embedded php.
Many thanks!
Greetings
Michelle Konzack
--
Linux-User #280138 with
Am 2006-05-14 00:11:09, schrieb Nick Wilson:
> Hi all,
>
> are there any security concerns with uploaded images?
>
> My thought is that it wouldnt be too hard to have some kind of script
> masquerade as a gif file, and perhaps cause damage.
>
> I cant find anyway to check a file really is a gi
6 matches
Mail list logo
