Not that i know of, although my hacking years are far behind me, so that part of my brain may well have atrophied by now. is it possible for a user to manually set the mimetype of a file to something other than what it really is?
At 11:04 AM 7/10/2006, Tom Chiverton wrote: >On Monday 10 July 2006 14:33, Jeff Tapper wrote: > > script detect the proper mimetype, which I'd like to use to prevent > > malicious uploads. Ideally, I'm looking to use the same server side code > >Isn't the MIME type set by the client, and therefore is untrusted ? > >-- >Tom Chiverton > >**************************************************** > >This email is sent for and on behalf of Halliwells LLP. > >Halliwells LLP is a limited liability partnership registered in England >and Wales under registered number OC307980 whose registered office address >is at St James's Court Brown Street Manchester M2 2JF. A list of members >is available for inspection at the registered office. Any reference to a >partner in relation to Halliwells LLP means a member of Halliwells LLP. >Regulated by the Law Society. > >CONFIDENTIALITY > >This email is intended only for the use of the addressee named above and >may be confidential or legally privileged. If you are not the addressee >you must not read it and must not use any information contained in nor >copy it nor inform any person other than Halliwells LLP or the addressee >of its existence or contents. If you have received this email in error >please delete it and notify Halliwells LLP IT Department on 0870 365 8008. > >For more information about Halliwells LLP visit www.halliwells.com. > > > > >-- >Flexcoders Mailing List >FAQ: http://groups.yahoo.com/group/flexcoders/files/flexcodersFAQ.txt >Search Archives: http://www.mail-archive.com/flexcoders%40yahoogroups.com >Yahoo! Groups Links > > > > > > > > > >-- >No virus found in this incoming message. >Checked by AVG Anti-Virus. >Version: 7.1.394 / Virus Database: 268.9.10/383 - Release Date: 7/7/2006 -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.1.394 / Virus Database: 268.9.10/383 - Release Date: 7/7/2006 ------------------------ Yahoo! Groups Sponsor --------------------~--> See what's inside the new Yahoo! Groups email. http://us.click.yahoo.com/2pRQfA/bOaOAA/yQLSAA/nhFolB/TM --------------------------------------------------------------------~-> -- Flexcoders Mailing List FAQ: http://groups.yahoo.com/group/flexcoders/files/flexcodersFAQ.txt Search Archives: http://www.mail-archive.com/flexcoders%40yahoogroups.com Yahoo! Groups Links <*> To visit your group on the web, go to: http://groups.yahoo.com/group/flexcoders/ <*> To unsubscribe from this group, send an email to: [EMAIL PROTECTED] <*> Your use of Yahoo! Groups is subject to: http://docs.yahoo.com/info/terms/
