On Mon, June 4, 2007 7:37 am, Al wrote:
> I have an application, with mild security, that approved users can
> upload pdf
> files.  Obviously, the security for executables with a simple pdf
> extension
> bothers me.
>
> I's like some suggestions on how I can protect against errant files
> with a pdf
> guise?

PDF files have to start with %PDF and the version number, for starters.

You could also try to run them through xpdf and see if it bitches or
not -- I think it even has a command line switch to do just that.

-- 
Some people have a "gift" link here.
Know what I want?
I want you to buy a CD from some indie artist.
http://cdbaby.com/browse/from/lynch
Yeah, I get a buck. So?

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to