Re: [Widelands-dev] [Merge] lp:~widelands-dev/widelands-website/pybb_attachments into lp:widelands-website

Sun, 28 Jul 2019 07:24:52 -0700 

Currently there is no restriction on file types. The problem is that a file may 
not contain what the extension says it should be. Everyone can rename 
'image.js' into 'image.png'...

A list of allowed extension do not suffer. I'll try to implement some checks 
for validating a files type and probably an 'allowed extension list'.

What about restricting uploads to users who have written x posts prior? From my 
side this can be implemented.
-- 
https://code.launchpad.net/~widelands-dev/widelands-website/pybb_attachments/+merge/370342
Your team Widelands Developers is requested to review the proposed merge of 
lp:~widelands-dev/widelands-website/pybb_attachments into lp:widelands-website.

_______________________________________________
Mailing list: https://launchpad.net/~widelands-dev
Post to     : widelands-dev@lists.launchpad.net
Unsubscribe : https://launchpad.net/~widelands-dev
More help   : https://help.launchpad.net/ListHelp

Reply via email to