https://bugzilla.wikimedia.org/show_bug.cgi?id=16583
--- Comment #9 from Gurch <[email protected]> 2009-07-07 17:09:25 UTC --- (In reply to comment #1) > On second thought, there might be an issue for wikis running on poorly > configured webservers that might try to execute PHP scripts from within the > "images" directory. I wouldn't expect that to happen unless the file had the > extension ".php" (or possibly ".phpN", where N is a number), though. In the default configuration, and on all Wikimedia configurations as far as I am aware, .php and the others cannot be uploaded anyway. How about removing this check and adding a note in the docs to the effect that anyone who enables upload of such files should be careful to configure their webserver not to execute them? -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
