Re: Securely serving files — PHP Programming Language

You are here: Re: Securely serving files « PHP Programming Language « IT news, forums, messages

Posted by Nicholas Sherlock on 02/15/06 01:20

Richard Levasseur wrote:
> Please note that include() does not reset or otherwise prevent the
> limit on script execution from being enforced (other things can: system
> calls, sleep, etc, but include itself is not one of them).
>
> Aside: Including and executing unknown data would open up a potentially
> serious security vulnerability. That would be a Bad Thing (tm).

To be clear here, I'm serving user uploaded binary files, so Include()
would indeed be the kiss of death for my whole website.

Cheers,
Nicholas Sherlock

Navigation:

Next in forum: Re: How to display form variables?
Prev in forum: Re: Using a msword document embedded in a PHP page
Thread view: Re: Securely serving files

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация