hi there , i was wondering on security of file uploads , i am currently using the pear uploader class , i can check for allowed file extensions , but it doesnt seem to check for file type , i can currently rename say an image to zip and it uploads , is there anyway a hacker could rename an executable to a zip and able to upload it and execute it ?
-- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php