On Sun, 13 Jul 2003 13:32:00 -0400, you wrote: >The upload process, already collects info on file types when you upload. > From the manual -> > >> $_FILES['userfile']['type'] >> >> The mime type of the file, if the browser provided this >> information. An example would be "image/gif". >> >So, check $_FILES['userfile']['type'] against a set of allowed file >types, and you're set...
A client-supplied value isn't going to be too useful - it can be spoofed, or may not be present. (I believe a Windows browser would set the mime-type based purely on the file extension, though I haven't tested this myself). >Marek Kilimajer wrote: > >> If you have compiled php with --enable-mime-magic, you can use >> mime_content_type() This is the most-benefit least-effort choice if it's available, though I believe that flag has been changed since 4.32[?] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php