This must be about the worst advice I have ever seen.
What about someone typing e.g. /etc/passwd in that text box?
If you allow people to upload files to your server, you should create your own location
and naming scheme for the uploaded files. You should not even use the original filename,
Thank you for the advice. I'll stick to hard coded file locations and names :).
Thanks again,
- Ole
On 09/05/2011 03:22 AM, André Warnier wrote:
This must be about the worst advice I have ever seen.
What about someone typing e.g. /etc/passwd in that text box?
If you allow people to upload
Thank you for the advice. I'll stick to hard coded file locations and names :).
Thanks again,
- Ole
On 09/05/2011 03:22 AM, André Warnier wrote:
This must be about the worst advice I have ever seen.
What about someone typing e.g. /etc/passwd in that text box?
If you allow people to upload
Ole Ersoy wrote:
Hi,
Anyone know whether it's possible to monitor progress of a file upload?
What do you mean by monitoring ?
Is it a question of providing the user with some feedback, like a progress bar ?
If so, then one of the easier ways would be to write your own java applet,
(The first few paragraphs are background and why the obvious solution
won't work for us.)
So the normal problem a HTTP server will experience when serving many
small requests to a large number of clients is a pile of connections in
TIME_WAIT. There not great but there are a number of ways to