PDA

View Full Version : Security question


Draycon
May 12th, 2009, 04:56 AM
Hi,
I am using another gallery software so far. Since I have experienced several hacking attemps I had to disable the upload feature making the whole thing fairly useless. Now I wonder if PhotoPost is more secure. The problem always has been that people uploaded pictures or avatars that were no pictures but some malicious code that then has been executed when the "image" was displayed. Is there a routine that checks if an uploaded file thats named *.jpg is really a jpeg-image? And can you restrict uploads to certain extensions only?

Steve

Chuck S
May 12th, 2009, 10:09 AM
Yes there are security checks in our product to make sure it is an actual image and not code renamed as an image and you will only be allowed to upload the extentions you specify in the admin upload options of the product. The product is highly flexible.