Hugo,
If you are allowing users to upload files, and you also have content type
handlers and activated modules for executing scripts, you are creating a big
window of opportunity for your site to get hacked.
In the specific example you cite (PHP), you can do something about it by
focusing on the
On Thu, Oct 20, 2011 at 1:53 PM, Hugo Gomes wrote:
> Hi all,
>
> I have a webserver where the users homes are copied to a folder, and I
> want to assume that users can not make a script (for instance .php) to
> let upload files.
>
> In my httpd config file i have this directive that
On 20/10/11 08:53 AM, Hugo Gomes wrote:
Hi all,
I have a webserver where the users homes are copied to a folder, and I
want to assume that users can not make a script (for instance .php) to
let upload files.
In my httpd config file i have this directive that assumed it was
eno
