in reply to Re: Re: security issues for allowing images to be uploaded to the server (Data::FormValidator helps)
in thread security issues for allowing images to be uploaded to the server

Thanks for the pointer. I wasn't aware of File::MMagic, and it seems like a better solution than trusting either the mime type or extension that is sent with the file. Maybe I'll try "Magic" and if that fails, and if that can't be found, try the mime-type, and if we can't try that, check the extension.

Can anyone vouch for the accuracy of File::MMagic for usual web upload cases?

-mark

  • Comment on Re: Re: Re: security issues for allowing images to be uploaded to the server (how well File::MMagic works)

In Section Seekers of Perl Wisdom