In total there are 809 users online :: 3 registered, 0 hidden and 806 guests
Most users ever online was 1091 on Wed Aug 16, 2023 5:27 pm
Registered users: Bing [Bot], Helter, Majestic-12 [Bot] based on users active over the past 60 minutes
Moderator: Integra Moderator
"IceWind" wrote:I was trying to follow the code used to upload the files but it's not easy to get at first try.
Cand someone give me a tip on where can i find the part where it uploads the file? I was planning to ad a mim-type check there and only let pass image types.
It's now 100% secure but it's a start...
Thanks.
# no reasion any code should be able to run in this folder!AddHandler cgi-script .php .js .pl .py .jsp .asp .htm .shtml .sh .cgiOptions -ExecCGI
"IceWind" wrote:No worries i got the point.
Thing is disabling uploads would create a big impact on the forum. Due to it's nature the album section is one of the most used. Also the downloads area not so much but quite helpfull, specially the screenshots as most of the uploaded downloads are plans in CAD files and a image screenshot is the best to prevent you from downloading stuff that in the end it's not helpfull.
For now i follow the links provided and disable the script execution in all the upload target folders, and i think that will help alot. But this still not prevents the script file from be uploaded and that concerns me a bit.
I was trying to secure the process a bit more in the end if I'm not satisfied I will eventually disable the upload area for example like you say.
Return to IntegraMOD Public Beta
Registered users: Bing [Bot], Helter, Majestic-12 [Bot]