Thoughts on file upload...by mojobozo (Monk)
|on Nov 20, 2002 at 14:56 UTC||Need Help??|
mojobozo has asked for the
wisdom of the Perl Monks concerning the following question:
My fellow perlaholics,
Recently (today, in fact), I finished with my file upload script. I didn't do it on my own and have a few monks to thank for their assistance (Mr. Muskrat, jdporter, and a couple others whose names escape me at the moment). Although I have a working script that does what I want it to, it still needs to be cleaned up as I would like it to be easier to read and have fewer lines. But, that is not why I am writing this.
The real reason for this node is for some advice. I have written into it a section that alters the name of the file uploaded and another that will only allow certain TYPES of files to be uploaded (thanks to jdporter on that one... he didn't give me the answer, but his help led me to write my own). I do both of these things for security reasons. My big question: Is there anything else I should consider adding to the script to furthur the security?
Thanks for your time,
interj. Slang. Used to express approval or an affirmative response to
something. Sometimes used with up. Source