Section A.6. file_uploads

A.6. file_uploads

The file_uploads directive determines whether file uploads are allowed. Therefore, if your application does not need to accept files uploaded by users, it is best to disable this feature.

Simply not handling file uploads in your PHP code is not enough because PHP does some work (such as populating $_FILES with relevant data) prior to executing your code.

Essential PHP Security
Essential PHP Security
ISBN: 059600656X
EAN: 2147483647
Year: 2005
Pages: 110

Similar book on Amazon © 2008-2017.
If you may any questions please contact us: