Re: file upload functionality/security (was
Web Server forum
Back To The Forum Home!Search!Private Messaging System
Visit your User Control Panel!Register your FREE username now!Visit Our Calendar!View the Member List!Faqs!Search our Forums!

Web Server Talk Web Server Talk > Web Servers reviews > Macromedia Flash Server > Re: file upload functionality/security (was




  Last Thread   Next Thread Next
  Show Printable Version Email this Page Subscribe to this Thread      Post New Thread    Post A Reply      

    Re: file upload functionality/security (was  
Brian Lesser


View Ip Address Report This Message To A Moderator Edit/Delete Message


 
04-07-05 10:49 PM

Hi John,
For what it's worth I agree. Macromedia has already implemented file
uploads using the Breeze player (and I think in Central). For example in
Breeze's File Share pod choosing "Select from My Computer..." brings up
a native OS "File Upload" dialog box that you can use to select a file
to upload. Breeze is a very corporate focused product and corporations
are often the ones with the most serious security concerns. I assume
Macromedia has built in code to stop anyone from uploading files without
the user's permission and that it has now seen some serious testing in
Central and Breeze. Perhaps there is some reason Macromedia is being
more cautious with the generic Flash player. I've never seen anything
that says what their strategy is. Maybe I missed a white paper
somewhere... Still, if Flash is supposed to be a platform for building
rich Internet applications supporting file uploads is a pretty basic
feature.
Yours truly,
-Brian


John Robinson wrote:

> Simon -
>
> This all makes perfect sense, but what I don't understand is why we
> don't (can't) have something like we have in plain-ol' html... a
> file-upload ("multi-part" I think it's called?) form element? That's
> the only thing we are missing. I don't think I'd be happy with an fcs
> based solution. I'd rather not be tied to one product when there are
> so many good options available already.
>
> What would be the difference if I used an html form or an swf to
> submit a file to a php/cgi/etc script? Both are open formats and
> script kiddies can see exactly what cgi is handling the upload just by
> looking at the source for the html. The trick is that using php you
> have great control over what gets uploaded and where it goes.
>
> Just my thoughts.
>
> John



=-----------------------------------------------------------
Supported by Fig Leaf Software - http://www.figleaf.com
=-----------------------------------------------------------

To change your subscription options or search the archive:
http://chattyfig.figleaf.com/mailman/listinfo/flashcomm




[ Post a follow-up to this message ]



    Sponsored Links  




 



   All times are GMT. The time now is 08:16 PM.      Post New Thread    Post A Reply      
  Last Thread   Next Thread Next


Most Popular forums 
Apache Server MySQL for Windows Sendmail
Red Hat Networking SuSe Linux Debian Linux
FreeBSD administration Sun Solaris administration Unix Shell programming
WebSphere Portal Server Exchange 2000 administration PostgreSQL administration
Linux Security Computer Security Firewalls

Forum Jump:
Rate This Thread:

Forum Rules:
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts 		HTML code is OFF
vB code is ON
Smilies are ON
[IMG] code is OFF
 
Medical and Health forum | Computer Games Reviews | Graphics design forum

Back To The Top
Home | Usercp | Faq | Register