Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
% Запрещена заливка PHP файлов даже в случае, если расширение 'php' в…
…несено в спискок разрешенных для заливки + Добавлена опция "настройки системы" => "безопасность" => "Разрешить загрузку файлов/изображений с двойными (и более) расширениями", по умолчанию выставлено в "Нет" (лишние точки будут заменены на подчерки). Эта опция позволит избежать ситуации, когда web сервер apache некорректно распрознаёт реальное расширение файла и смотрит все расширения (к примеру, файл filename.php.blabla может быть расценен как php скрипт).
- Loading branch information
ngcms
committed
Oct 8, 2012
1 parent
1c8219a
commit 2916b3e
Showing
5 changed files
with
18 additions
and
3 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters