MDN/Projects/Development/File Upload Filter
Blacklist or whitelist?
Whitelist because: - there are two many wild things out there. We can't know all dangerous types - we want to explicitly control the files we give out to users. We want to prevent closed source files - the more strict we are, the less spam we get. - the list of accepted files will not change often, except in the first year, while we build the list. But even there, I would be surprised to see it extended more than once every two months.
File types to allow
Video & Audio
I think we want to control the codecs here, not only the containers.
Do we want something that we upload a video/audio and it is converted into several versions so that everybody get it right?