MDN/Projects/Development/File Upload Filter

From MozillaWiki
Jump to navigation Jump to search
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

Blacklist or whitelist?

Whitelist because: - there are two many wild things out there. We can't know all dangerous types - we want to explicitly control the files we give out to users. We want to prevent closed source files - the more strict we are, the less spam we get. - the list of accepted files will not change often, except in the first year, while we build the list. But even there, I would be surprised to see it extended more than once every two months.

File types to allow

Images

  • GIF
  • PNG
  • jpeg
  • SVG

Video & Audio

I think we want to control the codecs here, not only the containers.

Do we want something that we upload a video/audio and it is converted into several versions so that everybody get it right?

Others

text/html

See also

https://bugzilla.mozilla.org/show_bug.cgi?id=792955

Retrieved from "https://wiki.mozilla.org/index.php?title=MDN/Projects/Development/File_Upload_Filter&oldid=990735"