Jump to content
Mr Robot

With all these lovely new changes...

Recommended Posts

Is now a good time to suggest we review the available mime types that people can upload? A few common Atari file formats still need to be zipped before uploading

Share this post


Link to post
Share on other sites

That's not necessarily the best idea! There are potentially dangerous files that users shouldn't be able to upload without something sanitising them at least. SVG is a good example, there have been discussions about how to allow SVG uploads for over 6 years now in the Wordpre ss dev community.

 

There are now SVG sanitisers to allow user svg uploads but it still isn't in Wordpress Core.

 

EDIT: OK it sees it as a document, not an image. It would be lovely if it knew how to inline svg's but it needs to be sanitised before allowing them at all really.

Share this post


Link to post
Share on other sites

I cannot blacklist particular extensions, but I can create a whitelist of extensions, which is how it was before.  I'd prefer to just allow everything, though, as the whitelist was always a pain to deal with. 

 

 ..Al

  • Like 1

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...