[Foundation-l] Code detecting bots?

David Gerard dgerard at gmail.com
Thu Aug 2 14:53:20 UTC 2007

On 02/08/07, Gregory Maxwell <gmaxwell at gmail.com> wrote:

> It's also possible to rename malicious content as one of our accepted
> formats for upload and upload it. If you client will execute an 'exe'
> renamed to 'ogg' and sent with the Ogg mime type your client is
> broken, but broken clients do exist.  I do not recall ever seeing an
> example of something malicious distributed that way on our sites.

Really? I thought we ran "file" on uploads as well as looking at the extension.

Though I suppose that wouldn't protect against the "specially crafted
malicious file" of security notice fame.

- d.

More information about the foundation-l mailing list