<div>
What language are you using for your server side scripting? Every mainstreem language should have the capability or retricting which files can be uploaded based on the files MIME type. tell me what language you are using and I can give you an example.
</div>


What language are you using for your server side scripting? Every mainstreem language should have the capability or retricting which files can be uploaded based on the files MIME type. tell me what language you are using and I can give you an example.

<div>
I'm using PHP<br />
Thanks for posting
</div>


<div>
<div class="content wysiwyg-content">
Hi,<br />
I have just made a scripts which allows my website members to upload thier images, avatars ...etc. This script isn't secure since anyone can upload anything via it. This script doesn't check wither the file upload is an image or not. Simply anyone can upload a SHELL file to hack my website. <br />
<br />
Is there anyway to secure this script? Is it a good idea to keep files being upload on the same server of my website? <br />
<br />
Best Regards,<br />
Hakeem
</div>
</div>


Hi,
I have just made a scripts which allows my website members to upload thier images, avatars ...etc. This script isn't secure since anyone can upload anything via it. This script doesn't check wither the file upload is an image or not. Simply anyone can upload a SHELL file to hack my website. 

Is there anyway to secure this script? Is it a good idea to keep files being upload on the same server of my website? 

Best Regards,
Hakeem

secured file uploading

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.

Security

A scripting language is a programming language that supports scripts, programs written for a special run-time environment that automate the execution of tasks that could alternatively be executed one-by-one by a human operator. Scripting languages are often interpreted (rather than compiled). Primitives are usually the elementary tasks or API calls, and the language allows them to be combined into more complex programs. Environments that can be automated through scripting include software applications, web pages within a web browser, the shells of operating systems (OS), embedded systems, as well as numerous games. A scripting language can be viewed as a domain-specific language for a particular environment; in the case of scripting an application, this is also known as an extension language.

Scripting Languages

Web development includes all aspects of presenting content on intranets and the Internet, including delivery development, protocols, languages and standards, server software, browser clients, databases and multimedia generation.