Results 1 to 22 of 22

Thread: MIME Type validation based on the actual file

Thread Tools
- Show Printable Version
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

Previous Post

Next Post

Apr 8th, 2011, 08:48 AM #1
ediguy

View Profile

View Forum Posts
Thread Starter
Hyperactive Member

Join Date

Dec 2005

Posts

323
MIME Type validation based on the actual file

Hi all,

I've got the upload control doing validation of the mime type, but there's a problem with it.

If I rename an EXE to XLS, the upload control thinks it's an Excel file and goes on its merry way.

Is there a way to inspect the CONTENTS of the file (maybe just the file header) and validate that the actual file is what it is and not what the extension says it is? I'm using C# in the back end but am open to whatever works

And just so I understand, if the user DOES change the extension from EXE to XLS, is there any harm in still uploading the file? And what would happen if I tried to open that file (formerly EXE now XLS) when it was served up from my application?

Thanks,
Jon
Reply With Quote

Quick Navigation ASP.NET And ASP.NET Core Top

« Previous Thread | Next Thread »

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

Click Here to Expand Forum to Full Width

Terms and Conditions | About Us | Privacy Notice | Contact Us | Advertise | Sitemap| California - Do Not Sell My Info

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

All times are GMT -5. The time now is 11:53 AM.