diff options
| author | Andreas Gohr <gohr@cosmocode.de> | 2014-12-02 16:18:26 +0100 |
|---|---|---|
| committer | Andreas Gohr <gohr@cosmocode.de> | 2014-12-02 16:18:26 +0100 |
| commit | b30dd803e3c33cfc9508b0516744b0bb95be4d09 (patch) | |
| tree | a0a1dbe5de11bb43c815d49794b6aecf45cc5da0 /conf | |
| parent | 2ebe3b0b9aaea67048a23ae1fa7b80bd4a9640d9 (diff) | |
| download | rpg-b30dd803e3c33cfc9508b0516744b0bb95be4d09.tar.gz rpg-b30dd803e3c33cfc9508b0516744b0bb95be4d09.tar.bz2 | |
disable flash uploading by default
Thanks to Kacper Szurek for reporting this
Diffstat (limited to 'conf')
| -rw-r--r-- | conf/mime.conf | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/conf/mime.conf b/conf/mime.conf index 2a50fab10..c2e03b775 100644 --- a/conf/mime.conf +++ b/conf/mime.conf @@ -9,7 +9,6 @@ gif image/gif png image/png ico image/vnd.microsoft.icon -swf application/x-shockwave-flash mp3 audio/mpeg ogg audio/ogg wav audio/wav @@ -66,3 +65,7 @@ odt !application/vnd.oasis.opendocument.text #xml text/xml #csv text/csv +# Also flash may be able to execute arbitrary scripts in the website's +# context +#swf application/x-shockwave-flash + |