File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
http://aspose.com/file-tools
The moose likes Struts and the fly likes Security Issues with File Upload Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Frameworks » Struts
Bookmark "Security Issues with File Upload" Watch "Security Issues with File Upload" New topic
Author

Security Issues with File Upload

Susan
Ranch Hand

Joined: Apr 26, 2005
Posts: 54
Hi,

I'd like to hear of any security issues with file upload, what I can think of include:
1) out of memory issues if the file is too large. If I use the controller element to specify the max file size, if the file is too large is it. uploaded and then aborted when this size is reached or not uploaded at all?
2) uploading files with viruses. I assume struts doesnt have anything to crack open the file and ensure its a rtf?
3) Denial of Service attacks if many files are uploaded at once

Any others would be appreciatred!

thanks,

Susan
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Security Issues with File Upload