File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
http://aspose.com/file-tools
The moose likes Struts and the fly likes Security Issues with File Upload Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of EJB 3 in Action this week in the EJB and other Java EE Technologies forum!
JavaRanch » Java Forums » Frameworks » Struts
Bookmark "Security Issues with File Upload" Watch "Security Issues with File Upload" New topic
Author

Security Issues with File Upload

Susan
Ranch Hand

Joined: Apr 26, 2005
Posts: 54
Hi,

I'd like to hear of any security issues with file upload, what I can think of include:
1) out of memory issues if the file is too large. If I use the controller element to specify the max file size, if the file is too large is it. uploaded and then aborted when this size is reached or not uploaded at all?
2) uploading files with viruses. I assume struts doesnt have anything to crack open the file and ensure its a rtf?
3) Denial of Service attacks if many files are uploaded at once

Any others would be appreciatred!

thanks,

Susan
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Security Issues with File Upload
 
Similar Threads
Attachments problem
How can I forbid that the user can set an image as avatar?
FileUpload using Struts
upload limit
max size limit of file to be uploaded