Join the Facebook Fan Page.
Started by badon, March 02, 2016, 07:52:35 AM
Quote from: badon on February 16, 2017, 07:27:28 PMthe files will attach to the draft message successfully.
57 53 07
Quote from: badon on February 19, 2017, 11:37:36 PMI have been sending out instructions for manually disabling this problem in the code, to people who PM me to request it. It ought to be posted publicly. Is that OK?
Quote from: badon on February 20, 2017, 02:37:51 AMWe can't re-encode on our forum because we're trying to preserve quality images, and re-encoding degrades quality. Maybe re-encoding could be an option for use on manually confirmed malicious files. As it is, I'm skeptical that a malicious JPEG could be exploited. It would probably require a permissions change or other higher-level access to the server, and at that point, the server has already been compromised. I doubt there's any way to exploit the users with an image file. Those kinds of exploits seem to have all been resolved after the 1990's - at least I don't recall any since then, largely because of the greater diversity of and higher quality of the software that reads them (like web browsers).