WordPress Site - Uploading Files Securely

2 replies
  • |
Hello Warriors,

I am setting up a website that needs to allow users to upload files to my server easily and securely. Files are likely to contain sensitive information.

I have an idea in mind but I figured it is worth running it by the forum.

What do you think is the best way to go about this?

  • There will be about 600 users who will need to be able to upload files.
  • A user will be able to upload more than 1 file at a time.
  • The file upload limit will be controlled.
  • It would also be good if the user uploading the file could determine the recipient of the file(s) from a list of recipients.

  1. WordPress plugin
  2. Embedding an existing third-party solution
  3. Programming the feature from scratch

I am currently looking at option #3 but I would like to hear some suggestions.

Thanks in advance.
#files #securely #site #uploading #wordpress
  • Profile picture of the author phpbbxpert
    Personally I would not trust a third part source for this as it is allowing users to upload.

    Unless I knew it was a very reputable source, like software that has been around for years and has a good track record.
    So make sure what ever script you use is a good one with no security holes, read the comments on it, etc...

    Writing your own is another security issue if you do not know what you are doing.

    Some things that should be done,
    files should be renamed as they are uploaded to a unique, unguessable file name.
    Extension types should be limited.
    Bad extensions should be set to force download or not allowed at all.
    The list goes on.... but you should see my point.
    {{ DiscussionBoard.errors[2634678].message }}
  • Profile picture of the author osegoly
    Thank you for your quick response phpbbxpert. You have raised some good points.

    Has anyone had a chance to use Easy Uploader? (PHP Uploading System)
    {{ DiscussionBoard.errors[2634689].message }}

Trending Topics