shinve — 2012-02-17T22:08:09-05:00 — #1
Many security guides recommend that you store uploaded files in a folder not inside the folder containing your pages that are accessible from the web.
Is this also true for uploaded images? I allow some of my users to upload images that are something like forum avatars. It seems that storing these images outside of the www root would force me to move the files inside of the www root to be viewed. I am not really sure if that is necessary or if this is a best practice here for images like this. I currently store the filename and the file path in a database table.
Any thoughts on this? Can you easily display images that are not in the www/html folder?
ralphm — 2012-02-18T00:25:20-05:00 — #2
I don't think there's any point in thinking like this, because if an image is viewable in a browser, then people already have access to it and can download it. Storing files above the server root is more for system files that help the site run but aren't displayed publicly. (I doubt it's even possible to store usable images above the root folder, but I'm not well enough versed in all that to be sure.)
shinve — 2012-02-19T15:47:03-05:00 — #3
I think the idea is that the file is not executed if it somehow contains malicious code (like in a comment or through some other means) because the server won't interpret it, even if an attacker knows where the file is located. I am also not very proficient here, so I this may be more security than is needed for images meant to be displayed.