file upload.type

>Is there a way to detect that the file upload.type matches one
>of the supported file extensions in Lasso SiteAdmin, without
>having Lasso prompt for authentication?
>
>I can't seem to find a way to get an array or map of the site's
>supported file extensions.
>
>Anyone know if this is possible?
>
>Many thanks,
>
>Adam
>
>
>--
>This list is a free service of LassoSoft: http://www.LassoSoft.com/
>Search the list archives: http://www.ListSearch.com/Lasso/Browse/
>Manage your subscription: http://www.ListSearch.com/Lasso/
>
>

> Be careful about relying on upload.type:
> http://www.nabble.com/File_uploads-%3Efind%28%27type%27%29-not-as-accurate-as-expected..-How-to-really-know-what%27s-being-uploaded!-td25931629.html#a25934234 
>
>
> Robert Carpenter offered this solution to the problem:
> http://www.nabble.com/Re%3A-File_uploads-%3Efind%28%27type%27%29-not-as-accurate-as-expected..-How-to-really-know-what%27s-being-uploaded%21-p25932966.html 
>
>
> And Bil offered security considerations in that same thread.
>
> I don't know whether that answers your question.
>
> --steve

> On Oct 31, 2009, at 8:03 AM, Eric Landmann wrote:
>> So it looks like for some filetypes it is correct, others it is  
>> completely off the mark, and some returns nothing at all. I vote  
>> this "busted".
>
> I don't know if I'd call it "busted," but it is worthwhile to note  
> its limitations.
>
> I don't find these results particularly surprising, particularly for  
> the text-based files (.lasso/.inc/.py, etc.) - I think there's more  
> than a little irony in the decision to name the definitions files  
> this tool uses "magic" ;-)
>
> You can view the files it uses on OS X here:
>
> /usr/share/file/magic
> /usr/share/file/magic.mime
>
> Seems like identifying text file stuff is particularly...squishy.  
> For example, while I was looking at the files,  I noted that one of  
> the identifiers it uses for python files is the presence of  
> """ (triple quotes), which python uses to allow retaining line  
> endings in strings - that may be idiomatic of python scripts, but  
> definitely not proof that you're dealing with a python file.
>
> I'd think it would tend to be more accurate and useful with binary  
> file types like images and videos, where there are established specs  
> that require specific characters in specific locations in a file.
>
> Ultimately, I think of this as one item in a larger toolkit, and  
> like all tools you need to consider the requirements and risks of  
> the job you're tacking. Is it perfect? No. Is it useful and a step  
> up from relying on file extensions or mime types returned from the  
> web? I think so.
>
> My $.02.
>
> -Robert-
>
> --
> This list is a free service of LassoSoft: http://www.LassoSoft.com/
> Search the list archives: http://www.ListSearch.com/Lasso/Browse/
> Manage your subscription: http://www.ListSearch.com/Lasso/
>
>

> Also, before I forget, while I was poking around for info on "file,"  
> I came across a similar tool for Windows:
>
> http://mark0.net/soft-trid-e.html
>
> I have *absolutely no idea* whether or how well it works, but I  
> think someone asked after a Windows option for the file utility, so  
> I thought I'd share.
>
> HTH!
> -Robert-
>
> On Nov 2, 2009, at 11:47 AM, Robert Carpenter wrote:
>
>> On Oct 31, 2009, at 8:03 AM, Eric Landmann wrote:
>>> So it looks like for some filetypes it is correct, others it is  
>>> completely off the mark, and some returns nothing at all. I vote  
>>> this "busted".
>>
>> I don't know if I'd call it "busted," but it is worthwhile to note  
>> its limitations.
>>
>> I don't find these results particularly surprising, particularly  
>> for the text-based files (.lasso/.inc/.py, etc.) - I think there's  
>> more than a little irony in the decision to name the definitions  
>> files this tool uses "magic" ;-)
>>
>> You can view the files it uses on OS X here:
>>
>> /usr/share/file/magic
>> /usr/share/file/magic.mime
>>
>> Seems like identifying text file stuff is particularly...squishy.  
>> For example, while I was looking at the files,  I noted that one of  
>> the identifiers it uses for python files is the presence of  
>> """ (triple quotes), which python uses to allow retaining line  
>> endings in strings - that may be idiomatic of python scripts, but  
>> definitely not proof that you're dealing with a python file.
>>
>> I'd think it would tend to be more accurate and useful with binary  
>> file types like images and videos, where there are established  
>> specs that require specific characters in specific locations in a  
>> file.
>>
>> Ultimately, I think of this as one item in a larger toolkit, and  
>> like all tools you need to consider the requirements and risks of  
>> the job you're tacking. Is it perfect? No. Is it useful and a step  
>> up from relying on file extensions or mime types returned from the  
>> web? I think so.
>>
>> My $.02.
>>
>> -Robert-
>>
>> --
>> This list is a free service of LassoSoft: http://www.LassoSoft.com/
>> Search the list archives: http://www.ListSearch.com/Lasso/Browse/
>> Manage your subscription: http://www.ListSearch.com/Lasso/
>>
>>
>
>
> --
> This list is a free service of LassoSoft: http://www.LassoSoft.com/
> Search the list archives: http://www.ListSearch.com/Lasso/Browse/
> Manage your subscription: http://www.ListSearch.com/Lasso/
>
>