asp upload - validating image size and type before upload

[spastica]

I am creating an upload tool using aspsimpleupload.

I want to make sure the file the user uploads is a jpg, and under 1mb before the actual upload is allowed, so there are no malicious uploads. is there any way to do this? does aspsimpleupload store the file temporarily before uploading? i can't find any documentation on the web.

 

[mwolf00]

I'm not sure about aspSimpleUpload but if you use the aspUpload component you can set "setMaxSize" to ensure that the upload doesn't exceed 1M

Programming today is a race between software engineers striving to build better and bigger idiot-proof programs, and the Universe trying to produce bigger and better idiots. So far, the Universe is winning. - Rick Cook

 

[Sheco]

As for verifying that the file is actually a jpg, you could first check its file extension. For better verification you could perhaps you could find an ActiveX/COM object that can manipulate JPGs. Then you create the object in server-side code ASP and use use the object to manipulate the uploaded file. If the file is not a real JPG then it the object should be able to report it or at least throw a trappbable error.

 

[spastica]

thank you - but we don't have any other components, there is another way i am thinking of. post coming up...