PDA

View Full Version : Uploading Zips



andyhunter
01-01-2005, 06:47 PM
So why can't we upload zip files anymore? It makes it kind of difficult to provide some sample code where there are resources or multiple files.

B0bDole
01-01-2005, 09:04 PM
hmm thats weird, you can still attach full c and cpp files though

sean
01-01-2005, 11:21 PM
Ah.. well that explains a recent problem in the C++ board...

Thantos
01-02-2005, 12:06 AM
The problem was that people were attaching executables by zip-ing them. At the same time .zip was removed .cpp, .h, .c was added.

jverkoey
01-02-2005, 04:05 AM
How is not allowing .zips getting rid of .exes being uploaded? If someone really wants to upload an exe and it's a virus, they'll find a way to do it. Also, were there actually problems being caused by exes being uploaded? I hadn't heard of any, but then again, I've been away from the boards for a while with christmas break and all...*shrugs*

But also, as posted recently in this post:
http://cboard.cprogramming.com/showthread.php?t=60173&page=4&pp=15

Near the bottom there....

People can still upload .zips, .exes, .pdfs, .bobs, .smiths, .sallys, whatever you want to upload, just rename it to one of the allowed file types and there ya go.

I just don't see the purpose in making it harder to bundle source code in posts when people can still do it anyway.

My two cents

Fordy
01-02-2005, 04:33 AM
How is not allowing .zips getting rid of .exes being uploaded? If someone really wants to upload an exe and it's a virus, they'll find a way to do it. Also, were there actually problems being caused by exes being uploaded? I hadn't heard of any, but then again, I've been away from the boards for a while with christmas break and all...*shrugs*
The majority of people who would spread a virus by uploading an exe are, more than likely, not skilful enough to get it uploaded in any other way. More often than not, stopping exes will stop them.

The fact that we havenít really had actual problems in the past with this is a good thing; this will just make sure things stay that way. Waiting for a crisis before reacting isnít really the best policy is it?




But also, as posted recently in this post:
http://cboard.cprogramming.com/showthread.php?t=60173&page=4&pp=15

Near the bottom there....

People can still upload .zips, .exes, .pdfs, .bobs, .smiths, .sallys, whatever you want to upload, just rename it to one of the allowed file types and there ya go.
But running a "smith" file or a "sally" file wont usually infect anyone will it? Unless they are really stupid enough to change the extension. You cant really do anything for people that stupid, can you? ;)

jverkoey
01-02-2005, 04:38 AM
:D :D Yah, of course a .smith/.sally file isn't going to run as an exe, but, hmm, is even possible for exes to be run inside of a .zip file when people are downloading it? I don't understand how a file could be run on the server, so you must be talking about people download a file and running it, when it's a virus. Well, we could just enforce a policy of not running exes and if you do that's your own problem.

It just seems unfair to make people not be allowed to use .zips anymore for uploading packages of code.

Salem
01-02-2005, 05:09 AM
Uploading multiple source files is simply too tricky at the moment.

Surely it would be possible to scan a ZIP file to make sure it only contained known source file types (c,h,cpp). If the ZIP file contains other file types, it won't be attached to the post (at least not immediately).

Or maybe the board could automatically append to the post some large red writing warning that the attachment contains executables, and advising downloaders to exercise due caution.

Face it, even if you have the source code, and that code contained
system( "format c:" );
I would not be surprised if some dolt actually tried to compile and run it, if it were called game.c for example.

Or maybe ZIP attachments are held in a quarantine area until a mod has had chance to look at them, then decide whether it's suitable for the viewing public.

Sure people have occasionally uploaded executables without source code, but they get pretty routinely jumped on for doing so.

andyhunter
01-02-2005, 01:08 PM
I am not even concerned about uploading executables, I think it is a bad idea. Even if you weren't trying to upload a virus if your system is infected you could do so without your knowledge.

All I am saying is there is a size limit to what you can upload in a single shot. This is extremely limiting especially when it comes to windows and game programs. I mean if you want to upload a demo for DirectX or something that contains multiple sprites well, how are you going to do that if the sprite images are larger than the maximum upload size?

Additionally the more involved you become with windows development the larger the applications become. This makes for a limiting factor if you want to upload source code as an example, aka a full working program vice just code snippets.

But alas, whatever the mods want to do it is their right. I am just looking for some clarification.

Thantos
01-02-2005, 01:24 PM
how are you going to do that if the sprite images are larger than the maximum upload size?
Offsite linking

Additionally the more involved you become with windows development the larger the applications become. This makes for a limiting factor if you want to upload source code as an example, aka a full working program vice just code snippets.
In all honesty if you posted a program that you needed help with and the source exceeded the max upload size you won't get much help. Not many are willing to read that most code to solve a probelm for you.


If I can get my hands on the vBulletin code I probably could modify it to check the zip's contents and allow/disallow based off of that. But as I'm not gonna pay for it I guess I won't be able to :)

andyhunter
01-02-2005, 01:47 PM
Thanx for the reply. I wasn't suggesting someone upload a program that size for help. I was saying if you wanted to upload a demo that would show off some concepts common to the thread and additionally answer some that weren't asked yet, aka by providing a working complete sample program, that it would become difficult. Especially with all the resources that go into some of those.

JaWiB
01-02-2005, 02:47 PM
Face it, even if you have the source code, and that code contained
system( "format c:" );
I would not be surprised if some dolt actually tried to compile and run it, if it were called game.c for example.


Hehe, had to go back and find this thread: http://cboard.cprogramming.com/showthread.php?t=40209

Check out t_rex's reply :D

jverkoey
01-02-2005, 03:07 PM
Hehe, had to go back and find this thread: http://cboard.cprogramming.com/showthread.php?t=40209

LMAO

wow, that is honestly a new low for stupid people.....

gcn_zelda
01-02-2005, 03:23 PM
What are you talking about? I... did... that...


Wait a second...

sand_man
01-02-2005, 06:23 PM
HAHA I cant believe someone could be so stupid!