If I were to allow users to host arbitrary PDF/RTF/DOC files on my server all un

Question

If I were to allow users to host arbitrary PDF/RTF/DOC files on my server all under the same name, but with different query strings would there be anything to worry about? I've heard of PDF/RTF exploits, and I get that someone could perhaps host one of those on my server, but I mean it's not like they can access cookie data or anything through a PDF file. So is this fine to do, or should I be worried?

Should I have them host the files under a different domain name, or am I fine using my original domain?

I've noticed, for example, that a lot of websites like Facebook, Google, YouTube etc. have special domain names for hosting images and other data they allow users to upload, so I'm curious.

Explanation / Answer

The problem is not that the files could contain exploits, but that they can be made to cause harm when reinterpreted as a different format. For example, someone may upload a file with RTF extension, which is actually a Flash file which is designed to steal cookies or perform CSRF attacks. That's one of the reasons Google hosts all user-provided files on a separate domain, so that the main domain is isolated from such content by same-origin policy.

Related Questions

Navigate

• Browse (All)
• Browse I
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.