Feeling Lucky
?
?
[#15452] - [Media] Remove allowed mime type for flash from new installs
- Fixed in Code Base
- 22 May 2017
- Medium
- Build: staging
- # 15452
- Diff
- zero-24:remove_flash
User tests: Successful: Unsuccessful:
Summary of Changes
Remove allowed mime type for flash from new installs. Flash is dead but if you really need it you can add it by your self. Per default the core is more secure than
Testing Instructions
- review
- install https://github.com/zero-24/joomla-cms/archive/remove_flash.zip
- confirm that flash is not anymore a allowed mime type.
Expected result
flash is not anymore a allowed mime type.
Actual result
flash is a allowed mime type.
Documentation Changes Required
None.
| Status | New | ⇒ | Pending |
joomla-cms-bot
- | Category | ⇒ | Administration com_media SQL Installation Postgresql MS SQL |
alikon
- comment
- 24 Apr 2017
I have tested this item
This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/15452.
Quy
- comment
- 24 Apr 2017
I have tested this item
This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/15452.
franz-wohlkoenig
- comment
- 24 Apr 2017
RTC after two successful tests.
| Status | Pending | ⇒ | Ready to Commit |
| Status | Ready to Commit | ⇒ | Fixed in Code Base |
| Closed_Date | 0000-00-00 00:00:00 | ⇒ | 2017-05-22 19:25:07 |
| Closed_By | ⇒ | rdeutz | |
| Labels |
Added:
?
?
|
||
+1 from the JSST - Flash is a long term security nightmare and works around several browser-level security measures, it should be disallowed by default!