.svg)
Prior to FileCloud Version 21.2, Disallowed File Extensions listed php and php5 by default; from Version 21.2 on, it lists php, php5, phar, and phtml. If you are using a version of FileCloud earlier than 21.2, you are advised to add phar and phtml to the Disallowed File list. See Advisory 2021-09 Upload of Potentially Unsafe File Types for more information.
As an administrator, for security reasons you may want to create a set of rules for the working environment where many users have access to a central resource, such as files and folders in FileCloud.
-
This helps prevent users from uploading malicious attachments and viewing them.
-
By default FileCloud will restrict files with php extensions. This is to prevent any code injection.
To manage extensions in the Admin Portal:
-
In the FileCloud admin portal's left navigation bar, scroll down and click Settings. Then, on the Settings navigation page, click Misc
By default, General settings are opened. -
Scroll down until you see the Disallowed File Extensions box.
-
In the Disallowed File Extensions box, specify the restricted extensions.
This list of extensions must use the following character as the delimiter:
-
'|'
-
For example, to add restrictions for mp3 and mp4 to the list of disallowed extensions:
php|php5|phar|phtml|mp3|mp4
-