[wp-trac] [WordPress Trac] #14648: Flash Uploader security error in IDN domains
WordPress Trac
wp-trac at lists.automattic.com
Sat Aug 28 10:48:23 UTC 2010
#14648: Flash Uploader security error in IDN domains
--------------------------+-------------------------------------------------
Reporter: dovydas | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Media | Version:
Severity: normal | Keywords:
--------------------------+-------------------------------------------------
Comment(by nacin):
From SWFUpload's site: SECURITY_ERROR - The upload violates a security
restriction. This error is rare.
I believe this has to do with the browser thinking this is a cross-domain
upload. Do you have a crossdomain.xml at the root of your server? That
should solve it.
Unfortunately there's not much we can do here, as there's no guarantee
we're at the root of the server. We *could* potentially handle this the
way we handle robots.txt, that if we do have rewriting and we are at the
root, then we can serve something. But generating this file is a security
issue, not to mention that we'd need to detect what I imagine are the two
different domains, the IDNA and ASCII... Sounds like an unfortunate
limitation of SWFUpload and Flash perhaps?
--
Ticket URL: <http://core.trac.wordpress.org/ticket/14648#comment:3>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list