Why won't some Avatar's Upload?
Printed From: Web Wiz Forums
Category: Web Wiz Web App Support Forums
Forum Name: Web Wiz Forums
Forum Description: Support forum for Web Wiz Forums application.
URL: https://forums.webwiz.net/forum_posts.asp?TID=25689
Printed Date: 03 April 2026 at 4:05pm
Software Version: Web Wiz Forums 12.08 - https://www.webwizforums.com
Topic: Why won't some Avatar's Upload?
Posted By: pc_guru
Subject: Why won't some Avatar's Upload?
Date Posted: 06 May 2008 at 6:24am
Some users have been having problems with the Avatar Upload in profile. When I tested it it works. Users report the error message asError uploading image So I asked a user to email me the image she was trying to upload. She sent me a jpeg file - loads fine in any application on my Windows XP computer. Size at 79 kb was a bit large but maximum Avatar file size was set to 200 Kb. Yet I got the same error when I tried to upload it. I opened it in Paint, changed its size a bit and resaved it, still would not accept it. I changed the size to something much smaller and it worked. So I then tried different sizes to see if I could find a limit and all worked, including one much larger (more pixels) than the original. So what is going on? Why do some versions of this image saved by Paint work, while others don't ? I'm using v 9.06 hosted by WebWiz, with Persits AspUpload, 10 Mb upload space per user, 200 kb max Avatar size. |
Replies:
Posted By: WebWiz-Bruce
Date Posted: 06 May 2008 at 10:54am
|
This can sometime happen if the image has been created or edited in Adobe Photoshop which adds around 5kb of XML hidden within the end of the file. When the image is uploaded the image is scanned for malicious code which this extra XML inserted by Photoshop can course the image to be rejected. If you upgrade to version 9.50 this issue has been fixed as it correctly detects this XML insert into images by Photoshop ------------- https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting |
Posted By: pc_guru
Date Posted: 06 May 2008 at 3:34pm
|
Thank you Bruce, I know that at least one of the users having problems created the image in Adobe Paintshop on a Mac, so that sounds like the cause of the problem. I thought our hosyting package included automatic free upgrades? How do I tell which version we are running? |
Posted By: 123Simples
Date Posted: 06 May 2008 at 3:38pm
|
You would have to open a support ticket and request the free upgrade I think. It's not automatically done I believe
------------- http://www.123simples.com/" rel="nofollow - Visit 123 Simples Web Design |
Posted By: WebWiz-Bruce
Date Posted: 06 May 2008 at 3:42pm
|
Many people who host their Web Wiz Forums with us don't like to have their forum automatically updated for one reason or another. If you would like your Web Wiz Forums installation updated then please contact Hosting Support through your Client Area account and we will have your forum updated for you. We will also be able to tell which version you are running. If there is anything that you have modified then please also let us know. Version 9.50 has a new 'Check for Updates' tool in the admin area, when this tool is used it will tell you what version you are using and will also connect to our own update notification server to tell you the latest stable release available, so you can easily check that you are up-to-date with the latest release. ------------- https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting |
Posted By: billd3
Date Posted: 06 May 2008 at 4:05pm
This almost makes it sound like even though we modify some files, you'd still do the upgrade if requested? I've added avatars, smilies, and made some minor tweaks and changes here and there (the who has visited mod, the bookmark this page image and script, our paypal donation link, etc.)...... Do you draw a line somewhere that says if a person has modified xxxx files, then you don't or can't perform the upgrade? Or is it that you do only unmodified forum upgrades? I expect that the changes I've made would take someone about half an hour to transfer into the new files. You've got me really curious. Talk about added value! I assume there is a list of the exact files that have been changed or modified or added for version 9.5.............. ------------- BillD http://theamcpages.com http://theamcforum.com |
WebWiz-Bruce wrote:Posted By: 123Simples
Date Posted: 06 May 2008 at 4:09pm
|
I doubt if they would do this, as any modifications people may make they do at their own risk. Whilst this is a helpful web host, it could literally take ages to implement any updates or mods we or others had made Personally I believe its more beneficial to do the changes or mods again, as that way you learn and can pass on your experience to others. Obviously though that's only my own opinion ------------- http://www.123simples.com/" rel="nofollow - Visit 123 Simples Web Design |
Posted By: pc_guru
Date Posted: 06 May 2008 at 4:17pm
| I see reports that these Jpeg files with XML can crash some versions of IE. Does version 9.50 strip out the XML code? |
Posted By: WebWiz-Bruce
Date Posted: 06 May 2008 at 4:19pm
|
It is taken on a case by case biases, but generally as we do not know anything about 3rd party mods the mods would need to be re-applied by yourself. However, and this is were the case by case biases comes in, is if possible if we can avoid overwriting the file or files that have been modified while making the upgrade we will. If it is just a simple change that you require altering with your forum then often we will do this for you. Each of our hosting clients has different requirements, which means that we are fairly flexible, and usually work out the best solution for each customer. ------------- https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting |
Posted By: WebWiz-Bruce
Date Posted: 06 May 2008 at 4:25pm
No it doesn't strip out the Adobe XML although I personally do not like it, but some people like it as it can contain some extra information such as colouring and filters to make it simpler when you come to edit the image again in Photosohop. Apparently though you can tell Adobe Photoshop and other Adobe software not to add the extra XML information into the JPeg images. It would also be good if Microsoft could sortout IE's vulnerability that allows malicious scripting code to be hidden in image files as it would mean not having to scan images when they are uploaded. If IE opens an image file that contains malicious scripting code it will run the code!! Other browsers will not and just report that the image can not be displayed. I suppose it's just another reason to avoid running IE as it has more security holes than a lump of Swiss cheese. ------------- https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting |
Posted By: billd3
Date Posted: 06 May 2008 at 4:30pm
Good ole Adobe, maker of the second most un-secure software sold and software that crashes more browsers than anyone else. They are almost as arrogant as Microsoft, IMO. We constantly have security issues with their junk. This is but another example of "they know better" and forcing junk down our throats that we don't want. When you start adding $#@% (that's Iowan for JUNK) to files, the files grow in size and security risk. What ever happened to "images are images and contain no executable code that can be exploited" Sorry, end of rant. As a PC/network security person, I'm appalled at Adobe's lack of concern and "rule-the-PC-world by force" arrogance. Reminds me of another company tactics of years ago. ------------- BillD http://theamcpages.com http://theamcforum.com |
Posted By: billd3
Date Posted: 06 May 2008 at 4:33pm
|
At least Swiss cheese makes great sandwiches....... Adobe should switch that OFF by default and err on the side of security. However, like their other products where embedded scripts are enabled by default.... it's a nightmare when managing in a business, government agency or corporate environment. ------------- BillD http://theamcpages.com http://theamcforum.com |
Posted By: WebWiz-Bruce
Date Posted: 06 May 2008 at 5:04pm
|
The code that Adobe puts into the images isn't actually malicious, but as malicious code can be executed in IE and as that is also scripting code it very hard to detect what is Adobe's extra information and what is some hackers malicious code out to get unsuspecting IE users. It makes it very hard to spot the difference, especially given that Adobe's XML can vary so much between images. According to some virus vendors one in every thousand web sites is infected with malicious code, so hopefully having these filters for images will mean those sites running Web Wiz Forums won't be one of those 1 in a thousand. ------------- https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting |
Posted By: billd3
Date Posted: 06 May 2008 at 5:21pm
|
I can confirm that at least that number do. You should see the hits our security software gets, from supposedly "safe" sites....... Advertisers use underhanded methods, and news stations hire web people to design their sites, and they poke in these ads that install things. Also sites get hacked and in one case, years ago, I went to 3COMs web site and found an infected word document on their site. I'm so thrilled that you take security so seriously! It's one reason we use your product for our forums. Trust. ------------- BillD http://theamcpages.com http://theamcforum.com |
Posted By: 123Simples
Date Posted: 06 May 2008 at 5:25pm
|
I read that Panda who had reviewed and tested, not only their own software but many other virus checkers, admitted that nearly a QUARTER of home computers with virus software installed were infected with malicious software. Even computers protected by Pandas own software failed their tests! Ummmmmmm  Admittedly this has gone off subject a bit, so please excuse me ------------- http://www.123simples.com/" rel="nofollow - Visit 123 Simples Web Design |