Bookmarked https://seblog.nl/2017/02/13/3/how-i-hacked-my-own-site. Curious if—although I’m all for preventing …
Curious if—although I’m all for preventing PHP to be run from any “uploads” folder—downscaling and compressing the profile pictures would either “fix” or discard them.
In order to protect visitors of my site from other security issues, the plugin downloads the images and shows those downloaded ones. This way my visitors only deal with my server, and not with the servers of everyone who liked my post.
- How I hacked my own site by feeding it a profile picture via webmention | Seblog