First of all: The picture should not provide preview, web browsing, and way to link external images. Because I can write a program to dynamically display pictures, and get your cookie information through cross-site attacks, gain your cookie information, gain you.
A few days ago, I saw ASP.NET: Comminity Sever :: forums?, It has a reference value for the processing method uploaded by the file. Users can upload files while posting, but users want to see this uploaded file, such as downloading to local to view this file. In this way, safety is better.
Of course, if the user uploads a Trojan, some people are silly download to the local, and do it, then we have no way.
In addition, how is it controlled uploaded. That is, the specific system for uploading.
Is it limited to one day for one day? ? OR? Upload image card can be uploaded. This is a problem to consider.
How to implement download to your local can see the following article:
Http://blog.joycode.com/roboo/archive/2004/08/31/32098.aspx
http://www.cnblogs.com/bestcomy/archive/2004/08/10/31950.aspx
http://blog.joycode.com/uestc95/archive/2004/05/25/22494.aspx
Http://support.microsoft.com/default.aspx?scid=kb;n-us;812406&product=aspnet
What I have to add here is that before implementing these download code, I have to add a message prompt. These files are mainly prompted, and these files are uploaded by users. We don't guarantee that there is no virus and Trojan, and if someone discovers the uploaded documents have political issues, Porn problem, please contact it. . .
In order to avoid the user to bypass this link, here is used to record this note, if the user reads this note, start downloading, otherwise, reading information, only reading and accepting the above terms can only be downloaded.
All or more logic is implemented in an ASPX page. It is for convenient implementation with session. For a while, users only use this prompt information. Of course, if you want to see every time, it is better to use cookies.