Fastmail file storage...

[fhapgood]

Quote:

Originally posted by Sherry
If you know how to make an HTML file and load the graphic in that file, it will show up on your site (if you uploaded the rose.jpg file to your Directory). If you just want someone to see the rose picture you can add /rose.jpg to the end of the path to your site.

That's not what I meant. Take the case of a page (index.htm)
that appears as a mixture of text and images. If you look
at that page on the level of the source, what you often see
is a mixture of ascii characters (representing the text)
and links to graphics (of the form <IMG SRC = "pathname">
where "pathname" equals the path to the image and
the image filename). The <IMG> tags self-execute
when the index.htm page is served. That's what doesn't
happen here, right? File storage will not host a website
if the look of that site depends on self-executing links.
Yes?

[Sherry]

Quote:

Originally posted by fhapgood
That's not what I meant. Take the case of a page (index.htm)
that appears as a mixture of text and images. If you look
at that page on the level of the source, what you often see
is a mixture of ascii characters (representing the text)
and links to graphics (of the form <IMG SRC = "pathname">
where "pathname" equals the path to the image and
the image filename). The <IMG> tags self-execute
when the index.htm page is served. That's what doesn't
happen here, right? File storage will not host a website
if the look of that site depends on self-executing links.
Yes?

My .jpg's "do" load in my .html file. With the .jpg file in the directory with the .html file, you don't need to put in the full path. I just have <img src="flower.jpg"> and that works fine. Make sure your .htm file has an l in the extension (.html) and it should show your image.

Sherry

[Ilja]

One question about security: what happens if you load some scripting-languages on the server? Is there a potential security risk? I don't know what language fastmail is running on (perl?), will uploading a file with the right extension and the right scripting-language pose a security risk?

[pwb]

I shouldn't have thought fastmail will provide scripting in the storage space. If they did that would be fantastic, but you would only really expect this from a dedicated web hosting company I think. Is that right?

[Ilja]

I don't think so either, after all: the filespace is not meant to serve as a webserver in that sense.

I'm just wondering if it's secure and no scripts can be executed

[kander]

PHP doesn't run (tested), and I am rather sure they don't allow Perl either.

--K

[rjlov]

[b[dave wagz:[/b]
Yep, it's an hourly rate thing. It's 30M per hour and you get a warning, 100M per hour and your file storage is locked for an hour.

Currently the start of this message is the same message that you get sent if you are using lots of email bandwidth. That's just cause I was lazy. Using too much file bandwidth will only lock your file storage, not your whole account. So, I really should change the message that you receive so that it makes this clear.

Re: scripts
The files are not processed by the normal apache mechanism, which is why the directory listings you see don't look like you might expect. So, I'm pretty sure that you won't be able to execute any scripts that exist in your file storage.

[robinson]

If go to the "upload more" section and select a large file and ...

IF: I don't press [upload] but press [done] or [cancel]
THEN: the site reacts very slowly.

BUT:If i select no files and press [done] or [cancel]
THEN: It sends me back to the files screen very quickly.

what is the system doing??
it seems like the file is first being uploaded and then discarted (?).

[faboon]

(I just thought I'd stop by and make a totally useless comment.)

I LOVE FILE STORAGE!!! GREAT JOB GUYS!

(Go on, you've got real posts ahead of you. )

[vidvandre]

Images: Firstly the <img> doesn't self-execute, they just tell the browser to load the file (images) they're linked to. If you view the html source of a document after it's loaded of the server you'll see that it's exactly the same as it was on your machine. Images can be loaded both with fixed and relative paths from the FileStorage area. I've done both...

Scripting: Even though I haven't heard it from the FastMailTeam (other than rljoy's remark above), I'm pretty sure support for all/any scripting languages are turned of at server level. If I'm right you can't run php, perl, cgi, asp, chm or any other server language. This is a good thing, as server side scripting could be a potential security risk. This doesn't equal that all scripting is prohibited, you can still run scripting languages at client level. Client side scripting isn't a security risk for the server...

An example of the above statements can be seen at my FileStorageArea

[hadaso]

Removing attachments is a dfeature requested by several users in this thread, and also in past threads. How should this be done?

Personally I keep most work related email messages I receive/send for the record. I don't do it if the message conatains a large attachment. What I would like is to be able to detach an attachment but leave trace, so the record shows there was an attachment there.

One way to do it is to replace the attachment by a text file attachment listing some information about the detached file (filename, type etc.) Another way to do it is to append this info as text at the end of the message (but then it might create a problem with messages containing alternative parts, such as HTML and text versions). Another solution is adding one text attachment that would serve as a log to fastmail operations on the file.

Also it would be nice to be able to add a comment to a stored received message (about detached attachments with uninformative names, or about anything else.) If we have a "fastmail log" attachment we can have an action that lets us add a comment, and an detach operation can also prompt for optional comment.

Or perhaps a simpler "log option": each operation can just be recorded in a header field that fastmail can add: (X-fm-detached:, X-fm-usercomment: )

Or we might just have an action in the view screen to open the message in a clone of the compose screen, and from there we can edit the message (including removal of attachments) and then save it back to the mailbox or resend it.

[specialK]

Sorry if i've missed this in the above discussion but...

Any idea of when file storage is going live on the non-beta server? i suppose it depends on how long it takes to get it just as they want?

[vidvandre]

Quote:

Originally posted by hadaso
Removing attachments is a dfeature requested by several users in this thread, and also in past threads. How should this be done?

You raise several valid points and some good additional suggestions. For now I could live without the commenting and "replace with text file containing details", that could be additional features implemented over time. Simple attachment stripping would be valuble enough in it self...

The feature could simply work as the "save to filestorage" works now, select the attachments and then select what to do with them from an "action dropdown" on the right...

(I've added a reference to you post on the WiKi's file FileStorage page...)

[Ilja]

Quote:

Originally posted by vidvandre
Scripting: Even though I haven't heard it from the FastMailTeam (other than rljoy's remark above), I'm pretty sure support for all/any scripting languages are turned of at server level. If I'm right you can't run php, perl, cgi, asp, chm or any other server language. This is a good thing, as server side scripting could be a potential security risk. This doesn't equal that all scripting is prohibited, you can still run scripting languages at client level. Client side scripting isn't a security risk for the server...

I was asking because of security concerns, so I know it's a good thing. Wasn't talking about client-side scripting (javascript) btw...

Quote:

So, I'm pretty sure that you won't be able to execute any scripts that exist in your file storage.

pretty sure? Better make sure you're damn sure

[dave wagz]

thank you rj