diff options
| author | Henry Sudhof <kellanved@phpbb.com> | 2009-02-25 15:09:04 +0000 |
|---|---|---|
| committer | Henry Sudhof <kellanved@phpbb.com> | 2009-02-25 15:09:04 +0000 |
| commit | 354f9edd4e747b6927a8b2c1e454be1c366cf232 (patch) | |
| tree | 343b091540d5986f1b1464becb86683c20c4d24e /phpBB/download | |
| parent | bd316f9c486bc6d62396775f88e3eb34b36b9b4a (diff) | |
| download | forums-354f9edd4e747b6927a8b2c1e454be1c366cf232.tar forums-354f9edd4e747b6927a8b2c1e454be1c366cf232.tar.gz forums-354f9edd4e747b6927a8b2c1e454be1c366cf232.tar.bz2 forums-354f9edd4e747b6927a8b2c1e454be1c366cf232.tar.xz forums-354f9edd4e747b6927a8b2c1e454be1c366cf232.zip | |
can't they decide on one single thing...
git-svn-id: file:///svn/phpbb/branches/phpBB-3_0_0@9341 89ea8834-ac86-4346-8a33-228a782c2dd0
Diffstat (limited to 'phpBB/download')
| -rw-r--r-- | phpBB/download/file.php | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/phpBB/download/file.php b/phpBB/download/file.php index 2bcdcaac97..d21d056e83 100644 --- a/phpBB/download/file.php +++ b/phpBB/download/file.php @@ -464,8 +464,11 @@ function send_file_to_browser($attachment, $upload_dir, $category) // Send out the Headers. Do not set Content-Disposition to inline please, it is a security measure for users using the Internet Explorer. $is_ie8 = (strpos(strtolower($user->browser), 'msie 8.0') !== false); - header('Content-Type: ' . $attachment['mimetype'] . (($is_ie8) ? '; authoritative=true;' : '')); - + header('Content-Type: ' . $attachment['mimetype']); + if ($is_ie8) + { + header('X-Content-Type-Options: nosniff'); + } if (empty($user->browser) || (!$is_ie8 && (strpos(strtolower($user->browser), 'msie') !== false))) { header('Content-Disposition: attachment; ' . header_filename(htmlspecialchars_decode($attachment['real_filename']))); |