Although there are good reasons to use the filesystem for uploaded files, there are also problems with it in
some situations:
- Security -- world-writable directories on multi-user hosts
- Security -- dangerous filetypes may slip through and execute scripts server-side
- Inconvenient filesystem naming limitations (eg bug 362)
- Stupid configurations -- PHP 'safe mode' and other such things that may make it difficult for some
installations to have a writable directory tree for uploads
So, it may be useful to optionally provide for storing uploads in BLOBs, as for instance Bugzilla does.
Issues to overcome:
- Maximum file size limited by mysql max packet size [default should be big enough for most purposes]
- Thumbnail generation may need to work via temporary files
Version: unspecified
Severity: enhancement