Tag: Security

Tips for Avoiding Malware in Submissions

We’ve all been cautioned for years never to open files from suspicious sources. And even if a file is from a trusted source it’s best not to open it until it’s been scanned with antivirus software. Otherwise you run the risk of installing malware, like a Trojan horse, spyware, or ransomware. Opening a file—or even clicking a link—can be one of the easiest ways for hackers to gain control of your computer.

But what if you’re a call admin or reviewer? It’s difficult to assess the quality of submissions without opening documents or following links. This is the security dilemma inherent to every call for proposals: You have to collect content but the only sure-fire way to avoid harm from that content is never to open it.

Unfortunately there is no bulletproof solution. There are, however, a few best practices call admins and reviewers can observe to help reduce their risk:
Continue reading Tips for Avoiding Malware in Submissions

New Feature: Upload Restrictions

Call admins now have the ability to restrict which types of files are allowed for uploads.

The new setting is in two places: the form builder and the Publishing Module. In both cases it is a safelist (as opposed to a blocklist) meaning authors are only allowed to upload files with extensions you specify. Or put another way, authors are prohibited from uploading files not in the list.

Continue reading New Feature: Upload Restrictions