[wp-edu] managing Upload Filetypes on WordPress 3.x.x

Joseph Ugoretz joseph.ugoretz at mhc.cuny.edu
Thu May 10 16:36:24 UTC 2012

Hi Dave,

As far as I've seen, that limit on uploaded file types is specific to multisite, not configurable in standard, because the possible security problem of untrusted (or less-trusted) users doesn't exist in single-user WordPress.  If you're the single user, it can be assumed that you trust yourself.

In multisite, though, that option does work fine.  WordPress does utilize it, without any plugins, or at least it always has in our install.  We can add new file types to that list, and files of that type can then be uploaded.  Or conversely, when we remove file types from that list, they can no longer be uploaded.

So if that's not working for you, there must be something else wrong.  Maybe php settings?  

If everything's functioning as it should, as it's designed to, that list of acceptable file types is workable and effective.


Joseph Ugoretz, PhD
Associate Dean of Teaching, Learning and Technology
Macaulay Honors College - CUNY
35 West 67th St.
New York, NY 10023

On May 10, 2012, at 11:21 AM, Whisler, Dave wrote:

> I need to know the best way to add/remove items from the list of acceptable file types (file extensions) that are permitted in WordPress 3.x.x.
> Standard WordPress (non-multisite):  It does not have any options to add/remove file from the WP Dashboard.
> WP MultiSite Installation:  If you go into the network admin Dashboard, it has a field that has a list of acceptable file types here:   Dashboard -> Settings -> Network Settings ->  “Upload file types”.   However, adding a new file type to this list does not seem to enable me to upload a file of this type to any of the sites on this WP network.    What am I missing? 
> Why would WordPress have this option listed in the Network configuration on Multisite installations and then not utilize it?     And where is this option on a normal WordPress install?
> The online WordPress codex seems to be silent on this:    http://codex.wordpress.org/Uploading_Files
> 1.       What is the correct way to accomplish this?
> 2.       And if it cannot be accomplished without using (or writing a plugin), let me know which Plugins you have used and why.   Below are some plugins that I found (not tested yet) that seem like they might accomplish this.   Does anyone have experience using them on a WP multisite network?    A major concern is that I do not want to be able to set them network-wide – and not have to do any configuration changes on individual sites.
> Below are some Plugins that appear like they might do the job.
> http://wordpress.org/extend/plugins/ap-extended-mime-types/
> http://wordpress.org/extend/plugins/manage-upload-types/
> http://wordpress.org/extend/plugins/add-more-files-extensions/
> http://wordpress.org/extend/plugins/uploads/
> In the database for WP Multi-sites, you can run this query to see the same list of upload filetypes as in the Network Settings: 
> SELECT meta_key, meta_value FROM wp_sitemeta WHERE meta_key="upload_filetypes";
> However, I’ve not found anything like this on a single-site WordPress installation.
> Some people suggest modifying the function.php file in your WordPress theme to do it.   While others have said to modify WordPress core (wp-includes/functions.php – add the filetypes in the “get_allowed_mime_types() function).   However, I’d rather not modify my theme (what if we want to change themes?) or WordPress core (what about upgrades) – as this just adds complications. 
> Please let me know how you accomplish this – as I want to best method for the long-run – one that won’t end up causing problems in the future.
> Thanks,
> Dave
> David K. Whisler | Oracle & MySQL DBA/Developer, WordPress & Joomla Administrator
> UNC Charlotte | The William States Lee College of Engineering
> 9201 University City Blvd. | Charlotte, NC 28223
> Phone: 704-687-3964 | Fax: 704-687-2352
> dkwhisle at uncc.edu | http://www.uncc.edu
> ---------------------------------------------------------------------------
> If you are not the intended recipient of this transmission or a person responsible for delivering it to the intended recipient, any
> disclosure, copying, distribution, or other use of any of the information in this transmission is strictly prohibited. If you have
> received this transmission in error, please notify me immediately by reply e-mail or by telephone at 704-687-3964. Thank you.
> <ATT00001.c>

More information about the wp-edu mailing list