The Joomla Training Cohort has been launched!

Please send any feedback or bug reports to  

Since #Joomla 3.8.8, uploading flash files (swf files) and allowing the "flash" (application/x-shockwave-flash) mime type for uploading have been removed from the default settings of new Joomla installs. Allowing these 2 things is a security concern if there is not first a proper review of their contents and programming. How to remove flash file extensions and mime type from the allowed methods of uploading is what today's #maintenancemonday is all about.



  • - Title: "(1) Disallow Flash File and Mime Type Uploads in Joomla - 🛠 Maintenance Monday Live Stream #045 - YouTube"
    - Maintenance Monday Live Stream #45, hosted by Tim Davis
    - Tim Davis expresses gratitude for reaching 952 subscribers and upcoming one-year anniversary of weekly live streams.
    - Reviewed and promoted a contest extension from Nor Next Extensions in the previous live stream.
    - Topic for today's live stream: How to disallow Flash file types and Mime types in Joomla, following Joomla 3.8.8 security recommendations.
    - Tim demonstrates two methods: manual adjustment in Joomla backend and using a tool on by Phil Taylor.
    - In the manual method, Tim shows how to navigate to Media > Options > Legal Extensions File Types and Legal Mime Types to remove Flash-related entries.
    - Phil Taylor's tool on automates the process for certain security recommendations, as demonstrated on Tim's wife's Joomla site.
    - Tim shares a personal experience with a challenging client project and discusses potential issues with Twitch streaming, such as accidental exposure of user information.
    - Tim talks about the YubiKey and hints at an upcoming video sponsored by Phil Taylor on implementing two-factor authentication with YubiKey in Joomla.
    - Tim engages with the live chat, discussing potential collaboration on a Google Maps-related project with Mary and mentioning potential challenges with dog barking during recording sessions.
    - Tim expresses interest in collabs and hints at exploring the YubiKey for two-factor authentication in Joomla.

    Note: The provided text is a lengthy transcription, and the summary captures the key points from the content.

Monday Maintenance 045


😴👌Watch Me Work live streams ►    • Find and Replace ...  

Here are some of the links mentioned in this Live Stream - and some others:

Contact Tim Davis ► This email address is being protected from spambots. You need JavaScript enabled to view it.

Joomla Training Cohort ► ►

MigrateMe 4 ►

Stageit for Joomla ►    • First Look at Sta...  

Backing Up Your Joomla Site with Akeeba ►    • How to Backup a J...  

Better Frontend Link ►

FOLLOW US ON TWITTER! ► @basicjoomla


Interesting blog? Like it on Facebook, Post it or share this article on other bookmarking websites.

Written by:
Tim Davis is the founder and owner of Cybersalt.
Log in to comment

Add comment

This is a privacy policy