I am allowing uploading of files to my C# MVC website, I am restricting those types based on extension at the moment, but also feel I need a server side check to confirm they haven't just renamed it.
Is there a technique that I can use to check all the types I need or a library I can use that will help here?
I have seen people checking the first few bytes of the file, but I am scared I will miss something?
Thanks for your help.
Edit:
There are a lot of suggestions here. I will investigate some of these as a solution.