How to safely prevent uploaded file from being run via PHP on any server?

Question

I noticed that it\'s possible to run a file via PHP even if its extension wasn\'t .php, for example file test.xyz.php.whatever.zyx can be still run wit

Answer 1

On Apache you could disable all dynamic handlers for the directory that contains the untrusted files.

SetHandler default-handler