No more animated gifs as avatar?

[IIOII]

After changing my avatar and trying to change it again to the original one - a very simple two frame animation of the vegetable you can see now (872 Bytes in total size), the forum did not allow me to add the original animation file which used to be my avatar since years.

Since when is it no longer allowed to add animated gifs and what's the rationale behind this policy? Why does it apply to legacy avatars as well?

Wouldn't it make more sense to restrict the use of avatars via file size only?

[shorena]

After changing my avatar and trying to change it again to the original one - a very simple two frame animation of the vegetable you can see now (872 Bytes in total size), the forum did not allow me to add the original animation file which used to be my avatar since years.

Since when is it no longer allowed to add animated gifs and what's the rationale behind this policy?

Since there was a security issue with avatars.

Why does it apply to legacy avatars as well?

It doesnt, your avatar is no longer legacy as you changed it.

Wouldn't it make more sense to restrict the use of avatars via file size only?

[IIOII]

Why does it apply to legacy avatars as well?

It doesnt, your avatar is no longer legacy as you changed it.

I don't think so. The file is the exactly the same as was used previously.

I remember the avatar-related security issues in the past. But I'm not aware that these were caused by gif animations.

The only reasonable explanation I could imagine is that animations may distract from content. But the animation I used is so minimal that it's unlikely the case.

Note that my animated avatar used less than 1% of the maximum allowed file size. If I'd be mean, I could upload a new 100 KB static avatar just to express my frustration by draining more forum resources...

[minifrij]

I don't think so. The file is the exactly the same as was used previously.

Avatars are deleted from the server once changed. It doesn't matter if it's the same file.

I remember the avatar-related security issues in the past. But I'm not aware that these were caused by gif animations.

I'm unsure if it is the same security issue that the forum had, although it seems like it could be the case, you can read about how an attacker can run arbitrary PHP code through gif images here. As said, I'm unsure, however considering that the security exploit was executed by running arbitrary PHP code it could be possible that the two are linked.

Note that my animated avatar used less than 1% of the maximum allowed file size. If I'd be mean, I could upload a new 100 KB static avatar just to express my frustration by draining more forum resources...

I don't think that storage space is the problem with your avatar.

[beerlover]

I just noticed this member is using gif avatar,  https://bitcointalk.org/index.php?action=profile;u=878718
He has joined here just 137 days back. Sorry I could not test myself, gif avatars are back ?

[kateryana81]

I just noticed this member is using gif avatar,  https://bitcointalk.org/index.php?action=profile;u=878718
He has joined here just 137 days back. Sorry I could not test myself, gif avatars are back ?

Holy cow ! Now I am with an animated avatar. I guess you may get a reward for finding security vulnerability !  

[IIOII]

I just noticed this member is using gif avatar,  https://bitcointalk.org/index.php?action=profile;u=878718
He has joined here just 137 days back. Sorry I could not test myself, gif avatars are back ?

Holy cow ! Now I am with an animated avatar. I guess you may get a reward for finding security vulnerability !  

Did you really add that animation recently? That would be very strange indeed.

I tried again, but get the same error message that animations aren't allowed. I even tried renaming the animated gif to .png, but it was still detected as animated gif.

I still don't know, what animated gifs would have to do with security.


Edit: Was able to upload an animated png (APNG). However that only is shown as animated in a few browsers.