Date: Sat, 24 Nov 2001 16:03:35 -0800 (PST) From: Maxim Sobolev <sobomax@FreeBSD.org> To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: projects/mfcns/handler MFCns_handler.py Message-ID: <200111250003.fAP03ZQ19248@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
sobomax 2001/11/24 16:03:35 PST
Modified files:
mfcns/handler MFCns_handler.py
Log:
Be more strict about what's allowed as a mail address to which notification
is to be sent. Particularly, disallow any of the shell meta-characters,
because this address is then passed to a system(3)-like routite, which
potentially may be eploited to execute arbitrary commands on a system at
which service is running.
Revision Changes Path
1.11 +6 -0 projects/mfcns/handler/MFCns_handler.py
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200111250003.fAP03ZQ19248>