Re: [xml] security issue.

Well, I fixed all sprintfs and few strcpys. I do not see any other big problem. I really don't think that env variables could be used by "bad" guy. If "Bad" guy
has access to the box then he/she can do much more things :)


Anju Premachandran wrote:

Hi Aleksey

How did your security audit go?Did u find any new issues?

Regarding  the environment variables for HTTP/FTP access;as u said if a bad guy can change the environment 
variables it can turn out to be a concern.

So should we fix it?

xml mailing list, project page
xml gnome org

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]