2.4.0-rc6

Thread: 2.4.0-rc6

Search this list only Search all lists
2.4.0-rc6
	2006-03-29 13:03:34
Heute (29.03.2006/14:13 Uhr) schrieb Mark Martinec, > Jim, > Please see if this helps: > --- amavisd~ Wed Mar 29 12:52:03 2006 > +++ amavisd Wed Mar 29 14:08:53 2006 > -13241,3 +13241,3 > # $msginfo->rx_time, > - substr($d,0,1), ' ', > + untaint(substr($d,0,1)), ' ', > $r->recip_blacklisted_sender ? 'Y' : 'N', no, the same errors. :( > Mark -- Viele Gruesse, Kind regards, Jim Knuth jkjkart.de ICQ #277289867 ---------- Zufalls-Zitat ---------- Coca Cola sollte ursprünglich als Medizin für Drogenabhängige dienen. ---------- Der Text hat nichts mit dem Empfaenger der Mail zu tun ---------- Virus free. Checked by NOD32 Version 1.1461 Build 6976 29.03.2006 ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http: //sel.as-us.falkag.net/sel?cmd=lnk&kid0944&bid$ 1720&dat1642 _______________________________________________ AMaViS-user mailing list AMaViS-userlists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amav is.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/ho wto/

2.4.0-rc6
	2006-03-29 14:27:56
Jim, > > - substr($d,0,1), ' ', > > + untaint(substr($d,0,1)), ' ', > no, the same errors. :( Hm, I don't see how that is possible (even without a patch). What version of modules DBI and DBD::mysql ? I'm assuming this is with MySQL. I also expect that your predefined %sql_clause is not modified in amavisd.conf. Anyone else with SQL enabled seing this? I can reproduce the failure (Insecure dependency in parameter 3) if I intentionally taint $d, but even that goes away when filtered through untaint(). Mark ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! http://sel.as-us.falkag.net/ sel?cmd=lnk&kid=110944&bid=241720&dat=121642 _______________________________________________ AMaViS-user mailing list AMaViS-userlists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amav is.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/ho wto/

[1-2]

about | contact Other archives ( Real Estate discussion Medical topics )