Menu
▾
▴
[Cscope-cvs] CVS: cscope ChangeLog,1.167,1.168 README,1.7,1.8
|
From: Hans-Bernhard B. <br...@us...> - 2007-01-07 12:33:50
|
Update of /cvsroot/cscope/cscope In directory sc8-pr-cvs4.sourceforge.net:/tmp/cvs-serv1888 Modified Files: ChangeLog README Log Message: Direct attention to security issues with webcscope. Index: ChangeLog =================================================================== RCS file: /cvsroot/cscope/cscope/ChangeLog,v retrieving revision 1.167 retrieving revision 1.168 diff -C2 -r1.167 -r1.168 *** ChangeLog 23 Oct 2006 12:37:36 -0000 1.167 --- ChangeLog 7 Jan 2007 12:33:46 -0000 1.168 *************** *** 1,9 **** 2006-10-23 Neil Horman <nh...@tu...> ! * src/main.c: Update sigwinch_handler to only register if ! linemode is not specified (SF bug 1574354) 2006-10-15 Hans-Bernhard Broeker <br...@ph...> ! * src/dir.c (accessible_file): New function to taste for file readability more strictly than just access(). (inviewpath): Use it to avoid unreadable files (directories, in --- 1,21 ---- + 2007-01-07 Hans-Bernhard Broeker <br...@ph...> + + * README: Add a warning about the intended user audience not + including superusers or anonymous ones. + + * contrib/webcscope/cscope: Find perl in /usr/bin, which should be + more likely as its installation position these days. Put a big + red reminder to the top of the generated HTML page warning about + the security issues involved with webcscope. Thanks to V-Li and + the Gentoo folks for the patch. + 2006-10-23 Neil Horman <nh...@tu...> ! ! * src/main.c: Update sigwinch_handler to only register if linemode ! is not specified (SF bug 1574354) 2006-10-15 Hans-Bernhard Broeker <br...@ph...> ! * src/dir.c (accessible_file): New function to test for file readability more strictly than just access(). (inviewpath): Use it to avoid unreadable files (directories, in *************** *** 12,15 **** --- 24,28 ---- 2006-10-10 Neil Horman <nh...@tu...> + * src/main.c: Updated sigwinch_handler to not run in the event that curses is not running to avoid crash (SF bug 1574354) Index: README =================================================================== RCS file: /cvsroot/cscope/cscope/README,v retrieving revision 1.7 retrieving revision 1.8 diff -C2 -r1.7 -r1.8 *** README 29 Jun 2001 16:42:56 -0000 1.7 --- README 7 Jan 2007 12:33:46 -0000 1.8 *************** *** 22,24 **** --- 22,31 ---- "INSTALL". + One thing to be pointed out is that this is ancient Unix software + predating much of today's security concerns. While we do try to + address safety issues as we learn about them, it must be said that + this is in no way hardened or secure software. It's designed to be + used by developers, not administrators or anonymous users. + Browse to http://cscope.sourceforge.net for more current information + |
