Menu
▾
▴
[ppa-help] [ phppgadmin-Bugs-3589376 ] phppgadmin is providing version info
|
From: SourceForge.net <no...@so...> - 2012-11-28 04:33:46
|
Bugs item #3589376, was opened at 2012-11-23 02:40 Message generated for change (Comment added) made by xzilla You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=418980&aid=3589376&group_id=37132 Please note that this message will contain a full copy of the comment thread, including the initial issue submission, for this request, not just the latest update. Category: Security >Group: GIT Status: Open Resolution: None Priority: 5 Private: No Submitted By: Gandalf (gandalf001) >Assigned to: Robert Treat (xzilla) >Summary: phppgadmin is providing version info Initial Comment: Hi, I think its security bug to provide php version info and phppgadmin to anonymous user. So please change line 20 from intro.php to: <h1><?php echo "$appName ?></h1> ---------------------------------------------------------------------- >Comment By: Robert Treat (xzilla) Date: 2012-11-27 20:33 Message: I understand your concern, and it seems legit, but the information can be useful for us (which is why we added it iirc). I was thinking maybe we would just alter it so that if you have the "extra login security" flag true (the default) we would hide it, but if not, we would display it. thoughts? ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=418980&aid=3589376&group_id=37132 |
