One thing which *may* be a problem for some (is for us anyway!) is the fact you can get a directory listing, not sure about RFC for this but we definately don't want it. I've modified v1.521 to remove this functionality for our environment. Just thought you may want to do the same in the tar here.
I've also had to add a little bit of code to get ACLs working correctly...
(from line 369 now reads..
{
if (iip >= cfig.hostRanges[j].rangeStart && iip <= cfig.hostRanges[j].rangeEnd)
{
allowed = 1;
break;
}
}
if ( allowed == 0 )
{
req.attempt = 255;
}
) apologies for the nasty hack.. I'm not a programmer by trade :)
Also when compiling 64bit on sparc (and tbh not sure if its my header files or what) using gcc, some of the log messages from the IP2String routine just return 0.0.0.0. Functioanlly it's spot on, just looks a bit odd in the logs!
Hope thats of help!
Cheers,
Matt
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Security gaps are continually found in a wide range of against infection programming and to plug them programming merchants issue patches - additionally called "fixes" or just doubtlessly "security refreshes" - to offer a prompt brisk fix answer for the issue or potentially an overall upgrade of the product.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Hiya There,
Top work this is a great app!
One thing which *may* be a problem for some (is for us anyway!) is the fact you can get a directory listing, not sure about RFC for this but we definately don't want it. I've modified v1.521 to remove this functionality for our environment. Just thought you may want to do the same in the tar here.
I've also had to add a little bit of code to get ACLs working correctly...
(from line 369 now reads..
{
if (iip >= cfig.hostRanges[j].rangeStart && iip <= cfig.hostRanges[j].rangeEnd)
{
allowed = 1;
break;
}
}
if ( allowed == 0 )
{
req.attempt = 255;
}
) apologies for the nasty hack.. I'm not a programmer by trade :)
Also when compiling 64bit on sparc (and tbh not sure if its my header files or what) using gcc, some of the log messages from the IP2String routine just return 0.0.0.0. Functioanlly it's spot on, just looks a bit odd in the logs!
Hope thats of help!
Cheers,
Matt
Hi Matt,
Thanks for posting.
I know that 0.0.0.0 bug, would fix it soon. However I am not clear, how do you get directory listing. Can you please explain.
Thanks Again
Achal
Hiya Achal,
Sure you just need to do a tftp get on \.
Cheers,
Matt
Security gaps are continually found in a wide range of against infection programming and to plug them programming merchants issue patches - additionally called "fixes" or just doubtlessly "security refreshes" - to offer a prompt brisk fix answer for the issue or potentially an overall upgrade of the product.