filename checks = wrong filename report
Scott Silva
ssilva at sgvwater.com
Thu Jul 10 18:38:32 IST 2008
on 7-10-2008 10:30 AM Matt Kettler spake the following:
> Scott Silva wrote:
>> on 7-9-2008 3:19 PM Matt Kettler spake the following:
>>> See, nothing happened, did it? Even if it was thousands of characters
>>> long, it would be no different, because it's in the body text.
>> How about when that longscaryfilename..... gets sent to syslog. That
>> is another reason to sanitize the names.
>
> But in the example posted to this thread syslog gets the unsanitized
> version..
>
> It is only the in-body text report which gets the sanitized version.
> This seems a bit backwards to me.
>
>
Julian probably just sanitized everything to reduce code complexity. Much
easier then another 1000 lines of code to figure out IF something can be bad.
--
MailScanner is like deodorant...
You hope everybody uses it, and
you notice quickly if they don't!!!!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 258 bytes
Desc: OpenPGP digital signature
Url : http://lists.mailscanner.info/pipermail/mailscanner/attachments/20080710/5d995b62/signature.bin
More information about the MailScanner
mailing list