 |
Return an error message for selectors containing two dots - geomyidae - A small… |
 |
git clone git://bitreich.org/geomyidae/ git://enlrupgkhuxnvlhsf6lc3fziv5h2hhfri… |
 |
Log |
|
Files |
|
Refs |
|
Tags |
|
README |
|
LICENSE |
|
--- |
|
commit ce4493bfe5e03be7d7366962600933b1178ebbfd |
|
parent 023fde401dd25419b07b1be7675f5b8c27f2fa80 |
|
Author: Christian Kellermann <[email protected]> |
|
Date: Thu, 22 Mar 2018 13:08:39 +0100 |
|
|
|
Return an error message for selectors containing two dots |
|
|
|
Signed-off-by: Christoph Lohmann <[email protected]> |
|
|
|
Diffstat: |
|
M main.c | 8 +++++++- |
|
|
|
1 file changed, 7 insertions(+), 1 deletion(-) |
|
--- |
|
diff --git a/main.c b/main.c |
|
@@ -62,6 +62,9 @@ char *htredir = "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n" |
|
" This page is for redirecting you to: <a href=\"%s\">%s</a… |
|
" </body>\n" |
|
"</html>\n"; |
|
+char *selinval ="3Happy helping ☃ here: " |
|
+ "Sorry, your selector contains '..'. That's illegal here.\tErr" |
|
+ "\tlocalhost\t70\r\n.\r\n\r\n"; |
|
|
|
int |
|
dropprivileges(struct group *gr, struct passwd *pw) |
|
@@ -174,8 +177,11 @@ handlerequest(int sock, char *base, char *ohost, char *por… |
|
recvb[0] = '/'; |
|
recvb[1] = '\0'; |
|
} |
|
- if (recvb[0] != '/' || strstr(recvb, "..")) |
|
+ |
|
+ if (recvb[0] != '/' || strstr(recvb, "..")){ |
|
+ dprintf(sock, selinval); |
|
return; |
|
+ } |
|
|
|
snprintf(path, sizeof(path), "%s%s", base, recvb); |
|
