[Koha-bugs] [Bug 6627] [security] insecure file creation
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Thu Dec 22 20:16:27 CET 2011
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=6627
Chris Cormack <chris at bigballofwax.co.nz> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |chris at bigballofwax.co.nz
--- Comment #3 from Chris Cormack <chris at bigballofwax.co.nz> 2011-12-22 19:16:27 UTC ---
I actually told Duncan to just remove it as it was useless in it's current form
and insecure. It won't work with multiple sites on the same machine.
I think if people want a follow up putting the information in the DB, they
could write that. But I definitely do not think that warrants not stopping the
current very insecure practice.
So I posit very strongly, that we should accept this patch, then accept a
follow up later.
--
Configure bugmail: http://bugs.koha-community.org/bugzilla3/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA Contact for the bug.
You are watching all bug changes.
More information about the Koha-bugs
mailing list