[Koha-devel] buildrelease
Pat Eyler
pate at eylerfamily.org
Sat Sep 21 16:12:02 CEST 2002
On Sat, 21 Sep 2002, Andrew Arensburger wrote:
> I've been looking at the 'buildrelease' script, and have a few
> comments and questions about it.
>
[many good points elided]
>
> If people tell me, "you found the bug, you fix it", I will.
>
I won't tell you to fix it, but I'll certainly applaud you if you do.
Do you have an account on sourceforge?
> Oh, and a general comment about Koha: none of these CGI
> scripts perform taint checks, even though they take user input. IMO
> this is a Bad Thing.
This is likely a good place to start workiong on making Koha more secure
(it needs it pretty badly, I'm sure).
-pate
>
> --
> Andrew Arensburger This message *does* represent the
> arensb at ooblick.com views of ooblick.com
> Reality? But there are DIRTY DISHES in Reality!
>
>
> -------------------------------------------------------
> This sf.net email is sponsored by:ThinkGeek
> Welcome to geek heaven.
> http://thinkgeek.com/sf
> _______________________________________________
> Koha-devel mailing list
> Koha-devel at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/koha-devel
>
More information about the Koha-devel
mailing list