search for: sanitise

I want to sanitise a phone number input. In my UsersController.rb file I have written a method that will take a string and reduce it to numbers only. This works find if I call it manually, but in the interests of keeping DRY I would like to ensure that the code sanitisation method is called whenever the data is...

...el.org/?p=libs/klibc/klibc.git;a=commit;h=61d300672e0c1877482deed0f745b52ef306c7d3 Author: Herbert Xu <herbert at gondor.apana.org.au> AuthorDate: Sat, 25 Feb 2012 15:35:18 +0800 Committer: maximilian attems <max at stro.at> CommitDate: Mon, 2 Jul 2012 10:47:34 +0200 [klibc] [VAR] Sanitise environment variable names on entry On Tue, Feb 14, 2012 at 10:48:48AM +0000, harald at redhat.com wrote: > > "export -p" prints all environment variables, without checking if the > environment variable is a valid dash variable name. > > IMHO, the only valid usecase for &q...

...e XRay runtime implementation in compiler-rt to reduce the reliance on the C++ standard library components that might have external linkage dependencies. This involves not using containers from the STL and not using non-trivially destructible C++11 thread_local objects. I was wondering whether the sanitisers follow an explicit policy of not depending on the C++ standard library or avoiding linkage/ABI issues that come up when building the sanitisers with C++ standard library dependencies. If it does, do we document these policies somewhere? If we don't document it somewhere, does it make sense fo...

Hi dear OpenBSD users, There is an early UBSan support for OpenBSD. Have already planned improvements (and will start looking what can be ported which in the case of OpenBSD won t be a lot) but at least there is a basis :-) Kind regards. -------------- next part -------------- An HTML attachment was scrubbed... URL:

...etting everything else is in the noise. For a downstream user of libc++ who may want to contribute upstream, the overhead is huge. > Even then, are we seriously ignoring the fact that even if you did clone the whole repository including everything, that you can still build just the libc++ and sanitiser runtimes if you wanted to? Why is this "noise" of any importance to the users who get what they want and then some? I know some people use only numbered releases of LLVM and the projects. They can keep using those as long as LLVM provides them. Is it really impossible to just build non...

On 08/02/2023 12:48, Luke Barone via samba wrote: > hide unreadable = yes > > I was under the impression this was a very time consuming option in > domains. > > Just making myself an opticians appointment, how did I miss that ? Probably fixated on the bad sanitisation. Rowland

...n Sat, Jul 30, 2016 at 2:26 AM, Robinson, Paul via llvm-dev < llvm-dev at lists.llvm.org> wrote: > > > Even then, are we seriously ignoring the fact that even if you did clone > > the whole repository including everything, that you can still build just > > the libc++ and sanitiser runtimes if you wanted to? > > Is it that easy to build a subset of a large checked-out tree? I haven't > tried it but my impression is: not so much. Certainly the advertised > tactics for configuring/building don't tell you how to do that. Somebody > figuring out what it...

...additional information. > > Thanks & Regards, > When I said 'What OS', I meant the OS that you are running the AD DC on, not the clients. If your DC is really called 'PDC' then can I point out it isn't a PDC, that is something else entirely. If you are going to sanitise a smb.conf, then I suggest you sanitise everything. Is your dns domain really just 'ktkbankltd.com' ? If it is, is that dns domain reachable from the internet ? Is there any pattern to the non mapped SIDs ? Can I also point out that you appear to have 'workgroup' twice. Rowland

Hi llvm-dev, I have unit tests set up in the XRay implementation (compiler-rt/lib/xray/tests/unit) following the pattern that the TSAN and other sanitiser unit tests. However, I'm running into the following problem: When I make changes to the runtime (in this case, XRay) and do `ninja all check-xray`, it seems that the unit tests don't get re-liked to the new version of the runtime. It could be something obviously that I'm doing wrong...

...on, sshd(8) accepts an X11 authentication credential from the client. This credential is supplied to the xauth(1) utility to establish it for X11 applications that the user subsequently runs. The contents of the credential's components (authentication scheme and credential data) were not sanitised to exclude meta-characters such as newlines. An attacker could therefore supply a credential that injected commands to xauth(1). The attacker could then use a number of xauth commands to read or overwrite arbitrary files subject to file permissions, connect to local ports or perform attacks...

...so/PLUGIN_AUTH_USER_PASS_VERIFY status=1 PLUGIN_CALL: plugin function PLUGIN_AUTH_USER_PASS_VERIFY failed with status 1: /usr/lib/openvpn/openvpn-auth-ldap.so TLS Auth Error: Auth Username/Password verification failed for peer Has anyone else used OpenVPN with Samba 4 AD and if so, can I see your sanitised config please? Samba 4.7.6+dfsg~ubuntu-0ubuntu2.15 OpenVPN 2.3.10-1ubuntu2.2 Thanks, Paully

...w you set up samba. >>> Rowland >>> >> I took the defaults except for rfc2307 which I enabled. I am running >> Samba Version 4.1.11-Debian. > > Yes, but what as ?? an AD DC or in classic mode i.e. just like samba3 > Might be best if you post your smb.conf (sanitised ) > > Rowland I attached it to this email. -------------- next part -------------- # Global parameters [global] workgroup = OFLAMEO realm = D.OFLAMEO.COM netbios name = DRAKEBURNER server role = active directory domain controller dns forwarder = 192.168.2.1 idmap_ldb:use rfc2307 = ye...

...the noise. For a downstream user of libc++ who may > want to contribute upstream, the overhead is huge. > > > > Even then, are we seriously ignoring the fact that even if you did clone > the whole repository including everything, that you can still build just > the libc++ and sanitiser runtimes if you wanted to? Is it that easy to build a subset of a large checked-out tree? I haven't tried it but my impression is: not so much. Certainly the advertised tactics for configuring/building don't tell you how to do that. Somebody figuring out what it takes would be very con...

Hi folks, we've tried contacting Jean-Marc Valin but email address bounces. We published yesterday an advisory about libfishsound, you can find it at the following URL: http://www.ocert.org/advisories/ocert-2008-2.html The issues seems to affect Speex (since the code is the same) versions <= 1.1.12. While the 1.2beta branch is not vulnerable we advise that you fix with a security release

Also, I see the following repeated in syslog:- ==> syslog <== Aug 21 15:25:41 hostname01 winbindd[691]: [2017/08/21 15:25:41.438959, 0] ../source3/libsmb/cliconnect.c:1895(cli_session_setup_spnego_send) Aug 21 15:25:41 hostname01 winbindd[691]: Kinit for HOSTNAME01$@DOMAIN.LOCAL to access cifs/LOCAL_AD02.domain.local at DOMAIN.LOCAL failed: Cannot contact any KDC for requested realm

...Rowland >>>>> >>>> I took the defaults except for rfc2307 which I enabled. I am running >>>> Samba Version 4.1.11-Debian. >>> Yes, but what as ?? an AD DC or in classic mode i.e. just like samba3 >>> Might be best if you post your smb.conf (sanitised ) >>> >>> Rowland >> I attached it to this email. >> >> > > OK, so you are running samba4 as an AD DC, gidNumber definitely means > something and if you want to change a users primarygroup, you need to do > something like this: > > First give...

...ing POSIX ACLs with SaMBa is deprecated [/quote] As far as I am aware, using POSIX ACLs isn't deprecated, is it possible you can tell us where you found that information ? It might also be a good idea if we could see your present smb.conf, so please post the output of 'testparm -s' (sanitised if must). Rowland

...chown/chgrp thousands of files when I do that one) On these two separate machines (which were not ones I copied across idmap.ldb on (not that I'm using winbind now)), with a random test user (created some months ago, and which I have not used or tried to enumerate before), I get the following (sanitised) with sssd configured on each machine: [root at dc1 private]# id testuser uid=1528401182(testuser) gid=1528400513(domain users) groups=1528400513(domain users),1528402109(abc-test-ssh),1528402118(abc-test2-ssh),1528402646(users) and [root at dc2 ~]# id testuser uid=1528401182(testuser) gid=1528...

...error: NT_STATUS_BAD_NETWORK_NAME') >> Since my new samba server I tried to make a ldap request >> >> # ldapsearch -h ldap2 -xb "ou=Groups,dc=domain,dc=fr" -W -D >> "cn=Manager,dc=domain,dc=fr" cn="Backup Operators" > If you are going to sanitise an object, please use it everywhere. > > The upgrade is trying to use ldap2.my.domain > in the ldapsearch you use 'dc=domain,dc=fr' from which I would have > expected 'ldap2.domain.fr' my.domain is the internal dns domain name, it is also used by the current samba domai...

On 29 Jul 2016, at 12:35, Dean Michael Berris <dean.berris at gmail.com> wrote: > > I understand this, but why isn't "the repo you're interested in" just the megarepo (or monorepo) where every LLVM project resides? Your assumption is a downstream user of LLVM. As previously pointed out, we have downstream users of libc++ and the sanitizer runtimes who compile with