search for: sanitising

I want to sanitise a phone number input. In my UsersController.rb file I have written a method that will take a string and reduce it to numbers only. This works find if I call it manually, but in the interests of keeping DRY I would like to ensure that the code sanitisation method is called whenever the data is edited (I''m using standard scaffolidng for this test). Is there anyway

...'-c', 'eval $(export -p); echo OK' ]) > > $ python test.py > ./dash: 1: export: test-test: bad variable name > > Of course the results can be more evil, if the environment variable > name is crafted, that it injects valid shell code. This patch fixes the issue by sanitising all environment variable names upon entry into the shell. Signed-off-by: Herbert Xu <herbert at gondor.apana.org.au> Signed-off-by: maximilian attems <max at stro.at> --- usr/dash/var.c | 3 ++- 1 files changed, 2 insertions(+), 1 deletions(-) diff --git a/usr/dash/var.c b/usr/da...

Hi Kostya, Evgenii, and David, Recently I've been making some incremental changes to the XRay runtime implementation in compiler-rt to reduce the reliance on the C++ standard library components that might have external linkage dependencies. This involves not using containers from the STL and not using non-trivially destructible C++11 thread_local objects. I was wondering whether the

Hi dear OpenBSD users, There is an early UBSan support for OpenBSD. Have already planned improvements (and will start looking what can be ported which in the case of OpenBSD won t be a lot) but at least there is a basis :-) Kind regards. -------------- next part -------------- An HTML attachment was scrubbed... URL:

> On 29 Jul 2016, at 21:58, David Chisnall <david.chisnall at cl.cam.ac.uk> wrote: > > On 29 Jul 2016, at 12:35, Dean Michael Berris <dean.berris at gmail.com> wrote: >> >> I understand this, but why isn't "the repo you're interested in" just the megarepo (or monorepo) where every LLVM project resides? > > Your assumption is a downstream

On 08/02/2023 12:48, Luke Barone via samba wrote: > hide unreadable = yes > > I was under the impression this was a very time consuming option in > domains. > > Just making myself an opticians appointment, how did I miss that ? Probably fixated on the bad sanitisation. Rowland

On Sat, Jul 30, 2016 at 2:26 AM, Robinson, Paul via llvm-dev < llvm-dev at lists.llvm.org> wrote: > > > Even then, are we seriously ignoring the fact that even if you did clone > > the whole repository including everything, that you can still build just > > the libc++ and sanitiser runtimes if you wanted to? > > Is it that easy to build a subset of a large

On Thu, 21 Mar 2024 21:07:52 +0530 Anantha Raghava via samba <samba at lists.samba.org> wrote: > Hi, > > We have Windows 10, 11, Server 2012R2, 2016, 2019 and 2022 as members > in our network. The issue happens randomly on different machines and > different Windows OS. Find the smb.conf below. > > # Global parameters [global] netbios name = PDC realm = XXXXXLTD.COM

Hi llvm-dev, I have unit tests set up in the XRay implementation (compiler-rt/lib/xray/tests/unit) following the pattern that the TSAN and other sanitiser unit tests. However, I'm running into the following problem: When I make changes to the runtime (in this case, XRay) and do `ninja all check-xray`, it seems that the unit tests don't get re-liked to the new version of the runtime. It

OpenSSH Security Advisory: x11fwd.adv This document may be found at: http://www.openssh.com/txt/x11fwd.adv 1. Affected configurations All versions of OpenSSH prior to 7.2p2 with X11Forwarding enabled. 2. Vulnerability Missing sanitisation of untrusted input allows an authenticated user who is able to request X11 forwarding to inject commands to xauth(1). Injection of xauth

Hello All, I would like to use OpenVPN with Samba 4 AD using the LDAP Auth plugin. However, my tests come up with the following errors in the OpenVPN... LDAP bind failed: Strong(er) authentication required (BindSimple: Transport encryption required.) Unable to bind as CN=VPN Connect,CN=Users,DC=MYDOMAIN,DC=COM LDAP connect failed. PLUGIN_CALL: POST

On 01/13/2015 09:23 AM, Rowland Penny wrote: > On 13/01/15 14:06, John Lewis wrote: >> On 01/13/2015 06:35 AM, Rowland Penny wrote: >>> On 13/01/15 11:33, John Lewis wrote: >>>> This morning I remapped gidNumber from primaryGroupID to gidNumber. I >>>> did that because I could not change the integer in primaryGroupID wit >>>> ldbedt as root.

> -----Original Message----- > From: llvm-dev [mailto:llvm-dev-bounces at lists.llvm.org] On Behalf Of Dean > Michael Berris via llvm-dev > Sent: Friday, July 29, 2016 5:04 AM > To: David Chisnall > Cc: LLVM Developers; Bruce Hoult > Subject: Re: [llvm-dev] [RFC] One or many git repositories? > > > > On 29 Jul 2016, at 21:58, David Chisnall <david.chisnall at

Hi folks, we've tried contacting Jean-Marc Valin but email address bounces. We published yesterday an advisory about libfishsound, you can find it at the following URL: http://www.ocert.org/advisories/ocert-2008-2.html The issues seems to affect Speex (since the code is the same) versions <= 1.1.12. While the 1.2beta branch is not vulnerable we advise that you fix with a security release

Also, I see the following repeated in syslog:- ==> syslog <== Aug 21 15:25:41 hostname01 winbindd[691]: [2017/08/21 15:25:41.438959, 0] ../source3/libsmb/cliconnect.c:1895(cli_session_setup_spnego_send) Aug 21 15:25:41 hostname01 winbindd[691]: Kinit for HOSTNAME01$@DOMAIN.LOCAL to access cifs/LOCAL_AD02.domain.local at DOMAIN.LOCAL failed: Cannot contact any KDC for requested realm

On 01/13/2015 10:41 AM, Rowland Penny wrote: > On 13/01/15 15:11, John Lewis wrote: >> On 01/13/2015 09:23 AM, Rowland Penny wrote: >>> On 13/01/15 14:06, John Lewis wrote: >>>> On 01/13/2015 06:35 AM, Rowland Penny wrote: >>>>> On 13/01/15 11:33, John Lewis wrote: >>>>>> This morning I remapped gidNumber from primaryGroupID to

On 15/06/2023 16:18, Tam?s N?meth via samba wrote: Hi Tamas, I have been reviewing you numerous posts on this list about this project, are you aware that you have been posting for 6 months ? In your last post there was this: [quote] this "piling up" of ACL information doesn't happen either on a native Windows file server or with vfs_acl_xattr [/quote] Does this mean you do not

On 10 May 2015 at 16:11, Jonathan Hunter <jmhunter1 at gmail.com> wrote: > OK, I've got a little further and I think I have tracked this down to > a reverse DNS issue - which was non-obvious to me, so here is a > write-up for the benefit of the archives. Just to close this off - I have now got sssd configured and working on my Samba4 DCs (well, if I'm being picky, I have it

Le 05/09/2018 à 18:32, Rowland Penny via samba a écrit : > On Wed, 5 Sep 2018 16:53:50 +0200 > Philippe Maladjian via samba <samba at lists.samba.org> wrote: > >> Hello, >> >> Indeed when I copied the result for the mailing I made a mistake. >> MY.DOMAIN is a dummy name. The result of the migration command is >> >> Reading smb.conf >>

On 29 Jul 2016, at 12:35, Dean Michael Berris <dean.berris at gmail.com> wrote: > > I understand this, but why isn't "the repo you're interested in" just the megarepo (or monorepo) where every LLVM project resides? Your assumption is a downstream user of LLVM. As previously pointed out, we have downstream users of libc++ and the sanitizer runtimes who compile with