On Mon, Oct 08, 2007 at 12:33:06PM +0000, Stefan Cornelius wrote: > Hi, > > > The issue may appear in other places in your code (there is e.g. some > > unsafe seds calls). Though I must say I don't really know how to fix > > this minimally. > > my non-debian man page says: > -y passwdfile > Use complete contents of passwdfile as the password for simple > authentication. > > That and a temporary file with correct permissions should do the job here? > Haven't looked at the unsafe seds calls, though.
for the ldappasswd yes it can work this way (mkstemp will give the proper file, with the proper perms). FOr the sed calls it's less easy. I've not the time to fix that right now though. -- ·O· Pierre Habouzit ··O [EMAIL PROTECTED] OOO http://www.madism.org
pgpooDcIymLxR.pgp
Description: PGP signature
