On 2008-11-21, Rainer Gerhards <[EMAIL PROTECTED]> wrote: > > Definitely. Though not a complete cure, the secpath-* property replacer > options prevent at least slashes inside programname. I know this is not > 100% bullet proof, but it should be applied. Otherwise, you don't need a > malicious user, a simple program error is sufficient to screw up things.
Oh, I didn't know about this one. Thanks! -jf _______________________________________________ rsyslog mailing list http://lists.adiscon.net/mailman/listinfo/rsyslog http://www.rsyslog.com
