> CVSROOT: /cvs > Module name: src > Changes by: [email protected] 2013/10/09 17:42:17 > > Modified files: > usr.bin/ssh : sftp-server.8 sftp-server.c > > Log message: > Add ability to whitelist and/or blacklist sftp protocol requests by name. > Refactor dispatch loop and consolidate read-only mode checks. > Make global variables static, since sftp-server is linked into sshd(8). > > ok dtucker@ >
http://googleonlinesecurity.blogspot.co.uk/2013/10/going-beyond-vulnerability-rewards.html This was fired over the mozilla sec list. Does this mean you/OpenBSD/your company could have been paid for this work? -- _______________________________________________________________________ 'Write programs that do one thing and do it well. Write programs to work together. Write programs to handle text streams, because that is a universal interface' (Doug McIlroy) In Other Words - Don't design like polkit or systemd _______________________________________________________________________
