On Sun, Sep 16, 2001 at 09:28:34PM +0100, David Hopwood wrote: > It doesn't reopen that specific type of security hole, because irregular > UTF-8 sequences (as defined by Unicode 3.1) can only decode to characters above > 0xFFFF, and those characters are unlikely to be "special" for any application > protocol. What about directories? Directories can have arbitrary names, and need to be compared and checked. -- David Starner - [EMAIL PROTECTED] Pointless website: http://dvdeug.dhis.org "I don't care if Bill personally has my name and reads my email and laughs at me. In fact, I'd be rather honored." - Joseph_Greg
- Re: PDUTR #26 posted Mark Davis
- Re: PDUTR #26 posted Michael \(michka\) Kaplan
- RE: PDUTR #26 posted Carl W. Brown
- Re: PDUTR #26 posted David Hopwood
- Re: PDUTR #26 posted Michael \(michka\) Kaplan
- RE: PDUTR #26 posted Carl W. Brown
- RE: PDUTR #26 posted Carl W. Brown
- Re: PDUTR #26 posted Michael \(michka\) Kaplan
- Re: PDUTR #26 posted Markus Scherer
- Re: PDUTR #26 posted David Hopwood
- Re: PDUTR #26 posted David Starner
- Re: PDUTR #26 posted DougEwell2
- RE: PDUTR #26 posted Carl W. Brown
- Re: PDUTR #26 posted David Hopwood
- RE: PDUTR #26 posted Marco Cimarosti
- Re: PDUTR #26 posted DougEwell2
- Re: PDUTR #26 posted John Cowan
- Re: PDUTR #26 posted DougEwell2
- RE: PDUTR #26 posted Ayers, Mike
- Re: PDUTR #26 posted Michael \(michka\) Kaplan
- Re: PDUTR #26 posted jgo