The mailing list for listmasters using Sympa

[Chip Salzenberg <address@concealed>]

According to Hugo:
> Looking at sympa-2.5.2, I think the error is in src/Commands.pm, and
> should possibly change as in the attached patch; I'm not sure whether
> the '$which' address needs more validation before this is safe, though.

Well, since the body of the auth request is entirely generated by
sympa, it can't be used for spamming.  So I think it'll be OK.

Thanks!

> 
> Hugo
> --- src/Commands.pm.old       Tue Feb 15 08:44:29 2000
> +++ src/Commands.pm   Tue Mar  7 17:13:25 2000
> @@ -541,7 +541,7 @@
>       return 1;
>      }
>      if ($action =~ /request_auth/i) {
> -      List::request_auth ($sender,'sub',$which,$comment );
> +      List::request_auth ($which,'sub',$which,$comment );
>       do_log('info', 'SUB %s from %s authentified (%d seconds)', $which, 
> $sender,time-$time_command);
>       return 1;
>      }
> 

-- 
Chip Salzenberg              - a.k.a. -              <address@concealed>
"I wanted to play hopscotch with the impenetrable mystery of existence,
    but he stepped in a wormhole and had to go in early."  // MST3K