Subject: The mailing list for listmasters using Sympa
List archive
- From: Serge Aumont <address@concealed>
- To: Marco Gaiarin <address@concealed>
- Cc: address@concealed
- Subject: Re: [sympa-users] Security issue?
- Date: Tue, 20 Apr 2010 16:46:24 +0200
On 04/17/2010 09:34 PM, Marco Gaiarin wrote:
> I use sympa (debian lenny, 5.3.4-6.1) in my home server, really low
> traffic.
>
> Sometimes i catch on log:
> main::get_parameters() get_parameters: syntax error for parameter
> action value 'window.opener.location.href;' not conform to regexp ; dumped
> vars in /var/spool/sympa/tmp/sympa_dump.1271483478.26429
>
> Troubles?
>
>
Hi
This comes from a security check applyed on every incomming parameters.
This may be an simple user error, an attempt for some attack or an
errior from Sympa you can get more information on the context by
analysing the content of file
/var/spool/sympa/tmp/sympa_dump.1271483478.26429 . If needed, you can
check that this file doesn't contain confidential information and send
it to Sympa authors. We will check this is not a bug from Sympa.
Serge
-
[sympa-users] Security issue?,
Marco Gaiarin, 04/18/2010
- Re: [sympa-users] Security issue?, Serge Aumont, 04/20/2010
Archive powered by MHonArc 2.6.19+.