https://gitlab.synchro.net/main/sbbs/-/commit/830fb14ebae2ebb964528ea4
Modified Files:
exec/imapservice.js exec/load/822header.js
Log Message:
Fix what appears to be a potential security hole (and some other stuff)
If the INI file could not be opened, a failure would be returned,
but authentication would (potentially) succeed. I can't think of
a way to exploit this, but it's getting late.
Also, make some minor optimizations that won't make a difference yet,
and move opening the file into a single function.
---
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net