|
Eric Dziewa opened 10 years ago
|
|
Andrzej, are we okay with allowing directory navigation with this command? |
|
This commands are by default allowed to be executed only by server administrators, so I would say this is OK. %kobit - do you agree? |
|
I agree with Andrzej. An admin can even upload a new admin script which can do basically anything, so restricting directory navigation in this particular case does not help. |
| Type |
Bug
|
| Priority |
Normal
|
| Assignee | |
| RedmineID |
3100
|
| Version |
tigase-server-7.1.0
|
Child Issue
Parent Issue
Issue Votes (0)
Watchers (0)
Works.
Not sure if allowing admin to leave tigase-server directory is a good idea ie. ../../../etc/passwd.