[7083] in bugtraq
Re: More patch ideas for qpopper
daemon@ATHENA.MIT.EDU (Magne Oestlyngen)
Sun Jun 28 13:27:17 1998
Date: Sun, 28 Jun 1998 15:30:00 +0200
Reply-To: magne@SKYBERT.ORG
From: Magne Oestlyngen <magne@SKYBERT.ORG>
To: BUGTRAQ@NETSPACE.ORG
Aaron D. Gifford wrote:
>
> I noticed that popper.h had a #define for MAXPARMLEN but never used it. I
> decided it's a good idea and added it to my popper on top of some of the other
> patches I've seen here. I bumped up the MAXPARMLEN size to 16. So far on my
> FreeBDS-based system with only 5,000 users, I haven't noticed any problems
> yet.
> Is there a reason the qpopper folks didn't do this in the first place? The
> defined it, but never used it.
This would break APOP, which parameters are a username and a md5sum (32
bytes,
if I read the source correctly).
> Puzzled,
> Aaron out.
--
Systems Administrator, Internet Innherred as
Magne Oestlyngen <magne@skybert.org>
