next message in archive
next message in thread
previous message in archive
previous message in thread
Index of Subjects
Index of Subjects I have just committed a change to lynx which prevents a user from changing the name of their bookmark file from their settings page. (I just completely removed the option.) Let me know if this causes any problems. Carrie On Mon, May 26, 1997 at 09:02:09AM -0300, James Fifield wrote: > Through the settings page, I can set my bookmark file to be anything I choose. > > If I log out, and then log back in, I can then read that bookmark file, > (although I'm not yet sure if I'm able to write to it, it doesn't seem so). > > However, the point is that I am able to read any file in at least my home > directory. > > Fortunately, this will not allow certain key files to be compromised it seems, > for instance, $CS_ROOT/etc/htpasswd still seems to be unreadable, (i'm not sure > why), but that's a "GoodThing(tm)". > > Still, it's something to look at, perhaps we could "fix" the bookmark file > temporarily? > > -- > James Fifield > <fifield@ug.cs.dal.ca> >
next message in archive
next message in thread
previous message in archive
previous message in thread
Index of Subjects