Antwort: Re: clean_macro_chars() no longer called in utils.c in 2.0b1 ? [Virus scanned]

Sascha Runschke srunschke at abit.de
Fri Feb 11 00:29:06 CET 2005

Previous message: Problem accessing the web interface to the Nagios CVS ?
Next message: clean_macro_chars() no longer called in utils.c in 2.0b1 ?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>> Nagios 2.0b1 appears not to clean illegal characters from certain
>> macros as documented.
>
> You are correct.  The macro code was changed shortly before the beta 
> 1 release, and this one fell through the cracks.  I am posting a 
> patch to CVS shortly.

I'm still wondering if cleaning of unwanted chars is really the thing
to do. In my opinion it would be "more correct" to escape those
characters properly instead of just erasing them.
Some special characters might be needed for the actual output to
be readable and could get severely screwed up if characters get
totally stripped as in hampering the readability.

I am referring to an approach like for example PHP or most other
languages dealing with special characters (be it database in/output
or system calls), where you usually pipe the string through a
function like addslashes() which properly escapes unwanted characters.

Wouldn't that be much more feasible?

regards
        sash

--------------------------------------------------
Sascha Runschke
Netzwerk Administration
IT-Services

ABIT AG
Robert-Bosch-Str. 1
40668 Meerbusch

Tel.:+49 (0) 2150.9153.226
Mobil:+49 (0) 173.5419665
mailto:SRunschke at abit.de

http://www.abit.net
http://www.abit-epos.net
http://www.my-academy.net
--------------------------------------------------
Der Inhalt dieser Email sowie die Anhänge sind ausschließlich für den 
bezeichneten Adressaten bestimmt. Wenn Sie nicht der vorgesehene Adressat 
dieser Email oder dessen Vertreter sein sollten, so beachten Sie bitte, 
daß jede Form der Kenntnisnahme, Veröffentlichung,  Vervielfältigung oder 
Weitergabe des Inhalts dieser Email unzulässig ist. Wir möchten Sie 
außerdem darauf hinweisen, daß die Kommunikation per Email über das 
Internet unsicher ist, da fuer unberechtigte Dritte grundsätzlich die 
Möglichkeit der Kenntnisnahme und Manipulation besteht. Wenn Sie diese 
Nachricht versehentlich erhalten, informieren Sie bitte den Absender und 
löschen diese Nachricht mit den Anhängen. Herzlichen Dank

The information and any attachments contained in this email are intended 
solely for the addressee. Access to this email by anyone else is 
unauthorized. If you are not the intended recipient, any form of 
disclosure, reproduction, distribution or any action taken or refrained 
from in reliance on it, is prohibited and may be unlawful. We also like to 
inform you that communication via email over the internet is insecure 
because third parties may have the possibility to access and manipulate 
emails. If you have received the message in error, please advise the 
sender and delete the message and any attachments. Thank you very much.


-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_ide95&alloc_id396&op=click

Previous message: Problem accessing the web interface to the Nagios CVS ?
Next message: clean_macro_chars() no longer called in utils.c in 2.0b1 ?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Developers mailing list