ANNOUNCE: Nagios Looking Glass 1.0.0#PRE is here!

Hans Wolters j.wolters at piramide.nl
Thu Dec 28 00:16:16 CET 2006


Hi,

> Subject: [Nagios-users] ANNOUNCE: Nagios Looking Glass 1.0.0#PRE is here!
 
> It's been a long road the last couple of weeks, but Nagios Looking Glass 
> 1.0.0#PRE is *now out* for public beta-testing.

I do not want to sound rude but could you please consider making it a bit
more sucure before you name it 1.0?

if (isset($_GET['fid']))
	{
		// check if we have already given a query string to $ServerFeedURL
		if (strpos($ServerFeed_URL, "?") === false)
		{
			$ServerFeed_URL = $ServerFeed_URL . "?fid=" . $_GET['fid'];
		} else {
			$ServerFeed_URL = $ServerFeed_URL . "&fid=" . $_GET['fid'];
		}
	}

In general it is not a good idea to pass untested variables into an url.

Best regards,

Hans Wolters
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.monitoring-lists.org/archive/users/attachments/20061228/8153dfdc/attachment.html>
-------------- next part --------------
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
-------------- next part --------------
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null


More information about the Users mailing list