Andr� Malo wrote: > > * Kris Verbeeck wrote: > > > * htpasswd blindly processes the file you give it, and does no > > sanity checking before totally corrupting whatever file it was > > you thought you had. It should check the input file and bail > > if it finds non-comment lines that do not contain exactly 1 > > ':' character. > > Message-ID: <[EMAIL PROTECTED]> > > Sorry, if I'm too late, but this is a bad criterion, since the parser of > mod_auth/mod_authn_file uses the second colon as a delimiter and many > people put comments after it. > > The second colon is also /neccessary/ if you want plain text passwords > (e.g. under win32) that end with spaces... > [Yes, I've seen this already]
The current patch only bails out if there is no colon, so two colons should not be a problem. -- ir. Kris Verbeeck Development Engineer Ubizen - Ubicenter - Philipssite 5 - 3001 Leuven - Belgium T: +32 16 28 70 64 F: +32 16 28 70 77 Ubizen - We Secure e-business - www.ubizen.com
