> Richard add a -WWW option that makes available the files under the
> current directory. It's just a test tool, but still it should not
> allow anyone who can connect to the s_server port to obtain the
> contents of other local files; so we have to reject file names
> referencing directory "..".
Don't think about what you have to reject, that will screw you up
completely. Think only in terms if what you wish to allow.
DS
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
