-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 26 Jan 00, at 10:49, Derek Callaway wrote:
> > I don't recommend applying that patch. Every line of it is wrong. It
> > makes qmail-popup less secure, by inserting a call to syslog(), which
> > is a security disaster. It also sucks in the string library, which
>
> What about the calls to syslog in qmail's splogger.c? Are they secure?
They are as secure as can be - if you really _need_ syslog logging,
do it through splogger. Everyone will suggest you to ditch splogger
and use cyclog instead.
-----BEGIN PGP SIGNATURE-----
Version: PGP 6.0.2 -- QDPGP 2.60
Comment: http://community.wow.net/grt/qdpgp.html
iQA/AwUBOI8ljVMwP8g7qbw/EQJAPgCdFFCKzuUaRvsNaDBhFMQjG8Rjb4cAn1GM
W6/3pjE+LZlX0tb4GklC2U9F
=M2oM
-----END PGP SIGNATURE-----
--
Petr Novotny, ANTEK CS
[EMAIL PROTECTED]
http://www.antek.cz
PGP key ID: 0x3BA9BC3F
-- Don't you know there ain't no devil there's just God when he's drunk.
[Tom Waits]
