On Thu, 2007-09-06 at 23:36 +0200, Pierangelo Masarati wrote:
> Pierangelo Masarati wrote:
> I've noticed that in Squid's main code anything following "ERR" can be
> exploited, but there's no provision for extra stuff after "OK", which
> prevents exploitation of the warning part of password policy. This
> might not be important unless Squid has any means of reporting to the
> user that an account is about to expire; however, if there's consensus,
> I'd like to look also at allowing (and exploiting) this (optional) part
> of successful response messages.
Hi Pierangelo!
It sounds a good option to me; reporting it to the user is problematic
at the protocol level, but there could be advantages to having that
information available: it could be logged, for the benefit of the
administrator, it is in any case one step ahead in order to make it
available.
Kinkie
Received on Fri Sep 07 2007 - 01:53:37 MDT
This archive was generated by hypermail pre-2.1.9 : Mon Oct 01 2007 - 12:00:05 MDT