Re: Security Hole found in gnump3d
Hello,
I removed the problem (for theme Tabular) by editing /usr/share/gnump3d/Tabular/error.html (or check your theme_directory in /etc/gnump3d/gnump3d.conf)
I merely removed the section which displays the header
<ul id="tabmenu">
<li><a href="/">Music</a></li>
<li><a href="/tagbrowse">Browse by Tag</a></li>
<li><a href="/playlist/">Custom Playlist</a></li>
<li><a href="/random">Random Selection</a></li>
<li><a href="/random/directory">Random Directory</a></li>
<li><a href="/prefs/">Preferences</a></li>
<li><a href="/search/">Search</a></li>
<li><a href="/statistics.html">Statistics</a></li>
<li><a href="/extras.html">Extras</a></li>
</ul>
So, these links are not displayed after an error.
Also, I edited gnump3d
Right after line: 1057
#
# Make sure the user is authorized to view this
# plugin.
#
# Don't do this if password protection is disabled.
#
my $pass = &getConfig( "enable_password_protection", 0 ); # <= line 1057
$pass = 1; # hardcode always check password
_______________________________________________ Gnump3d-users mailing list Gnump3d-users@... http://lists.gnu.org/mailman/listinfo/gnump3d-users
RSS Feed