diff options
author | Joey Hess <joeyh@joeyh.name> | 2016-09-27 20:22:53 -0400 |
---|---|---|
committer | Joey Hess <joeyh@joeyh.name> | 2016-09-27 20:24:31 -0400 |
commit | 758965d177d75f529bb88e24564a0bdb5e406fc6 (patch) | |
tree | 8632125811610fb7444784d10caf6441dcf792e7 /CHANGELOG | |
parent | 40ef6d76d4d50c48f103c2b94cd45c7647a25dbc (diff) | |
download | keysafe-758965d177d75f529bb88e24564a0bdb5e406fc6.tar.gz |
Filter out escape sequences and any other unusual characters when writing all messages to the console.
This should protect against all attacks where the server sends back a
malicious message.
Diffstat (limited to 'CHANGELOG')
-rw-r--r-- | CHANGELOG | 2 |
1 files changed, 2 insertions, 0 deletions
@@ -16,6 +16,8 @@ keysafe (0.20160923) UNRELEASED; urgency=medium to see what servers keysafe knows about, and as a cron job. * Server: Round number of objects down to the nearest thousand, to avoid leaking too much data about when objects are uploaded to servers. + * Filter out escape sequences and any other unusual characters when + writing all messages to the console. -- Joey Hess <id@joeyh.name> Fri, 23 Sep 2016 10:40:55 -0400 |