16 Aug
2006
16 Aug
'06
7:29 a.m.
Salut,
On Tue, Aug 15, 2006 at 11:39:15PM +0200, Steven Glogger wrote:
for the php users i've found a solution where i patched tha mail() function to not allow linefeeds etc. in header and to: lines. i've documented it some time ago here: http://wiki.hidden.ch/index.php/PHP#Patch_von_mail.c_f.FCr_mail.28.29-funkti on
The good thing about PHP's builtin input sanitizing and security functions is that they contain the majority of bugs. mail() is one of them. ;-)
Tonnerre