git.michaelhowe.org Git - packages/o/openafs.git/commit

author	D Brashear <shadow@your-file-system.com>
	Fri, 18 Jul 2014 20:00:12 +0000 (16:00 -0400)
committer	Stephan Wiesand <stephan.wiesand@desy.de>
	Thu, 13 Aug 2015 12:44:18 +0000 (08:44 -0400)
commit	0b4cad31128623b1cf381384b8cf50336a86be9c
tree	925c1279a576009fe5bbb7e779010f98f076c102	tree \| snapshot
parent	3803e6acbe625c3b298dde7a6f9d0fd560cfe635	commit \| diff

vlserver: limit use of regex to admins always

allow regexes only if the querying user is a superuser.
if the superuser uses up all the resources, well, they could just do
whatever damage directly anyway. means even in unrestricted mode
we are not vulnerable

Reviewed-on: http://gerrit.openafs.org/11968
Reviewed-by: Daria Brashear <shadow@your-file-system.com>
Reviewed-by: Mark Vitale <mvitale@sinenomine.net>
Tested-by: BuildBot <buildbot@rampaginggeek.com>
Reviewed-by: Benjamin Kaduk <kaduk@mit.edu>
(cherry picked from commit 049323e7e03c64f534a73ff452d218f19d5b8132)

Change-Id: I1e3f11bd14b071be69eb6e00c26ea2209596c82a
Reviewed-on: http://gerrit.openafs.org/11975
Tested-by: BuildBot <buildbot@rampaginggeek.com>
Reviewed-by: Mark Vitale <mvitale@sinenomine.net>
Reviewed-by: Michael Meffie <mmeffie@sinenomine.net>
Reviewed-by: Benjamin Kaduk <kaduk@mit.edu>
Reviewed-by: Stephan Wiesand <stephan.wiesand@desy.de>