e4cb191047
The code feeds the results of $session->config('me') to
sprintf as part of the format string. In practice, this is
probably not a problem since hostnames don't contain percent
signs. However, it triggers a taint warning in perl 5.10,
making cram-md5 auth unusable.
This patch rewrites the sprintf to insert the 'me' value
using a %s format specifier.
|
||
|---|---|---|
| .. | ||
| Apache | ||
| Danga | ||
| Qpsmtpd | ||
| Qpsmtpd.pm | ||