Subj : CVS commit web/html/formmail.ssjs
To   : All
From : rswindell
Date : Sat Mar 12 2005 08:50 pm

web/html formmail.ssjs 1.8 1.9
Update of /cvsroot/sbbs/web/html
In directory cvs.synchro.net:/tmp/cvs-serv6740

Modified Files:
	formmail.ssjs 
Log Message:
Strip control chars from query values used in the message header fields to
prevent insertion of \n to create false additiona header fields (a common
FormMail.pl security flaw).
The value format string is now configurable (use "%s: %s" to emulate
FormMail.pl).
Removed http_reply.fast = true (not necessary according to Deuce).


.