Subj : exec/imapservice.js exec/load/822header.js
To   : Git commit to main/sbbs/master
From : Deucе
Date : Mon Nov 11 2024 01:43:03

https://gitlab.synchro.net/main/sbbs/-/commit/830fb14ebae2ebb964528ea4
Modified Files:
	exec/imapservice.js exec/load/822header.js
Log Message:
Fix what appears to be a potential security hole (and some other stuff)

If the INI file could not be opened, a failure would be returned,
but authentication would (potentially) succeed.  I can't think of
a way to exploit this, but it's getting late.

Also, make some minor optimizations that won't make a difference yet,
and move opening the file into a single function.
--- SBBSecho 3.21-Linux
 * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

.