From dd44c1db16d0ec9359f6403337bbff59f98a389b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?S=C3=A9bastien=20Helleu?= Date: Sat, 9 Mar 2019 17:51:40 +0100 Subject: relay: add extra forbidden commands in weechat protocol (issue #928) Commands were already forbidden (option relay.weechat.commands): - /exec - /upgrade - /quit These extra commands are now forbidden by default: - /fset - /set - /unset - /plugin - /script - /python - /perl - /ruby - /lua - /tcl - /guile - /javascript - /php - /secure --- doc/it/autogen/user/relay_options.adoc | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'doc/it') diff --git a/doc/it/autogen/user/relay_options.adoc b/doc/it/autogen/user/relay_options.adoc index 23c494af4..d990c1167 100644 --- a/doc/it/autogen/user/relay_options.adoc +++ b/doc/it/autogen/user/relay_options.adoc @@ -183,7 +183,7 @@ ** valore predefinito: `+""+` * [[option_relay.weechat.commands]] *relay.weechat.commands* -** descrizione: pass:none[comma-separated list of commands allowed/denied when input data (text or command) is received from a client; "*" means any command, a name beginning with "!" is a negative value to prevent a command from being executed, wildcard "*" is allowed in names; by default all commands are allowed except /exec, /upgrade and /quit (which could lead to denial of service or remote code execution if the client is not trusted)] +** descrizione: pass:none[comma-separated list of commands allowed/denied when input data (text or command) is received from a client; "*" means any command, a name beginning with "!" is a negative value to prevent a command from being executed, wildcard "*" is allowed in names; by default some commands are not allowed (they could lead to denial of service or remote code execution if the client is not trusted)] ** tipo: stringa ** valori: qualsiasi stringa -** valore predefinito: `+"*,!exec,!upgrade,!quit"+` +** valore predefinito: `+"*,!exec,!fset,!set,!unset,!plugin,!script,!python,!perl,!ruby,!lua,!tcl,!guile,!javascript,!php,!secure,!upgrade,!quit"+` -- cgit v1.2.3