[Pkg-nagios-devel] How to handle plugins with HTML output
Marc Haber
mh+pkg-nagios-devel at zugschlus.de
Sun May 4 07:22:46 UTC 2008
Hi,
I would like to solicit your opinion about #474967, where the bug
submitter complains that Nagios no longer passes HTML output of a
plugin verbatim to the web interface.
I am inclined to tag this bug "wontfix", as allowing HTML output to be
handed through from a plugin to the web interface might expose the web
interface to XSS and/or other attacks.
But alas, I don't know enough about web attacks to be an appropriate
judge for this.
Hence, I'd like to hear your opinion.
Greetings
Marc
--
-----------------------------------------------------------------------------
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834
Nordisch by Nature | How to make an American Quilt | Fax: *49 3221 2323190
More information about the Pkg-nagios-devel
mailing list