Add authentication check in getfiles to prevent file enumeration

FOGProject / fogproject

An open source computer cloning & management system

https://fogproject.org

GNU General Public License v3.0

1.09k stars 221 forks source link

Add authentication check in getfiles to prevent file enumeration #539

Closed 0x41c closed 1 year ago

0x41c commented 1 year ago

My branch merged very weirdly, to prevent commit clutter merge as squashed commit :)

Sebastian-Roth commented 1 year ago

@0x41c Can't find anywhere in the code that might be upset by this check. Though I don't know all of the code and can't be absolutely sure. Still going to merge to fix this leak.