From 23adc6b8821b05c2bb64068f0e561643f5bf967b Mon Sep 17 00:00:00 2001 From: "Jordan K. Hubbard" Date: Sun, 26 Feb 1995 23:28:00 +0000 Subject: [PATCH] I think the security check to invalidate ALL write requests was just a little excessive, and violates the specification defined in the manpage to boot. --- libexec/tftpd/tftpd.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/libexec/tftpd/tftpd.c b/libexec/tftpd/tftpd.c index 2c74e3d3afd3..7500abfc372b 100644 --- a/libexec/tftpd/tftpd.c +++ b/libexec/tftpd/tftpd.c @@ -375,11 +375,11 @@ validate_access(filep, mode) /* * Relative file name: search the approved locations for it. - * Don't allow write requests or ones that avoid directory + * Don't allow write requests that avoid directory * restrictions. */ - if (mode != RRQ || !strncmp(filename, "../", 3)) + if (!strncmp(filename, "../", 3)) return (EACCESS); /*