Skip to content

v1.1.7

Choose a tag to compare

View all tags
@parasomni parasomni released this 17 Apr 18:42
· 52 commits to main-tree since this release
v1.1.7
644ada4
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

minor changes

  • removed unused modules, functions and variables
  • improved indentation

improved logging

Two new logging features are now implemented.
server_log tracks all client activities and writes it to /etc/ultron-server/{client_name}/.
server_main_log tracks all general interactions the server does and writes it to /etc/ultron-server/main-logs/{date}.txt.

patch of CWE-22 ('Path Traversal')

A missing file and directory validation of the backup, upload and remove feature could be exploited by adding /../ in front of the user input. This can overwrite or delete important server data. Therefore a new function is added to check if a potential threat does exist.

Assets 4
Loading