fixed a security vulnerability

2012-11-19 23:59:53 +01:00 · 2012-11-19 23:59:53 +01:00 · a5ca0f9e67
parent 33bf9f7e1e
commit a5ca0f9e67
2 changed files with 3 additions and 1 deletions
--- a/auth.cfg.dist
+++ b/auth.cfg.dist
@ -1,3 +1,4 @@
+STRIP_RE = r'[()"\'&|<>=~!]+'
 LDAP_URL = 'ldap://ldap.hackerspace.pl'
 DN_STRING = 'uid=%s,ou=People,dc=hackerspace,dc=pl'
 FAIL_DELAY = 0.5 
--- a/auth.py
+++ b/auth.py
@ -32,8 +32,9 @@ def irc_nick():
    conn.start_tls_s()
    login,code = '', 401
    try:
+        nick = re.sub(app.config['STRIP_RE'], '', request.form['nick'])
        res = conn.search_s(app.config['IRC_BASEDN'], ldap.SCOPE_SUBTREE, 
-                app.config['IRC_LDAP_FILTER'] % request.form['nick'])
+                app.config['IRC_LDAP_FILTER'] % nick)
        if len(res) == 1:
            login = res[0][1]['uid'][0]
            code = 200