Simo Sorce

Ah I see, you are running the WSGI app as a user, but auth happens always in apache way before stuff is send down to the pipe talking to the...

mod_auth_gssapi can't on its own, it would be a toggle somehow exposed by the gssproxy mechanism. But that mechanism is designed to be transparent to GSSAPI applications ... so ......

One thing we could do is to have the logging go to the parent process over a FD instead, and have the parent process collect it and commit it to...

Looks like this PR is making a massive amount of trivial changes. Can you please match the ignores already present in tox.ini ? I am all for more linters, but...

@levitte can you explain why an atexit handler would be needed in the first place? Is it used to do some module unloading for providers loaded at runtime? If that...

Note that all the problems (crashes) seen with atexit() will move to OPENSSL_cleanup() if nothing else is changed. The main issue here is that the cleanup functions are not following...

(of course those libraries should use their own contexts preferably, but freeing those contexts needs to be accounted for in the general design if OPENSSL_cleanup() is called before all the...

No, this is not how the race condition works. A malicious race condition works this way: 1) Open the socket but do not send any data. Important not the results...

On Thu, 2017-08-10 at 00:05 +0000, Alan Robertson wrote: > Thanks for the overview. > > I'm having trouble with this phrase. "Important not the results of > getpeercred() are...

Eh of course open() -> connect() above.