Hi, The source code for htpasswd/htdigest contains the following note: > "NOTE! This program is not safe as a setuid executable! Do not make it > setuid!" Since many users won't be browsing the source code, this should be added to the "security considerations" of the respective man pages for those programs. Thanks.
Created attachment 19115 [details] adjust xml text
Fixed in /trunk/ and 2.2.x - thanks