--- smeserver-tw-logonscript-1.3/root/usr/lib/perl5/site_perl/esmith/FormMagick/Panel/ibayletters.pm.SecurityFixBatchEdit	2009-10-29 11:21:00.000000000 +1300
+++ smeserver-tw-logonscript-1.3/root/usr/lib/perl5/site_perl/esmith/FormMagick/Panel/ibayletters.pm	2009-11-04 13:30:35.000000000 +1300
@@ -20,7 +20,7 @@
 use CGI::Carp qw(fatalsToBrowser) ;
 use Data::Dumper;
 our @ISA = qw(esmith::FormMagick Exporter);
-
+use CGI::Carp qw(warningsToBrowser fatalsToBrowser);
 our @EXPORT = qw(
     print_ibay_table
     wherenext
@@ -190,6 +190,18 @@
             $group_name = $1;
         }
 
+        if(!getgrnam($group_name)){
+	    my ($sec,$min,$hour,$mday,$mon,$year,$wday,$yday,$isdst) = localtime(time);
+            open LOG, ">>/var/log/netlogon_error.log";
+	    print LOG ($year+1900)."-$mon-$mday at $hour:$min:$sec someone tried to create arbritrary files. Details below:\n";
+            foreach my $key (sort(keys(%ENV))) {
+                print LOG "$key = $ENV{$key}\n";
+            }
+            print LOG "----------------------------------------------\n";
+                die('hacking attempt');
+        }
+
+
 	my $batchfileName = "/home/e-smith/files/samba/netlogon/custom/$group_name.bat";