diff options
author | bwarsaw <> | 2004-12-28 00:38:22 +0000 |
---|---|---|
committer | bwarsaw <> | 2004-12-28 00:38:22 +0000 |
commit | 5bb4d0e6b6ab4bbffa370154702526c9db7d4e92 (patch) | |
tree | 5a8a8a61b6cac607d97033803faeabfb1f674a14 /BUGS | |
parent | 85b5775abadcf6c543a66acb44b6acf7210ed8bb (diff) | |
download | mailman2-5bb4d0e6b6ab4bbffa370154702526c9db7d4e92.tar.gz mailman2-5bb4d0e6b6ab4bbffa370154702526c9db7d4e92.tar.xz mailman2-5bb4d0e6b6ab4bbffa370154702526c9db7d4e92.zip |
Close a potential cross-site scripting hole, discovered by Florian Weimer.
Initial patch provided by Florian, modified by Barry.
Also, turn STEALTH_MODE on by default. Most sites won't change this value
from its default, so we might as well use the more secure option. Also, if
STEALTH_MODE is turned off, but the websafe() function can't be imported, turn
STEALTH_MODE back on.
Diffstat (limited to 'BUGS')
0 files changed, 0 insertions, 0 deletions