aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--Mailman/SecurityManager.py2
-rw-r--r--Mailman/Utils.py2
2 files changed, 2 insertions, 2 deletions
diff --git a/Mailman/SecurityManager.py b/Mailman/SecurityManager.py
index 4ebb1fcd..b8707c1d 100644
--- a/Mailman/SecurityManager.py
+++ b/Mailman/SecurityManager.py
@@ -103,7 +103,7 @@ class SecurityManager:
# A bad system error
raise TypeError, 'No user supplied for AuthUser context'
secret = self.getMemberPassword(user)
- key += 'user+%s' % Utils.ObscureEmail(user)
+ key += 'user+%s' % Utils.ObscureEmail(user).replace('/','%2f')
elif authcontext == mm_cfg.AuthListModerator:
secret = self.mod_password
key += 'moderator'
diff --git a/Mailman/Utils.py b/Mailman/Utils.py
index dda90354..03575998 100644
--- a/Mailman/Utils.py
+++ b/Mailman/Utils.py
@@ -199,7 +199,7 @@ def LCDomain(addr):
# TBD: what other characters should be disallowed?
-_badchars = re.compile(r'[][()<>|;^,/\200-\377]')
+_badchars = re.compile(r'[][()<>|;^,\000-\037\177-\377]')
def ValidateEmail(s):
"""Verify that the an email address isn't grossly evil."""
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-22 19:25:32 +0000