aboutsummaryrefslogtreecommitdiffstats
path: root/Mailman/Cgi/roster.py (unfollow)
Commit message (Collapse)AuthorFilesLines
2018-06-17Bump copyright dates.Mark Sapiro1-1/+1
2018-06-06Improved logging of security related eventsJim Popovitch1-0/+5
2017-06-05Defend against CGI requests with multiple values for the same parameter.Mark Sapiro1-3/+3
2017-02-03Fixed a TypeError thrown in the roster CGI when called with a listnameMark Sapiro1-3/+3
containing a % character.
2016-07-14Catch TypeError from certain defective crafted POST requests.Mark Sapiro1-2/+14
2014-03-21 - Added the list name to the vette log "held message approved" entry.Mark Sapiro1-2/+2
(LP: 1295875) - Added the CGI module name to various "No such list" error log entries. (LP: 1295875) - Modified contrib/mmdsr to report module name if present in "No such list error log entries.
2011-05-09Prevented setting user passwords with leading/trailing whitespace. Bug #778088.Mark Sapiro1-3/+3
2010-03-29Added roster to the CGIs that return HTTP 401 status for an authenticationMark Sapiro1-0/+4
failure, and return HTTP 404 status from all CGIs for an invalid list name.
2008-12-07Fixed a problem in Decorate which could throw a TypeError on conversion toMark Sapiro1-6/+8
unicode of a header/footer that was already unicode because of interpolating a unicode value. Made a minor change to the authentication logic for displaying hidden members on the roster.
2007-05-08- CGI/admin.pymsapiro1-4/+7
The email address which forms a part of the various CGI data keys in the admin membership list is now urllib.quote()ed. This allows changing options for and unsubbing an address which contains a double-quote character. - CGI/admindb.py Added additional test to not display "Database Updated ..." when coming from the login page. - CGI/roster.py, HTMLFormatter.py Changed to show hidden members when authorization is site or list's admin or moterator password. Patch 1587651. - Defaults.py.in, Handlers/Cleanse_DKIM.py Added a new REMOVE_DKIM_HEADERS Defaults.py/mm_cfg.py setting (default = No) to control removing dkim/domainkey signatures from posts and mail to -owner. - Handlers/Decorate.py, Handlers/Scrubber.py Changed to preserve format=flowed and delsp=yes in the Content-Type: of the body when adding header/footer and when scrubbing attachments and to remove trailing spaces from the header/footer lines so they won't be flowed. Bug 1495122. Fixed a scrubber issue where the i18n translated 'next part' separator can be garbled if the list charset is different from the message. - Queue/Runner.py. Queue/Switchboard.py Now that we have .bak queue entries for recovery, it is no longer the case that an unparseable message is lost. In this case, and in case of other exceptions when dequeueing, I added a preservation feature to move the .bak file to qfiles/shunt as a .psv file and write an appropriate log entry. It is also possible for an attempt to shunt a message to fail. One example that occurred in practice (bug 1656289) was caused by a huge message that threw a MemoryError in processing and then threw another MemoryError in the attempt to pickle the message for the shunt queue. In this case as well, I log and attempt to preserve the original queue entry by renaming.
2005-08-27FSF office has moved to 51 Franklin Street.tkikuchi1-1/+1
2003-02-08Backporting from the trunk.bwarsaw1-9/+7