aboutsummaryrefslogtreecommitdiffstats
path: root/Mailman/Cgi/roster.py (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Corrected and augmented some security log messages.Mark Sapiro2018-12-301-2/+2
|
* Bump copyright dates.Mark Sapiro2018-06-171-1/+1
|
* Implement security log.Mark Sapiro2018-06-111-0/+7
|\
| * Improved logging of security related eventsJim Popovitch2018-06-061-0/+5
|/
* Defend against CGI requests with multiple values for the same parameter.Mark Sapiro2017-06-051-3/+3
|
* Fixed a TypeError thrown in the roster CGI when called with a listnameMark Sapiro2017-02-031-3/+3
| | | containing a % character.
* Catch TypeError from certain defective crafted POST requests.Mark Sapiro2016-07-141-2/+14
|
* - Added the list name to the vette log "held message approved" entry.Mark Sapiro2014-03-211-2/+2
| | | | | | | | | | (LP: 1295875) - Added the CGI module name to various "No such list" error log entries. (LP: 1295875) - Modified contrib/mmdsr to report module name if present in "No such list error log entries.
* Prevented setting user passwords with leading/trailing whitespace. Bug #778088.Mark Sapiro2011-05-091-3/+3
|
* Added roster to the CGIs that return HTTP 401 status for an authenticationMark Sapiro2010-03-291-0/+4
| | | | failure, and return HTTP 404 status from all CGIs for an invalid list name.
* Fixed a problem in Decorate which could throw a TypeError on conversion toMark Sapiro2008-12-071-6/+8
| | | | | | | | unicode of a header/footer that was already unicode because of interpolating a unicode value. Made a minor change to the authentication logic for displaying hidden members on the roster.
* - CGI/admin.pymsapiro2007-05-081-4/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The email address which forms a part of the various CGI data keys in the admin membership list is now urllib.quote()ed. This allows changing options for and unsubbing an address which contains a double-quote character. - CGI/admindb.py Added additional test to not display "Database Updated ..." when coming from the login page. - CGI/roster.py, HTMLFormatter.py Changed to show hidden members when authorization is site or list's admin or moterator password. Patch 1587651. - Defaults.py.in, Handlers/Cleanse_DKIM.py Added a new REMOVE_DKIM_HEADERS Defaults.py/mm_cfg.py setting (default = No) to control removing dkim/domainkey signatures from posts and mail to -owner. - Handlers/Decorate.py, Handlers/Scrubber.py Changed to preserve format=flowed and delsp=yes in the Content-Type: of the body when adding header/footer and when scrubbing attachments and to remove trailing spaces from the header/footer lines so they won't be flowed. Bug 1495122. Fixed a scrubber issue where the i18n translated 'next part' separator can be garbled if the list charset is different from the message. - Queue/Runner.py. Queue/Switchboard.py Now that we have .bak queue entries for recovery, it is no longer the case that an unparseable message is lost. In this case, and in case of other exceptions when dequeueing, I added a preservation feature to move the .bak file to qfiles/shunt as a .psv file and write an appropriate log entry. It is also possible for an attempt to shunt a message to fail. One example that occurred in practice (bug 1656289) was caused by a huge message that threw a MemoryError in processing and then threw another MemoryError in the attempt to pickle the message for the shunt queue. In this case as well, I log and attempt to preserve the original queue entry by renaming.
* FSF office has moved to 51 Franklin Street.tkikuchi2005-08-271-1/+1
|
* Backporting from the trunk.bwarsaw2003-02-081-9/+7
|
* This commit was manufactured by cvs2svn to create branch2003-01-021-0/+129
'Release_2_1-maint'.