index
:
mailman2
master
upstream/2.1
mirror of https://code.launchpad.net/~mailman-coders/mailman/2.1
git
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
Mailman
/
Utils.py
(
unfollow
)
Commit message (
Expand
)
Author
Files
Lines
2017-03-30
Fixed unexploitable XSS attach via crafted HTTP Host: header.
Mark Sapiro
1
-1
/
+1
2016-10-29
Fixed a typo and deleted an unreferenced assignment.
Mark Sapiro
1
-5
/
+2
2016-07-14
Match header_filter_rules as normalized unicodes.
Mark Sapiro
1
-0
/
+31
2016-05-04
Allow DMARC_ORGANIZATIONAL_DOMAIN_DATA_URL to be None or the null string.
Mark Sapiro
1
-0
/
+2
2016-04-09
Use rfind rather than find to find '@' for domain splitting.
Mark Sapiro
1
-1
/
+2
2016-04-09
Honor an organizational domain's DMARC sp= policy for sub-domains.
Mark Sapiro
1
-5
/
+14
2016-03-06
Better logging of DMARC lookup DNS exceptions.
Mark Sapiro
1
-1
/
+1
2016-02-26
Minor documentation clean up.
Mark Sapiro
1
-4
/
+5
2016-02-25
Lower case domains for the Organizational Domain fix.
Mark Sapiro
1
-3
/
+3
2016-02-25
Further refactoring of the Organizational Domain fix.
Mark Sapiro
1
-2
/
+1
2016-02-25
Refactored OrganizationalDomain fix.
Mark Sapiro
1
-17
/
+81
2016-02-24
If DMARC lookup fails to find a policy, also try the Organizational Domain.
Mark Sapiro
1
-4
/
+25
2016-02-02
Added dmarc_non_moderation_action to list settings.
Mark Sapiro
1
-0
/
+9
2015-11-04
Improvements based on feedback from Mark Sapiro
jimpop@template.hostname
1
-5
/
+3
2015-11-04
Removed 2 development debugging lines
jimpop@template.hostname
1
-5
/
+0
2015-11-04
Auto-Moderate Verbose Members
jimpop@template.hostname
1
-0
/
+26
2015-09-16
Defended against a user submitting URLs with query fragments or POST
Mark Sapiro
1
-0
/
+16
2015-06-23
Support for HTTP_X_FORWARDED_FOR and HTTP_FORWARDED_FOR (RFC 7239)
Jim Popovitch
1
-1
/
+5
2015-05-01
The vette log entry for DMARC policy hits now contains the list name.
Mark Sapiro
1
-4
/
+4
2015-03-27
Fix for path traversal vulnerability.
Mark Sapiro
1
-0
/
+6
2015-01-23
Implemented the equivalent domains feature for list posting/moderation.
Mark Sapiro
1
-0
/
+34
2015-01-22
A number of changes from the unofficial 2.2 branch have been backported to
Mark Sapiro
1
-1
/
+57
2014-09-21
The options CGI now rejects all but HTTP GET and POST requests.
Mark Sapiro
1
-0
/
+5
2014-05-29
If checking DNS for dmarc_moderation_action and DNS lookup is not
Mark Sapiro
1
-1
/
+5
2014-05-02
Make dmarc_quarantine_moderaction_action a list setting.
Mark Sapiro
1
-3
/
+2
2014-05-02
More fine tuning of dmarc_moderation_action.
Mark Sapiro
1
-8
/
+8
2014-04-19
The new Utils.IsDMARCProhibited() used collections.defaultdict which
Mark Sapiro
1
-3
/
+2
2013-12-06
Fixed email address validation to do a bit better in obscure cases.
Mark Sapiro
1
-3
/
+4
2013-11-08
Added suuport for p=quarantine based on feedback from Franck Martin.
Jim Popovitch
1
-0
/
+5
2013-10-20
Incorporated some feedback from Mark S.
Jim Popovitch
1
-1
/
+1
2013-03-18
Handle CNAMEs when chasing DMARC TXT records.
Phil Pennock
1
-5
/
+44
2013-03-03
Hold/Reject/Discard moderation support for Senders with a DMARC p=reject policy
Jim Popovitch
1
-0
/
+39
2011-11-13
Strengthened the validation of email addresses.
Mark Sapiro
1
-8
/
+3
2011-09-15
Strengthened the validation of email address domains.
Mark Sapiro
1
-0
/
+6
2011-05-01
Made the web escaping of additional characters a configuration setting.
Mark Sapiro
1
-12
/
+6
2011-04-26
Yet another change to the broken browser HTML escaping.
Mark Sapiro
1
-1
/
+2
2011-04-26
Don't try converting non-ascii to HTML entities in unicode.
Mark Sapiro
1
-2
/
+5
2011-04-25
Strengthened escaping of user web data by including some characters that
Mark Sapiro
1
-0
/
+8
2011-03-21
Changed the maximum number of arguments for the who command to be
Mark Sapiro
1
-2
/
+2
2010-09-09
Two potential XSS vulnerabilities have been identified and fixed.
Mark Sapiro
1
-93
/
+94
2009-08-01
XSS protection in the web interface went too far in escaping HTML
Mark Sapiro
1
-1
/
+3
2009-07-31
Backported several bug fixes from the 2.2 branch.
Mark Sapiro
1
-20
/
+21
2009-01-02
Mailman/Utils.py
Mark Sapiro
1
-2
/
+2
2008-12-05
Changed the regexp for Utils.suspiciousHTML to exempt the
Mark Sapiro
1
-1
/
+2
2008-11-12
Apply Heiko Rommel's patch for hashlib deprecation warnings for bug 293178.
Barry Warsaw
1
-3
/
+14
2008-05-07
Changed Utils.ValidateEmail to not allow specials (particularly ':')
Mark Sapiro
1
-2
/
+9
2007-12-04
Mailman/Cgi/edithtml.py
Mark Sapiro
1
-0
/
+151
2007-11-25
Mailman/Defaults.py.in
Mark Sapiro
1
-0
/
+3
2007-07-17
Detect 'who' with 1 or 2 arguments as administrivia.
Mark Sapiro
1
-2
/
+2
2006-08-30
CVE-2006-3636. Fixes for various cross-site scripting issues. Discovery by
bwarsaw
1
-1
/
+1
[next]