index
:
mailman2
master
upstream/2.1
mirror of https://code.launchpad.net/~mailman-coders/mailman/2.1
git
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
Mailman
/
Utils.py
(
unfollow
)
Commit message (
Expand
)
Author
Files
Lines
2018-06-11
Support for verifying subscriber domains against the Spamhaus DBL
Jim Popovitch
1
-0
/
+22
2018-06-06
Improved logging of security related events
Jim Popovitch
1
-1
/
+5
2018-06-05
Extend BLOCK_SPAMHAUS_LISTED_IP_SUBSCRIBE for IPv6.
Mark Sapiro
1
-7
/
+21
2018-06-04
Restrict Spamhaus ZEN hits to SBL, CSS and XBL.
Mark Sapiro
1
-1
/
+1
2018-06-04
Added BLOCK_SPAMHAUS_LISTED_IP_SUBSCRIBE Feature
Mark Sapiro
1
-0
/
+21
2018-03-08
Added a few more badword checks to Utils.suspiciousHTML().
Mark Sapiro
1
-4
/
+27
2017-10-26
Updated i18n in preparation for 2.1.25 release.
Mark Sapiro
1
-2
/
+2
2017-10-07
Improved DMARC testing for domains with DNSSEC validation problems.
Mark Sapiro
1
-2
/
+14
2017-05-24
Changed member_verbosity_threshold from a >= test to a strictly > test.
Mark Sapiro
1
-2
/
+2
2017-03-30
Fixed unexploitable XSS attach via crafted HTTP Host: header.
Mark Sapiro
1
-1
/
+1
2016-10-29
Fixed a typo and deleted an unreferenced assignment.
Mark Sapiro
1
-5
/
+2
2016-07-14
Match header_filter_rules as normalized unicodes.
Mark Sapiro
1
-0
/
+31
2016-05-04
Allow DMARC_ORGANIZATIONAL_DOMAIN_DATA_URL to be None or the null string.
Mark Sapiro
1
-0
/
+2
2016-04-09
Use rfind rather than find to find '@' for domain splitting.
Mark Sapiro
1
-1
/
+2
2016-04-09
Honor an organizational domain's DMARC sp= policy for sub-domains.
Mark Sapiro
1
-5
/
+14
2016-03-06
Better logging of DMARC lookup DNS exceptions.
Mark Sapiro
1
-1
/
+1
2016-02-26
Minor documentation clean up.
Mark Sapiro
1
-4
/
+5
2016-02-25
Lower case domains for the Organizational Domain fix.
Mark Sapiro
1
-3
/
+3
2016-02-25
Further refactoring of the Organizational Domain fix.
Mark Sapiro
1
-2
/
+1
2016-02-25
Refactored OrganizationalDomain fix.
Mark Sapiro
1
-17
/
+81
2016-02-24
If DMARC lookup fails to find a policy, also try the Organizational Domain.
Mark Sapiro
1
-4
/
+25
2016-02-02
Added dmarc_non_moderation_action to list settings.
Mark Sapiro
1
-0
/
+9
2015-11-04
Improvements based on feedback from Mark Sapiro
jimpop@template.hostname
1
-5
/
+3
2015-11-04
Removed 2 development debugging lines
jimpop@template.hostname
1
-5
/
+0
2015-11-04
Auto-Moderate Verbose Members
jimpop@template.hostname
1
-0
/
+26
2015-09-16
Defended against a user submitting URLs with query fragments or POST
Mark Sapiro
1
-0
/
+16
2015-06-23
Support for HTTP_X_FORWARDED_FOR and HTTP_FORWARDED_FOR (RFC 7239)
Jim Popovitch
1
-1
/
+5
2015-05-01
The vette log entry for DMARC policy hits now contains the list name.
Mark Sapiro
1
-4
/
+4
2015-03-27
Fix for path traversal vulnerability.
Mark Sapiro
1
-0
/
+6
2015-01-23
Implemented the equivalent domains feature for list posting/moderation.
Mark Sapiro
1
-0
/
+34
2015-01-22
A number of changes from the unofficial 2.2 branch have been backported to
Mark Sapiro
1
-1
/
+57
2014-09-21
The options CGI now rejects all but HTTP GET and POST requests.
Mark Sapiro
1
-0
/
+5
2014-05-29
If checking DNS for dmarc_moderation_action and DNS lookup is not
Mark Sapiro
1
-1
/
+5
2014-05-02
Make dmarc_quarantine_moderaction_action a list setting.
Mark Sapiro
1
-3
/
+2
2014-05-02
More fine tuning of dmarc_moderation_action.
Mark Sapiro
1
-8
/
+8
2014-04-19
The new Utils.IsDMARCProhibited() used collections.defaultdict which
Mark Sapiro
1
-3
/
+2
2013-12-06
Fixed email address validation to do a bit better in obscure cases.
Mark Sapiro
1
-3
/
+4
2013-11-08
Added suuport for p=quarantine based on feedback from Franck Martin.
Jim Popovitch
1
-0
/
+5
2013-10-20
Incorporated some feedback from Mark S.
Jim Popovitch
1
-1
/
+1
2013-03-18
Handle CNAMEs when chasing DMARC TXT records.
Phil Pennock
1
-5
/
+44
2013-03-03
Hold/Reject/Discard moderation support for Senders with a DMARC p=reject policy
Jim Popovitch
1
-0
/
+39
2011-11-13
Strengthened the validation of email addresses.
Mark Sapiro
1
-8
/
+3
2011-09-15
Strengthened the validation of email address domains.
Mark Sapiro
1
-0
/
+6
2011-05-01
Made the web escaping of additional characters a configuration setting.
Mark Sapiro
1
-12
/
+6
2011-04-26
Yet another change to the broken browser HTML escaping.
Mark Sapiro
1
-1
/
+2
2011-04-26
Don't try converting non-ascii to HTML entities in unicode.
Mark Sapiro
1
-2
/
+5
2011-04-25
Strengthened escaping of user web data by including some characters that
Mark Sapiro
1
-0
/
+8
2011-03-21
Changed the maximum number of arguments for the who command to be
Mark Sapiro
1
-2
/
+2
2010-09-09
Two potential XSS vulnerabilities have been identified and fixed.
Mark Sapiro
1
-93
/
+94
2009-08-01
XSS protection in the web interface went too far in escaping HTML
Mark Sapiro
1
-1
/
+3
[next]