| Commit message (Expand) | Author | Files | Lines |
|---|
| 2016-02-02 | Added dmarc_non_moderation_action to list settings. | Mark Sapiro | 1 | -0/+9 |
| 2015-11-04 | Improvements based on feedback from Mark Sapiro | jimpop@template.hostname | 1 | -5/+3 |
| 2015-11-04 | Removed 2 development debugging lines | jimpop@template.hostname | 1 | -5/+0 |
| 2015-11-04 | Auto-Moderate Verbose Members | jimpop@template.hostname | 1 | -0/+26 |
| 2015-09-16 | Defended against a user submitting URLs with query fragments or POST | Mark Sapiro | 1 | -0/+16 |
| 2015-06-23 | Support for HTTP_X_FORWARDED_FOR and HTTP_FORWARDED_FOR (RFC 7239) | Jim Popovitch | 1 | -1/+5 |
| 2015-05-01 | The vette log entry for DMARC policy hits now contains the list name. | Mark Sapiro | 1 | -4/+4 |
| 2015-03-27 | Fix for path traversal vulnerability. | Mark Sapiro | 1 | -0/+6 |
| 2015-01-23 | Implemented the equivalent domains feature for list posting/moderation. | Mark Sapiro | 1 | -0/+34 |
| 2015-01-22 | A number of changes from the unofficial 2.2 branch have been backported to | Mark Sapiro | 1 | -1/+57 |
| 2014-09-21 | The options CGI now rejects all but HTTP GET and POST requests. | Mark Sapiro | 1 | -0/+5 |
| 2014-05-29 | If checking DNS for dmarc_moderation_action and DNS lookup is not | Mark Sapiro | 1 | -1/+5 |
| 2014-05-02 | Make dmarc_quarantine_moderaction_action a list setting. | Mark Sapiro | 1 | -3/+2 |
| 2014-05-02 | More fine tuning of dmarc_moderation_action. | Mark Sapiro | 1 | -8/+8 |
| 2014-04-19 | The new Utils.IsDMARCProhibited() used collections.defaultdict which | Mark Sapiro | 1 | -3/+2 |
| 2013-12-06 | Fixed email address validation to do a bit better in obscure cases. | Mark Sapiro | 1 | -3/+4 |
| 2013-11-08 | Added suuport for p=quarantine based on feedback from Franck Martin. | Jim Popovitch | 1 | -0/+5 |
| 2013-10-20 | Incorporated some feedback from Mark S. | Jim Popovitch | 1 | -1/+1 |
| 2013-03-18 | Handle CNAMEs when chasing DMARC TXT records. | Phil Pennock | 1 | -5/+44 |
| 2013-03-03 | Hold/Reject/Discard moderation support for Senders with a DMARC p=reject policy | Jim Popovitch | 1 | -0/+39 |
| 2011-11-13 | Strengthened the validation of email addresses. | Mark Sapiro | 1 | -8/+3 |
| 2011-09-15 | Strengthened the validation of email address domains. | Mark Sapiro | 1 | -0/+6 |
| 2011-05-01 | Made the web escaping of additional characters a configuration setting. | Mark Sapiro | 1 | -12/+6 |
| 2011-04-26 | Yet another change to the broken browser HTML escaping. | Mark Sapiro | 1 | -1/+2 |
| 2011-04-26 | Don't try converting non-ascii to HTML entities in unicode. | Mark Sapiro | 1 | -2/+5 |
| 2011-04-25 | Strengthened escaping of user web data by including some characters that | Mark Sapiro | 1 | -0/+8 |
| 2011-03-21 | Changed the maximum number of arguments for the who command to be | Mark Sapiro | 1 | -2/+2 |
| 2010-09-09 | Two potential XSS vulnerabilities have been identified and fixed. | Mark Sapiro | 1 | -93/+94 |
| 2009-08-01 | XSS protection in the web interface went too far in escaping HTML | Mark Sapiro | 1 | -1/+3 |
| 2009-07-31 | Backported several bug fixes from the 2.2 branch. | Mark Sapiro | 1 | -20/+21 |
| 2009-01-02 | Mailman/Utils.py | Mark Sapiro | 1 | -2/+2 |
| 2008-12-05 | Changed the regexp for Utils.suspiciousHTML to exempt the | Mark Sapiro | 1 | -1/+2 |
| 2008-11-12 | Apply Heiko Rommel's patch for hashlib deprecation warnings for bug 293178. | Barry Warsaw | 1 | -3/+14 |
| 2008-05-07 | Changed Utils.ValidateEmail to not allow specials (particularly ':') | Mark Sapiro | 1 | -2/+9 |
| 2007-12-04 | Mailman/Cgi/edithtml.py | Mark Sapiro | 1 | -0/+151 |
| 2007-11-25 | Mailman/Defaults.py.in | Mark Sapiro | 1 | -0/+3 |
| 2007-07-17 | Detect 'who' with 1 or 2 arguments as administrivia. | Mark Sapiro | 1 | -2/+2 |
| 2006-08-30 | CVE-2006-3636. Fixes for various cross-site scripting issues. Discovery by | bwarsaw | 1 | -1/+1 |
| 2006-07-30 | Back port Python 2.5 compatibility changes to Mailman 2.1. Specifically, | bwarsaw | 1 | -3/+5 |
| 2006-06-23 | - Decorate.py Fixed bug 1507248 by ignoring header/footer characters | msapiro | 1 | -2/+8 |
| 2006-03-18 | Improved fix for bug 1275856 to return host part of DEFAULT_URL if any from | msapiro | 1 | -7/+5 |
| 2006-03-12 | Fixed long standing bug (1275856) - get_domain() returned DEFAULT_EMAIL_HOST | msapiro | 1 | -3/+8 |
| 2005-08-27 | FSF office has moved to 51 Franklin Street. | tkikuchi | 1 | -1/+1 |
| 2005-01-16 | New names added to ACKNOWLEDGMENTS. Updated NEWS in preparation for 2.1.6b1. | bwarsaw | 1 | -1/+1 |
| 2005-01-11 | Sorry, leagality of '%' and '!' is a matter of MTA (of the user's). | tkikuchi | 1 | -1/+1 |
| 2005-01-11 | Add '%' and '!' in _badchars. They are used for source routing. | tkikuchi | 1 | -1/+1 |
| 2004-12-31 | Secure_MakeRandomPassword(): Log an error when secure passwords were requested | bwarsaw | 1 | -0/+3 |
| 2004-12-30 | From the NEWS file: | bwarsaw | 1 | -6/+45 |
| 2004-10-09 | [ 1030228 ] Mass Subscribe address with control character - can't delete | tkikuchi | 1 | -1/+1 |
| 2004-09-18 | More error handling for oneline(). | tkikuchi | 1 | -1/+2 |
