| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
| |
Moritz Naumann and most of the repair work done by Mark Sapiro (with some
additional work by Barry).
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- In SecurityManager.py, fix the parsecookie() code to work with Python 2.5
generated cookie text. The latter was changed to be more RFC compliant so
it does not output trailing semicolons for each line of cookie text. This
broke the splitting rules, so now first split on newlines, then on ';\s*'.
This should work across all Python versions.
- In Python 2.5, exceptions are new-style, and thus are no longer of
ClassType. The instantiation type test in hold_for_approval() was too
naive. This one is fixed differently here than in the MM trunk because in
Python 2.1, 'type' isn't a type, it's a function and so can't be used as the
second argument to isinstance() directly.
- Raising strings generates deprecation warnings in Python 2.5. Switch the
one weird use of this in Utils.py to use a class exception. Don't call it
"quick exit" though because it's probably not.
|
|
|
|
|
|
|
|
| |
outside the character set of the list's language.
- Utils.py Fixed a security hole which allowed a crafted URI to inject
bogus apparent messages into the error log, possibly inducing an admin to
visit a phishing site.
|
|
|
|
| |
get_domain() if VIRTUAL_HOST_OVERVIEW off.
|
|
|
|
| |
instead of DEFAULT_URL_HOST is VIRTUAL_HOST_OVERVIEW was off.
|
| |
|
|
|
|
| |
Update copyright years for files changes in 2005. Whitespace normalization.
|
|
|
|
| |
Canceling last check in.
|
| |
|
|
|
|
| |
but urandom is not available.
|
|
|
|
|
|
|
|
|
|
| |
- Added the ability for Mailman generated passwords (both member and list
admin) to be more cryptographically secure. See new configuration
variables USER_FRIENDLY_PASSWORDS, MEMBER_PASSWORD_LENGTH, and
ADMIN_PASSWORD_LENGTH. Also added a new bin/withlist script called
reset_pw which can be used to reset all member passwords. Passwords
generated by Mailman are now 8 characters by default for members, and 10
characters for list administrators.
|
|
|
|
| |
Also, '/' can be used now.
|
| |
|
|
|
|
|
| |
utility function that returns a header in an i18n-safe way such that
it is guaranteed to span exactly one line.
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
'Release_2_1-maint'.
|