Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Added 'legend' to the list of CSRF safe parameters for the admin CGI. | Mark Sapiro | 2012-10-30 | 1 | -1/+2 |
| | |||||
* | IncomingRunner now logs rejected messages to the vette log. | Mark Sapiro | 2012-10-21 | 1 | -0/+7 |
| | |||||
* | Fixed a bug where non-ascii characters in the real name in a subscription | Mark Sapiro | 2012-09-06 | 1 | -0/+4 |
| | | | | | request could throw a UnicodeEncodeError upon subscription approval and perhaps in other situations too. (LP: 1047100) | ||||
* | The query fragments send_unsub_notifications_to_list_owner and | Mark Sapiro | 2012-08-22 | 1 | -9/+7 |
| | | | | | send_unsub_ack_to_this_batch will now assume default values if not set in mass unsubscribe URLs. (LP: #1032378) | ||||
* | Fixed a typo in the UPGRADING doc - bin/upgrade -> bin/update. | Mark Sapiro | 2012-06-20 | 10 | -0/+0 |
| | |||||
* | Bumped for 2.1.15 release. | Mark Sapiro | 2012-06-13 | 1 | -3/+3 |
| | |||||
* | Tagging branch with: 2.1.15rc1 | Mark Sapiro | 2012-05-15 | 1 | -4/+4 |
| | |||||
* | Fixed a bug that could send an admin notice of a held subscription with | Mark Sapiro | 2012-05-13 | 1 | -0/+3 |
| | | | | | | the subject in the user's preferred language instead of the list's preferred language and possibly not properly RFC 2047 encoded. (LP: #998949) | ||||
* | Added the MailList.py change missing from rev. 1345. | Mark Sapiro | 2012-03-28 | 1 | -0/+1 |
| | |||||
* | Fixed a possible CPU bound loop in OutgoingRunner if the attempt to | Mark Sapiro | 2012-03-27 | 1 | -1/+2 |
| | | | | Connect to the SMTP server throws a socket.error. (LP: #966531) | ||||
* | Fixed a potential crash in the web UI if a language is removed from the | Mark Sapiro | 2012-03-27 | 1 | -1/+1 |
| | | | | LC_DESCRIPTIONS dictionary. (LP: #966565) | ||||
* | Added an Auto-Submitted: header to invitations and (un)subscription | Mark Sapiro | 2012-03-27 | 1 | -1/+13 |
| | | | | | confirmation requests to reduce the possibility of an autoresponder confirming the request. (LP: #265831) | ||||
* | Backported the password reminder from private archive login feature from the | Mark Sapiro | 2012-03-25 | 1 | -1/+22 |
| | | | | 2.2 branch. | ||||
* | Backported regular_exclude_ignore list attribute feature from 2.2 branch. | Mark Sapiro | 2012-03-25 | 5 | -1/+21 |
| | |||||
* | Stopped removing the trailing slash from the List-Archive: header URL. | Mark Sapiro | 2012-03-24 | 1 | -2/+0 |
| | | | | (LP: #964190) | ||||
* | Added a few more safe_params to the CSRF check. | Mark Sapiro | 2012-02-23 | 1 | -1/+2 |
| | |||||
* | Subscription disabled warnings are now sent without a Precedence: | Mark Sapiro | 2012-02-17 | 2 | -5/+6 |
| | | | | header. Bug #808821. | ||||
* | Backported 2.2 branch fix for a problem in SpamDetect.py that could | Mark Sapiro | 2012-02-05 | 1 | -36/+20 |
| | | | | cause header_filter_rules to fail to match RFC 2047 encoded headers. | ||||
* | Added Tokio Kikuchi's Cross-site Request Forgery hardening to the admin UI. | Mark Sapiro | 2012-02-05 | 4 | -9/+114 |
| | |||||
* | Fix for bug #629738 could cause a crash in the admindb details display | Mark Sapiro | 2011-12-31 | 1 | -1/+3 |
| | | | | | if the decoded message body contained characters not in the character set of the list's preferred language. Fixed. Bug #910440. | ||||
* | Added recognition for another Qmail bounce. | Mark Sapiro | 2011-12-25 | 1 | -2/+3 |
| | |||||
* | Fixed an erroneous seek in the Mailman.Mailbox.Mailbox.AppendMessage | Mark Sapiro | 2011-12-12 | 1 | -3/+4 |
| | | | | | method that could cause a corrupt mailbox for files opened 'w+'. Bug #901957. | ||||
* | A held message with a null sender caused a crash in the admindb | Mark Sapiro | 2011-11-29 | 1 | -1/+3 |
| | | | | | interface. This is fixed by changing the sender to <missing>. Bug #897103. | ||||
* | Added some missing German templates from Egon Frerich. | Mark Sapiro | 2011-11-27 | 1 | -0/+0 |
| | |||||
* | Removed Python 2.5 dependency from fix for Bug #770377. | Mark Sapiro | 2011-11-26 | 1 | -2/+2 |
| | |||||
* | Changed subject prefixing to allow for possible whitespace between an | Mark Sapiro | 2011-11-22 | 1 | -2/+2 |
| | | | | | 'Re' and the following colon when determining how to add the prefix. Bug #893290. | ||||
* | Fixed a problem where topics regexps would not match RFC 2047 encoded | Mark Sapiro | 2011-11-17 | 1 | -4/+13 |
| | | | | Keywords: and/or Subject: headers. Bug #891676. | ||||
* | Strengthened the validation of email addresses. | Mark Sapiro | 2011-11-13 | 1 | -8/+3 |
| | |||||
* | Fixed misleading response to an email approval of a held message. | Mark Sapiro | 2011-11-13 | 2 | -4/+15 |
| | | | | Bug #889968. | ||||
* | Added masthead.txt to the list of templates that can be edited via the | Mark Sapiro | 2011-11-12 | 1 | -1/+2 |
| | | | | web admin interface. Bug #266805. | ||||
* | Changed the way digest_footer is added to the RFC 1153 (plain) format | Mark Sapiro | 2011-11-11 | 1 | -7/+8 |
| | | | | digest for RFC compliance. Bug #887610. | ||||
* | The fix for BUG #266220 (sf1181161) has been enhanced so that if there | Mark Sapiro | 2011-10-13 | 1 | -1/+18 |
| | | | | | | is a pathological HTML part such that the Approved: password text isn't found, but it is found after stripping out HTML tags, the post is rejected with an informative message. | ||||
* | - Mailman/Gui/General.py | Mark Sapiro | 2011-10-04 | 2 | -3/+18 |
| | | | | | | | | Fixed the setting of new_member_options so that unprocessed bits are not changed. Augmented the logic so that bin/config_list can set or reset any bits in mm_cfg.OPTINFO. Bug #865825. - Mailman/Defaulys.py.in Added missing bits to OPTINFO. | ||||
* | Eliminated the list cache from the qrunners. Indirect self-references | Mark Sapiro | 2011-09-29 | 1 | -17/+12 |
| | | | | | | caused lists to never be dropped from the cache which in turn caused the qrunners to grow very large in installations with many lists or multiple large lists. Bug #862683. | ||||
* | A problem with the logic avoiding unnecessarily reloading a current list | Mark Sapiro | 2011-09-29 | 1 | -3/+12 |
| | | | | | | | object from the config.pck arises if the list is updated by another process within the same second that it was last read/written. That can cause the reading of latest version of the list to be skipped. This has been fixed. Bug #862675. | ||||
* | Strengthened the validation of email address domains. | Mark Sapiro | 2011-09-15 | 1 | -0/+6 |
| | |||||
* | Added Greek translation from Antonis Limperis. | Mark Sapiro | 2011-09-15 | 1 | -0/+1 |
| | |||||
* | The user options 'list my other subscriptions' page now indicates for | Mark Sapiro | 2011-06-07 | 1 | -0/+6 |
| | | | | each list if the subscription is 'nomail' or 'digest'. Bug #793669. | ||||
* | Fixed a problem which could result in raw, undecoded message bodies | Mark Sapiro | 2011-06-02 | 1 | -4/+7 |
| | | | | appearing in plain digests and archives. Bug #787790. | ||||
* | Fixed a problem in admindb.py where the character set for the display of | Mark Sapiro | 2011-05-10 | 1 | -1/+8 |
| | | | | the message body excerpt was not correctly determined. Bug #779751. | ||||
* | Prevented setting user passwords with leading/trailing whitespace. Bug #778088. | Mark Sapiro | 2011-05-09 | 3 | -10/+10 |
| | |||||
* | Made the web escaping of additional characters a configuration setting. | Mark Sapiro | 2011-05-01 | 2 | -12/+31 |
| | |||||
* | Since context may be AuthUser, we must refresh the cookie where we have a user. | Mark Sapiro | 2011-04-26 | 1 | -2/+2 |
| | |||||
* | Yet another change to the broken browser HTML escaping. | Mark Sapiro | 2011-04-26 | 1 | -1/+2 |
| | |||||
* | Don't try converting non-ascii to HTML entities in unicode. | Mark Sapiro | 2011-04-26 | 1 | -2/+5 |
| | |||||
* | Don't redefine existing authentication contexts. | Mark Sapiro | 2011-04-25 | 1 | -2/+2 |
| | |||||
* | A new list poster password has been implemented. This password may only | Mark Sapiro | 2011-04-25 | 6 | -6/+50 |
| | | | | | | be used in Approved: or X-Approved: headers for pre-approving posts. Using this password for that purpose precludes compromise of a more valuable password sent in plain text email. Bug #770581. | ||||
* | Strengthened escaping of user web data by including some characters that | Mark Sapiro | 2011-04-25 | 1 | -0/+8 |
| | | | | some older browsers misinterpret as < or >. | ||||
* | A new mm_cfg.py setting AUTHENTICATION_COOKIE_LIFETIME has been added. | Mark Sapiro | 2011-04-25 | 2 | -1/+10 |
| | | | | | | If this is set to a non-zero value, web authentication cookies will expire that many seconds following their last use. Its default value is zero to preserve current behavior. | ||||
* | Mailman now sets the 'secure' flag in cookies set via https URLs. | Mark Sapiro | 2011-04-25 | 1 | -1/+6 |
| | | | | Bug #770377. |