Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | A new list poster password has been implemented. This password may only | Mark Sapiro | 2011-04-25 | 1 | -0/+5 |
| | | | | | | be used in Approved: or X-Approved: headers for pre-approving posts. Using this password for that purpose precludes compromise of a more valuable password sent in plain text email. Bug #770581. | ||||
* | Strengthened escaping of user web data by including some characters that | Mark Sapiro | 2011-04-25 | 1 | -0/+3 |
| | | | | some older browsers misinterpret as < or >. | ||||
* | A new mm_cfg.py setting AUTHENTICATION_COOKIE_LIFETIME has been added. | Mark Sapiro | 2011-04-25 | 1 | -0/+5 |
| | | | | | | If this is set to a non-zero value, web authentication cookies will expire that many seconds following their last use. Its default value is zero to preserve current behavior. | ||||
* | Mailman now sets the 'secure' flag in cookies set via https URLs. | Mark Sapiro | 2011-04-25 | 1 | -0/+3 |
| | | | | Bug #770377. | ||||
* | Added a logout link to the admindb interface and made both admin and | Mark Sapiro | 2011-04-23 | 1 | -0/+4 |
| | | | | | admindb logout effective for a site admin cookie if allowed. Bug #769318. | ||||
* | Replaced old logos with new ones. | Mark Sapiro | 2011-04-23 | 1 | -0/+4 |
| | |||||
* | Changed bin/genaliases to only call the POSTFIX_*_CMD commands once when | Mark Sapiro | 2011-04-16 | 1 | -0/+3 |
| | | | | MTA = 'Postfix'. Bug #266408. | ||||
* | Added a report of the affected members to the warnings issued when | Mark Sapiro | 2011-04-14 | 1 | -0/+5 |
| | | | | | setting a list with digest members digestable=No and when setting a list with non-digest members nondigestable=no. Bug #761232. | ||||
* | Fixed a problem where content filtering could remove the headers from | Mark Sapiro | 2011-04-12 | 1 | -0/+3 |
| | | | | | an attached message/rfc822 part if the message in that part is multipart/alternative and collapse_alternatives is Yes. Bug #757062. | ||||
* | Changed the subscribe CGI to strip leading and trailing whitespace from | Mark Sapiro | 2011-03-29 | 1 | -0/+3 |
| | | | | the supplied email address. Bug #745432. | ||||
* | Changed the maximum number of arguments for the who command to be | Mark Sapiro | 2011-03-21 | 1 | -0/+4 |
| | | | | | considered administrivia from 2 to 1 to help avoid false positives. Bug #739524. | ||||
* | Added the list name as 'display-name' in added Sender: headers to help | Mark Sapiro | 2011-03-21 | 1 | -0/+3 |
| | | | | mitigate Outlook et al 'on behalf of' displays. Bug #736849. | ||||
* | An XSS vulnerability, CVE-2011-0707, has been fixed. | Mark Sapiro | 2011-02-18 | 1 | -0/+4 |
| | |||||
* | Fixed a typo in the usage() definition cron/gate_news. Bug #721015. | Mark Sapiro | 2011-02-17 | 1 | -0/+2 |
| | |||||
* | - Fixed an uncaught KeyError when poster tries to cancel a post which was | Mark Sapiro | 2011-02-07 | 1 | -0/+3 |
| | | | | already handled. Bug #266224. | ||||
* | - Held message user notifications now come From: list-owner instead of | Mark Sapiro | 2011-02-07 | 1 | -0/+3 |
| | | | | list-bounces. Bug #714424. | ||||
* | - A new mm_cfg.py setting RESPONSE_INCLUDE_LEVEL has been added to control | Mark Sapiro | 2011-02-07 | 1 | -0/+21 |
| | | | | | | | | | | | | | | | | | | | | how much of the original message is included in automatic responses to email commands. The default is 2 to preserve the prior behavior of including the full message. Setting this to 1 in mm_cfg.py will include only the original headers, and 0 will include none of the original. It is recommended to set this to 0 in mm_cfg.py to minimize the effects of backscatter. Bug #265835. - A new mm_cfg.py setting DEFAULT_RESPOND_TO_POST_REQUESTS has been added to control the default for respond_to_post_requests for new lists. It is set to Yes for backwards compatibility, but it is recommended that serious consideration be given to setting it to No. Bug #266051. - A new mm_cfg.py setting DISCARD_MESSAGE_WITH_NO_COMMAND has been added to control whether a message to the -request address without any commands or a message to -confirm whose To: address doesn't match VERP_CONFIRM_REGEXP is responded to or just logged. It defaults to Yes which is different from prior behavior. Bug #410236. | ||||
* | Issue an HTTP 404 status for private archive file not found. | Mark Sapiro | 2011-02-05 | 1 | -0/+2 |
| | |||||
* | @listname entries in *_these_nonmembers are no longer case sensitive. | Mark Sapiro | 2011-01-24 | 1 | -0/+3 |
| | | | | Bug #705715. | ||||
* | - Changed bin/rmlist to also remove heldmsg files for the removed list and | Mark Sapiro | 2011-01-13 | 1 | -0/+3 |
| | | | | fixed a problem with removal of stale locks for the list. Bug #700528. | ||||
* | - Fixed a bug where content filtering could leave a multipart message or | Mark Sapiro | 2011-01-13 | 1 | -0/+4 |
| | | | | | part with just one sub-part. These should be recast to just the sub-part. Bug #701558. | ||||
* | - Fixed a bug that could erroneously handle posts from addresses in | Mark Sapiro | 2011-01-13 | 1 | -0/+4 |
| | | | | | *_these_nonmembers and send held/rejected notices to bogus addresses when The From or other sender header is RFC 2047 encoded. Bug #702516. | ||||
* | - Updated contrib/mm-handler-2.1.10 to better handle lists with names that | Mark Sapiro | 2011-01-04 | 1 | -1/+4 |
| | | | | look like admin addresses. Bug #697161. | ||||
* | Added bounce recognition for a bogus Dovecot MDN. Bug #693134. | Mark Sapiro | 2010-12-22 | 1 | -0/+2 |
| | |||||
* | - Fixed a problem where an emailed command in the Subject: header with a | Mark Sapiro | 2010-12-04 | 1 | -0/+6 |
| | | | | | | | non-ascii l10n of an 'Re:' prefix is ignored. Bug #685261. - Fixed a problem with approving a post by email when the body of the approval mail is base64 encoded. Bug #677115. | ||||
* | - Fixed a missing format character in the Spanish translation. | Mark Sapiro | 2010-11-04 | 1 | -0/+12 |
| | | | | | | | Bug #670988. - Fixed the host name in the From: address of the owner notification from bin/add_members. Bug #666181. | ||||
* | Preparing 2.1.14 release. | Mark Sapiro | 2010-09-20 | 1 | -1/+1 |
| | |||||
* | Made minor wording improvements and typo corrections in some messages. | Mark Sapiro | 2010-09-10 | 1 | -1/+4 |
| | | | | Bug #426979. | ||||
* | Preparing 2.1.14rc1 release. | Mark Sapiro | 2010-09-09 | 1 | -1/+1 |
| | |||||
* | Two potential XSS vulnerabilities have been identified and fixed. | Mark Sapiro | 2010-09-09 | 1 | -0/+4 |
| | |||||
* | Fixed i18n._() to catch exceptions due to bad formats. Bug #632660. | Mark Sapiro | 2010-09-07 | 1 | -0/+2 |
| | |||||
* | Fixed admindb interface to decode base64 and quoted-printable encoded | Mark Sapiro | 2010-09-03 | 1 | -0/+3 |
| | | | | message body excerpts for display. Bug #629738. | ||||
* | Fixed a missing format character in the German bin/mailmanctl docstring. | Mark Sapiro | 2010-08-31 | 1 | -0/+2 |
| | |||||
* | Fixed web CGI tracebacks to properly report sys.path. Bug #615114. | Mark Sapiro | 2010-08-08 | 1 | -0/+2 |
| | |||||
* | Changed the member options login page unsubscribe request to include the | Mark Sapiro | 2010-07-27 | 1 | -0/+3 |
| | | | | requesters IP address in the confirmation request. Bug #610527. | ||||
* | Changed fix_url to lock the list if not locked. Bug #610364. | Mark Sapiro | 2010-07-27 | 1 | -0/+2 |
| | |||||
* | Updated Finnish translation from Joni Toyryla. | Mark Sapiro | 2010-07-24 | 1 | -0/+4 |
| | | | | | Changed English welcome message template to clarify that a password is only required to unsubscribe without confirmation. | ||||
* | Bounce processing has been enhanced so that if a bounce is returned to a | Mark Sapiro | 2010-07-11 | 1 | -0/+8 |
| | | | | | list from a non-member who is a member of a regular_include_list, the bounce will be processed as a bounce for the included list. | ||||
* | Merged optional Sender: header feature from lp:~mss/mailman/2.1-sender-header. | Mark Sapiro | 2010-07-03 | 1 | -1/+16 |
|\ | |||||
* | | Updated Finnish translation from Joni Toyryla. | Mark Sapiro | 2010-07-02 | 1 | -0/+2 |
|/ | |||||
* | Fixed an issue in admindb that could result in a KeyError and "we hit a | Mark Sapiro | 2010-06-25 | 1 | -0/+4 |
| | | | | | bug" response when a moderator acts on a post that had been handled by someone else after the first moderator had retrieved it. Bug #598671. | ||||
* | Fixed a bug which would fail to show a list on the admin and listinfo | Mark Sapiro | 2010-06-23 | 1 | -0/+3 |
| | | | | overview pages if its web_page_url contained a :port. Bug # 597741. | ||||
* | Fixed bin/genaliases to not throw TypeError when MTA = None. | Mark Sapiro | 2010-05-30 | 1 | -0/+3 |
| | | | | Bug #587657. | ||||
* | Provided the ability to specify in mm_cfg.py a local domain (e.g. | Mark Sapiro | 2010-05-10 | 1 | -0/+5 |
| | | | | | | 'localhost') for the local addresses in the generated virtual-mailman when MTA = 'Postfix'. See VIRTUAL_MAILMAN_LOCAL_DOMAIN in Defaults.py. Bug #328907. | ||||
* | Made a minor change to the removal of an Approved: pseudo-header from | Mark Sapiro | 2010-05-10 | 1 | -0/+4 |
| | | | | | a text/html alternative to allow for an inserted '\xA0' before the password. | ||||
* | Fixed Content Filtering collapse_alternatives to work on deeply nested | Mark Sapiro | 2010-05-06 | 1 | -1/+4 |
| | | | | multipart/alternative parts. Bug #576675. | ||||
* | Made a few corrections to some Polish templates. Bug #566731. | Mark Sapiro | 2010-04-19 | 1 | -0/+2 |
| | |||||
* | We now accept/remove X-Approved: and X-Approve: headers in addition to | Mark Sapiro | 2010-04-09 | 1 | -0/+3 |
| | | | | Approved: and Approve: for pre-approving posts. Bug ##557750. | ||||
* | Added roster to the CGIs that return HTTP 401 status for an authentication | Mark Sapiro | 2010-03-29 | 1 | -1/+2 |
| | | | | failure, and return HTTP 404 status from all CGIs for an invalid list name. | ||||
* | Made a minor change to the Chinese (China) message catalog. Bug #545772. | Mark Sapiro | 2010-03-25 | 1 | -0/+2 |
| |