From 315ab849e1b7e7e710ff79b6c70edebb5c8c3821 Mon Sep 17 00:00:00 2001 From: msapiro <> Date: Tue, 8 May 2007 03:16:04 +0000 Subject: - CGI/admin.py The email address which forms a part of the various CGI data keys in the admin membership list is now urllib.quote()ed. This allows changing options for and unsubbing an address which contains a double-quote character. - CGI/admindb.py Added additional test to not display "Database Updated ..." when coming from the login page. - CGI/roster.py, HTMLFormatter.py Changed to show hidden members when authorization is site or list's admin or moterator password. Patch 1587651. - Defaults.py.in, Handlers/Cleanse_DKIM.py Added a new REMOVE_DKIM_HEADERS Defaults.py/mm_cfg.py setting (default = No) to control removing dkim/domainkey signatures from posts and mail to -owner. - Handlers/Decorate.py, Handlers/Scrubber.py Changed to preserve format=flowed and delsp=yes in the Content-Type: of the body when adding header/footer and when scrubbing attachments and to remove trailing spaces from the header/footer lines so they won't be flowed. Bug 1495122. Fixed a scrubber issue where the i18n translated 'next part' separator can be garbled if the list charset is different from the message. - Queue/Runner.py. Queue/Switchboard.py Now that we have .bak queue entries for recovery, it is no longer the case that an unparseable message is lost. In this case, and in case of other exceptions when dequeueing, I added a preservation feature to move the .bak file to qfiles/shunt as a .psv file and write an appropriate log entry. It is also possible for an attempt to shunt a message to fail. One example that occurred in practice (bug 1656289) was caused by a huge message that threw a MemoryError in processing and then threw another MemoryError in the attempt to pickle the message for the shunt queue. In this case as well, I log and attempt to preserve the original queue entry by renaming. --- NEWS | 23 ++++++++++++++++++++++- 1 file changed, 22 insertions(+), 1 deletion(-) (limited to 'NEWS') diff --git a/NEWS b/NEWS index 0f554217..3d8c6d10 100644 --- a/NEWS +++ b/NEWS @@ -12,7 +12,9 @@ Here is a history of user visible changes to Mailman. - Changed cmd_who.py to list all members if authorization is with the list's admin or moderator password and to accept the password if the - roster is public. + roster is public. Also changed the web roster to show hidden members + when authorization is by site or list's admin or moderator password + (1587651). - Fixed OldStyleMemberships.py to preserve delivery statuses BYADMIN and BYUSER on a straight change of address (1642388). Also fixed a @@ -21,6 +23,25 @@ Here is a history of user visible changes to Mailman. - Fixed bin/withlist so that -r can take a full package path to a callable. + - Removal of DomainKey/DKIM signatures is now controlled by Defaults.py + mm_cfg.py variable REMOVE_DKIM_HEADERS (default = No). + + - format=flowed and delsp=yes are now preserved for message bodies when + message headers/footers are added and attachments are scrubbed + (1495122). + + - Queue runner processing is improved to log and preserve for analysis in + the shunt queue certain bad queue entries that were previously logged + but lost. Also, entries are preserved when an attempt to shunt throws + an exception (1656289). + + - The admin Membership List pages have been changed in that the email + address which forms a part of the various CGI data keys is now + urllib.quote()ed. This allows changing options for and unsubbing an + address which contains double-quote character, but it may require + changes to scripts that screen-scrape the web admin interface to + produce a membership list so they will report an unquoted address. + 2.1.9 (12-Sep-2006) Security -- cgit v1.2.3