|
[dokuwiki]
||
[Date Prev]
[06-2006 Date Index]
[Date Next]
||
[Thread Prev]
[06-2006 Thread Index]
[Thread Next]
[dokuwiki] Re: Security Tracker "bug", Request Patch
- From: Burton Rosenberg <burt@xxxxxxxxxxxx>
- To: dokuwiki@xxxxxxxxxxxxx
- Date: Fri, 2 Jun 2006 23:24:13 -0400
I take some of that back. RFC 2822 is particularly wide in the "dot-
atom" definition for a username.
-burt
On Jun 2, 2006, at 3:33 PM, Andreas Gohr wrote:
burt wrote:
Thanks. I think this is a good plan. However, I am concerned that
I don't end up running beta code, but keeping sync w/ the dev tree.
I don't recommend running devel releases on production servers.
Instead you should just fix security problems. Critical bugs are
always announced at the freshmeat announcement list together with a
link to a description on how to manually fix the problem. Usually a
fixed release (version number just gets a letter appended) is
provided for download as well.
However in this case the problem is considered non-critical as it
is only exploitable by admin users. Normal users could just hack
them self ;-)
See
http://bugs.splitbrain.org/?do=details&id=820
on how you could fix it your self.
Andi
--
DokuWiki mailing list - more info at
http://wiki.splitbrain.org/wiki:mailinglist
--
DokuWiki mailing list - more info at
http://wiki.splitbrain.org/wiki:mailinglist
|
|
