[aur-dev] [PATCH] Fix for information leak in login logic.

Simo Leone simo at archlinux.org
Wed Feb 20 06:08:06 EST 2008

On Mon, Feb 18, 2008 at 10:54:25PM -0500, Loui wrote:
> My patches and Eliott's info leak patch will cause a conflict, so
> you'll need to revert Eliott's before you apply mine. I'd recommend
> that soon after the release so there's a minimal chance of further
> conflict.
> Here's what she looks like after:
> http://git.louipc.dontexist.org/?p=aur;a=summary

Ok pushed to my working branch with conflict resolved.

There is, however, one minor issue. We have translated strings for all
the login errors already, however we dont use __() on them right now in
the template. We could just do something like __($login_error), but this
makes it impossible for the translation string scanner to look for the
strings that need translation.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://archlinux.org/pipermail/aur-dev/attachments/20080220/373d4592/attachment.pgp>

More information about the aur-dev mailing list