[aur-dev] [PATCH] Fix for information leak in login logic.
Simo Leone
simo at archlinux.org
Wed Feb 20 06:08:06 EST 2008
On Mon, Feb 18, 2008 at 10:54:25PM -0500, Loui wrote:
>
> My patches and Eliott's info leak patch will cause a conflict, so
> you'll need to revert Eliott's before you apply mine. I'd recommend
> that soon after the release so there's a minimal chance of further
> conflict.
>
> Here's what she looks like after:
> http://git.louipc.dontexist.org/?p=aur;a=summary
>
Ok pushed to my working branch with conflict resolved.
There is, however, one minor issue. We have translated strings for all
the login errors already, however we dont use __() on them right now in
the template. We could just do something like __($login_error), but this
makes it impossible for the translation string scanner to look for the
strings that need translation.
Ideas?
-S
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://archlinux.org/pipermail/aur-dev/attachments/20080220/373d4592/attachment.pgp>
More information about the aur-dev
mailing list