changelog
- 11 months ago
- by Matthew Wild <mwild1@gmail.com> [Thu, 02 Jun 2011 15:23:58 +0100] rev 3029
- Merge 0.6->0.7
- 11 months ago
- by Matthew Wild <mwild1@gmail.com> [Thu, 02 Jun 2011 15:19:05 +0100] rev 3028
- xmlhandlers/xmppstream: Stop the parser when encountering restricted XML, completing the fix for the billion laughs attack
- 11 months ago
- by Matthew Wild <mwild1@gmail.com> [Thu, 02 Jun 2011 00:25:44 +0100] rev 3027
- Merge 0.6->0.7
- 11 months ago
- by Matthew Wild <mwild1@gmail.com> [Thu, 02 Jun 2011 00:23:41 +0100] rev 3026
- xmlhandlers: Don't restrict CDATA
- 11 months ago
- by Matthew Wild <mwild1@gmail.com> [Wed, 01 Jun 2011 23:25:24 +0100] rev 3025
- Merge 0.6->0.7
- 11 months ago
- by Matthew Wild <mwild1@gmail.com> [Wed, 01 Jun 2011 23:20:54 +0100] rev 3024
- xmlhandlers: Reject XML comments, processing instructions and (if supported by LuaExpat) DTDs. If not supported, log a warning. [Backport of 7cc426988bcc in trunk]
- 22 months ago
- by Matthew Wild <mwild1@gmail.com> [Fri, 23 Jul 2010 09:17:11 +0100] rev 3023
- certmanager: Don't disable LuaSec and future cert loading on failure, and add error messages to the no LuaSec/config cases (thanks Jakob)
- 22 months ago
- by Waqas Hussain <waqas20@gmail.com> [Sat, 03 Jul 2010 11:03:06 +0500] rev 3022
- mod_privacy: Add service discovery feature.
- 22 months ago
- by Matthew Wild <mwild1@gmail.com> [Fri, 02 Jul 2010 19:55:08 +0100] rev 3021
- mod_privacy: Return the correct item-not-found instead of bad-request when a non-existent list is activated by the client (thanks teo)
- 22 months ago
- by Matthew Wild <mwild1@gmail.com> [Fri, 02 Jul 2010 17:24:40 +0100] rev 3020
- net.server_select: Clean up buffer and fire drained callback on successful write before we try and start TLS negotiation (if negotiation fails instantly then we can be left without a handler to use for cleanup) (thanks dersd)
