Dear django-developers, It seems that Django has now become the argument for NOT fixing this issue properly. Citing python-dev:
> For example, in the Django test > suite, the HTML output is different at each run. Web browsers may > render the web page differently, or crash, or ... I don't think that > Django would like to sort attributes of each HTML tag, just because we > wanted to fix a vulnerability. We all know browsers won't crash and they will render the page exactly the same. I volunteer to fix any issues in the test suite (considering the hash changes also between 32-bit/64-bit Python, i'm not sure there are even any or we would get a report on that, wouldn't we ?). I think it's important for the Django core team to voice their opinion on this matter in python-dev. Thank you!, Łukasz Rekucki -- You received this message because you are subscribed to the Google Groups "Django developers" group. To post to this group, send email to django-developers@googlegroups.com. To unsubscribe from this group, send email to django-developers+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/django-developers?hl=en.
