Sorry for the public disclosure... I did email django security after I posted. I'm just getting into this open source goodness and I'm not really sure how it's supposed to operate yet.
I did consult the documentation: http://docs.djangoproject.com/en/dev/internals/contributing/ Jacob: I'm running django from SVN Python 2.6.2 I believe the Operating system is moot- it's all in the python. Linux kernel 2.6.31-11, but also 2.6.18.8 - I'm wondering if a multithreaded webserver setup would be more guarded against this sort of thing? On Oct 9, 2:18 pm, James Bennett <ubernost...@gmail.com> wrote: > Yes. > > We've confirmed the problem. We're working on a patch. > > In the meantime, everybody go meditate on the documentation for how to > report security issues. > > -- > "Bureaucrat Conrad, you are technically correct -- the best kind of correct." --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com To unsubscribe from this group, send email to django-users+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/django-users?hl=en -~----------~----~----~----~------~----~------~--~---
