On Sun, Sep 13, 2009 at 12:32:48PM +0200, Toni Mueller wrote:
>
> Hi,
>
> On Sat, 05.09.2009 at 13:57:00 -0700, Ryan Boggs <rmbo...@gmail.com> wrote:
> > Has anyone else tested the attached diff yet? If so, are there any changes
> > that need to
> > be made before it can be committed? Please let me know so I can make the
> > necessary
> > adjustments.
>
> I'm just looking into it, after creating a simple-minded update myself,
> because I didn't look into this list first.
>
> The MESSAGE file has a reference to Django 1.0, which is not
> suitable for Django 1.1.
>
I will fix this and repost later today. Since there are no 1.1
specific docs, I will reference dev if that is ok.
>
> Slightly off-topic, but we should make an effort to get Django 1.1 into
> ports RSN, as both Django apps tend to depend on 1.1, and 1.0.2 has a
> known security hole. It should imho have been in 4.6, but I can blame
> myself for not spotting the problem and investing work myself in time,
> too.
>
Both of the 1.0.3 and 1.1 updates came well after the 4.6 ports lock so
I don't know if there was anything we could have done to get it in in
4.6.
>
> Kind regards,
> --Toni++
>
