> >>>> Juergen Weigert <jw@suse.de> 7/29/2010 4:09 AM >>>
> >Looks good, so far.
>
> Thank you for double checking it. I just wanted to make sure that I
> wasn't leaving any stones unturned on this. I have moved the fix out to
> the production wiki about an hour ago, so that problem is resolved now.
The javascript thing just forwarded me to
https://wiki.opensuse.org/ICSLogin/auth-up
no matter if I enter correct or wrong values there.
At https://wiki.opensuse.org/ICSLogin/auth-up I see a strange message
Possible Phishing attempt!" />
Above the login field. The source has this:
<input type="hidden" name="message" value="Illegal URL Destination.<br><b><font color="red">Possible Phishing attempt!</font></b>" />
value="..." should see some proper escaping.
cheers,
JW-
--
o \ Juergen Weigert paint it green! __/ _=======.=======_
<V> | jw@suse.de back to ascii! __/ _---|____________\/
\ | 0911 74053-508 __/ (____/ /\
(/) | _____________________________/ _/ \_ vim:set sw=2 wm=8
SUSE LINUX Products GmbH, GF: Markus Rex, HRB 16746 (AG Nuernberg)
"Why would it be stupid to assume that a file can continue to be accessed by the
same name in the future?" Brion Vibber bwmo#15842#c12
--
To unsubscribe, e-mail: opensuse-wiki+unsubscribe@opensuse.org
For additional commands, e-mail: opensuse-wiki+help@opensuse.org
No comments:
Post a Comment