On Wed, 2011-03-02 at 02:21 -0800, Georges Dubus wrote:
>
> On 1 mar, 23:00, Tres Seaver wrote:
> >
> > I'm afraid the example doesn't defend against relative '..' at all.
> >
>
> That's what I would have thought, but http://localhost:6543/../
> redirects to http://localhost:6543/ (sorry, typo i
On Tue, Mar 01, 2011 at 01:35:46PM -0500, Tres Seaver wrote:
> > sorry for some kind of off-topic, but what's the status on repoze.who
> > 2.0? It seems a great piece of software, but why it's still in alpha
> > stage?
...
> Note that the core design, and much of the code, comes from r.who 1,
> whi
On 1 mar, 23:00, Tres Seaver wrote:
>
> I'm afraid the example doesn't defend against relative '..' at all.
>
That's what I would have thought, but http://localhost:6543/../
redirects to http://localhost:6543/ (sorry, typo in the previous
message). I thought this had something to do with virgin
