2008/11/8 Andrea De Iacovo <[EMAIL PROTECTED]>: > > As for sure I can mention something in the readme file with the next > release.
Sure (OT: you may want to review the setup procedure too, because last time I checked it was not very clear). > >> >> > 5. the issue is related to wordpress only and does not influence other >> > parts of the system >> > 6. we can try to prepare a workaround while we wait an officile fix from >> > upstream: maybe I could implement a function to check out if dangerous >> > cookies are present and stop any other operation until those cookies are >> > not removed. >> >> You better not, that's how the GLOBALS DoS work. > > I think I did not explain this well. > GLOBALS DoS works because the application simply dies without explicit > errors or something like that. It works because it is incorrect. Being unclear is another problem, though. [...] > > Richard, the solution you suggested would make me modify the whole > wordpress code. For such great changes I think it's better to work with > upstream. The best solution is to respect the pourpose of GET, POST, and COOKIES. > > Thank you all. > > Cheers. > > Andrea > Cheers, -- Raphael Geissert - Debian Maintainer www.debian.org - get.debian.net Tallulah Bankhead - "If I had to live my life again, I'd make the same mistakes, only sooner." -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
