For reference, https://bugs.kde.org/show_bug.cgi?id=365083#c11 lists purely
technical issues with the proposed approach, and that serves as valid
(technical) reasons for not accepting the proposed patch.
2016-08-10 21:14 GMT+03:00 Daniel Nicoletti :
> Hi,
>
> I had the tedious reading of the bug
In kdepim repo,
$ git log -- ktimetracker
gives the following commit:
http://commits.kde.org/kdepim/cd0ee7e149270ce17d5fdab95b19adc960b80ad8
2015-03-25 18:31 GMT+03:00 Nikolay Shaplov :
> I have, may be a stupid question. Nevertheless I will ask it.
>
> I have a small patch for KTimeTracker whic
I was told that it is ok to send this to a public ML.
As it is now, OCS providers.xml file (
http://download.kde.org/ocs/providers.xml ) is served via http, which
breaks the https chain and allows a MitM attack replacing the actual
provider location url with malicious provider url. Or downgrading
