*** Joins: soustruh (~Miranda@ip-86-49-121-75.net.upcbroadband.cz) | 02:17 | |
*** Quits: kirillka (~Miranda@124-72-52-95.baltnet.ru) (Remote host closed the connection) | 02:26 | |
*** Joins: Cupertino (~Cupez@62-177-158-122.dsl.bbeyond.nl) | 02:34 | |
*** Quits: Cupertino (~Cupez@62-177-158-122.dsl.bbeyond.nl) (Changing host) | 02:34 | |
*** Joins: Cupertino (~Cupez@unaffiliated/cupertino) | 02:34 | |
*** Quits: siebrand (~siebrand@5353A6DC.cm-6-4c.dynamic.ziggo.nl) (Quit: siebrand) | 02:41 | |
*** Joins: soc42 (~soc42@f052032123.adsl.alicedsl.de) | 02:43 | |
*** Joins: giallu (~giallu@fedora/giallu) | 02:59 | |
*** Joins: Rixie (~Rixie@188.177.20.182) | 03:18 | |
*** Quits: Cesare (~Adium@creati59.lnk.telstra.net) (Quit: Leaving.) | 03:53 | |
*** Quits: soc42 (~soc42@f052032123.adsl.alicedsl.de) (Remote host closed the connection) | 03:55 | |
*** Joins: siebrand (~siebrand@188.200.34.66) | 04:15 | |
*** Joins: asm89 (~asm89@unaffiliated/asm89) | 05:25 | |
*** Quits: dhx1 (~anonymous@60-242-108-164.static.tpgi.com.au) (Remote host closed the connection) | 05:47 | |
asm89 | i have to say | 05:52 |
---|---|---|
asm89 | creating a plugin for mantis requires a bit of digging through the source and other plugins | 05:52 |
asm89 | but beyond that, it works quite ok :) | 05:52 |
*** Parts: automaciej (~automacie@cl-1008.ham-02.de.sixxs.net) () | 06:07 | |
*** Joins: dhx1 (~anonymous@60-242-108-164.static.tpgi.com.au) | 06:11 | |
GitHub138 | [mantisbt] davidhicks force-pushed next from ed74dae to a2b7a21: http://bit.ly/nnCPAt | 06:23 |
GitHub138 | [mantisbt/next] Move config files to application/config directory. This will be out of the web tree once restructuring is complete. - Daryn Warriner | 06:23 |
GitHub138 | [mantisbt/next] Move core files to application/core. The .htaccess file will not be needed as this will not be reachable - Daryn Warriner | 06:23 |
GitHub138 | [mantisbt/next] Move Soap api to application/services/soap. - Daryn Warriner | 06:23 |
*** Quits: giallu (~giallu@fedora/giallu) (Ping timeout: 250 seconds) | 06:52 | |
*** Joins: Rixie_ (~Rixie@188.177.20.182) | 07:11 | |
*** Quits: Rixie (~Rixie@188.177.20.182) (Ping timeout: 260 seconds) | 07:15 | |
*** Rixie_ is now known as Rixie | 07:15 | |
*** Quits: dhx1 (~anonymous@60-242-108-164.static.tpgi.com.au) (Remote host closed the connection) | 08:32 | |
*** Joins: dhx1 (~anonymous@60-242-108-164.static.tpgi.com.au) | 08:33 | |
*** Joins: asm89- (~asm89@unaffiliated/asm89) | 08:44 | |
*** Quits: asm89 (~asm89@unaffiliated/asm89) (Ping timeout: 250 seconds) | 08:46 | |
jreese | asm89-: thanks, I tried :P | 09:20 |
*** Parts: Rixie (~Rixie@188.177.20.182) () | 09:21 | |
asm89- | jreese: tried what? :) | 09:31 |
jreese | 05:52 < asm89> creating a plugin for mantis requires a bit of digging through the source and other plugins | 09:32 |
jreese | 05:52 < asm89> but beyond that, it works quite ok :) | 09:32 |
* jreese wrote the plugin system ;) | 09:32 | |
asm89- | ah ok! | 09:34 |
asm89- | well nice :) | 09:34 |
*** asm89- is now known as asm89 | 09:34 | |
dhx1 | jreese: *sigh*... more bogus "vulnerabilities": http://packetstormsecurity.org/files/104149 | 09:45 |
jreese | lol "MantisBT CMS" :P | 09:45 |
dhx1 | jreese: I'm sure the hacking group is really l33t either way... | 09:46 |
dhx1 | the only time we use 'mbadmin' anywhere in the source code is: | 09:46 |
dhx1 | if ( file_exists( 'mantis_offline.php' ) && !isset( $_GET['mbadmin'] ) ) { | 09:46 |
jreese | I'm not even sure what the second word of their group name is supposed to be | 09:47 |
dhx1 | and apparently that is an SQL injection vulnerability... ?!? | 09:47 |
dhx1 | lol | 09:47 |
jreese | looks an awful lot like a butt to me | 09:47 |
dhx1 | well the XSS issue is valid... | 09:48 |
dhx1 | I don't know where they got the SQL injection thing from | 09:48 |
jreese | yeah, 'mbadmin' doesn't even show up anywhere else in the code base | 09:49 |
jreese | and it only even checks if it's set, it never actually uses the value | 09:49 |
jreese | kids these days... | 09:49 |
*** Joins: daryn (~daryn@h158.249.190.173.static.ip.windstream.net) | 09:59 | |
dhx1 | filter_api sucks! | 10:10 |
jreese | lol | 10:11 |
daryn | dhx1, yes it does | 10:11 |
dhx1 | seriously... code reuse?!? anyone? | 10:12 |
dhx1 | no wonder it's 1000000 LoC | 10:12 |
jreese | that wasn't invented yet | 10:12 |
daryn | dhx1, it appears that code reuse was attempted several times but all the duplicates were not removed for whatever reason | 10:13 |
daryn | i even found multiple functions doing exactly the same thing | 10:13 |
dhx1 | lol yeah | 10:13 |
daryn | i think i removed those some time back though | 10:14 |
*** Joins: giallu (~giallu@fedora/giallu) | 10:30 | |
*** Quits: giallu (~giallu@fedora/giallu) (Remote host closed the connection) | 10:30 | |
*** Joins: giallu (~giallu@88.149.241.228) | 10:31 | |
*** Quits: giallu (~giallu@88.149.241.228) (Changing host) | 10:31 | |
*** Joins: giallu (~giallu@fedora/giallu) | 10:31 | |
GitHub51 | [mantisbt] davidhicks pushed 1 new commit to master: http://bit.ly/pKayZM | 11:02 |
GitHub51 | [mantisbt/master] Fix #13245: XSS issues with search.php parameters - David Hicks | 11:02 |
dhx1 | jreese: can we push 1.2.7 ASAP? | 11:04 |
dhx1 | let me update documentation ;) | 11:04 |
jreese | yeah, if you can update the release notes and update core/constants, I'll try to get around to it sometime today or tomorrow | 11:04 |
*** Quits: Cupertino (~Cupez@unaffiliated/cupertino) (Quit: I give up...) | 11:06 | |
dhx1 | jreese: can I tag 1.2.7 or would you rather do that? | 11:15 |
GitHub84 | [mantisbt] davidhicks pushed 2 new commits to master-1.2.x: http://bit.ly/pF6yTu | 11:15 |
GitHub84 | [mantisbt/master-1.2.x] Fix #13245: XSS issues with search.php parameters - David Hicks | 11:15 |
GitHub84 | [mantisbt/master-1.2.x] Bump version to 1.2.7 and update release notes - David Hicks | 11:15 |
*** Quits: asm89 (~asm89@unaffiliated/asm89) (Quit: bye!) | 11:35 | |
*** Joins: joru (~joru@c-6da270d5.12-8-64736c11.cust.bredbandsbolaget.se) | 11:58 | |
joru | howdy, gr8 software | 12:01 |
joru | is it possible to add a custom status type? | 12:01 |
joru | (using the gui/admin account and not going into code base) | 12:01 |
joru | I am also curious about the possibility to publish images from a phone as an attachment to an issue? (e.g. sketches/diagrams/concepts) | 12:10 |
joru | do you imagine this could be a tough thing to do using the api? | 12:10 |
jreese | dhx1: if you have a publicly available GPG key associated with the same address you use for your git commits, then you can tag it using `git tag -s release-x.x.x -m "Stable release x.x.x"` | 12:19 |
*** Joins: Paul24 (~IceChat09@2001:470:9310:aaaa:3957:95c3:54d6:4d45) | 12:27 | |
jreese | joru: adding custom statuses requires editing local configuration and language files | 12:28 |
Paul24 | lo john | 12:29 |
jreese | http://docs.mantisbt.org/master/en/administration_guide/admin.customize.status.html | 12:29 |
*** Quits: micahg (~micahg@ubuntu/member/micahg) (Ping timeout: 246 seconds) | 13:13 | |
*** Quits: siebrand (~siebrand@188.200.34.66) (Quit: siebrand) | 13:14 | |
joru | jreese: ok, that sounds fair to me | 13:18 |
*** Joins: siebrand (~siebrand@188.200.34.66) | 13:21 | |
*** Joins: micahg (~micahg@ubuntu/member/micahg) | 13:22 | |
*** Joins: soc42 (~soc42@f052211032.adsl.alicedsl.de) | 14:49 | |
*** Quits: siebrand (~siebrand@188.200.34.66) (Quit: siebrand) | 16:34 | |
*** Quits: soc42 (~soc42@f052211032.adsl.alicedsl.de) (Remote host closed the connection) | 16:55 | |
*** Quits: daryn (~daryn@h158.249.190.173.static.ip.windstream.net) (Quit: Ex-Chat) | 18:13 | |
*** Quits: joru (~joru@c-6da270d5.12-8-64736c11.cust.bredbandsbolaget.se) (Remote host closed the connection) | 18:30 | |
*** Quits: giallu (~giallu@fedora/giallu) (Ping timeout: 260 seconds) | 18:53 | |
*** Joins: Cesare (~Adium@creati59.lnk.telstra.net) | 19:13 | |
*** Quits: micahg (~micahg@ubuntu/member/micahg) (Read error: Connection reset by peer) | 19:37 | |
*** Joins: micahg (~micahg@ubuntu/member/micahg) | 19:38 | |
*** Quits: Paul24 (~IceChat09@2001:470:9310:aaaa:3957:95c3:54d6:4d45) (Quit: For Sale: Parachute. Only used once, never opened, small stain.) | 19:54 | |
*** Quits: scribe9343423 (~scribe934@static.96.23.63.178.clients.your-server.de) (Remote host closed the connection) | 20:00 | |
*** Joins: scribe9343423 (~scribe934@static.96.23.63.178.clients.your-server.de) | 20:00 | |
*** Quits: soustruh (~Miranda@ip-86-49-121-75.net.upcbroadband.cz) (Quit: visit http://wormscesky.cz) | 23:32 |
Generated by irclog2html.py 2.9.2 by Marius Gedminas - find it at mg.pov.lt!