Thursday, 2011-08-18

« Wednesday, 2011-08-17 Index Friday, 2011-08-19 »
*** Joins: soustruh (~Miranda@ip-86-49-121-75.net.upcbroadband.cz)02:17
*** Quits: kirillka (~Miranda@124-72-52-95.baltnet.ru) (Remote host closed the connection)02:26
*** Joins: Cupertino (~Cupez@62-177-158-122.dsl.bbeyond.nl)02:34
*** Quits: Cupertino (~Cupez@62-177-158-122.dsl.bbeyond.nl) (Changing host)02:34
*** Joins: Cupertino (~Cupez@unaffiliated/cupertino)02:34
*** Quits: siebrand (~siebrand@5353A6DC.cm-6-4c.dynamic.ziggo.nl) (Quit: siebrand)02:41
*** Joins: soc42 (~soc42@f052032123.adsl.alicedsl.de)02:43
*** Joins: giallu (~giallu@fedora/giallu)02:59
*** Joins: Rixie (~Rixie@188.177.20.182)03:18
*** Quits: Cesare (~Adium@creati59.lnk.telstra.net) (Quit: Leaving.)03:53
*** Quits: soc42 (~soc42@f052032123.adsl.alicedsl.de) (Remote host closed the connection)03:55
*** Joins: siebrand (~siebrand@188.200.34.66)04:15
*** Joins: asm89 (~asm89@unaffiliated/asm89)05:25
*** Quits: dhx1 (~anonymous@60-242-108-164.static.tpgi.com.au) (Remote host closed the connection)05:47
asm89i have to say05:52
asm89creating a plugin for mantis requires a bit of digging through the source and other plugins05:52
asm89but beyond that, it works quite ok :)05:52
*** Parts: automaciej (~automacie@cl-1008.ham-02.de.sixxs.net) ()06:07
*** Joins: dhx1 (~anonymous@60-242-108-164.static.tpgi.com.au)06:11
GitHub138[mantisbt] davidhicks force-pushed next from ed74dae to a2b7a21: http://bit.ly/nnCPAt06:23
GitHub138[mantisbt/next] Move config files to application/config directory.  This will be out of the web tree once restructuring is complete. - Daryn Warriner06:23
GitHub138[mantisbt/next] Move core files to application/core.  The .htaccess file will not be needed as this will not be reachable - Daryn Warriner06:23
GitHub138[mantisbt/next] Move Soap api to application/services/soap. - Daryn Warriner06:23
*** Quits: giallu (~giallu@fedora/giallu) (Ping timeout: 250 seconds)06:52
*** Joins: Rixie_ (~Rixie@188.177.20.182)07:11
*** Quits: Rixie (~Rixie@188.177.20.182) (Ping timeout: 260 seconds)07:15
*** Rixie_ is now known as Rixie07:15
*** Quits: dhx1 (~anonymous@60-242-108-164.static.tpgi.com.au) (Remote host closed the connection)08:32
*** Joins: dhx1 (~anonymous@60-242-108-164.static.tpgi.com.au)08:33
*** Joins: asm89- (~asm89@unaffiliated/asm89)08:44
*** Quits: asm89 (~asm89@unaffiliated/asm89) (Ping timeout: 250 seconds)08:46
jreeseasm89-: thanks, I tried :P09:20
*** Parts: Rixie (~Rixie@188.177.20.182) ()09:21
asm89-jreese: tried what? :)09:31
jreese05:52 < asm89> creating a plugin for mantis requires a bit of digging through the source and other plugins09:32
jreese05:52 < asm89> but beyond that, it works quite ok :)09:32
* jreese wrote the plugin system ;)09:32
asm89-ah ok!09:34
asm89-well nice :)09:34
*** asm89- is now known as asm8909:34
dhx1jreese: *sigh*... more bogus "vulnerabilities": http://packetstormsecurity.org/files/10414909:45
jreeselol "MantisBT CMS" :P09:45
dhx1jreese: I'm sure the hacking group is really l33t either way...09:46
dhx1the only time we use 'mbadmin' anywhere in the source code is:09:46
dhx1if ( file_exists( 'mantis_offline.php' ) && !isset( $_GET['mbadmin'] ) ) {09:46
jreeseI'm not even sure what the second word of their group name is supposed to be09:47
dhx1and apparently that is an SQL injection vulnerability... ?!?09:47
dhx1lol09:47
jreeselooks an awful lot like a butt to me09:47
dhx1well the XSS issue is valid...09:48
dhx1I don't know where they got the SQL injection thing from09:48
jreeseyeah, 'mbadmin' doesn't even show up anywhere else in the code base09:49
jreeseand it only even checks if it's set, it never actually uses the value09:49
jreesekids these days...09:49
*** Joins: daryn (~daryn@h158.249.190.173.static.ip.windstream.net)09:59
dhx1filter_api sucks!10:10
jreeselol10:11
daryndhx1, yes it does10:11
dhx1seriously... code reuse?!? anyone?10:12
dhx1no wonder it's 1000000 LoC10:12
jreesethat wasn't invented yet10:12
daryndhx1, it appears that code reuse was attempted several times but all the duplicates were not removed for whatever reason10:13
daryni even found multiple functions doing exactly the same thing10:13
dhx1lol yeah10:13
daryni think i removed those some time back though10:14
*** Joins: giallu (~giallu@fedora/giallu)10:30
*** Quits: giallu (~giallu@fedora/giallu) (Remote host closed the connection)10:30
*** Joins: giallu (~giallu@88.149.241.228)10:31
*** Quits: giallu (~giallu@88.149.241.228) (Changing host)10:31
*** Joins: giallu (~giallu@fedora/giallu)10:31
GitHub51[mantisbt] davidhicks pushed 1 new commit to master: http://bit.ly/pKayZM11:02
GitHub51[mantisbt/master] Fix #13245: XSS issues with search.php parameters - David Hicks11:02
dhx1jreese: can we push 1.2.7 ASAP?11:04
dhx1let me update documentation ;)11:04
jreeseyeah, if you can update the release notes and update core/constants, I'll try to get around to it sometime today or tomorrow11:04
*** Quits: Cupertino (~Cupez@unaffiliated/cupertino) (Quit: I give up...)11:06
dhx1jreese: can I tag 1.2.7 or would you rather do that?11:15
GitHub84[mantisbt] davidhicks pushed 2 new commits to master-1.2.x: http://bit.ly/pF6yTu11:15
GitHub84[mantisbt/master-1.2.x] Fix #13245: XSS issues with search.php parameters - David Hicks11:15
GitHub84[mantisbt/master-1.2.x] Bump version to 1.2.7 and update release notes - David Hicks11:15
*** Quits: asm89 (~asm89@unaffiliated/asm89) (Quit: bye!)11:35
*** Joins: joru (~joru@c-6da270d5.12-8-64736c11.cust.bredbandsbolaget.se)11:58
joruhowdy, gr8 software12:01
joruis it possible to add a custom status type?12:01
joru(using the gui/admin account and not going into code base)12:01
joruI am also curious about the possibility to publish images from a phone as an attachment to an issue? (e.g. sketches/diagrams/concepts)12:10
jorudo you imagine this could be a tough thing to do using the api?12:10
jreesedhx1: if you have a publicly available GPG key associated with the same address you use for your git commits, then you can tag it using `git tag -s release-x.x.x -m "Stable release x.x.x"`12:19
*** Joins: Paul24 (~IceChat09@2001:470:9310:aaaa:3957:95c3:54d6:4d45)12:27
jreesejoru: adding custom statuses requires editing local configuration and language files12:28
Paul24lo john12:29
jreesehttp://docs.mantisbt.org/master/en/administration_guide/admin.customize.status.html12:29
*** Quits: micahg (~micahg@ubuntu/member/micahg) (Ping timeout: 246 seconds)13:13
*** Quits: siebrand (~siebrand@188.200.34.66) (Quit: siebrand)13:14
jorujreese: ok, that sounds fair to me13:18
*** Joins: siebrand (~siebrand@188.200.34.66)13:21
*** Joins: micahg (~micahg@ubuntu/member/micahg)13:22
*** Joins: soc42 (~soc42@f052211032.adsl.alicedsl.de)14:49
*** Quits: siebrand (~siebrand@188.200.34.66) (Quit: siebrand)16:34
*** Quits: soc42 (~soc42@f052211032.adsl.alicedsl.de) (Remote host closed the connection)16:55
*** Quits: daryn (~daryn@h158.249.190.173.static.ip.windstream.net) (Quit: Ex-Chat)18:13
*** Quits: joru (~joru@c-6da270d5.12-8-64736c11.cust.bredbandsbolaget.se) (Remote host closed the connection)18:30
*** Quits: giallu (~giallu@fedora/giallu) (Ping timeout: 260 seconds)18:53
*** Joins: Cesare (~Adium@creati59.lnk.telstra.net)19:13
*** Quits: micahg (~micahg@ubuntu/member/micahg) (Read error: Connection reset by peer)19:37
*** Joins: micahg (~micahg@ubuntu/member/micahg)19:38
*** Quits: Paul24 (~IceChat09@2001:470:9310:aaaa:3957:95c3:54d6:4d45) (Quit: For Sale: Parachute. Only used once, never opened, small stain.)19:54
*** Quits: scribe9343423 (~scribe934@static.96.23.63.178.clients.your-server.de) (Remote host closed the connection)20:00
*** Joins: scribe9343423 (~scribe934@static.96.23.63.178.clients.your-server.de)20:00
*** Quits: soustruh (~Miranda@ip-86-49-121-75.net.upcbroadband.cz) (Quit: visit http://wormscesky.cz)23:32
« Wednesday, 2011-08-17 Index Friday, 2011-08-19 »

Generated by irclog2html.py 2.9.2 by Marius Gedminas - find it at mg.pov.lt!