On Fri, Jan 06, 2006 at 09:15:10AM -0500, Joey Hess wrote: > Wesley J. Landaker wrote: > > On Wednesday 04 January 2006 13:59, Wouter Verhelst wrote: > > > The QA team says so: > > > > > > http://qa.debian.org/developer.php?excuse=not+releasing+etch > > > > <http://qa.debian.org/developer.php?excuse=abusing+the+QA+web+server>. > > http://qa.debian.org/developer.php?excuse=%3Cblink%3Eblink%3C/blink%3E > > phishing for debian.org login info is left as an exersise for the > reader.
XSS is way overrated, especially for sites like qa.debian.org which have exactly zero interesting cookies for anyone. Anyway, fixed regardless (#346255). --Jeroen -- Jeroen van Wolffelaar [EMAIL PROTECTED] (also for Jabber & MSN; ICQ: 33944357) http://Jeroen.A-Eskwadraat.nl -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
