Update of /cvsroot/mailman/mailman/Mailman
In directory sc8-pr-cvs1:/tmp/cvs-serv4937
Modified Files:
Tag: Release_2_1-maint
MailList.py
Log Message:
MailList.__init__(): When trying to execfile extend.py, we ignore
ENOENT but log all other IOErrors instead of propagating them up.
Closes a tiny exploit found by Ned Dawes.
Backported from HEAD.
Index: MailList.py
===================================================================
RCS file: /cvsroot/mailman/mailman/Mailman/MailList.py,v
retrieving revision 2.100.2.4
retrieving revision 2.100.2.5
diff -u -d -r2.100.2.4 -r2.100.2.5
--- MailList.py 22 Sep 2003 02:58:12 -0000 2.100.2.4
+++ MailList.py 28 Sep 2003 16:03:34 -0000 2.100.2.5
@@ -112,7 +112,11 @@
try:
execfile(filename, dict)
except IOError, e:
- if e.errno <> errno.ENOENT: raise
+ # Ignore missing files, but log other errors
+ if e.errno == errno.ENOENT:
+ pass
+ else:
+ syslog('error', 'IOError reading list extension: %s', e)
else:
func = dict.get('extend')
if func:
_______________________________________________
Mailman-checkins mailing list
[EMAIL PROTECTED]
http://mail.python.org/mailman/listinfo/mailman-checkins
