In a message of Wed, 22 Apr 2015 09:07:13 -0700, Mark Sapiro writes: >The message your user got, "You must GET the form before submitting >it.", indicates the hidden 'sub_form_token' either was not present in >the submitted form or was not of the correct format. This could indicate >that there is a subscribe form for pypy-dev on some web site somewhere >that does not generate a correct 'sub_form_token'. Basically, such 3rd >party subscribe forms are intentionally disabled by this feature because >otherwise they could be submitted by robots.
He says he got the form from https://mail.python.org/mailman/listinfo/pypy-dev So what can corrupt the token, I wonder. How chrome stores tokens and what things -- like an add blocker -- could modify or remove it isn't one of the things I know. And how this fits in with 'ok when no password used, not ok when a password used' seems quite puzzling to me. Off to think some more ... Laura ------------------------------------------------------ Mailman-Users mailing list Mailman-Users@python.org https://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://wiki.list.org/x/AgA3 Security Policy: http://wiki.list.org/x/QIA9 Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: https://mail.python.org/mailman/options/mailman-users/archive%40jab.org
