[Citadel Development] Re: [SCM] citadel.org branch, master, updated. 7bfc9ea85ba1146f09982b9616eaf82b54321ea4

[dothebart]

 

Di Jul 12 2011 01:29:14 EDT von   IGnatius T Foobar @ Uncensored  Betreff: Re: [SCM] citadel.org branch, master, updated. 7bfc9ea85ba1146f09982b9616eaf82b54321ea4

This turned out to be nice and clean.  It's going to eliminate a lot of potential (and existing) bugs.


so now you pull the full message with attachments and shit just to get some headerlines?

[Citadel Development] Re: [SCM] citadel.org branch, master, updated. 7bfc9ea85ba1146f09982b9616eaf82b54321ea4

[IGnatius T Foobar]

No, we just pull the top-level headers and we do not fetch the message body.

 

[Citadel Development] Re: [SCM] citadel.org branch, master, updated. 7bfc9ea85ba1146f09982b9616eaf82b54321ea4

[samjam]

On 12/07/11 14:51, IGnatius T Foobar wrote:

No, we just pull the top-level headers and we do not fetch the message body.



Do we still do the security check to make sure the message is in the 
room, so we can't used this to peek at arbitrary messages?


Sam

[Citadel Development] Re: [SCM] citadel.org branch, master, updated. 7bfc9ea85ba1146f09982b9616eaf82b54321ea4

[IGnatius T Foobar]

Good question, and the answer is yes.  This is all done within webcit, so
it is incapable of bypassing the citadel server's security model. 
 

[Citadel Development] Re: [SCM] citadel.org branch, master, updated. 7bfc9ea85ba1146f09982b9616eaf82b54321ea4

[IGnatius T Foobar]

This turned out to be nice and clean.  It's going to eliminate a lot of 
potential
(and existing) bugs.