oss-sec mailing list archives

Re: wiki - e-mail address obfuscation

From: Solar Designer <solar () openwall com>
Date: Mon, 18 Feb 2008 23:42:59 +0300

I wrote:

... it only
obfuscates e-mail addresses it recognizes - not anything with an @-sign.
So we need to be very careful about this - e-mail addresses must be
entered as <user () example org> - with the angle brackets.

...

As to page source, I've disabled the view source / export raw feature.


I just found another issue: it is possible to "show differences to
current version" without being logged in - and, of course, original
(non-obfuscated) e-mail addresses are seen in these source diffs.

Unless we come up with a way to address that (e.g., somehow disable this
feature for anonymous visitors), I'm afraid that we'll have to obfuscate
addresses manually prior to entering them into the wiki...

Alexander

Current thread:

wiki Solar Designer (Feb 16)
- Re: wiki Vincent Danen (Feb 17)
  - Re: wiki Solar Designer (Feb 18)
    - Re: wiki Vincent Danen (Feb 18)
    - Re: wiki Solar Designer (Feb 18)
    - Re: wiki - e-mail address obfuscation Solar Designer (Feb 18)
    - Re: wiki - e-mail address obfuscation Solar Designer (Feb 19)
    - Re: wiki - e-mail address obfuscation (GalaxyMaster) (Feb 19)
    - Re: wiki Vincent Danen (Feb 19)
    - Re: wiki Josh Bressers (Feb 18)
    - charter Jonathan Smith (Feb 18)
    - Re: charter Josh Bressers (Feb 19)
    - Re: charter Mark J Cox (Feb 19)
    - Re: charter Vincent Danen (Feb 19)
    - Re: charter - advisories Solar Designer (Feb 19)
    - Re: charter - advisories Josh Bressers (Feb 19)

(Thread continues...)