| ../irclogs/#mantishelp.2009-12-04.log | ||
| --- scribe started --- | 00:00 | |
| nuclear_eclipse | paulr: still there? | 00:02 |
|---|---|---|
| paulr | lo nuclear_eclipse | 00:09 |
| paulr | about to leave | 00:09 |
| nuclear_eclipse | paulr: real quick, do you have anything left that absolutely needs to get into 1.2 before we make a final 1.2.0 release? | 00:09 |
| paulr | unknown ;/ | 00:11 |
| paulr | well | 00:11 |
| paulr | i'm not happy with some of the commits that have gone in trunk in july/august | 00:11 |
| nuclear_eclipse | ok, so how long before you can look at them? | 00:12 |
| nuclear_eclipse | would really be nice to get 1.2 out the door... | 00:12 |
| paulr | i'm planning on trying to do a security audit this weekend | 00:12 |
| nuclear_eclipse | any way to bump security audit in favor of fixing things that can't be chaanged once 1.2.0 is out the door? | 00:13 |
| paulr | have we backported every commit since to trunk since last rc | 00:13 |
| paulr | or do we already have 2 branches | 00:14 |
| nuclear_eclipse | not every single commit | 00:14 |
| nuclear_eclipse | but tbh, most of what's been done since rc2 has been nothing but bugfixes | 00:14 |
| paulr | I don't really consider a commit to store an md5 hash of a password in ldap as a bug fix :) | 00:16 |
| paulr | Actually consider that a security vulnerability | 00:16 |
| nuclear_eclipse | that would be why I said "most" | 00:17 |
| paulr | but yea, i'll try to take a look | 00:17 |
| nuclear_eclipse | ok, I appreciate it | 00:17 |
| paulr | trunk atm = 1.3 though? | 00:17 |
| nuclear_eclipse | yes | 00:17 |
| paulr | and we're just backporting selected changes? | 00:17 |
| nuclear_eclipse | yes | 00:17 |
| paulr | can i go to bed now? :P | 00:18 |
| nuclear_eclipse | if there's something that's done weird, I'd rather change it in 1.2 now than be stuck with a bad choice going forward... | 00:18 |
| nuclear_eclipse | but at the same time, I don't want to wait another 4-6 weeks for a final release... | 00:18 |
| nuclear_eclipse | anywho, good night paul | 00:18 |
| nuclear_eclipse | we can chat tomorrow if you have time | 00:19 |
| paulr | tbh | 00:19 |
| paulr | it's somewhat disappinting that people make so many changes post-rc | 00:19 |
| paulr | - <td><?php echo user_get_name( $t_tag_row['user_id'] ) ?></td> | 00:20 |
| paulr | + <td><?php echo string_display_line( user_get_name( $t_tag_row['user_id'] ) ) ?></td> | 00:20 |
| paulr | I also really dislike these | 00:20 |
| paulr | user_get_name should return a relatively safe username imo | 00:20 |
| nuclear_eclipse | I'd agree, but that's not so much of an issue I think we need to worry about atm; it's not really a design decision that we have to maintain going forward, unlike things like constants for column names, etc | 00:21 |
| nuclear_eclipse | ie, it's something we can change transparently to users/plugins | 00:22 |
| paulr | bb | 00:24 |
| paulr | nn | 00:24 |
| nuclear_eclipse | cheers | 00:24 |
| dhx_m | "user_get_name should return a relatively safe username imo"... it shouldn't, as user_get_name isn't going to always be used for HTML output... we have email output, twitter output, SOAP output, etc | 12:38 |
| giallu | hi dhx_m | 12:40 |
| dhx_m | giallu: hi | 12:41 |
| nuclear_eclipse | morming all :P | 13:31 |
| CIA-21 | Mantisbt: jreese master-1.2.x * ref0b66b4019a /admin/schema.php: Added indexes to tag tables | 20:56 |
| CIA-21 | Mantisbt: jreese * r5763eb7ef317 /admin/schema.php: Added indexes to tag tables | 20:56 |
Generated by irclog2html.py