Joey Hess [Fri, 2 Apr 2010 20:05:14 +0000 (16:05 -0400)]
htmlscrubber: Allow colons in url fragments after '?'
Colons are not allowed at the start of urls, because it can be interpreted
as a protocol, and allowing arbitrary protocols can be unsafe
(CVE-2008-0809). However, this check was too restrictive, not allowing
use of eg, "video.ogv?t=0:03:00/0:04:00" to seek to a given place in a
video, or "somecgi?foo=bar:baz" to pass parameters with colons.
It's still not allowed to have a filename with a colon in it (ie
"foo:bar.png") -- to link to such a file, a fully qualified url must be
used.
Simon McVittie [Fri, 2 Apr 2010 17:28:34 +0000 (18:28 +0100)]
Despam, again. Someone ban adrianna please?
adrianna [Fri, 2 Apr 2010 12:29:22 +0000 (12:29 +0000)]
adrianna [Fri, 2 Apr 2010 12:26:46 +0000 (12:26 +0000)]
adrianna [Fri, 2 Apr 2010 12:24:14 +0000 (12:24 +0000)]
adrianna [Fri, 2 Apr 2010 12:18:36 +0000 (12:18 +0000)]
adrianna [Fri, 2 Apr 2010 12:07:42 +0000 (12:07 +0000)]
Simon McVittie [Fri, 2 Apr 2010 12:07:22 +0000 (13:07 +0100)]
Despam
adrianna [Fri, 2 Apr 2010 12:05:18 +0000 (12:05 +0000)]
adrianna [Fri, 2 Apr 2010 12:03:58 +0000 (12:03 +0000)]
adrianna [Fri, 2 Apr 2010 12:01:24 +0000 (12:01 +0000)]
adrianna [Fri, 2 Apr 2010 12:00:46 +0000 (12:00 +0000)]
http://smcv.pseudorandom.co.uk/ [Thu, 1 Apr 2010 23:40:37 +0000 (23:40 +0000)]
implemented!
Simon McVittie [Thu, 1 Apr 2010 17:13:38 +0000 (18:13 +0100)]
Explain tab-delimited tables a bit better
http://kerravonsen.dreamwidth.org/ [Thu, 1 Apr 2010 07:22:37 +0000 (07:22 +0000)]
considering tags and fields
http://smcv.pseudorandom.co.uk/ [Thu, 1 Apr 2010 01:35:35 +0000 (01:35 +0000)]
http://kerravonsen.dreamwidth.org/ [Thu, 1 Apr 2010 00:23:31 +0000 (00:23 +0000)]
response; thoughts about inline and tags
Joey Hess [Wed, 31 Mar 2010 21:51:46 +0000 (17:51 -0400)]
page.tmpl: Add Cache-Control must-revalidate to ensure that users (especially of Firefox) see fresh page content.
Since Firefox version 3, it's done aggressive caching of visited pages, and
does not, by default, check if the cached content is still valid when
reloading or revisiting a page. By default, Firefox seems to not re-contact
the web server at all. Compare with eg, Epiphany and Chromium, which appear
to always check, and get back a 304 when the page is unchanged.
This header makes Firefox do the right thing, at least for html files. It
still over-caches if css, javascript, images, etc, are changed.
http://kerravonsen.dreamwidth.org/ [Wed, 31 Mar 2010 03:01:41 +0000 (03:01 +0000)]
response
http://smcv.pseudorandom.co.uk/ [Wed, 31 Mar 2010 02:07:52 +0000 (02:07 +0000)]
they do work, with the right syntax (C backslash escapes aren't interpreted)
http://edrex.myopenid.com/ [Wed, 31 Mar 2010 00:24:22 +0000 (00:24 +0000)]
http://edrex.myopenid.com/ [Wed, 31 Mar 2010 00:21:58 +0000 (00:21 +0000)]
http://smcv.pseudorandom.co.uk/ [Tue, 30 Mar 2010 12:48:03 +0000 (12:48 +0000)]
respond; correct license of fieldsort plugin to match IkiWiki
http://smcv.pseudorandom.co.uk/ [Tue, 30 Mar 2010 12:27:18 +0000 (12:27 +0000)]
respond
http://smcv.pseudorandom.co.uk/ [Tue, 30 Mar 2010 12:10:40 +0000 (12:10 +0000)]
http://smcv.pseudorandom.co.uk/ [Tue, 30 Mar 2010 12:09:59 +0000 (12:09 +0000)]
respond and attempt to invoke Joey :-)
http://smcv.pseudorandom.co.uk/ [Tue, 30 Mar 2010 12:01:35 +0000 (12:01 +0000)]
feature request (part of ftemplate)
http://kerravonsen.dreamwidth.org/ [Tue, 30 Mar 2010 06:44:04 +0000 (06:44 +0000)]
response
http://www.google.com/profiles/schmonz [Tue, 30 Mar 2010 05:48:51 +0000 (05:48 +0000)]
update home page URL
http://kerravonsen.dreamwidth.org/ [Tue, 30 Mar 2010 05:38:31 +0000 (05:38 +0000)]
response
http://kerravonsen.dreamwidth.org/ [Tue, 30 Mar 2010 05:31:10 +0000 (05:31 +0000)]
quick response
http://gustaf.thorslund.org/ [Mon, 29 Mar 2010 22:07:27 +0000 (22:07 +0000)]
http://gustaf.thorslund.org/ [Mon, 29 Mar 2010 21:54:30 +0000 (21:54 +0000)]
Joey Hess [Mon, 29 Mar 2010 19:25:40 +0000 (15:25 -0400)]
Merge branch 'master' of ssh://git.ikiwiki.info/srv/git/ikiwiki.info
Joey Hess [Mon, 29 Mar 2010 19:25:34 +0000 (15:25 -0400)]
response
Jon Dowland [Mon, 29 Mar 2010 19:00:56 +0000 (20:00 +0100)]
this sounds like the correct approach
Jon Dowland [Mon, 29 Mar 2010 18:59:40 +0000 (19:59 +0100)]
thanks for the review, patch to be revised
Joey Hess [Mon, 29 Mar 2010 17:37:16 +0000 (13:37 -0400)]
update
Joey Hess [Mon, 29 Mar 2010 17:27:50 +0000 (13:27 -0400)]
clarify example with whitespace
Joey Hess [Mon, 29 Mar 2010 17:18:49 +0000 (13:18 -0400)]
fix link
Joey Hess [Mon, 29 Mar 2010 17:17:49 +0000 (13:17 -0400)]
add a table summarizing state of each rcs plugin
Joey Hess [Mon, 29 Mar 2010 17:17:32 +0000 (13:17 -0400)]
add warning about incomplete tla support
Joey Hess [Mon, 29 Mar 2010 16:19:22 +0000 (12:19 -0400)]
fix bogus math
Joey Hess [Mon, 29 Mar 2010 16:18:09 +0000 (12:18 -0400)]
Merge branch 'master' of ssh://git.ikiwiki.info/srv/git/ikiwiki.info
Conflicts:
doc/todo/allow_site-wide_meta_definitions.mdwn
Joey Hess [Mon, 29 Mar 2010 16:16:53 +0000 (12:16 -0400)]
review, multiple concerns
Joey Hess [Mon, 29 Mar 2010 15:54:18 +0000 (11:54 -0400)]
add warning messages about bzr and mercurial hooks that are not correctly setup
Jon Dowland [Mon, 29 Mar 2010 13:58:21 +0000 (14:58 +0100)]
ping joey: consider patch for next release?
http://hendry.iki.fi/ [Mon, 29 Mar 2010 08:15:43 +0000 (08:15 +0000)]
Joey Hess [Mon, 29 Mar 2010 00:23:22 +0000 (20:23 -0400)]
don't check $@ after pagespec_translate
pagespec_translate may set $@ if it fails to parse a pagespec, but
due to memoization, this is not reliable. If a memoized call is repeated,
and $@ is already set for some other reason previously, it will remain
set through the call to pagespec_translate.
Instead, just check if pagespec_translate returns undef.
Joey Hess [Sun, 28 Mar 2010 23:28:48 +0000 (19:28 -0400)]
fix tag
Actually, tags can't be made to work with and w/o tagbase, so just make it
assume tagbase is set. Better example anyway.
(It'll be a broken link on ikiwiki.info though.)
Joey Hess [Sun, 28 Mar 2010 23:23:34 +0000 (19:23 -0400)]
auto-blog.setup: Set tagbase by default, since most bloggers will want it.
Also modified first_post page to use a tag format that will work whether
or not tagbase is set.
Joey Hess [Sun, 28 Mar 2010 22:49:22 +0000 (18:49 -0400)]
Merge branch 'master' of ssh://git.ikiwiki.info/srv/git/ikiwiki.info
Joey Hess [Sun, 28 Mar 2010 22:49:15 +0000 (18:49 -0400)]
response
http://schors.livejournal.com/ [Sun, 28 Mar 2010 22:47:17 +0000 (22:47 +0000)]
http://schors.livejournal.com/ [Sun, 28 Mar 2010 22:43:24 +0000 (22:43 +0000)]
Joey Hess [Sun, 28 Mar 2010 22:37:00 +0000 (18:37 -0400)]
formatting
Joey Hess [Sun, 28 Mar 2010 22:36:37 +0000 (18:36 -0400)]
formatting
Joey Hess [Sun, 28 Mar 2010 22:27:23 +0000 (18:27 -0400)]
use __TINYC__ define to avoid tinyc compat fixes breaking FreeBSD
To review, tcc does not really use environ, so you have to use clearenv
there. But POSIX, in their wisdom, didn't standardise clearenv yet,
so on FreeBSD, one still needs to manipulate environ on their own.
(If you use tcc on FreeBSD, this may leave you unsatisfied.)
http://schors.livejournal.com/ [Sun, 28 Mar 2010 22:01:53 +0000 (22:01 +0000)]
Joey Hess [Sun, 28 Mar 2010 21:37:42 +0000 (17:37 -0400)]
response
Joey Hess [Sun, 28 Mar 2010 21:17:07 +0000 (17:17 -0400)]
fix printing of $@, which is clobbered by the call to gettext
problem reported by viric
http://hendry.iki.fi/ [Sun, 28 Mar 2010 20:01:41 +0000 (20:01 +0000)]
http://oneingray.myopenid.com/ [Sun, 28 Mar 2010 15:58:37 +0000 (15:58 +0000)]
More wishlist items for the `xslt` plugin.
http://smcv.pseudorandom.co.uk/ [Sun, 28 Mar 2010 14:52:03 +0000 (14:52 +0000)]
revert misleading clarification, and try to clarify better
Redtexture [Sun, 28 Mar 2010 12:21:51 +0000 (12:21 +0000)]
add "wait" (best to wait to tackle...)
http://oneingray.myopenid.com/ [Sun, 28 Mar 2010 05:06:52 +0000 (05:06 +0000)]
Better URL for my Ikiwiki instance; changed the note about DNS.
Joey Hess [Fri, 26 Mar 2010 17:11:02 +0000 (13:11 -0400)]
Add preprocessed 'use lib' line to ikiwiki-transition and ikiwiki-calendar if necessary for unusual install.
Joey Hess [Fri, 26 Mar 2010 16:59:57 +0000 (12:59 -0400)]
Merge branch 'master' of ssh://git.ikiwiki.info/srv/git/ikiwiki.info
http://smcv.pseudorandom.co.uk/ [Fri, 26 Mar 2010 15:09:11 +0000 (15:09 +0000)]
fix link
http://smcv.pseudorandom.co.uk/ [Fri, 26 Mar 2010 14:09:04 +0000 (14:09 +0000)]
brief review of report
http://smcv.pseudorandom.co.uk/ [Fri, 26 Mar 2010 13:43:37 +0000 (13:43 +0000)]
oh, my mistake... this *is* necessary, but could perhaps be done better?
http://smcv.pseudorandom.co.uk/ [Fri, 26 Mar 2010 13:30:52 +0000 (13:30 +0000)]
doesn't field+template already cover this?
http://smcv.pseudorandom.co.uk/ [Fri, 26 Mar 2010 13:20:33 +0000 (13:20 +0000)]
brief review of field; fieldsort plugin
http://smcv.pseudorandom.co.uk/ [Fri, 26 Mar 2010 13:03:37 +0000 (13:03 +0000)]
http://users.itk.ppke.hu/~cstamas/openid/ [Fri, 26 Mar 2010 09:43:50 +0000 (09:43 +0000)]
me too - thanks
http://users.itk.ppke.hu/~cstamas/openid/ [Fri, 26 Mar 2010 08:58:41 +0000 (08:58 +0000)]
line break for better view
http://users.itk.ppke.hu/~cstamas/openid/ [Fri, 26 Mar 2010 08:57:20 +0000 (08:57 +0000)]
init page bugreport
Joey Hess [Fri, 26 Mar 2010 05:48:37 +0000 (01:48 -0400)]
close, unreproducible
Joey Hess [Fri, 26 Mar 2010 05:38:53 +0000 (01:38 -0400)]
Fix incorrect influence info returned by a failing link() pagespec, that could lead to bad dependency handling in certian situations.
Joey Hess [Fri, 26 Mar 2010 05:05:22 +0000 (01:05 -0400)]
typo
Joey Hess [Fri, 26 Mar 2010 04:57:52 +0000 (00:57 -0400)]
Merge branch 'master' of ssh://git.ikiwiki.info/srv/git/ikiwiki.info
Joey Hess [Fri, 26 Mar 2010 04:57:46 +0000 (00:57 -0400)]
new bug
http://kerravonsen.dreamwidth.org/ [Fri, 26 Mar 2010 04:41:37 +0000 (04:41 +0000)]
response
http://kerravonsen.dreamwidth.org/ [Fri, 26 Mar 2010 04:30:43 +0000 (04:30 +0000)]
response
Joey Hess [Fri, 26 Mar 2010 04:16:21 +0000 (00:16 -0400)]
fix the other half of the filecheck filename bug
Joey Hess [Fri, 26 Mar 2010 04:15:22 +0000 (00:15 -0400)]
Merge branch 'master' of ssh://git.ikiwiki.info/srv/git/ikiwiki.info
Joey Hess [Fri, 26 Mar 2010 04:15:15 +0000 (00:15 -0400)]
on plugins and stuff
Joey Hess [Fri, 26 Mar 2010 04:12:22 +0000 (00:12 -0400)]
security?
http://kerravonsen.dreamwidth.org/ [Fri, 26 Mar 2010 04:06:31 +0000 (04:06 +0000)]
It works!
Joey Hess [Fri, 26 Mar 2010 03:40:38 +0000 (23:40 -0400)]
patch
http://kerravonsen.dreamwidth.org/ [Fri, 26 Mar 2010 01:44:52 +0000 (01:44 +0000)]
now my main site uses IkiWiki fully
http://kerravonsen.dreamwidth.org/ [Fri, 26 Mar 2010 01:40:32 +0000 (01:40 +0000)]
oh dear not fixed after all
http://smcv.pseudorandom.co.uk/ [Thu, 25 Mar 2010 23:39:45 +0000 (23:39 +0000)]
an alternative way to do plugins, as rubykat suggested
Joey Hess [Thu, 25 Mar 2010 18:39:09 +0000 (14:39 -0400)]
filecheck: Fix bug that prevented the pagespecs from matching when not called by attachment plugin.
Joey Hess [Thu, 25 Mar 2010 18:30:58 +0000 (14:30 -0400)]
Merge branch 'master' of ssh://git.ikiwiki.info/srv/git/ikiwiki.info
Joey Hess [Thu, 25 Mar 2010 18:23:16 +0000 (14:23 -0400)]
remove a few leftover manual folding indicators
http://kerravonsen.dreamwidth.org/ [Thu, 25 Mar 2010 04:43:16 +0000 (04:43 +0000)]
response
Joey Hess [Thu, 25 Mar 2010 04:11:39 +0000 (00:11 -0400)]
response
http://kerravonsen.dreamwidth.org/ [Thu, 25 Mar 2010 03:38:14 +0000 (03:38 +0000)]
I'm not sure if I'm supposed to tag this as patch, so I removed the tag.
http://kerravonsen.dreamwidth.org/ [Thu, 25 Mar 2010 03:35:14 +0000 (03:35 +0000)]
bug and fix