Jonkman Microblog
  • Login
Show Navigation

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. BjarniBjarniBjarni 🙊 🇮🇸 🍏 (herrabre@mastodon.xyz)'s status on Monday, 14-May-2018 06:25:52 EDT BjarniBjarniBjarni 🙊 🇮🇸 🍏 BjarniBjarniBjarni 🙊 🇮🇸 🍏

    @galaxis @rysiek Actually, to clarify further: poor HTML parsing and poor error handling is to blame.

    Even when rendering HTML, #Mailpile is not vulnerable as far as I can tell.

    We sanitize the content so their malformed snippets get cleaned up and we check the GnuPG error codes so their gadgets will fail.

    I need to write a boasting blog about this, this is actually a resounding endorsement of why baking security in from the start matters.

    In conversation Monday, 14-May-2018 06:25:52 EDT from mastodon.xyz permalink
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

Jonkman Microblog is a social network, courtesy of SOBAC Microcomputer Services. It runs on GNU social, version 1.2.0-beta5, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Jonkman Microblog content and data are available under the Creative Commons Attribution 3.0 license.

Switch to desktop site layout.