I'm planning on the next alpha release of Dada Mail for next Monday, so this is a heads up! If anyone has any more issues they'd like taken care of before Monday, please let us know and if you have any projects you're working on, try to wrap them up into some sort of usable state by 11:59pm this Sunday. Cheers, ...Continue Reading

> That would be consistent with their recognition/acknowledgement of > 2.10 > alpha 1's fix. And I'm betting that a daily Google alert for > "security bug" > or somesuch would be all the company would need to be notified of that > page's existence. Then by me stating that, "Secunia's vulnerability reporting methods are bug-ridden" would also be in Secunia's advisory? :) (Ah, only in dreams. ) Because this email is being archived and syndicated, both being fully searchabl ...Continue Reading

> I'm sure whoever did will contact you personally, and if not, a > query to > secunia.com should do the job. I doubt it. Usually, if they do, they tell me they've found a security problem - but never give me an example on how this problem could affect the program in the real world (something, anything). This chap didn't even give me that. The worst is when the person gives you an ultimatum - "You have x days to fix this problem or else..." Yeah, thanks. This is even worse. The problem ...Continue Reading

> Hey did anyone report this? Is it possible that "reported by vendor" refers to this?: http://mojo.skazat.com/download/testing_2_10_0_alpha1.html That would be consistent with their recognition/acknowledgement of 2.10 alpha 1's fix. And I'm betting that a daily Google alert for "security bug" or somesuch would be all the company would need to be notified of that page's existence. ...Continue Reading

> Hey did anyone report this? Not I -- my only communication on security stuff has been directly with you, by personal email. I trust this is the usual practice for such things. I'm sure whoever did will contact you personally, and if not, a query to secunia.com should do the job. ...Continue Reading

> Hey did anyone report this? Not me... Alfred ...Continue Reading

Hey did anyone report this? http://secunia.com/advisories/16435/ Cause I didn't - although it says, Provided and/or discovered by: Reported by vendor. Usually, when a so called, "vulnerability" is discovered, I get like, a "heads up" so I can confirm or clarify what's going down. The way this vulnerability is worded wrong. That's all. Anyone? Justin Simoni ...Continue Reading

On Wed, Aug 17, 2005 at 09:35:16PM -0000, Dada Mail (Justin Simoni) wrote: > > The other option is to Wiki the documentation - which wouldn't be the > worst idea - I'm just not really interested in admin'ing it against > bad advice/spam. If we can hook up the Wiki to the Help links, we'd > be in a pretty good spot, as Dada Mail users could help themselves to > documentation. I think a wiki is the best idea. I've seen it work really well for http://wiki.darcs.net/ and http://www.cgi-app.org/ ...Continue Reading

> Seing all these links would make me want to copy all your existing > help > files to a 2.10 subdirectory and change all your links in the new > release to > reflect the new version. Basically what's going to happen. At the moment, the only person who has access to change these help files is me. That's not the best way to go about these things, since it doesn't look like I'm writing new ones for screens/stuff that change, etc. What we should do is put this documentation in CVS in some sort ...Continue Reading

> > HTML's element doesn't use a width attribute > > [width] works in Moz... > But is this non-standard? Officially, yes: http://www.w3.org/TR/REC-html40/interact/forms.html#h-17.6 But we could always ignore that & just browser-test the heck out of it.... ...Continue Reading