| Commit message (Collapse) | Author | Age | |
|---|---|---|---|
| * | doc: Document security issues involving LWP::UserAgent | Simon McVittie | 2019-02-26 |
| Recommend the LWPx::ParanoidAgent module where appropriate. It is particularly important for openid, since unauthenticated users can control which URLs that plugin will contact. Conversely, it is non-critical for blogspam, since the URL to be contacted is under the wiki administrator's control. Signed-off-by: Simon McVittie <smcv@debian.org> | |||