I wrote earlier about some suggested improvements with the confirmation by mail function.
Here's another thing - if you insert an 'Approved: ' string that's incorrect, the message is deleted (in a way that's unrecoverable, AFAICT). My suggestion is that you get an error message back instead, stating that the password is incorrect.
-- The Pope has said this war is wrong, that it is a Sin. The Pope! But even worse, the Dixie Chicks have now come out against you! How bad does it have to get before you realize that you are an army of one on this war? - Michael Moore
On Fri, 2003-04-04 at 16:39, Will Yardley wrote:
I wrote earlier about some suggested improvements with the confirmation by mail function.
Here's another thing - if you insert an 'Approved: ' string that's incorrect, the message is deleted (in a way that's unrecoverable, AFAICT). My suggestion is that you get an error message back instead, stating that the password is incorrect.
I must not quite understand this bug. Can you submit a bug report, including the full recipe to reproduce it?
Thanks, -Barry
On Sun, Apr 06, 2003 at 04:27:00PM -0400, Barry Warsaw wrote:
On Fri, 2003-04-04 at 16:39, Will Yardley wrote:
I wrote earlier about some suggested improvements with the confirmation by mail function.
Here's another thing - if you insert an 'Approved: ' string that's incorrect, the message is deleted (in a way that's unrecoverable, AFAICT). My suggestion is that you get an error message back instead, stating that the password is incorrect.
I must not quite understand this bug. Can you submit a bug report, including the full recipe to reproduce it?
Will do. I don't know how to explain it much better than that - only that if you type:
Approved: passwrd
in the headers of a response to the confirmation message, when the actual password is 'password', the message you're trying to approve is discarded; I think that no action (and an "incorrect password" error message in response) would be more appropriate.
Also, as I've mentioned before, it would be very nice if the exact action being performed were listed, rather than the generic "confirmation succeeded" message.
Bug report here: https://sourceforge.net/tracker/index.php?func=detail&aid=717110&group_id=103&atid=100103
Full recipe to reproduce it is to type in the wrong password when approving a message via email (I suppose "don't type the wrong password" is one possible answer to this, but it's not really a realistic or constructive one).
-- The Pope has said this war is wrong, that it is a Sin. The Pope! But even worse, the Dixie Chicks have now come out against you! How bad does it have to get before you realize that you are an army of one on this war? - Michael Moore
participants (2)
-
Barry Warsaw -
william+mm@hq.newdream.net