[ProgSoc] Why you shouldn't pus config info in a .ini file (for a web app)

John Elliot jj5 at jj5.net
Fri Aug 19 21:51:41 EST 2011


On 19/08/2011 8:51 PM, Leefe Hicks wrote:
> What is the correct procedure for reporting to an Open Source project a
> security flaw that you can drive a truck through?

I'd probably try to find an email address for one of the active devs and 
email them privately.














More information about the Progsoc mailing list