rhodecode-enterprise-ce Files · docs/release-notes/release-notes-4.4.2.rst

security: limit the maximum password lenght to 72 characters to prevent possible...

security: limit the maximum password lenght to 72 characters to prevent possible server side resource consumption attack. - bcrypt heavy computation can lead to DOS using a very long password .eg 10**8 lenght. - we allowed this on registration or on password update

marcink - - Load All Authors

File last commit:

r1167:c0cc2e45 default


                r2192:a51e727d

stable

Download file

             release-notes-4.4.2.rst
        
                    41 lines
            
             | 766 B
            
                | text/x-rst
            
             |
                RstLexer

/ docs / release-notes / release-notes-4.4.2.rst

History | Annotation | Raw |Copy content |Copy permalink

|RCE| 4.4.2 |RNS|
Release Date
2016-10-17


New Features

General
Packaging: pinned against rhodecode-tools 0.10.1


Security
Integrations: fix 500 error on integrations page when delegated admin
tried to access integration page after adding some integrations.
Permission checks were to strict for delegated admins.


Performance

Fixes
Vcsserver: make sure we correctly ping against bundled HG/GIT/SVN binaries.
This should fix a problem where system binaries could be used accidentally
by the RhodeCode.
LDAP: fixed email extraction issues. Empty email addresses from LDAP server
will no longer take precedence over those stored inside RhodeCode database.

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages