Opened 18 years ago

Closed 18 years ago

Last modified 18 years ago

#3751 closed (wontfix)

Trac shows traceback on code.djangoproject.com

Reported by: frankie@… Owned by: Jacob
Component: *.djangoproject.com Version: dev
Severity: Keywords:
Cc: Triage Stage: Accepted
Has patch: no Needs documentation: no
Needs tests: no Patch needs improvement: no
Easy pickings: no UI/UX: no

Description

When there is a random error here on code.djangoproject.com traceback is shown. Obviously this is a security issue. Perhaps this can be configured away or a bug should be reported on trac.

Change History (4)

comment:1 by Simon G. <dev@…>, 18 years ago

Triage Stage: UnreviewedAccepted

comment:2 by James Bennett, 18 years ago

I'm not sure how it's a security issue -- what sort of sensitive information is revealed?

comment:3 by frankie@…, 18 years ago

Resolution: wontfix
Status: newclosed

Yeah, I forgot to save the page of the error but I suppose the only sensitive data it contains is the full paths to the files involved (and the code, but that's open anyway and all password etc. are in non-python config files IIRC). So yeah, after thinking a bit more about this I suppose I'll close the ticket.

comment:4 by Simon G. <dev@…>, 18 years ago

Here's one that I just got:

Traceback (most recent call last):
  File "/home/trac/new-djangoproject-trac-test/trac/web/main.py", line 387, in dispatch_request
  File "/home/trac/new-djangoproject-trac-test/trac/web/main.py", line 183, in dispatch
  File "/home/trac/new-djangoproject-trac-test/trac/perm.py", line 263, in __init__
  File "/home/trac/new-djangoproject-trac-test/trac/perm.py", line 227, in get_user_permissions
  File "/home/trac/new-djangoproject-trac-test/trac/perm.py", line 112, in get_user_permissions
  File "/usr/lib/python2.3/site-packages/pyPgSQL/PgSQL.py", line 3261, in fetchall
    return self.__fetchManyRows(self._rows_, _list)
  File "/usr/lib/python2.3/site-packages/pyPgSQL/PgSQL.py", line 2838, in __fetchManyRows
    _j = self.__fetchOneRow()
  File "/usr/lib/python2.3/site-packages/pyPgSQL/PgSQL.py", line 2812, in __fetchOneRow
    for _i in range(self.res.nfields):
AttributeError: 'NoneType' object has no attribute 'nfields'
Note: See TracTickets for help on using tickets.
Back to Top