diff options
author | friendica <info@friendica.com> | 2013-05-10 16:09:24 -0700 |
---|---|---|
committer | friendica <info@friendica.com> | 2013-05-10 16:09:24 -0700 |
commit | 99c842ff397b87e9f09dd552b45a9b4a2b09b613 (patch) | |
tree | 9853f17c978b5d08565c6807427d85a1fc4b28aa | |
parent | 34526e82531c67995e25cf04abce0d927ce22ffd (diff) | |
download | volse-hubzilla-99c842ff397b87e9f09dd552b45a9b4a2b09b613.tar.gz volse-hubzilla-99c842ff397b87e9f09dd552b45a9b4a2b09b613.tar.bz2 volse-hubzilla-99c842ff397b87e9f09dd552b45a9b4a2b09b613.zip |
also strip title from notification of private messages - it leaks potentially sensitive message info. Note: there is still information leakage of sender but this is difficult to avoid completely. "You've got an email from (we're sorry, we can't tell you...)"
-rw-r--r-- | include/enotify.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/include/enotify.php b/include/enotify.php index a2b7b67b0..a774385da 100644 --- a/include/enotify.php +++ b/include/enotify.php @@ -397,7 +397,7 @@ function notification($params) { if(! $private) break; case NOTIFY_MAIL: - $datarray['textversion'] = $datarray['htmlversion'] = ''; + $datarray['textversion'] = $datarray['htmlversion'] = $datarray['title'] = ''; break; default: break; |