[Catalyst] [Fwd: [rt-users] Security vulnerability in RT 3.0 and up]

Matt S Trout dbix-class at trout.me.uk
Sun Jul 20 00:39:33 BST 2008


On Mon, Jun 23, 2008 at 01:17:15PM -0400, Lance A. Brown wrote:
> Hmmmm.   Is this something Catalyst needs to worry about?

StackTrace only activates for Catlyst in debug mode.

If you're deploying your app publically in debug mode, you have more than
this to worry about (like exceptions showing your DBI connect info :)

-- 
      Matt S Trout       Need help with your Catalyst or DBIx::Class project?
   Technical Director                    http://www.shadowcat.co.uk/catalyst/
 Shadowcat Systems Ltd.  Want a managed development or deployment platform?
http://chainsawblues.vox.com/            http://www.shadowcat.co.uk/servers/



More information about the Catalyst mailing list