0
0
mirror of https://github.com/django/django.git synced 2024-11-28 10:48:32 +01:00
The Web framework for perfectionists with deadlines. https://www.djangoproject.com/
Go to file
Russell Keith-Magee aae5a96d57 Ensure that passwords are never long enough for a DoS.
* Limit the password length to 4096 bytes
  * Password hashers will raise a ValueError
  * django.contrib.auth forms will fail validation
* Document in release notes that this is a backwards incompatible change

Thanks to Josh Wright for the report, and Donald Stufft for the patch.

This is a security fix; disclosure to follow shortly.
2013-09-15 13:42:23 +08:00
.tx
django Ensure that passwords are never long enough for a DoS. 2013-09-15 13:42:23 +08:00
docs Ensure that passwords are never long enough for a DoS. 2013-09-15 13:42:23 +08:00
extras Modernize the CSRF migration helper. 2013-05-17 18:15:08 +02:00
scripts Added check when fetching and updating translations from Transifex 2013-07-03 16:09:20 +02:00
tests Fixed a timing edge case in the RelatedFieldWidgetSeleniumFirefoxTests. 2013-09-15 01:11:07 +02:00
.gitattributes
.gitignore ignore build directory, so it doesn't accidentally get committed 2013-09-06 10:25:33 -05:00
.hgignore
AUTHORS Add myself to authors file 2013-09-09 09:03:50 -04:00
CONTRIBUTING.rst
INSTALL Bumped minimum Python version requirement to 2.7 in Django 1.7. 2013-07-01 12:01:59 +02:00
LICENSE
MANIFEST.in Fixed #19252 -- Added support for wheel packages. 2013-05-01 13:46:06 +02:00
README.rst
setup.cfg Removed comment from setup.cfg which broke newer wheel versions. 2013-06-29 16:28:05 +02:00
setup.py Bumped minimum Python version requirement to 2.7 in Django 1.7. 2013-07-01 12:01:59 +02:00

Django is a high-level Python Web framework that encourages rapid development
and clean, pragmatic design. Thanks for checking it out.

All documentation is in the "docs" directory and online at
http://docs.djangoproject.com/en/dev/. If you're just getting started, here's
how we recommend you read the docs:

* First, read docs/intro/install.txt for instructions on installing Django.

* Next, work through the tutorials in order (docs/intro/tutorial01.txt,
  docs/intro/tutorial02.txt, etc.).

* If you want to set up an actual deployment server, read
  docs/howto/deployment/index.txt for instructions.

* You'll probably want to read through the topical guides (in docs/topics)
  next; from there you can jump to the HOWTOs (in docs/howto) for specific
  problems, and check out the reference (docs/ref) for gory details.

* See docs/README for instructions on building an HTML version of the docs.

Docs are updated rigorously. If you find any problems in the docs, or think they
should be clarified in any way, please take 30 seconds to fill out a ticket
here:

http://code.djangoproject.com/newticket

To get more help:

* Join the #django channel on irc.freenode.net. Lots of helpful people hang out
  there. Read the archives at http://django-irc-logs.com/.

* Join the django-users mailing list, or read the archives, at
  http://groups.google.com/group/django-users.

To contribute to Django:

* Check out http://www.djangoproject.com/community/ for information about
  getting involved.

To run Django's test suite:

* Follow the instructions in the "Unit tests" section of
  docs/internals/contributing/writing-code/unit-tests.txt, published online at
  https://docs.djangoproject.com/en/dev/internals/contributing/writing-code/unit-tests/#running-the-unit-tests