Disable $wgEnableImageWhitelist by default

author Kunal Mehta <legoktm@member.fsf.org>

Wed, 24 Oct 2018 22:39:53 +0000 (15:39 -0700)

committer Kunal Mehta <legoktm@member.fsf.org>

Wed, 24 Oct 2018 22:39:53 +0000 (15:39 -0700)
author Kunal Mehta <legoktm@member.fsf.org>
Wed, 24 Oct 2018 22:39:53 +0000 (15:39 -0700)
committer Kunal Mehta <legoktm@member.fsf.org>
Wed, 24 Oct 2018 22:39:53 +0000 (15:39 -0700)
diff --git a/RELEASE-NOTES-1.32 b/RELEASE-NOTES-1.32

index d90cfdf..1b5a36a 100644 (file)
--- a/RELEASE-NOTES-1.32
+++ b/RELEASE-NOTES-1.32
@@ -60,6 +60,10 @@ production.
  * $wgPopularPasswordFile — The location of the default popular passwords file
    has been moved to be in line with other non-PHP files used by libraries and
    classes.
+* $wgEnableImageWhitelist is now disabled by default, as it opens up a hole for
+  potential privacy leaks by administrators. You can check
+  "MediaWiki:External image whitelist" on your wiki to see whether the feature
+  was ever used, and whether it needs to be re-enabled.
  
  ==== Removed configuration ====
  * $wgEnableAPI and $wgEnableWriteAPI – These settings, deprecated in 1.31,
diff --git a/includes/DefaultSettings.php b/includes/DefaultSettings.php

index 731abb5..82dbecf 100644 (file)
--- a/includes/DefaultSettings.php
+++ b/includes/DefaultSettings.php
@@ -4245,8 +4245,10 @@ $wgAllowExternalImagesFrom = '';
   *
   * Set this to true to enable the on-wiki whitelist (MediaWiki:External image whitelist)
   * Or false to disable it
+ *
+ * @since 1.14
   */
-$wgEnableImageWhitelist = true;
+$wgEnableImageWhitelist = false;
  
  /**
   * A different approach to the above: simply allow the "<img>" tag to be used.
author	Kunal Mehta <legoktm@member.fsf.org>
	Wed, 24 Oct 2018 22:39:53 +0000 (15:39 -0700)
committer	Kunal Mehta <legoktm@member.fsf.org>
	Wed, 24 Oct 2018 22:39:53 +0000 (15:39 -0700)
RELEASE-NOTES-1.32		patch \| blob \| history
includes/DefaultSettings.php		patch \| blob \| history