From: Fabian Keil <fk@fabiankeil.de>
Date: Wed, 8 Mar 2017 13:11:15 +0000 (+0000)
Subject: Remove TODO #15: Block untrusted CGI requests to sensitive pages with status code 403
X-Git-Tag: v_3_0_27~196
X-Git-Url: http://www.privoxy.org/gitweb/@default-cgi@/faq/%22https:/developer-manual/static/@default-cgi@edit-actions-remove-url?a=commitdiff_plain;h=a6bd59c5026c31d5621613f0665fb1827b0f02de;p=privoxy.git

Remove TODO #15: Block untrusted CGI requests to sensitive pages with status code 403

I recently implemented this without remembering that I had
previously added it to the TODO list.
---

diff --git a/TODO b/TODO
index 86cce1f2..7f07a108 100644
--- a/TODO
+++ b/TODO
@@ -1,4 +1,4 @@
-$Id: TODO,v 1.155 2017/01/23 13:03:26 fabiankeil Exp $
+$Id: TODO,v 1.156 2017/01/23 13:06:53 fabiankeil Exp $
 
 Some Privoxy-related tasks, sorted by the time they
 have been added, not by priority.
@@ -53,9 +53,6 @@ http://www.privoxy.org/faq/general.html#DONATE
 
 14) Allow to filter POST parameters.
 
-15) If trusted CGI pages are requested without trusted referrer,
-    set the status code to 403 instead of 200.
-
 16) Filter SSL encrypted content as well.
 
     At the beginning we could use a unencrypted connection between