angler-fishThe Vulnerability History Project

Fixed #1 -- Added anonymous session support via middleware and request.session. Removed the former request.session, which wasn't being used anyway. Removed auth.Session model. See the BackwardsIncompatibleChanges wiki page for IMPORTANT notes on code you'll have to change and a DB table you'll have to create.

      git-svn-id: http://code.djangoproject.com/svn/django/trunk@518 bcc190cf-cafb-0310-a4f2-bffc1f526a37
by Chad the Hammerhead Shark 2005-08-16 22:54:05 UTC
commit 07889c13a63eeb3e8a73f1e02a21227def3ae548
Django VCC Empty Crowd Wipeout CVE-2015-5963 VCC Attack is in Session CVE-2015-5964
django/bin/daily_cleanup.py
+1 -1
django/conf/global_settings.py
+6 -8
django/contrib/comments/views/comments.py
+2 -2
django/core/handlers/modpython.py
+22 -9
django/core/handlers/wsgi.py
+22 -9
django/middleware/admin.py
+6 -7
django/middleware/sessions.py
-69
django/models/auth.py
+58 -3
django/models/core.py
-54
django/parts/auth/anonymoususers.py
+9
django/parts/auth/formfields.py
+2 -2
django/views/auth/login.py
+21 -12
docs/faq.txt
+3 -3
expand_less