Version: 0.7.7 (using KDE 3.2.2, ALT Linux) Compiler: gcc version 3.3.3 20040412 (ALT Linux, build 3.3.3-alt4) OS: Linux (i686) release 2.4.26 Hello. Currient personal group settings can cause security compromise: empty fields in identity fill from account properties but this isn't obviously. I see two ways for resolve it: 1 (easy). Don't fill empty fields in identity of group properties if any one field specified 2 (good). Display filling data from account properties in fields of identity of group properties if field's data isn't specified.
Security issues are "critical" in Bugzilla...
If I understand you right this is at most if at all about privacy and the best solution is to show the used identity in the composer.
CVS commit by vkrause: Use the innermost non-empty identity completly instead of merging the group, account and global identity in case of empty fields. This fixes #61970 and #86070 (1). CCMAIL: 61970-done@bugs.kde.org, 86070@bugs.kde.org M +29 -51 knarticlefactory.cpp 1.80 M +7 -5 kncomposer.cpp 1.200 M +14 -20 knstringfilter.cpp 1.21
to Stephan Binner: Yes. And possible good idea using another color (grey ?) for data from account properties in felds of group properties
SVN commit 1075594 by otrichet: Place an identity selector in the composer BUG: 86070 M +0 -16 knarticle.cpp M +0 -1 knarticle.h M +48 -27 knarticlefactory.cpp M +10 -2 knarticlefactory.h M +61 -23 kncomposer.cpp M +6 -4 kncomposer.h M +49 -10 kncomposerview.cpp M +36 -8 kncomposerview.h WebSVN link: http://websvn.kde.org/?view=rev&revision=1075594