1
0
Fork 0
mirror of https://github.com/ruby/ruby.git synced 2022-11-09 12:17:21 -05:00
ruby--ruby/test/net/http
Jeremy Evans cd77e71bba [ruby/net-http] Remove ENVIRONMENT_VARIABLE_IS_MULTIUSER_SAFE
This list is out of date.  At least OpenBSD since 2013 does not
allow one user to read the environment variables of a process
run by another user.

While we could try to keep the list updated, I think it's a bad
idea to not use the user/password from the environment, even if
another user on the system could read it.  If http_proxy exists
in the environment, and other users can read it, it doesn't
make it more secure for Ruby to ignore it.  You could argue that
it encourages poor security practices, but net/http should provide
mechanism, not policy.

Fixes [Bug #18908]

https://github.com/ruby/net-http/commit/1e4585153d
2022-09-28 17:26:03 +09:00
..
test_buffered_io.rb
test_http.rb [ruby/net-http] Remove ENVIRONMENT_VARIABLE_IS_MULTIUSER_SAFE 2022-09-28 17:26:03 +09:00
test_http_request.rb Sync test_http_request.rb after fix to net-http 2021-11-15 09:31:44 -08:00
test_httpheader.rb [ruby/net-http] Make Net::HTTPHeader#content_range return nil on non-byte units 2022-06-16 23:35:27 +09:00
test_httpresponse.rb [ruby/net-http] Update the content-length heading when decoding bodies 2022-04-14 00:11:26 +09:00
test_httpresponses.rb
test_https.rb [ruby/net-http] Feature detect to make net/http usable with JRuby 2022-04-20 13:01:08 +09:00
test_https_proxy.rb [ruby/net-http] Use omit instead of skip for test-unit 2022-01-11 21:45:34 +09:00
utils.rb