<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content="text/html; charset=utf-8" http-equiv=Content-Type>
<META name=GENERATOR content="MSHTML 8.00.6001.18928">
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT size=2 face=Arial>I'm going to agree with Mike on this one it's just
not something even worrying about, it's inherit if the person goes through the
trouble to find the svn's for things not publically accessable then they are
just going to have to take on the consequences</FONT></DIV>
<DIV><FONT size=2 face=Arial></FONT> </DIV>
<DIV> </DIV>
<BLOCKQUOTE
style="BORDER-LEFT: #000000 2px solid; PADDING-LEFT: 5px; PADDING-RIGHT: 0px; MARGIN-LEFT: 5px; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV
style="FONT: 10pt arial; BACKGROUND: #e4e4e4; font-color: black"><B>From:</B>
<A title=wordpress@zed1.com href="mailto:wordpress@zed1.com">Mike Little</A>
</DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A
title=theme-reviewers@lists.wordpress.org
href="mailto:theme-reviewers@lists.wordpress.org">theme-reviewers@lists.wordpress.org</A>
</DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Friday, February 11, 2011 3:58
AM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> Re: [theme-reviewers] malicious
code found in a theme in the codex</DIV>
<DIV><BR></DIV>
<DIV class=gmail_quote>On 10 February 2011 17:02, Edward Caissie <SPAN
dir=ltr><<A
href="mailto:edward.caissie@gmail.com">edward.caissie@gmail.com</A>></SPAN>
wrote:<BR>
<BLOCKQUOTE
style="BORDER-LEFT: #ccc 1px solid; MARGIN: 0px 0px 0px 0.8ex; PADDING-LEFT: 1ex"
class=gmail_quote>I know there "are a lot of things" in the SVN that could
be bad if someone did go to the trouble of checking them out then installing
them wherever ... just putting the idea out there for discussion on whether
or not those themes should be addressed in some fashion.<BR><BR></BLOCKQUOTE>
<DIV><BR></DIV>
<DIV>Don't forget that every old version of every checked-in theme file is
available on subversion too; including security bugs and every bit of bad
code, . This is the nature of open code repositories and should remain
so.</DIV>
<DIV><BR></DIV>
<DIV>I don't think there is any point even thinking about this.</DIV>
<DIV><BR></DIV>
<DIV><BR></DIV>
<DIV>Mike</DIV>
<DIV><BR></DIV></DIV>
<P>
<HR>
<P></P>_______________________________________________<BR>theme-reviewers
mailing
list<BR>theme-reviewers@lists.wordpress.org<BR>http://lists.wordpress.org/mailman/listinfo/theme-reviewers<BR></BLOCKQUOTE></BODY></HTML>