[mantisbt-dev] [PATCH] Make mailto:-HREFs in bug notes configurable

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Hi,

I noticed that email addresses are turned into mailto: links, regardless
of the `show_user_email_threshold' setting, even for the anonymous user
(viewer access rights).

The attached patch introduces a new configuration option,
`mailto_markup_threshold', which can be used to set an access right. If
the user has at least this level, email addresses are converted to links
as it was the case thus far. If the user does not have the required
right, the address is obfuscated by inserting
  <span style="display: none;">nospam$t_random.</span>
after the at-sign. $t_random holds a random number. CSS2 compliant
browsers will display the email address normally, but address harvesting
bots should have a hard time recognizing that the middle part is
garbage - even if they strip HTML tags..

Regards,
-octo
-- 
Florian octo Forster
Hacker in training
GnuPG: 0x91523C3D
http://verplant.org/