do not disclose email or IP addresses of users through RSS

The feed used to add real or fake email addresses to items (because some feed formats require them). The default RSS1.0 format did not show them, but that changed in the recent update of our FeedCreator classes. Now all code for that has been removed, always showing an @undisclosed.example.com email address. Because some feed readers may use the email address to distinguis authors, the mechanism to prepend the user name was kept.
2017-08-05 17:39:00 +02:00 · 2017-08-05 17:39:00 +02:00 · 4364181fd5
parent 03215a5ae7
commit 4364181fd5
1 changed files with 23 additions and 27 deletions
--- a/feed.php
+++ b/feed.php
@ -402,34 +402,30 @@ function rss_buildItems(&$rss, &$data, $opt) {
            // add user
            # FIXME should the user be pulled from metadata as well?
            $user         = @$ditem['user']; // the @ spares time repeating lookup
-            $item->author = '';
-            if($user && $conf['useacl'] && $auth) {
-                $userInfo = $auth->getUserData($user);
-                if($userInfo) {
-                    switch($conf['showuseras']) {
-                        case 'username':
-                        case 'username_link':
-                            $item->author = $userInfo['name'];
-                            break;
-                        default:
-                            $item->author = $user;
-                            break;
-                    }
-                } else {
-                    $item->author = $user;
-                }
-                if($userInfo && !$opt['guardmail']) {
-                    $item->authorEmail = $userInfo['mail'];
-                } else {
-                    //cannot obfuscate because some RSS readers may check validity
-                    $item->authorEmail = $user.'@'.$ditem['ip'];
-                }
-            } elseif($user) {
-                // this happens when no ACL but some Apache auth is used
-                $item->author      = $user;
-                $item->authorEmail = $user.'@'.$ditem['ip'];
+            if(blank($user)) {
+                $item->author = 'Anonymous';
+                $item->authorEmail = 'anonymous@undisclosed.example.com';
            } else {
-                $item->authorEmail = 'anonymous@'.$ditem['ip'];
+                $item->author = $user;
+                $item->authorEmail = $user . '@undisclosed.example.com';
+
+                // get real user name if configured
+                if($conf['useacl'] && $auth) {
+                    $userInfo = $auth->getUserData($user);
+                    if($userInfo) {
+                        switch($conf['showuseras']) {
+                            case 'username':
+                            case 'username_link':
+                                $item->author = $userInfo['name'];
+                                break;
+                            default:
+                                $item->author = $user;
+                                break;
+                        }
+                    } else {
+                        $item->author = $user;
+                    }
+                }
            }

            // add category