Commit graph

375 commits

Author SHA1 Message Date
Wytze van der Raay
bd93b20d86 Fix for https://bugs.cacert.org/view.php?id=602
"navigation bar - About CAcert.org Menu section missing if logged in"
2013-05-14 08:53:56 +00:00
Wytze van der Raay
8c6630a282 Fix for https://bugs.cacert.org/view.php?id=1112
"Exchange the text on the TTP page according to the new TTP program"
2013-04-24 13:13:08 +00:00
Wytze van der Raay
b44c5dd1ca Fix for https://bugs.cacert.org/view.php?id=964
"VBscript, Weak Keys script 4.php, 17.php to combine / select box key
 size and lower limit to 2048" (Codename: Blackjack)
2013-02-27 10:30:49 +00:00
Wytze van der Raay
291f6cb1d4 Fix for https://bugs.cacert.org/view.php?id=964
"VBscript, Weak Keys script 4.php, 17.php to combine / select box key
 size and lower limit to 2048" (Codename: Blackjack)
2013-02-27 10:29:48 +00:00
Wytze van der Raay
ee7e7f6009 Fix for https://bugs.cacert.org/view.php?id=512
"Org admins must have 100 points"
2013-01-17 15:09:38 +00:00
Wytze van der Raay
2540dc0f86 Fix for http://bugs.cacert.org/view.php?id=888
"to add new assurance method TTP"
2013-01-17 14:55:28 +00:00
Wytze van der Raay
bd2f3898b4 Backing out the changes made earlier today for:
Fix for https://bugs.cacert.org/view.php?id=922
  "CAcert application code problem causing missing 'certificate about to expire'
messages"
since that new code is locking up the mysql server.
2012-11-01 19:27:29 +00:00
Wytze van der Raay
27236c1388 Fix for https://bugs.cacert.org/view.php?id=860
"someone accessed your password and secret questions page, plz change pwd translation mixed and garbled, text is tanslated in TL"
2012-11-01 13:57:40 +00:00
Wytze van der Raay
39e859c96c Fix for https://bugs.cacert.org/view.php?id=922
"CAcert application code problem causing missing 'certificate about to expire' messages"
2012-11-01 13:54:03 +00:00
Wytze van der Raay
316ef65915 Fix for https://bugs.cacert.org/view.php?id=978
"Invalid SPKAC requests are not properly validated"
2012-10-31 10:03:33 +00:00
Wytze van der Raay
9bde006b4d Fix for https://bugs.cacert.org/view.php?id=1091
"Improve message to assurer"
2012-10-13 13:53:59 +00:00
Wytze van der Raay
7c873275ed Fix for https://bugs.cacert.org/view.php?id=1024
Assurer flag is not set correctly on updatesort.php run
2012-08-10 11:08:22 +00:00
Wytze van der Raay
ccad5d5e16 Fix for https://bugs.cacert.org/view.php?id=981
New layout of view for Organisation Administrators in account/id35
2012-08-10 11:06:29 +00:00
Wytze van der Raay
1d69ee1289 Fix for https://bugs.cacert.org/view.php?id=789
Editing domain for organisations does not work.
2012-07-25 15:16:46 +00:00
Wytze van der Raay
46a36a95e4 Fix for https://bugs.cacert.org/view.php?id=967
Give an OA the opportuntiy to check if a designated Organisation Admininistrator
is a CAcert assurer.
2012-07-04 09:00:17 +00:00
Wytze van der Raay
a145c99dbb Emergency patch for http://bugs.cacert.org/view.php?id=1070
This issue is deemed to require emergency fixing since leaving it unpatched
would allow an attacker to execute arbitrary shell commands as the web server
user inside the chroot (note 003056 in the above bug).
2012-06-14 13:29:58 +00:00
Wytze van der Raay
0660f20e38 Fix for https://bugs.cacert.org/view.php?id=1023
Consolidate changes into the Assure Someone page.
2012-05-30 17:48:19 +00:00
Wytze van der Raay
9564e36701 Fix for https://bugs.cacert.org/view.php?id=1033
User can grant more then 35 points.
2012-04-29 18:56:05 +00:00
Wytze van der Raay
942c83ae9d Fix for https://bugs.cacert.org/view.php?id=1003:
Provide a possibility to regularly review the permissions in the system.
2012-04-29 18:28:38 +00:00
root
2679d75dfc Fix for https://bugs.cacert.org/view.php?id=985
"Move from translingo to pootle"
2012-01-24 14:26:05 +00:00
root
a0070c6cd2 Fix for https://bugs.cacert.org/view.php?id=985
"Move from translingo to pootle"
2012-01-24 14:24:31 +00:00
Wytze van der Raay
31c1cd305f Fixes for https://bugs.cacert.org/view.php?id=965 :
Outsource / fix Webdb text pages id=12, 13, (17)
2011-11-25 11:28:37 +00:00
Wytze van der Raay
7481fb646e Fix for https://bugs.cacert.org/view.php?id=968
(split 0000909: too many error messages logged - part II - general.php)
2011-11-16 21:23:50 +00:00
Wytze van der Raay
36e1d73402 Fix for https://bugs.cacert.org/view.php?id=882
(display Assurance when field in list of assurances received,
 assurances given by a user in admin console interface).
2011-11-16 15:02:20 +00:00
Wytze van der Raay
431e29b11c Follow-up fix for https://bugs.cacert.org/view.php?id=827
(Tverify points to be deprecated).
2011-11-16 14:58:46 +00:00
Wytze van der Raay
dc1b3bfbbe Follow-up fix for https://bugs.cacert.org/view.php?id=882 :
display Assurance when field in list of assurances received, assurances given
by a user in admin console interface
2011-10-27 12:49:52 +00:00
Wytze van der Raay
98f5b2b3e9 Follow-up fix for https://bugs.cacert.org/view.php?id=827
(Tverify points to be deprecated).
2011-10-27 12:37:37 +00:00
Wytze van der Raay
0161d32e3d Fix for https://bugs.cacert.org/view.php?id=966 :
Delete Admin for [organization] deletes admin even though cancel button
is pressed.
2011-10-21 20:01:45 +00:00
Wytze van der Raay
2aac67482d Additional (partial) fix for https://bugs.cacert.org/view.php?id=827
(Tverify points to be deprecated).
2011-10-07 19:58:20 +00:00
Wytze van der Raay
04123e8510 Fix for https://bugs.cacert.org/view.php?id=882
(display Assurance when field in list of assurances received,
 assurances given by a user in admin console interface)
2011-10-05 20:03:22 +00:00
Wytze van der Raay
1923ac10b6 Additional fix for https://bugs.cacert.org/view.php?id=827
(Tverify points to be deprecated)
2011-09-07 10:36:03 +00:00
Wytze van der Raay
d98d23ff5b Fix for https://bugs.cacert.org/view.php?id=841
(Problems on cert login with "duplicate" serial numbers)
2011-09-07 10:30:32 +00:00
Wytze van der Raay
15c73ba39d Fix for https://bugs.cacert.org/view.php?id=827 :
Tverify points to be deprecated.
2011-08-15 16:08:26 +00:00
Wytze van der Raay
b37255299d Fix for https://bugs.cacert.org/view.php?id=963
(Logout Session not completely reset)
2011-08-03 10:11:39 +00:00
Wytze van der Raay
3d4f9beb37 Fix for https://bugs.cacert.org/view.php?id=953 (After change of
password change on account.php?id=14 does not meet requirements wrong redirect)
2011-08-03 10:08:53 +00:00
Wytze van der Raay
6ef19fd6eb Fix for https://bugs.cacert.org/view.php?id=942
(CATS import interface is not fit to handle non-Assurer Challenge tests)
2011-08-03 10:04:41 +00:00
Wytze van der Raay
f0c474f5d6 Fix for https://bugs.cacert.org/view.php?id=637
(password suggestion always the same).
2011-08-01 14:34:08 +00:00
Wytze van der Raay
da58aac918 Fix for https://bugs.cacert.org/view.php?id=921 (Privacy Policy). 2011-07-27 10:41:01 +00:00
Wytze van der Raay
d86b229aac Fix for https://bugs.cacert.org/view.php?id=948 2011-07-22 14:11:14 +00:00
Wytze van der Raay
6f50254e57 Fix for https://bugs.cacert.org/view.php?id=897 2011-07-22 13:49:41 +00:00
Wytze van der Raay
8571e6f0a9 Fix for https://bugs.cacert.org/view.php?id=918
(detection and prevention of weak keys for CAcert-issued certificates)
2011-06-16 09:19:58 +00:00
Wytze van der Raay
a03a70a6bb Fix for https://bugs.cacert.org/view.php?id=910 :
Replace "Board" list under http://www.cacert.org/index.php?id=8 with Wiki Link.
2011-03-16 14:32:34 +00:00
Wytze van der Raay
2f36355235 Remove hooks for access logging to external statistics service. 2010-10-13 10:43:04 +00:00
Philipp Dunkel
fdaf5d4b76 http://bugs.cacert.org/view.php?id=671 2010-08-05 13:05:16 +00:00
Philipp Dunkel
f1bb0268b7 http://bugs.cacert.org/view.php?id=829 2010-08-05 12:57:16 +00:00
Philipp Dunkel
53a981daec Fixed relative URLs 2010-08-03 11:29:09 +00:00
Philipp Dunkel
4709f266ee Fixed the hostname to match the reverse lookups 2010-07-09 12:57:08 +00:00
Philipp Dunkel
e89b61e045 http://bugs.cacert.org/view.php?id=817 2010-05-04 19:51:50 +00:00
Philipp Dunkel
b6652020cf http://bugs.cacert.org/view.php?id=778 2010-03-29 18:03:23 +00:00
Wytze van der Raay
66ab0140b5 Realign contents of mysql.php.sample with actual setup on production server. 2010-01-18 12:59:39 +00:00
Philipp Dunkel
5b2687358b Text improvement due to support request 2009-12-20 22:41:21 +00:00
Philipp Dunkel
1137c3bdd6 TTP has been stopped 2009-12-04 18:31:35 +00:00
Philipp Dunkel
414ea03c2c Bug in the doubleval() function that only affected the production system 2009-12-03 20:50:54 +00:00
Philipp Dunkel
45a79bce52 Prevented wrong root certificate selection due to session problem 2009-12-02 22:08:51 +00:00
Philipp Dunkel
8a8222a59b https://aphexer.ulyssis.org/cacert/02d_general.php-pageLoadTime.patch
https://aphexer.ulyssis.org/cacert/02a_mysql_extended_query.patch
2009-11-25 22:33:43 +00:00
Wytze van der Raay
7fa6a187d8 Fix to previous checkins: ensure that both the ../csr/... and ../crt/...
directories are created, otherwise the CommModule client process will be
attemmpting to create and reference files in non-existing (crt) directories.
2009-10-17 18:48:29 +00:00
Philipp Dunkel
13d4c7554c Switched to new directory layout 2009-10-16 00:16:00 +00:00
Philipp Dunkel
20a89f4232 Removed old code 2009-10-15 21:37:40 +00:00
Philipp Dunkel
50b7f0283f Refactored certificate issueing to use the new generatecertpath function 2009-10-15 21:11:30 +00:00
Philipp Dunkel
710496173f Refactored Certificate Path generation 2009-10-15 20:55:59 +00:00
Philipp Dunkel
4046e845a8 http://bugs.cacert.org/view.php?id=781 2009-10-04 15:34:39 +00:00
Philipp Dunkel
8176d6b449 Improved H3 Pointer issue 2009-09-21 18:31:19 +00:00
Philipp Dunkel
7238a9eff8 Fixed H3 Pointer Issue 2009-09-21 18:26:43 +00:00
Philipp Dunkel
abe32d6694 Added Multiple SMTP Answer capability 2009-09-21 18:26:06 +00:00
Philipp Dunkel
42d32dc455 Fixed H3 pointers 2009-09-21 18:25:34 +00:00
Philipp Dunkel
a73302888f http://bugs.cacert.org/view.php?id=608 2009-09-20 17:38:13 +00:00
Philipp Dunkel
5e2319f7b6 Improved register_globals handling 2009-09-19 23:23:30 +00:00
Philipp Dunkel
5ee35e07c2 Increased the sleep to prevent SQL server overload 2009-07-31 21:26:08 +00:00
Philipp Dunkel
19b6f8692b Added NullByte Prevention 2009-07-31 21:25:38 +00:00
Philipp Dunkel
d0fd49b2d3 Fixed PHP Markup 2009-07-01 11:37:11 +00:00
Philipp Dunkel
27a6fe3e1b New language 2009-06-25 20:09:15 +00:00
Philipp Dunkel
6ccf32a74c Fixed the sender email address
Fixed a grammatic error
2009-06-15 21:01:02 +00:00
Philipp Dunkel
396f6a5f5c Fixed gettext 2009-06-08 21:16:40 +00:00
Philipp Dunkel
40c13b58b8 Improved gettext 2009-06-08 21:13:18 +00:00
Philipp Dunkel
9b70628acc Tagged Text 2009-05-31 16:48:40 +00:00
Philipp Dunkel
6588ab3181 Tagged Text 2009-05-31 16:48:03 +00:00
Philipp Dunkel
21a81c736d Tagged Text 2009-05-31 16:47:23 +00:00
Philipp Dunkel
87f841015a Tagged text 2009-05-31 16:46:58 +00:00
Philipp Dunkel
8093efc0bb Tagged text, fixed copyright date 2009-05-31 16:46:49 +00:00
Philipp Dunkel
a73811668a Tagged text, fixed copyright date 2009-05-31 16:46:30 +00:00
Philipp Dunkel
6c92fb5857 Added Esperanto 2009-05-29 17:50:16 +00:00
Philipp Dunkel
f522b17554 Improved server certificate renewal. Another bug is still there. 2009-05-22 05:09:24 +00:00
root
c0fa2d9054 https://bugs.cacert.org/view.php?id=215 2009-04-26 21:27:56 +00:00
root
c7e24e56f7 Fixed a hole
Added OCSP renewal support
2009-04-23 19:19:58 +00:00
root
ab926495bd Updated with the new URL 2009-04-14 16:07:42 +00:00
root
365e014d14 Cleanup of CSRs
Standardisation of temp names
2009-04-13 23:07:13 +00:00
root
dda3cc92f7 Improved the CSR cleanup to accept Microsoft OWA CSRs 2009-04-13 22:56:56 +00:00
root
4848d4d04d http://bugs.cacert.org/view.php?id=588 2009-04-05 00:30:33 +00:00
root
2f2aabff02 Fixed a register_globals bug 2009-03-22 00:32:25 +00:00
root
900b9f2894 Added a fast error messages for wrong certificate IDs 2009-01-22 20:36:34 +00:00
root
24768e1fdf Fixed a bug that prevented org-server-certs to be renewed 2009-01-22 20:36:09 +00:00
root
122cf1a704 Fixed a bug
Added Sanitizing to avoid XSS
2009-01-16 17:36:57 +00:00
root
23debde842 Added functions for correct training handling 2009-01-01 16:02:52 +00:00
root
b12f68c61d Fixed register_globals problem 2008-12-28 12:32:47 +00:00
root
d9b57f30fd Improved existance checking 2008-11-23 04:22:32 +00:00
root
947e254297 Improved XSS prevention
Added filename sanitizing function
2008-11-23 04:21:50 +00:00
root
8262bb0d93 Improved XSS prevention 2008-11-23 04:21:14 +00:00
root
f31073f49d Added SQL-Injection Protection 2008-11-22 20:31:52 +00:00
root
6e96aa01aa Added SQL-Injection protection 2008-11-18 00:06:34 +00:00
root
dc79c6215b Added prevention 2008-11-17 21:24:42 +00:00