Commit graph

357 commits

Author SHA1 Message Date
Wytze van der Raay
e2e8259c68 Fix for https://bugs.cacert.org/view.php?id=1291
"Executable code can be entered in location field, executable on wot15"
2014-08-09 09:13:02 +00:00
Wytze van der Raay
5c7e14e915 Fix for https://bugs.cacert.org/view.php?id=1226
"Ädd DoB to selection of assuree"
2014-07-16 10:37:57 +00:00
Wytze van der Raay
73daac8e42 Fix for https://bugs.cacert.org/view.php?id=1280
"WOT: Contact Assurer form does not print preferred language"
2014-07-16 10:32:57 +00:00
Wytze van der Raay
924e6b0337 Intermediate patch for https://bugs.cacert.org/view.php?id=807
"CAcert ignores signature algorithm from csr".

This patch introduces the UI for our members to choose which signature
algorithm they want their certificates signed with. Among the choices
are SHA-256, SHA-384 and SHA-512. Further choices may be included as our
signer and web frontend permit.
2014-06-13 16:00:16 +00:00
Wytze van der Raay
bfbd218aac Fix for https://bugs.cacert.org/view.php?id=929
"GPG/PGP menu items expand the wrong root"
2014-06-10 08:50:47 +00:00
Wytze van der Raay
ccc2a6f534 Combined fixes for
- https://bugs.cacert.org/view.php?id=413
  "Add a web page indicating the certificate request is still pending"
- https://bugs.cacert.org/view.php?id=1138
  "Implement to log the SE activity"
- https://bugs.cacert.org/view.php?id=1221
  "Inconsistency in Assurance Management"
2014-06-07 09:16:26 +00:00
Wytze van der Raay
42f16aab95 Combined fixes for
- https://bugs.cacert.org/view.php?id=413
  "Add a web page indicating the certificate request is still pending"
- https://bugs.cacert.org/view.php?id=1138
  "Implement to log the SE activity"
- https://bugs.cacert.org/view.php?id=1221
  "Inconsistency in Assurance Management"
2014-06-07 09:13:27 +00:00
Wytze van der Raay
14aafe2212 Fix for https://bugs.cacert.org/view.php?id=1275
"Missing quotes around"masteracc" array index"
2014-06-07 08:52:43 +00:00
Wytze van der Raay
b740a14b10 Fix for https://bugs.cacert.org/view.php?id=372
"Renewing certificates fails to update links between domains and the certificate
 properly which causes issues"
2014-06-07 08:46:18 +00:00
Mendel Mobach
1112d76dd5 fix for https://bugs.cacert.org/view.php?id=1272
"Arbitrary Code Execution via SQL injection on certain database fields"
2014-04-19 07:32:11 +00:00
Mendel Mobach
ea8c675168 fix for https://bugs.cacert.org/view.php?id=1266
"Second-order SQL injection in Certificate-related queries"
2014-04-18 08:12:30 +00:00
Mendel Mobach
365a7272cf fix for https://bugs.cacert.org/view.php?id=1184
"hex2bin function"
2014-04-18 08:10:17 +00:00
Wytze van der Raay
26fc6dd1f5 Additional fix for for http://bugs.cacert.org/view.php?id=1070
"Certain account passwords are logged in web server error log."
2014-04-01 14:32:06 +00:00
Wytze van der Raay
eff4f484ff Fix for https://bugs.cacert.org/view.php?id=448
"when revoking a certificate, confusing info is given to the user"
2014-03-24 11:38:41 +00:00
Wytze van der Raay
4937cf6038 Fix for https://bugs.cacert.org/view.php?id=1255
"DSA certificate issuing ignores key strength"
2014-03-10 16:32:07 +00:00
Wytze van der Raay
1b49547d06 Fix for https://bugs.cacert.org/view.php?id=440
"Problem with subjectAltName"
2014-01-15 16:00:05 +00:00
Wytze van der Raay
c68de86c6d Fix for https://bugs.cacert.org/view.php?id=1137
"Record the CCA acception for entering an assurance"
2014-01-15 15:55:29 +00:00
Wytze van der Raay
0d230706fc Fix for https://bugs.cacert.org/view.php?id=1195
"Take out change ability on pages/account/6.php"
2014-01-15 15:50:40 +00:00
Wytze van der Raay
3b79d4bd1b Fix for https://bugs.cacert.org/view.php?id=1236
"Security questions rejected invalid on adding middle name"
2014-01-15 15:40:51 +00:00
Wytze van der Raay
3ac5042e96 Fix for https://bugs.cacert.org/view.php?id=1010
"Reorder the view on organisation certificates"
2013-11-20 16:28:34 +00:00
Wytze van der Raay
fc979343e1 Fix for https://bugs.cacert.org/view.php?id=569
"output order when removing email address"
2013-10-21 09:17:17 +00:00
Wytze van der Raay
b9729ffae1 Fix for http://bugs.cacert.org/view.php?id=918
"Weak keys in certificates"
2013-10-16 10:44:30 +00:00
Wytze van der Raay
b57d4d8b17 Fix for http://bugs.cacert.org/view.php?id=1208
Improve readability of "Assure someone" page.
2013-10-16 10:41:21 +00:00
Wytze van der Raay
3dfac78f84 Jumbo patch for the following issues:
https://bugs.cacert.org/view.php?id=893
    Extend Delete account feature for support
  https://bugs.cacert.org/view.php?id=1123
    Add the Check CCA acception to all certificate creation processes
  https://bugs.cacert.org/view.php?id=1136
    Extend SE console with the functionality to revoke all user certificates of an user account
  https://bugs.cacert.org/view.php?id=1137
    Record the CCA acception for entering an assurance
  https://bugs.cacert.org/view.php?id=1177
    Combine wot.inc.php, notary.inc.php and temp-function.php
2013-09-06 15:21:06 +00:00
Wytze van der Raay
99a263d8b0 Fix for https://bugs.cacert.org/view.php?id=663
"Add "view personal" information sub menu to the "my details" menu"
2013-08-29 10:20:30 +00:00
root
47d3b2b0a2 Fix for http://bugs.cacert.org/view.php?id=782
Add "notes" field to certificate information.
2013-07-17 08:19:05 +00:00
Wytze van der Raay
d9dae47ae0 Fix for http://bugs.cacert.org/view.php?id=1186
warning when determining MX records of a domain.
2013-07-15 08:35:59 +00:00
Wytze van der Raay
5fb83cec32 Fix for http://bugs.cacert.org/view.php?id=1176
fix deprecation messages due to PHP update.
2013-07-15 08:32:06 +00:00
Wytze van der Raay
f9e74c01d0 Fix for http://bugs.cacert.org/view.php?id=999
"When revoking an assurance in the SE console the messagebox is unclear"
2013-06-26 11:02:45 +00:00
Wytze van der Raay
e870b86839 Improved fix for https://bugs.cacert.org/view.php?id=922
CAcert application code problem causing missing "certificate about to expire messages"
2013-06-11 10:04:47 +00:00
Wytze van der Raay
959cc39060 Fix for https://bugs.cacert.org/view.php?id=1122
"Give Support the chance to see when the first and the last CCA acception took place"
2013-05-15 09:39:39 +00:00
Wytze van der Raay
98c8c419c8 Fix for https://bugs.cacert.org/view.php?id=1121
"Record the CCA acception for the account creation"
2013-05-15 09:37:21 +00:00
Wytze van der Raay
bd93b20d86 Fix for https://bugs.cacert.org/view.php?id=602
"navigation bar - About CAcert.org Menu section missing if logged in"
2013-05-14 08:53:56 +00:00
Wytze van der Raay
8c6630a282 Fix for https://bugs.cacert.org/view.php?id=1112
"Exchange the text on the TTP page according to the new TTP program"
2013-04-24 13:13:08 +00:00
Wytze van der Raay
b44c5dd1ca Fix for https://bugs.cacert.org/view.php?id=964
"VBscript, Weak Keys script 4.php, 17.php to combine / select box key
 size and lower limit to 2048" (Codename: Blackjack)
2013-02-27 10:30:49 +00:00
Wytze van der Raay
291f6cb1d4 Fix for https://bugs.cacert.org/view.php?id=964
"VBscript, Weak Keys script 4.php, 17.php to combine / select box key
 size and lower limit to 2048" (Codename: Blackjack)
2013-02-27 10:29:48 +00:00
Wytze van der Raay
ee7e7f6009 Fix for https://bugs.cacert.org/view.php?id=512
"Org admins must have 100 points"
2013-01-17 15:09:38 +00:00
Wytze van der Raay
2540dc0f86 Fix for http://bugs.cacert.org/view.php?id=888
"to add new assurance method TTP"
2013-01-17 14:55:28 +00:00
Wytze van der Raay
bd2f3898b4 Backing out the changes made earlier today for:
Fix for https://bugs.cacert.org/view.php?id=922
  "CAcert application code problem causing missing 'certificate about to expire'
messages"
since that new code is locking up the mysql server.
2012-11-01 19:27:29 +00:00
Wytze van der Raay
27236c1388 Fix for https://bugs.cacert.org/view.php?id=860
"someone accessed your password and secret questions page, plz change pwd translation mixed and garbled, text is tanslated in TL"
2012-11-01 13:57:40 +00:00
Wytze van der Raay
39e859c96c Fix for https://bugs.cacert.org/view.php?id=922
"CAcert application code problem causing missing 'certificate about to expire' messages"
2012-11-01 13:54:03 +00:00
Wytze van der Raay
316ef65915 Fix for https://bugs.cacert.org/view.php?id=978
"Invalid SPKAC requests are not properly validated"
2012-10-31 10:03:33 +00:00
Wytze van der Raay
9bde006b4d Fix for https://bugs.cacert.org/view.php?id=1091
"Improve message to assurer"
2012-10-13 13:53:59 +00:00
Wytze van der Raay
7c873275ed Fix for https://bugs.cacert.org/view.php?id=1024
Assurer flag is not set correctly on updatesort.php run
2012-08-10 11:08:22 +00:00
Wytze van der Raay
ccad5d5e16 Fix for https://bugs.cacert.org/view.php?id=981
New layout of view for Organisation Administrators in account/id35
2012-08-10 11:06:29 +00:00
Wytze van der Raay
1d69ee1289 Fix for https://bugs.cacert.org/view.php?id=789
Editing domain for organisations does not work.
2012-07-25 15:16:46 +00:00
Wytze van der Raay
46a36a95e4 Fix for https://bugs.cacert.org/view.php?id=967
Give an OA the opportuntiy to check if a designated Organisation Admininistrator
is a CAcert assurer.
2012-07-04 09:00:17 +00:00
Wytze van der Raay
a145c99dbb Emergency patch for http://bugs.cacert.org/view.php?id=1070
This issue is deemed to require emergency fixing since leaving it unpatched
would allow an attacker to execute arbitrary shell commands as the web server
user inside the chroot (note 003056 in the above bug).
2012-06-14 13:29:58 +00:00
Wytze van der Raay
0660f20e38 Fix for https://bugs.cacert.org/view.php?id=1023
Consolidate changes into the Assure Someone page.
2012-05-30 17:48:19 +00:00
Wytze van der Raay
9564e36701 Fix for https://bugs.cacert.org/view.php?id=1033
User can grant more then 35 points.
2012-04-29 18:56:05 +00:00