 pdontthink
|
6cd24c0552
Happy 2017
|
8 年之前 |
|
pdontthink
|
35657ece1a
Per comments in the commit - setting the session cookie over and over can be troublesome, but doing the obvious and defaulting to *replace* cookies causes logins to fail due to something I don't care to debug - session cookie is complex through all the pages involved in a login request - instead we use a simple static cache to prevent useless duplicate cookie headers
|
9 年之前 |
|
pdontthink
|
2934017d92
Happy New Year
|
9 年之前 |
|
pdontthink
|
3b465a0d0f
Happy 2015
|
10 年之前 |
|
pdontthink
|
581dc23061
Happy 2014
|
11 年之前 |
|
Fredrik Jervfors
|
c076a1f1ae
Update copyright
|
12 年之前 |
|
Thijs Kinkhorst
|
efd75f4867
Replace calls to htmlspecialchars() with sm_encode_html_special_chars().
|
12 年之前 |
|
pdontthink
|
acc409fb2a
Updating copyrights. Happy New Year.
|
13 年之前 |
|
pdontthink
|
fc57bf2b59
Happy New Year!
|
14 年之前 |
|
pdontthink
|
7aa0e60863
Update copyrights to 2010
|
15 年之前 |
|
pdontthink
|
d4ceecd391
Slight rewrite of php_self()
|
15 年之前 |
|
pdontthink
|
cb5a6093d9
Make php_self() more robust. Seems to fix certain lighttpd issues, such as probably #1741469
|
15 年之前 |
|
pdontthink
|
a5644b2e2d
NULL not accepted as a replacement for empty arrays as of PHP 5.3
|
15 年之前 |
|
Fredrik Jervfors
|
1e590d028b
Adding and improving comments.
|
16 年之前 |
|
Fredrik Jervfors
|
134d462c94
The copyright symbol isn't really needed since the word "copyright" is there. Also it doesn't display right in the documentation.
|
16 年之前 |
|
pdontthink
|
683f761cc1
Add FIXME
|
16 年之前 |
|
pdontthink
|
10804e03a1
Always generate $base_uri for every page request as opposed to doing it only on some pages. Always regenerate session ID at login to prevent session fixation by an attacker who has set a malicious cookie on the client browser. Try to clean up extraneous cookies, such as ones some browsers might actually obey from the src/ directory. Thanks to Tomas Hoger. (CVE-2009-1580)
|
16 年之前 |
|
pdontthink
|
7443fe3229
Stop using session_unregister()
|
16 年之前 |
|
Fredrik Jervfors
|
0a6245814a
There are too many modified files being committed without the copyright year being updated, so here's a copyright year update the old-fashioned style.
|
16 年之前 |
|
pdontthink
|
3bdb47ac83
Add typecast type for bigint
|
16 年之前 |
|
pdontthink
|
03b26f2c81
Sync with 1.4.x wherein REQUEST_URI isn't always trustable under some PHP versions for use as our PHP_SELF variable value
|
16 年之前 |
|
pdontthink
|
7f8dd6cd77
Put info about the user/group of the web server in the configtest. Grabbing that info is implemented as a core function so plugins (such as ones that need to check SUID script permissions) can also make use of it.
|
16 年之前 |
|
pdontthink
|
7d285b51a0
Fix HTTPS detection under Windows IIS (#2318118)
|
16 年之前 |
|
pdontthink
|
bf4627edd2
Add a functions file for file utility functions (say that 10 times fast) along with some new file functions
|
16 年之前 |
|
pdontthink
|
d7f614d31b
Forgot @since info for sqsetcookie
|
16 年之前 |
|
pdontthink
|
36a6401ac7
Remove obsolete comments
|
17 年之前 |
|
pdontthink
|
cb1d5f52ff
Make more readable; expose header replace parameter when setting cookies
|
17 年之前 |
|
pdontthink
|
cfcffdbead
Use sqsetcookie(), not setcookie()
|
17 年之前 |
|
Thijs Kinkhorst
|
833746dca6
rework seed generation: this is something that really belongs in init.php
|
17 年之前 |
|
Thijs Kinkhorst
|
1413ea0073
use our existing random seeder function
|
17 年之前 |
