2011-07-13 |
Dan Fuhry |
SECURITY: Fixed several XSS vulns reported by Secunia, mostly in Private Messaging. Also backported CSRF protection API from 1.1.x, and protected Private Messaging and logout functions.
|
file |
diff |
annotate
|
2010-11-16 |
Dan Fuhry |
SECURITY: Fix SQL injection in banlist check
|
file |
diff |
annotate
|
2009-01-17 |
Dan |
Rebrand as v1.0.6 (Roane)
|
file |
diff |
annotate
|
2008-05-10 |
Dan |
Rebrand as 1.0.5 (Ferrishyn)
|
file |
diff |
annotate
|
2008-02-28 |
Dan |
Rebrand as 1.0.4 (Ellyyllon)
|
file |
diff |
annotate
|
2008-01-01 |
Dan |
Integrating patch for PHP 6.0-dev compatibility
|
file |
diff |
annotate
|
2007-12-23 |
Dan |
Corrected licensing issue on YoungPup's DOM-Drag (it is now public domain -> GPLv2+ for Enano); fixed wrongful access denial under specific circumstances (fetch_page_acl() on nonexistent page + wiki mode)
|
file |
diff |
annotate
|
2007-12-19 |
Dan |
Many changes. Installer with PostgreSQL is broken badly and will be for some time.
|
file |
diff |
annotate
|
2007-12-15 |
Dan |
SURPRISE! Preliminary PostgreSQL support added. The required schema file is not present in this commit and will be included at a later date. No installer support is implemented. Also in this commit: several fixes including <!-- SYSMSG ... --> was broken in template compiler; set fixed width on included images to prevent the thumbnail box from getting huge; added a much more friendly interface to AJAX responses that are invalid JSON
|
file |
diff |
annotate
|
2007-12-13 |
Dan |
Rebrand as 1.0.3 (Dyrad)
|
file |
diff |
annotate
|
2007-12-03 |
Dan |
Deprecated debugConsole and removed all calls to it. Added a lot of comments to common.php. Added support for "anonymous pages" that are created when the Enano API is loaded from an external script. Fixed missing border-bottom on Type 2 sidebar blocks in Oxygen.
|
file |
diff |
annotate
|
2007-11-25 |
Dan |
Fixed highlighting in search results; changed search algorithm to give more score for terms found in page title; hopefully (hackishly) fixed login_key_cache getting too long
|
file |
diff |
annotate
|
2007-11-24 |
Dan |
Fixed a few major bugs with the upgrade script and the config file not getting loaded properly due to IN_ENANO_INSTALL
|
file |
diff |
annotate
|
2007-11-24 |
Dan |
Fixed a number of issues with SQL query readability and some undefined index-ish errors; consequently the SQL report feature was added
|
file |
diff |
annotate
|
2007-11-18 |
Dan |
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
|
file |
diff |
annotate
|
2007-11-18 |
Dan |
Hopefully managed to put enough hacks in there to make renaming the config file the last step, so if it fails, it can be done manually
|
file |
diff |
annotate
|
2007-11-18 |
Dan |
Major improvements in the security of the CAPTCHA system (no SQL injection or anything like that); fixed denied form submission due to _af_acting on form object wrongly switched to true
|
file |
diff |
annotate
|
2007-11-17 |
Dan |
Fixed: secure-cookie option is no longer set if $_SERVER['HTTPS'] is set but == "off"
|
file |
diff |
annotate
|
2007-11-15 |
Dan |
Merging in all changes from revision 185 (90b7a52bea45)
|
file |
diff |
annotate
|
2007-11-09 |
Dan |
Cleaned up some HTML in the installer; corrected some phpDoc syntax errors
|
file |
diff |
annotate
|
2007-10-23 |
Dan |
Slight HTTPS compatibility improvements
|
file |
diff |
annotate
|
2007-10-21 |
Dan |
Merging in changes from db8a849ad4c9
|
file |
diff |
annotate
|
2007-10-15 |
Dan |
SECURITY: Fix failure to log login failure on no row match
|
file |
diff |
annotate
|
2007-10-07 |
Dan |
SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
|
file |
diff |
annotate
|
2007-10-07 |
Dan |
Rebrand as 1.1.1; everything should now be bumped to "unstable" status
|
file |
diff |
annotate
|
2007-10-01 |
Dan |
Feature add: new page group type: regular expression match (PCRE)
|
file |
diff |
annotate
|
2007-09-24 |
Dan |
Rebrand as 1.0.2 (Coblynau); internal links are now parsed by RenderMan::parse_internal_links()
|
file |
diff |
annotate
|
2007-09-18 |
Dan |
Enano should now fully support UTF-8 usernames; newly registered users are now granted automatic edit access to their user pages (admins can still use protection on the page)
|
file |
diff |
annotate
|
2007-09-18 |
Dan |
Fully implemented password complexity enforcement; added encryption for passwords on registration form; some baby steps taken towards supporting international usernames - this is not working very well, we might need a hackish fix; TODO: implement password strength meter into installer UI and get international usernames 100% working
|
file |
diff |
annotate
|
2007-09-13 |
Dan |
Fix: activation e-mails were signed by Anonymous :-)
|
file |
diff |
annotate
|
2007-09-08 |
Dan |
Vastly improved UX for a login to an inactive account
|
file |
diff |
annotate
|
2007-07-21 |
Dan |
Made the move to Loch Ness, and got some basic page grouping functionality working. TODO: fix some UI issues in Javascript ACL editor and change non-JS ACL editor to work with page groups too
|
file |
diff |
annotate
|
2007-07-21 |
Dan |
Fixed a few presentation bugs in installer, made installer more "legally binding", and fixed global permissions inheritance in $session->fetch_page_acl()
|
file |
diff |
annotate
|
2007-07-10 |
Dan |
Vastly improved compatibility with older versions of IE, particularly 5.0, through the use of a kill switch that turns off all AJAX functions
|
file |
diff |
annotate
|
2007-07-05 |
Dan |
I dunno how many times I'm gonna have to fix the "problem seems to be the hex conversion" bug, but this is at least the fourth try.
|
file |
diff |
annotate
|
2007-07-01 |
Dan |
Finished everything on the TODO list (yay!); several CSS cleanups; tons more changes in this commit - see the patch for details
|
file |
diff |
annotate
|
2007-06-28 |
Dan |
Finished Special:Preferences/Profile page! Only the wikitext parser cleanup left, yay!
|
file |
diff |
annotate
|
2007-06-28 |
Dan |
COPPA support added
|
file |
diff |
annotate
|
2007-06-26 |
Dan |
Updated all version numbers back to Banshee; a few preliminary steps towards full UTF-8 support in page URLs
|
file |
diff |
annotate
|
2007-06-23 |
Dan |
Upgrades (RC2->RC3) should now work
|
file |
diff |
annotate
|
2007-06-23 |
Dan |
Emergency version change to 1.0rc3 to fix XSS vulnerabilities
|
file |
diff |
annotate
|
2007-06-22 |
Dan |
Installer actually works now on dev servers; minor language change in template.php; code cleanliness fix in sessions.php
|
file |
diff |
annotate
|
2007-06-13 |
dan |
Adding /includes
|
file |
diff |
annotate
|