kienan
/
AlternC
mirror of https://github.com/kienanstewart/AlternC.git
1
0
Fork 0
Code Issues Releases Wiki Activity

Commit Graph

  • ab573e44ba fixing Roundcube module not using PDO properly Benjamin Sonntag 2017-06-26 17:07:13 +0200
  • f529ffd7fc updating translations from transifex Benjamin Sonntag 2017-06-20 12:16:53 +0200
  • 46ab94707a adding mandatory fields to the account creation form, Fixes #132 Benjamin Sonntag 2017-06-18 18:51:11 +0200
  • cd310b355a adding mandatory fields to the account creation form, Fixes #132 Benjamin Sonntag 2017-06-18 18:45:57 +0200
  • a320c061fe replacing old url by new one with SSL-fr/en documentation, Fixes #142 Benjamin Sonntag 2017-06-18 00:15:11 +0200
  • 40071b5865 Fixing SSLMutex in Jessie to be Mutex instead, and a DIR instead of a FILE, Fixes #142 Benjamin Sonntag 2017-06-17 21:28:40 +0200
  • 1c08a3e5a0 Changing MySQL / MariaDB engine to InnoDB, Fixes #121 Benjamin Sonntag 2017-06-17 21:27:12 +0200
  • 47e689adf6 14 days is recommended value for expiry value in zone SOA (rfc1912) John Soros 2016-10-18 11:29:49 +0200
  • 51558b8423 changelog update Benjamin Sonntag 2017-06-07 15:25:56 +0200
  • 55cb0410a5 Merge pull request #125 from soul9/dkim-hosts Benjamin Sonntag 2017-06-07 15:16:40 +0200
  • 957098327c Merge pull request #146 from soul9/fix_pma_sso Benjamin Sonntag 2017-06-07 15:15:07 +0200
  • 43bb39105b Merge pull request #153 from fser/fser/uniform-log-entries Benjamin Sonntag 2017-06-07 15:14:03 +0200
  • ea4eea6145 adding a variable to ignore IP in sessions, currently broken it seems Benjamin Sonntag 2017-06-07 15:13:25 +0200
  • 6d72cc522b adding x-forwarded-proto = https management to detet https too Benjamin Sonntag 2017-06-07 14:31:30 +0200
  • fcf14400da emptying body_checks and header_checks => now considered harmful to email delivery Benjamin Sonntag 2017-06-07 14:24:33 +0200
  • e452219136 log entries for error and log both log IP address François (fser) 2017-06-03 11:16:31 +0200
  • 611e41a31b bug fix: set success class to alert-success insted of alert-error after successful mailbox parameters update Remi 2017-02-07 10:20:33 +0100
  • 4a2d1dcbdf bug fix undelete mail Remi 2017-01-24 18:29:13 +0100
  • 20dab5677a bug fixes variable $dom_id et non $domain_id Remi 2017-01-24 17:52:29 +0100
  • bec836f87b latest security update of phpmyadmin seems to have disabled the indexes so we need to explicitely redirect to .../index.php John Soros 2017-01-20 17:41:52 +0100
  • 77a7849119 Merge branch 'thms0-stable-3.1' into stable-3.1 (cname with empty "sub-domain" check patch) Dominique Rousseau 2016-12-08 18:39:33 +0100
  • d07d5ae8ad Merge branch 'stable-3.1' of https://github.com/thms0/AlternC into thms0-stable-3.1 Dominique Rousseau 2016-12-08 18:39:11 +0100
  • d5527400c4 add 'pwgen' to the Depends (needed for password generation during install) Dominique Rousseau 2016-12-02 17:35:13 +0100
  • cb56e77093 m_dom now refuses cname on its apex thms 2016-11-04 12:00:24 +0100
  • 0ca2570890 Fixed user login via the API restapi-fixes Kienan Stewart 2016-10-28 03:02:58 +0000
  • 1abacb64ee Fixed domain adding via API which always failed without lock Kienan Stewart 2016-10-28 03:02:24 +0000
  • 1dc41d5530 [fix] missing csrf on mail_manage_catchall.php Benjamin Sonntag 2016-10-27 16:32:49 +0200
  • 5b06f08cfe fix opendkim signing for mails submitted over the network (not localhost - webmail) John Soros 2016-10-18 11:40:31 +0200
  • 50d8f8f1fb [fix] apache2.4 for Jessie doesn't ALLOW by default Benjamin Sonntag 2016-09-09 17:30:50 +0200
  • fc068bc938 [fix] invalid token at login time Benjamin Sonntag 2016-08-29 16:55:05 +0200
  • 6745f82bf6 [fix] Fixes #38 we don't ADD to a .sql in upgrades/ we create a new one for each new release Benjamin Sonntag 2016-08-27 14:42:29 +0200
  • 5bae6babfb [FIX] proper links for alternc.ini and php. Fixes #49 Benjamin Sonntag 2016-08-26 16:33:13 +0200
  • 4f3604e717 [FIX] #83 issue with FTP file with wrong rights. Benjamin Sonntag 2016-08-26 16:31:19 +0200
  • 1d9e478f2e [FIX] Undefined variable: res at upgrade time Benjamin Sonntag 2016-08-26 15:51:01 +0200
  • ecbee5c127 [fix] switching every AlternC's tables to InnoDB. Fixes #96 Benjamin Sonntag 2016-08-09 17:16:30 +0200
  • 5ef516e0ba Merge branch 'stable-3.1' of github.com:AlternC/AlternC into stable-3.1 Benjamin Sonntag 2016-08-09 16:44:34 +0200
  • 16bd8278a4 [fix] allow HTTPS on any panel (you'd better use letsencrypt then, but that's a valid choice. Fixes #106 Benjamin Sonntag 2016-08-09 16:44:30 +0200
  • 42eac1173d Merge pull request #107 from AlternC/albancrommer-patch-1 Benjamin Sonntag 2016-08-09 16:43:37 +0200
  • a35288b91e [fix] the file editor allows an invalid token. Tell the user and give a new one to re-submit. Fixes #111 Benjamin Sonntag 2016-08-09 16:40:11 +0200
  • 3a3168c69f [fix] fixing ACL issues with NFS and ITK not being able to read .htaccess Known bug of ITK. Fixes #104 Benjamin Sonntag 2016-08-09 16:06:17 +0200
  • 0c840f9f2e bug fix: remove old references to unknown 'bw_web' quota values linking to not existing stats_show_per_month.php page and menu gadget (anyone aiming to display custom menu gadget or size based quota could return in_menu=1 and type=size array values in hook_quota_get() function) Remi 2016-07-15 18:40:29 +0200
  • e32e8837c0 bug fix: unknown mysql expression "insert or replace" Remi 2016-07-15 17:09:49 +0200
  • 900af760ff bug fix: typo in do_actions.php (return_var returned when return_val expected) fixes #109 Remi 2016-07-14 21:13:25 +0200
  • 04c36baa77 Update config.php albancrommer-patch-1 Alban Crommer 2016-07-13 12:19:33 +0200
  • ade5c51f0f Merge branch 'stable-3.1' of github.com:AlternC/AlternC into stable-3.1 Benjamin Sonntag 2016-07-12 15:54:30 +0200
  • 3ffa78aa5f [fix] fixing db issue when creating a DB + post/request for SQLRESTORE Benjamin Sonntag 2016-07-12 15:54:21 +0200
  • d0a9f6ceac every 20 minutes is */20 not 00,20 Remi 2016-07-09 20:51:06 +0200
  • 1b73dff3a5 bug fix: sub admin were proposed to install hosting_tld for new user, but the domain creation silently failed Remi 2016-07-07 12:59:56 +0200
  • 5d3dfb2a11 Bug fix: Error in function get_variable_from_db Remi 2016-07-06 22:21:34 +0200
  • 9aa3f43160 preparing 3.x.11, fixing most wheezy patch Benjamin Sonntag 2016-05-31 12:14:08 +0200
  • e381692cbd [fix] deleting a domain didn't work (post/request check) Benjamin Sonntag 2016-05-31 12:13:57 +0200
  • 9057254059 [i18n] updating translations 20160515-secu Benjamin Sonntag 2016-05-26 18:38:16 +0200
  • e806446945 [wip] fixing most found bug during big test at https://pad.lqdn.fr/p/alternc-tests-secu201605 Benjamin Sonntag 2016-05-26 18:32:17 +0200
  • 93ce8ffd0f htmlentities in sql_getparams + check if db not found Benjamin Sonntag 2016-05-23 16:37:32 +0200
  • aef4f58e8a [wip] fixing errors brought by the big security changes... update browser preferences fix + some post/get/request messup + zip not working properly Benjamin Sonntag 2016-05-23 16:08:23 +0200
  • b4cd0d2a95 [wip] adding zip dependency : browser requires it for zip download feature Benjamin Sonntag 2016-05-23 16:02:03 +0200
  • d9d73d204c fixing most GET/REQUEST to POST if needed Benjamin Sonntag 2016-05-23 15:03:13 +0200
  • b205d6bf8a [wip] CSRF check should work better now... Benjamin Sonntag 2016-05-23 13:59:16 +0200
  • 23a438de99 [wip] csrf check: moving the check to the right place: before authentication Benjamin Sonntag 2016-05-23 08:33:32 +0200
  • aaa3d68697 [wip] adding missing ehe() and eue() for htmlentities or urlencode in form fields Benjamin Sonntag 2016-05-23 08:27:58 +0200
  • a956b38c00 [wip] adding missing ehe() and eue() for htmlentities or urlencode in form fields Benjamin Sonntag 2016-05-22 20:14:26 +0200
  • de5837750e same random system everywhere : mt_rand() Benjamin Sonntag 2016-05-22 17:40:57 +0200
  • 396f8c2598 [wip] securing more forms through CSRF management Benjamin Sonntag 2016-05-20 14:25:46 +0200
  • 6043e9c3d7 [wip] securing *all* forms through CSRF management (requires a new table) Benjamin Sonntag 2016-05-20 14:21:47 +0200
  • d9bdfaf1ac [wip] adding csrf form management, to be added everywhere Benjamin Sonntag 2016-05-19 17:04:49 +0200
  • 7b1e5bba94 [wip] m_mail LIMIT shall not be quoted Benjamin Sonntag 2016-05-18 18:41:27 +0200
  • 424b2a9ce7 [wip] more PDO fixes Benjamin Sonntag 2016-05-18 18:24:40 +0200
  • b1ca1d88ae fixing PDO for MySQL class and spoolsize (adding exec() for direct queries, manage properly query() call without arguments (no prepare, allow show database) Benjamin Sonntag 2016-05-18 18:00:04 +0200
  • 8392c1d84f fixing quote + doms + roundcube & squirrelmail's quoting using PDO Benjamin Sonntag 2016-05-18 15:39:41 +0200
  • b6eb1e668c fixing get_remote_ip() quoting Benjamin Sonntag 2016-05-18 15:12:49 +0200
  • 06076b6fe0 moving https check down to AFTER hook/err initialization Benjamin Sonntag 2016-05-18 15:04:19 +0200
  • bb7d78a48b fixing rules + removing chown to alterncpanel Benjamin Sonntag 2016-05-18 14:56:35 +0200
  • 4e558e5e7c [wip] Passing mysql request params into array arguments for the query method (part 4) Emmanuel Monbroussou 2016-05-18 12:51:03 +0200
  • 61b07a257d [wip] Passing mysql request params into array arguments for the query method (part 3) Emmanuel Monbroussou 2016-05-18 11:19:20 +0200
  • 86e7bfb6b8 Merge branch '20160515-secu' of github.com:AlternC/AlternC into 20160515-secu Emmanuel Monbroussou 2016-05-17 18:58:25 +0200
  • 3665aabc96 [wip] Passing mysql request params into array arguments for the query method (part 2) Emmanuel Monbroussou 2016-05-17 18:57:01 +0200
  • 9315fbdbac API too is using PDO, including DB_System Benjamin Sonntag 2016-05-17 18:49:34 +0200
  • 0c505e8b6c [security] using prepared query in the panel Benjamin Sonntag 2016-05-17 18:47:09 +0200
  • 369ab3bf34 [security] using prepared query for scripts too Benjamin Sonntag 2016-05-17 18:44:21 +0200
  • 10e006bdbe [security] fixing DO_ACTIONS.PHP for REALPATH. Benjamin Sonntag 2016-05-17 18:12:57 +0200
  • 13ee5ce1dc Merge branch '20160515-secu' of github.com:AlternC/AlternC into 20160515-secu Emmanuel Monbroussou 2016-05-17 17:22:25 +0200
  • 262336aadb [wip] Passing mysql request params into array arguments for the query method (part 1) Emmanuel Monbroussou 2016-05-17 17:21:08 +0200
  • d79f83502b [security] fix of most ownership/accessmode issues, fixes possible root escalation Benjamin Sonntag 2016-05-17 15:51:33 +0200
  • 82e81b255b removing all reference to .svn / svn in makefile Benjamin Sonntag 2016-05-17 15:28:18 +0200
  • 6e12c8902a removing all reference to .svn / svn in makefile Benjamin Sonntag 2016-05-17 15:26:52 +0200
  • a817f30f38 removing all reference to .svn / svn in makefile Benjamin Sonntag 2016-05-17 15:25:59 +0200
  • bc5c8f7e34 Merge branch 'pdo_migration' into 20160515-secu Emmanuel Monbroussou 2016-05-17 15:10:37 +0200
  • 28f09e31e1 More explicit message for sql names length limit Remi 2016-04-28 12:54:53 +0200
  • b28b73e913 issue #75: defines length of sql user and database names depending of the local configuration. root 2016-04-27 19:04:49 +0200
  • 170114cdf8 forgotten file to fix #48 (fixperms_mail.sh) Remi 2016-04-27 17:58:27 +0200
  • d897037ad3 add fixperms_mail.sh to correct mail permissions (fixes #48) Remi 2016-04-27 17:55:46 +0200
  • c8353f3f21 initialize , Fixes #56 Benjamin Sonntag 2016-03-13 13:23:11 +0100
  • 0509d2915d telling in 96_ssl.conf that this file is overwriten by alternc.install. Fixes #33 Benjamin Sonntag 2016-03-13 13:16:25 +0100
  • 27af9078a8 fixes in postfix configuration to prevent some high load issues Remi 2016-03-12 10:02:18 +0100
  • 28318a002c bug fix: use of deprecated smtp_use_tls to replace by smtp_tls_security_level Remi 2016-03-12 09:39:07 +0100
  • 6388489d4f bug fix: Quota use was different when switching language use of str_pad inside get_size_unit() was removing decimal part due to localization issues (coma separator instead of dot) Remi 2016-03-09 10:58:19 +0100
  • cb381b6d63 Travis and database: try again fufroma 2016-03-07 14:58:53 +0100
  • b4641b8216 Travis: create database fufroma 2016-03-07 14:47:38 +0100
  • 9e393139de Attemp to fix travis <=> phpunit fufroma 2016-03-07 14:41:49 +0100
  • 06fdadbcd0 bug fix: rediction to https was called inside shell call Remi 2016-03-03 16:20:41 +0100