Rooba
/
boinc
mirror of https://github.com/BOINC/boinc.git
1
0
Fork 0
Code Issues 1 Packages Projects Releases Wiki Activity
19,570 Commits 94 Branches 867 Tags 349 MiB
Commit Graph

28 Commits

Author SHA1 Message Date
David Anderson d27af6214d - user web: finish dealing with get args spam 
svn path=/trunk/boinc/; revision=23010
 2011-02-09 22:11:34 +00:00
David Anderson e87f289544 - fix formatting in PHP code 
svn path=/trunk/boinc/; revision=22623
 2010-11-04 18:20:57 +00:00
David Anderson 1c953745ed - web: don't call filter_var() if it doesn't exist (PHP version < 5.2) 
svn path=/trunk/boinc/; revision=22377
 2010-09-16 18:53:39 +00:00
David Anderson d6315c7112 - fix various XSS vulnerabilities reported by the 
Acunetix Web Vulnerability Scanner (free edition)


svn path=/trunk/boinc/; revision=22315
 2010-09-04 22:13:27 +00:00
David Anderson 65560415fe - Add "html/ops/purge_profile.php" script to help admins locate 
and remove spam profiles

svn path=/trunk/boinc/; revision=17753
 2009-04-08 17:46:47 +00:00
David Anderson 560b65dd85 - web: don't send an email after account is created via web; 
it serves no purpose and some people apparently view it as spam.

svn path=/trunk/boinc/; revision=16060
 2008-09-25 22:03:56 +00:00
David Anderson 9baf78fe5f - web: added copyright and license info to PHP files 
svn path=/trunk/boinc/; revision=15758
 2008-08-05 22:43:14 +00:00
David Anderson d403a14e42 - web: cleaned up logic of string processing. 
There are two aspects:
    1) undoing magic quotes (if it's being used).
        This must be done for all GET and POST string inputs.
        It is now done automatically by get_str() and post_str().
        The places that refer to $_GET and $_POST directly
        must do it themselves using undo_magic_quotes().
    2) Escaping user-supplied strings before using them in DB queries.
        This is done by process_user_text()
        (which should be renamed db_escape_string()).
        The new principle:
        call process_user_text() in the function that does the DB query
        (not at any higher level).


svn path=/trunk/boinc/; revision=15389
 2008-06-11 19:36:10 +00:00
David Anderson 79343260dd - user web: clean up logic for dealing with forgotten password: 
- login form now has ONLY email/passwd
        ("login with account key" is gone)
    - "forgot password?" takes you to a page with two options:
        1) type in email address, get an email with login link
        2) instructions for recovering account key from BOINC account file
    - email is stripped-down, has login link and not much else

    fixes #190

svn path=/trunk/boinc/; revision=14263
 2007-11-20 00:23:02 +00:00
Rom Walton d63aad418e *** empty log message *** 
svn path=/trunk/boinc/; revision=9790
 2006-04-03 23:09:20 +00:00
David Anderson 8a72aef655 remove email munge code 
svn path=/trunk/boinc/; revision=7518
 2005-08-26 22:26:26 +00:00
David Anderson 76f6c732ba *** empty log message *** 
svn path=/trunk/boinc/; revision=6163
 2005-05-15 16:36:39 +00:00
David Anderson 05ece15a25 *** empty log message *** 
svn path=/trunk/boinc/; revision=5860
 2005-04-15 18:43:53 +00:00
David Anderson 589c43379c *** empty log message *** 
svn path=/trunk/boinc/; revision=5702
 2005-03-23 03:04:56 +00:00
David Anderson 82cdffbf4f *** empty log message *** 
svn path=/trunk/boinc/; revision=5558
 2005-03-03 23:49:49 +00:00
David Anderson 2c5f1d1a5b *** empty log message *** 
svn path=/trunk/boinc/; revision=4772
 2004-12-06 22:41:19 +00:00
David Anderson 7342b36f2e *** empty log message *** 
svn path=/trunk/boinc/; revision=4599
 2004-11-18 20:01:12 +00:00
David Anderson 7a60dcfcc6 *** empty log message *** 
svn path=/trunk/boinc/; revision=4270
 2004-09-30 17:44:43 +00:00
David Anderson ca0ada5f18 *** empty log message *** 
svn path=/trunk/boinc/; revision=4194
 2004-09-13 22:58:48 +00:00
David Anderson 5edfed8bf4 *** empty log message *** 
svn path=/trunk/boinc/; revision=4004
 2004-08-06 12:12:26 +00:00
David Anderson 49a2fdd195 *** empty log message *** 
svn path=/trunk/boinc/; revision=3568
 2004-06-14 18:05:47 +00:00
David Anderson e2fbd1158c *** empty log message *** 
svn path=/trunk/boinc/; revision=3025
 2004-03-03 22:45:06 +00:00
Karl Chen 545a56d5c8 directory structure change 
svn path=/trunk/boinc/; revision=2938
 2004-02-02 23:34:39 +00:00
David Anderson 276139973e *** empty log message *** 
svn path=/trunk/boinc/; revision=2211
 2003-08-31 00:18:45 +00:00
David Anderson 39bc2da38d admin account creation 
svn path=/trunk/boinc/; revision=2171
 2003-08-22 05:36:25 +00:00
David Anderson b8853e0d3e web site fixes 
svn path=/trunk/boinc/; revision=703
 2002-12-06 23:25:16 +00:00
David Anderson 24d08f51a9 web site fixes 
svn path=/trunk/boinc/; revision=700
 2002-12-06 21:37:30 +00:00
Barry Luong bf9b213f18 added team stuff like viewing emails of team members 
svn path=/trunk/boinc/; revision=273
 2002-08-07 18:56:55 +00:00