includes/sessions.php
Thu, 06 Mar 2008 23:31:28 -0500 Dan [Security] made session manager have some degree of IP validation for session keys and upgrades
Thu, 06 Mar 2008 23:27:50 -0500 Dan Fixed session validation bug in upgrade script; fixed non-object reference in template_nodb
Thu, 06 Mar 2008 20:53:26 -0500 Dan Added a cron task to sessions.php that deletes old admin keys once a week
Sun, 02 Mar 2008 19:32:19 -0500 Dan Implemented password reset (albeit hackishly) into the new login API; added dummy window.console object to hopefully reduce errors when Firebug isn't around; fixed the longstanding ACL dismiss/close button bug; fixed a couple undefined variables in mailer; fixed PHP error on attempted opening of /dev/(u)random in rijndael.php; clarified documentation for PageProcessor::update_page(); fixed some logic problems in theme ACL code; disabled CAPTCHA debug
Sat, 01 Mar 2008 23:02:05 -0500 Dan Implemented all security features on theme disabling and ACLs; added clean_key mode to login API to clean unused encryption keys
Sat, 01 Mar 2008 18:55:54 -0500 Dan Fixed improper serializing of IP that could allow reusing of key from multiple IP addresses.
Sun, 24 Feb 2008 12:52:07 -0500 Dan Merging in changes from Nighthawk
less more (0) -30 -10 -7 tip