Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
History of file src/security_audit.c at check-in 9993c43b5cc37e1f
|
2026-03-23
| ||
| 13:49 | Update to the latest SQLite and rig Fossil to use sqlite3_atof() if that interface is available. When compiling with an older SQLite, it falls back to using atof(). ... (file: [57bcf2935e] check-in: [cb89386af5] user: drh branch: trunk, size: 38282) | |
|
2025-12-27
| ||
| 12:21 | Spelling fixes in docs/comments. ... (file: [8944cd768c] check-in: [33d3bf3edb] user: km branch: trunk, size: 38268) | |
|
2025-12-23
| ||
| 16:06 | Assorted fixes of typos and grammar in code comments. No functional changes. ... (file: [9a3cfde409] check-in: [e2bdc10572] user: danield branch: trunk, size: 38272) | |
|
2025-12-15
| ||
| 21:49 | Fix a typo in differentiating timeouts from other panics in the error log. ... (file: [e7606f08b4] check-in: [11bd17cb33] user: drh branch: trunk, size: 38272) | |
|
2025-12-08
| ||
| 11:23 | The /errorlog page (Admin access only) now recognizes timeouts and WAL recovery notifications as separate error categories. ... (file: [0cd5330809] check-in: [9225f7d3e0] user: drh branch: trunk, size: 38269) | |
|
2025-11-03
| ||
| 20:39 | Add a note to the email-listid setting help text and editor entry that this value is required for unsubscribe links to work. In /secaudit0, emit a warning if notifications are enabled but email-listid is empty. This is in response to [forum:1245b69cfa09c26e|forum post 1245b69c]. ... (file: [b1deba7f3e] check-in: [0151018383] user: stephan branch: trunk, size: 37458) | |
|
2025-10-10
| ||
| 17:20 | Make use of the improved /help/CMD syntax everywhere, in place of the legacy /help?cmd=CMD syntax. ... (file: [3bdcbbd023] check-in: [c64f28d26c] user: drh branch: trunk, size: 37206) | |
|
2025-09-05
| ||
| 15:20 | Fix the error log parsing so that timeouts do not appear as panics. ... (file: [8bd3be3188] check-in: [b2ace8830a] user: drh branch: trunk, size: 37210) | |
|
2025-06-23
| ||
| 13:53 | Add SQL errors as a new logfile message category. ... (file: [dc78230601] check-in: [e3c6e011be] user: drh branch: trunk, size: 37166) | |
|
2025-04-24
| ||
| 19:26 | Fix typo in the new vuln-report entry on the security-audit page. ... (file: [864c2e9eea] check-in: [9d7b31552a] user: drh branch: trunk, size: 36794) | |
| 18:59 | Put a warning on the security-audit page if the vuln-report setting is not either "block" or "fatal". ... (file: [37b8ebad82] check-in: [ef52cd3f5d] user: drh branch: trunk, size: 36793) | |
|
2025-04-20
| ||
| 16:13 | New setting "vuln-report" determines what to do when tainted text is misused in a TH1 script. Enhance the /test-warning page to deliberately misuse tainted text in TH1 to verify error handling. Enhance /errorlog to separate out TH1 vulnerability reports as a new category the the error log. ... (file: [71670fc9b4] check-in: [295b814a27] user: drh branch: th1-taint, size: 36231) | |
|
2025-04-16
| ||
| 00:58 | Break out SMTP faults as a separate category on the Error Log. ... (file: [0b01337c70] check-in: [2d3ace5a9f] user: drh branch: trunk, size: 35803) | |
|
2025-04-08
| ||
| 12:49 | Ensure that ALL fopen() calls include 'b' in their modes. The git import/export fopen()s did not have this, which may (hypothetically, but unproven) lead to EOL conversion on Windows. ... (file: [8b38c7b7d8] check-in: [13049ef245] user: stephan branch: fopen-mode-b, size: 35437) | |
|
2025-03-28
| ||
| 00:17 | Add a new category of error log messages: SQLITE_AUTH and similar. ... (file: [02d2f426bc] check-in: [bc8e936abf] user: drh branch: trunk, size: 35435) | |
|
2025-03-20
| ||
| 17:34 | Change default values of various settings: admin-log=ON, access-log=ON, authsync=ON, timeline-plaintext=OFF. ... (file: [68155463fe] check-in: [bdf12f44e6] user: drh branch: trunk, size: 35117) | |
|
2025-03-17
| ||
| 13:25 | Fix the "All Messages" link on the summary table for the /errorlog page. ... (file: [0823c9d9c9] check-in: [8025b52a90] user: drh branch: trunk, size: 35117) | |
| 13:16 | Write failed attempts to POST from a different origin into the error log. Add a new category to the error log filter for such messages. ... (file: [11f69dba32] check-in: [2269ac697f] user: drh branch: trunk, size: 35111) | |
| 11:42 | Do not hyperlink the "All Messages" entry in the log summary if there are no error log messages. ... (file: [69044cb0dc] check-in: [a97225d7fc] user: drh branch: trunk, size: 34790) | |
| 11:40 | Remove an unused variable in the previous check-in. ... (file: [3d08dab522] check-in: [d23912f089] user: drh branch: trunk, size: 34717) | |
| 11:38 | Omit the /paniclog, /hacklog, and /logsummary pages. All those capabilities are now combined into the /errorlog page. ... (file: [c0e46fa690] check-in: [2304fb87ac] user: drh branch: trunk, size: 34736) | |
|
2025-03-09
| ||
| 23:04 | First cut at the /logsummary page. Provides a count of the various error log message types. Need to gather more examples in order to figure out how to deduce more types. Access by admins only. ... (file: [8802e7e9c7] check-in: [55d476abf5] user: drh branch: trunk, size: 37297) | |
|
2025-01-14
| ||
| 16:57 | Fix another typo. ... (file: [88ccc26b10] check-in: [c5b96a5045] user: danield branch: trunk, size: 35232) | |
|
2024-07-29
| ||
| 22:39 | The sublist of robot defenses under security audit should use a,b,c,... not 1,2,3,... ... (file: [edafc6d685] check-in: [1e4202dec7] user: drh branch: trunk, size: 35233) | |
| 22:37 | Show a summary of robot defenses on the security audit page. ... (file: [a6c6c9ce98] check-in: [9018c6f22a] user: drh branch: trunk, size: 35224) | |
|
2024-05-27
| ||
| 10:33 | Add the "Hacks" and "Non-hacks" log filters. Accessible by admins only. ... (file: [6e0c2c2feb] check-in: [d700ebff8e] user: drh branch: trunk, size: 34517) | |
|
2024-03-29
| ||
| 13:44 | Add the /paniclog page, accessible only to administrators. ... (file: [f3d6bb56fc] check-in: [11f6b5b06c] user: drh branch: trunk, size: 32844) | |
| 13:15 | Provide the full pathname of the CGI control file when describing how to activate the error log in the errorlog page, and on the security audit. ... (file: [8b5baf4aa7] check-in: [4644ebef64] user: drh branch: trunk, size: 31255) | |
| 13:04 | Improved error message for when the error log is unavailable. ... (file: [15b1ec0cce] check-in: [e6b06b5d11] user: drh branch: trunk, size: 30912) | |
| 12:41 | Create a separate "Log Menu" page that shows all of the available log files. ... (file: [6606b26e6d] check-in: [b28badb741] user: drh branch: trunk, size: 30827) | |
|
2024-02-02
| ||
| 22:18 | Remove trailing whitespace from non-external C files. ... (file: [22032b2d4f] check-in: [7db0a2d910] user: danield branch: fix-overlength-lines, size: 30905) | |
|
2023-09-18
| ||
| 15:10 | More intensive use of the Synchronizer Token Pattern for CSRF defense. ... (file: [6da0bd26a7] check-in: [0a66be2b75] user: drh branch: csrf-defense-enhancement, size: 30912) | |
|
2023-03-10
| ||
| 19:17 | Improvements to the new security-audit feature that shows the command-line that launched the process that generated the web page. ... (file: [f19adc73d9] check-in: [5caa3c5ceb] user: drh branch: trunk, size: 30880) | |
| 18:13 | Show the command-line on the security-audit page. ... (file: [64721179c6] check-in: [5ab5469adf] user: drh branch: trunk, size: 30762) | |
|
2023-01-07
| ||
| 20:37 | Submenu buttons linking all of the logging pages. ... (file: [bdb2d5d204] check-in: [aae2b775f9] user: drh branch: trunk, size: 30602) | |
|
2022-12-20
| ||
| 14:21 | A couple of corrections to the [2213a0eb2d413f|previous /secaudit0 addition]. ... (file: [b07039f565] check-in: [43601b3d12] user: george branch: trunk, size: 30443) | |
| 02:01 | Make [/secaudit0] page aware of the Tcl integration opportunities. ... (file: [5a9a2623c4] check-in: [2213a0eb2d] user: george branch: trunk, size: 30440) | |
|
2022-07-17
| ||
| 17:30 | On the /secaudit0 page, add a link to the canonical URL setting in the /setup_config page, per request in [forum:154494bfaf45949ca93|forum post 154494bfaf45949ca93]. ... (file: [62dda75ae7] check-in: [861ec9c7b7] user: stephan branch: trunk, size: 29340) | |
|
2022-02-23
| ||
| 17:18 | Spelling corrections caught by Debian's automated tools, thanks to Barak A. Pearlmutter. ... (file: [5d9017b53c] check-in: [9993c43b5c] user: danshearer branch: trunk, size: 29270) | |
|
2022-02-12
| ||
| 20:30 | Enhancement to robot defense. The auto-hyperlink setting can now be 2 (UserAgent only) in which case the UserAgent string is consulted and hyperlinks are generated if and only if the UserAgent looks human. Javascript does not come into play. When auto-hyperlink is 1, the traditional Javascript changes to href= in anchor tags are still used. ... (file: [469601d139] check-in: [df337eb61c] user: drh branch: trunk, size: 29269) | |
| 00:38 | Robot defense uses a mousedown event rather than mouse motion as one of the signals that the request is from a human. This should make robot defense work better for users on mobile. ... (file: [60bd9874db] check-in: [8d4e11432d] user: drh branch: trunk, size: 29280) | |
|
2022-02-11
| ||
| 15:40 | Better hyperlinks on the security-audit warning about the server load average setting. ... (file: [b2ab2e1b43] check-in: [e5c0543760] user: drh branch: trunk, size: 29278) | |
| 15:26 | Enhance security audit to warn about giving hyperlink privilege to user nobody. ... (file: [a9adeb7232] check-in: [5999d2446b] user: drh branch: trunk, size: 29194) | |
|
2022-01-18
| ||
| 20:53 | Fix a typo on the /secaudit0 page. ... (file: [600d74dd51] check-in: [fef157554f] user: drh branch: trunk, size: 27784) | |
|
2021-12-19
| ||
| 21:04 | Add the "public_url()" internal interface for computing the canonical URL used to access the repository. Add a report about the canonical URL to the security_audit page. ... (file: [eae389dad3] check-in: [8677e3ca50] user: drh branch: synclog, size: 27784) | |
|
2021-08-17
| ||
| 17:32 | Provide a warning on the security-audit page if any of the TH1 scripts that run during a syncm, push, pull, or clone are configured. ... (file: [11e895c306] check-in: [cfb5be4189] user: drh branch: trunk, size: 26560) | |
|
2020-12-22
| ||
| 12:13 | Removed the parameter from style_finish_page() since the resulting content div class is now redundant with respect to the body class. This potentially breaks CSS made against old class names that a prior commit on this branch changed, but such skins would be made against an unreleased version of Fossil, it's unlikely many are using that first version of the feature anyway, and most of the class names did *not* change unless you were targeting a "div" instead of "body" or just a generic class name. None of the shipping skins are affected. ... (file: [b23421f33b] check-in: [0e83ca88ce] user: wyoung branch: body-feature-class, size: 26052) | |
|
2020-11-12
| ||
| 14:25 | Show the age of phantoms. Provide text hints on how to deal with phantoms on the /secaudit0 page. ... (file: [2e932238b4] check-in: [97cac02b8a] user: drh branch: trunk, size: 26117) | |
|
2020-11-07
| ||
| 13:25 | Rename the "style_body_and_footer()" interface to "style_finish_page()" and add a more detailed header comment to the implementation. ... (file: [16c3682e0d] check-in: [942b2076c6] user: drh branch: default-css-cleanups, size: 25849) | |
|
2020-11-05
| ||
| 23:15 | Added a parameter to style_footer() and renamed it to match its actual function (style_body_and_footer()) so we can add a CSS class to each page that indicates which major Fossil feature served the page, so we can have module-specific CSS. ... (file: [4ab1e1c142] check-in: [ef5424b683] user: wyoung branch: default-css-cleanups, size: 25873) | |
|
2020-09-07
| ||
| 14:08 | The additional db_unprotect() work of check-in [b9fa7e28712c5981] was incomplete. Here is an attempt to finish the job. ... (file: [6e3ff3b8df] check-in: [50f61b7ad1] user: drh branch: trunk, size: 25754) | |
|
2020-08-30
| ||
| 20:29 | Fix a db_unprotect() call in the Admin pages. ... (file: [06a7565989] check-in: [b9fa7e2871] user: drh branch: trunk, size: 25770) | |
|
2020-08-18
| ||
| 19:56 | Add a security audit warning if the strict-manifest-syntax flag is switched off. ... (file: [008fc9b163] check-in: [3105bedff2] user: drh branch: sec2020, size: 25755) | |
| 01:54 | Disable writes the CONFIG and USER tables by default. Permission to write to those tables is turned on as needed. Note - might have missed a few places so expect bugs. ... (file: [15942c8b7b] check-in: [ca9156aa0a] user: drh branch: sec2020, size: 25445) | |
|
2020-06-21
| ||
| 12:59 | Fix etag processing so that no etag header is issued for pages which encounter errors or warnings. ... (file: [9971efdae3] check-in: [517fb01b9c] user: drh branch: trunk, size: 25391) | |
|
2020-05-28
| ||
| 14:58 | Initial infrastructure for a command-line version of the security audit page. ... (file: [dc3c7cfa11] check-in: [dba4c4f2c4] user: drh branch: audit-command, size: 28279) | |
| 12:05 | Add a notification that online file editing is enabled to the security audit. ... (file: [6817ea33c2] check-in: [a80861de03] user: drh branch: trunk, size: 25392) | |
|
2020-04-24
| ||
| 00:49 | Add the ability to deny capabilities to self-registered accounts until the email verification comes through. ... (file: [428dbb93fb] check-in: [3b7970e032] user: drh branch: restricted-self-registration, size: 25151) | |
|
2020-04-14
| ||
| 14:27 | Show the table of public phantoms directly on the security audit page. Dig deeper looking for the source of public phantoms. ... (file: [41f2eadf55] check-in: [941280ae0a] user: drh branch: trunk, size: 25149) | |
| 13:32 | Add the /phantoms webpage that lists public phantom artifacts. Check the number of public phantom artifacts and puts a warning if the number is non-zero on the Security Audit page. ... (file: [8f0a876b68] check-in: [83db244395] user: drh branch: trunk, size: 25201) | |
|
2020-03-12
| ||
| 18:17 | Repurposed the check for "d" cap in the Security Audit page to warn that it should be removed from use. It checks the anonymous, developer, and reader users for it only, not any one-off uses. It also doesn't check Setup or Admin, but presumably whatever we reuse "d" for in the future will be granted to them by default. ... (file: [f341318437] check-in: [8059b9cac1] user: wyoung branch: eradicate-d-cap, size: 24539) | |
|
2020-02-27
| ||
| 19:16 | More information on Setup and in Security-Audit to help admins configure Public Pages with the correct capabilities. ... (file: [ea45c62273] check-in: [0c374456b3] user: drh branch: trunk, size: 24228) | |
|
2020-02-26
| ||
| 14:28 | Put the Content-Security-Policy in the HTTP reply header in addition to the HTML header. That way, the CSP is enforced even for raw HTML pages or if the skin provides an HTML header that omits the CSP. Add a new "default-csp" setting included with the skin that allows an administrator to change the CSP to allow for CDNs and such. ... (file: [3c00ffa5b4] check-in: [14c81d9d2b] user: drh branch: trunk, size: 23928) | |
|
2020-02-12
| ||
| 17:03 | Provide a scary warning about the use of TH1 docs on the Security Audit page. ... (file: [14c2836583] check-in: [5c0bb964cd] user: drh branch: trunk, size: 24425) | |
|
2019-09-19
| ||
| 14:14 | In the db_get(N,D) function, if N is setting, then always leave D as NULL so that we use the published default value for that setting. ... (file: [74f8651e0e] check-in: [eb804dc674] user: drh branch: trunk, size: 23005) | |
|
2019-08-20
| ||
| 02:09 | Fix a compiler warning in the security-audit page. ... (file: [ad815d3455] check-in: [3243a6c148] user: drh branch: trunk, size: 23008) | |
|
2019-08-19
| ||
| 17:18 | Have the security-audit page analyze and display the content security policy. ... (file: [2e3920bc82] check-in: [9cf90a4f9d] user: drh branch: trunk, size: 23001) | |
|
2019-08-04
| ||
| 20:23 | Improvements to the Security-Audit page - mostly in providing additional information about the files in the CGI extension folder. ... (file: [b023cd118c] check-in: [a3bc6552ee] user: drh branch: trunk, size: 20485) | |
|
2019-08-02
| ||
| 13:34 | Update the security audit to report when extension CGI is available. ... (file: [2a119e598f] check-in: [e2cad541ff] user: drh branch: trunk, size: 20154) | |
|
2019-05-11
| ||
| 00:17 | Updates to the change log, as well as other minor documentation improvements. ... (file: [30e55791c7] check-in: [530963e0d1] user: drh branch: trunk, size: 20040) | |
|
2019-03-25
| ||
| 06:18 | Typo fix, reported in the forum: administator. ... (file: [a0e28b03be] check-in: [1614c9b5d0] user: stephan branch: trunk, size: 19835) | |
|
2019-01-22
| ||
| 02:52 | Updated the Security-Audit page to better handle the change from the old https-login setting to the new redirect-to-https setting. ... (file: [229c0f4096] check-in: [37918a1fa4] user: wyoung branch: trunk, size: 19834) | |
|
2018-11-28
| ||
| 18:42 | Found several more pages protected with "!g.perm.Setup && !g.perm.Admin" guards: changed them all to "!g.perm.Admin" only for the same reason as [558952c8]. ... (file: [4950cbf33e] check-in: [42c3364f03] user: wyoung branch: trunk, size: 19670) | |
| 18:34 | The /secaudit0 page was checking for both Admin and Setup capabilities, which means it was only accessible to users with Setup users, since that is the only class that can have both capabilities. Since it's documented as being available to Admin users, changed the logic to allow access to Admin *OR* Setup users. ... (file: [3df788aa02] check-in: [558952c8d3] user: wyoung branch: trunk, size: 19721) | |
|
2018-10-17
| ||
| 23:53 | Enhance the security-audit page to detect insecurities resulting from having self-registration enabled. This is a work in progress. More testing and more checks are needed in this area. ... (file: [d3a6b6a070] check-in: [724ccc46f2] user: drh branch: trunk, size: 19721) | |
|
2018-08-30
| ||
| 21:19 | Change the name of the "email.c" source file into "alerts.c". Make corresponding changes to various interfaces. ... (file: [e84908c046] check-in: [cfbbc53778] user: drh branch: refactor-alerts, size: 18137) | |
|
2018-08-17
| ||
| 12:32 | Improvements to privilege processing and the "Security Audit" page /secaudit0. ... (file: [a8ba14e51a] check-in: [397d23c161] user: drh branch: trunk, size: 18137) | |
|
2018-07-31
| ||
| 04:18 | Add the email alerts configuration summary to the security audit page. ... (file: [fc83d40ecc] check-in: [a9e67fe615] user: drh branch: forum-v2, size: 18081) | |
|
2018-07-30
| ||
| 21:08 | Add the user capability summary to the security audit. ... (file: [631dd753d0] check-in: [39d5e6751f] user: drh branch: forum-v2, size: 17881) | |
| 19:14 | Break out the processing of capability strings into a separate source file. Add new SQL functions: capunion() and fullcap(). Only send email notifications to users who have appropriate capabilities. ... (file: [a29dffbd87] check-in: [8a28a37c87] user: drh branch: forum-v2, size: 17819) | |
| 16:01 | Add new security-audit checks for forum and "Announce" privileges. ... (file: [64df87e37b] check-in: [5d6fc9678d] user: drh branch: forum-v2, size: 17836) | |
|
2018-07-19
| ||
| 15:52 | Backoffice only runs for successful webpage that have the database open. Add "refresh" and "Show All" buttons on the /errorlog page. ... (file: [3366c625a0] check-in: [aa17077eaf] user: drh branch: trunk, size: 16526) | |
|
2018-07-15
| ||
| 18:31 | Improvements to error logging. Only log fossil_panic() calls, not fossil_fatal() calls. ... (file: [f2b10296e5] check-in: [06d4751a44] user: drh branch: trunk, size: 16339) | |
|
2018-07-12
| ||
| 14:55 | Add "Download", "Test", and "Truncate" submenu buttons on the /errorlog page. Show a confirmation page prior to truncating the error log. Improvements to the /test-warning page, including a link back to /errorlog through the submenu. ... (file: [de86da999c] check-in: [c931dd7b58] user: drh branch: trunk, size: 16339) | |
| 14:09 | Add "Truncate" and "Download" buttons to the /errorlog display. Provide a link to the error log on the /setup page. ... (file: [30a24a06f0] check-in: [8e3bad04ee] user: drh branch: trunk, size: 16053) | |
|
2018-06-29
| ||
| 15:29 | Less severe warning on the security audit if the server error log is disabled. ... (file: [7b7d6a51e3] check-in: [fe5e9de1cd] user: drh branch: trunk, size: 15635) | |
|
2018-06-26
| ||
| 11:54 | Fix compiler warnings on windows. Fix the file_directory_size() function so that it works on windows. ... (file: [c9b102c9ac] check-in: [6a7d2ad8f1] user: drh branch: trunk, size: 15764) | |
|
2018-06-25
| ||
| 16:19 | Fix harmless compiler warnings. Also remove the "ago" text from the "Last Change" column in the subscriber list webpage. ... (file: [479c457a37] check-in: [69d332ff96] user: drh branch: trunk, size: 15764) | |
| 13:47 | Add information about the server error log to the security audit page. Provide the new /errorlog page for viewing the server logfile online. ... (file: [09c6259414] check-in: [a9e74eb311] user: drh branch: trunk, size: 15776) | |
|
2017-12-07
| ||
| 11:33 | Spelling typos from Debian ... (file: [39296d0831] check-in: [4d1ac686c4] user: drh branch: trunk, size: 13313) | |
|
2017-07-12
| ||
| 18:55 | Remove an unused variable from the security audit webpage. ... (file: [7258617b28] check-in: [7c0b971437] user: drh branch: trunk, size: 13312) | |
| 03:02 | Fix a typo on the security audit webpage. ... (file: [ffb80cbb97] check-in: [35f712d4d8] user: drh branch: trunk, size: 13324) | |
|
2017-07-03
| ||
| 09:31 | Update changes.wiki. Some eol-spacing ... (file: [4990fcdc06] check-in: [86d4754a7a] user: jan.nijtmans branch: trunk, size: 13326) | |
|
2017-07-01
| ||
| 22:43 | Fix a minor problem with Write-Unver reporting on the security audit report. ... (file: [284d2e62be] check-in: [5c999558ff] user: drh branch: trunk, size: 13340) | |
| 22:17 | More checking of user permissions on the Security Audit page. ... (file: [84b96ba754] check-in: [564e42dfe5] user: drh branch: trunk, size: 13373) | |
| 00:52 | Improved wording on some of the security-audit warnings. ... (file: [bbdd877147] check-in: [752365e71f] user: drh branch: trunk, size: 11630) | |
| 00:51 | More security-audit checks. ... (file: [af02cf1a10] check-in: [4253b1de6b] user: drh branch: trunk, size: 11693) | |
|
2017-06-30
| ||
| 18:28 | New security audit checks. ... (file: [e3453d85a8] check-in: [6c543c0308] user: drh branch: trunk, size: 10426) | |
| 16:13 | Many new permission checks for the security-audit page. ... (file: [c0ab1b9296] check-in: [c12ffe2ce1] user: drh branch: security-audit, size: 8033) | |
| 15:17 | Start the security audit by checking to see if the repos it public or private. ... (file: [3944762cdd] check-in: [7f29e2640a] user: drh branch: security-audit, size: 4885) | |
| 13:36 | Add a stub for the Security Audit page. ... (file: [7546305431] check-in: [c550402982] user: drh branch: security-audit, size: 1110) | |