Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
35 check-ins using file src/default.css version a3c4e00621
|
2020-08-18
| ||
| 13:17 | More missing db_unprotect() calls. ... (check-in: 06d3789a2a user: drh tags: sec2020) | |
| 12:17 | When writing files to disk for a check-out, refuse to write through a symbolic link to a directory. Ticket [f9831fdef1d4edcc]. ... (check-in: a64e384f0c user: drh tags: sec2020) | |
| 02:58 | More missing calls to db_unprotect(). ... (check-in: 3ced48bdf8 user: drh tags: sec2020) | |
| 02:33 | Yet another missed db_unprotect() call. ... (check-in: 2041072e8d user: drh tags: sec2020) | |
| 02:26 | Fix missing enable of global_config in the "fossil all" command. ... (check-in: 16ec693dae user: drh tags: sec2020) | |
| 01:54 | Disable writes the CONFIG and USER tables by default. Permission to write to those tables is turned on as needed. Note - might have missed a few places so expect bugs. ... (check-in: ca9156aa0a user: drh tags: sec2020) | |
|
2020-08-17
| ||
| 22:34 | Add more tests. ... (check-in: 92704d1c68 user: mistachkin tags: sec2020) | |
| 22:27 | Simplify error message. ... (check-in: 1bb0b3a8f3 user: mistachkin tags: sec2020) | |
| 22:22 | Fixes for reserved names case sensitivity, coding style adjustments, more tests. ... (check-in: fde20bc03c user: mistachkin tags: sec2020) | |
| 21:17 | A couple minor skin doc typos. ... (check-in: 9e871e0de0 user: stephan tags: trunk) | |
| 20:51 | Add tests for the reserved names. ... (check-in: df720b28fc user: mistachkin tags: sec2020) | |
| 20:03 | Identify security-sensitive settings. ... (check-in: 3bccd7fff2 user: drh tags: sec2020) | |
| 19:59 | Every database connection now has a default authorizer, which calls out to an operation-specific authorizer if needed. ... (check-in: f98ef3c103 user: drh tags: sec2020) | |
| 18:57 | Enhance the db_prepare() and db_static_prepare() utility routines so that they throw an error if handed more than one SQL statement. This might help prevent SQL injection attacks. ... (check-in: be0d95aded user: drh tags: sec2020) | |
| 18:20 | Merge in reject-ckout-db branch. ... (check-in: 8c16884aa2 user: stephan tags: sec2020) | |
| 17:50 | Fixed [17d00c20dd9f] by adding NULL check on F- and E-card UUID tokens. ... (Closed-Leaf check-in: 458f30fc0b user: stephan tags: reject-ckout-db) | |
| 17:34 | The allow-symlinks setting is no longer versionable and is off by default. The allow-symlinks setting no longer propagates with a clone. The help text for allow-symlinks discourages its use. There is a new --symlink flag on "fossil open" to permit the use of symlinks on an open, for the adventurous. Ticket [f9831fdef1d4edcc]. ... (check-in: ff98dd5af6 user: drh tags: sec2020) | |
| 17:34 | Added checks of (-wal, -shm, -journal) db suffixes. ... (check-in: 4ed1a294ff user: stephan tags: reject-ckout-db) | |
| 16:10 | Moved is_fossil_ckout_db_name() from db.c to file.c and renamed it filename_is_ckout_db(). Integrated the check into manifest_parse(), but testing it requires temporarily #if'ing out the Z-card check, which is one of the first validations. ... (check-in: 6c19baa09b user: stephan tags: reject-ckout-db) | |
| 15:40 | switch/case style tweak, per request. ... (check-in: 9784e5cdab user: stephan tags: reject-ckout-db) | |
| 15:17 | Part 1 of ticket [980a72dedd]: efficient check for determining whether a filename ends with a checkout db name. ... (check-in: ddd1273ea2 user: stephan tags: reject-ckout-db) | |
| 15:11 | Identify security-sensitive settings. ... (Closed-Leaf check-in: aa4c3afc52 user: drh tags: sec2020-config-protection) | |
| 14:09 | Set an authorizer when running the ticket-table SQL. Ticket [56b82836ffba9952]. ... (check-in: fb41384045 user: drh tags: sec2020) | |
| 09:16 | Prohibit redirects from HTTP or HTTPS over to SSH or FILE. Fix for ticket [61613b0a9cf843b6]. ... (check-in: 253dbd15e2 user: drh tags: sec2020) | |
| 08:14 | Fix typo, remove period for consistency with other help ... (check-in: 80ca317ac5 user: andygoth tags: trunk) | |
| 07:02 | Reinstate symlink capability. (Unintended change with prior symlink test?) ... (check-in: c840617b8b user: andygoth tags: trunk) | |
|
2020-08-16
| ||
| 23:09 | Add the "test-symlink-list" command. ... (check-in: de38906fd5 user: drh tags: trunk) | |
| 22:35 | Pointed 'latest release' entry at the 2.12 changelog, per forum post. ... (check-in: dba21929b2 user: stephan tags: trunk) | |
| 19:08 | Enhance the db_repository_filename() routine to return the canonical filename. ... (check-in: f304c56974 user: drh tags: trunk) | |
| 17:47 | Fix the manifest_reparent_checkin() routine so that the "parent" tag will actually work. ... (check-in: 2bdbbc8a0e user: drh tags: trunk) | |
| 17:18 | Mention the "fossil backup" command in the 2.12 change log. ... (check-in: a02bcb033b user: drh tags: trunk) | |
| 16:49 | Fixed file_extension() to behave like its docs say it does, which would have made [5a9ac6ca3e] unnecessary. ... (check-in: f95e47b611 user: stephan tags: trunk) | |
| 16:35 | Fix the release version on the home page. ... (check-in: 4c45033033 user: drh tags: trunk) | |
| 16:06 | Fix segfault in /artifact introduced by check-in [b699040d701464ce] and reported [https://fossil-scm.org/forum/forumpost/a073f05cc3|on the forum]. ... (check-in: 5a9ac6ca3e user: drh tags: trunk) | |
| 15:52 | Reworked fossil.toast to support normal/warning/error-level toasts. Alas, animating a toast's appearance and disappearance proved to be beyond my current skills. ... (check-in: 4368f52961 user: stephan tags: trunk) | |