Iglocska
1ff0ade5cb
Merge branch 'triple-dots' into hotfix-2.3.59
2015-04-08 22:41:54 +02:00
Iglocska
35976ac847
Merge branch 'cakephp-update' into hotfix-2.3.59
2015-04-08 22:38:18 +02:00
Iglocska
9f09d6d7e5
Merge branch 'cakeresque-queues' into hotfix-2.3.59
2015-04-08 22:37:30 +02:00
Iglocska
06f8a9bbd6
Merge branch 'proxy' into hotfix-2.3.59
2015-04-08 22:36:13 +02:00
Iglocska
c2d5a5f1fc
Merge branch 'stix_no_random_ids' into hotfix-2.3.59
2015-04-08 22:30:39 +02:00
Iglocska
348923691f
Merge branch 'stix-info' into hotfix-2.3.59
2015-04-08 22:29:36 +02:00
Iglocska
094f932616
Merge branch 'disallow_unpublished_events' into hotfix-2.3.59
2015-04-08 22:22:22 +02:00
Richard van den Berg
c49c387337
Only truncate string if adding ... will make it shorter
2015-04-08 14:08:38 +02:00
Iglocska
cc5c32fca2
Sync update issue fixed
...
- attributes were not correctly updated during a manual push due to an incorrect conditional
- re-publishing was unaffected
2015-04-02 00:14:36 +02:00
Richard van den Berg
0306912271
Remove gitlink for app/Plugin/CakeResque
...
CakeResque is installed with composer.phar
Removing the gitlink gets rid of this annoying error message:
No submodule mapping found in .gitmodules for path 'app/Plugin/CakeResque'
2015-03-24 10:27:13 +01:00
Richard van den Berg
056b21ff6f
Update cakephp to latest 2.6 branch
2015-03-24 10:03:17 +01:00
Richard van den Berg
fa112d77c3
Use correct CakeResque queues
2015-03-23 17:58:41 +01:00
Richard van den Berg
75f93641dc
Use isOK() for version check
2015-03-19 15:09:54 +01:00
Richard van den Berg
850e4bd19f
Catch HTTP error codes
2015-03-19 14:05:10 +01:00
Richard van den Berg
2f58fdec0d
Catch invalid proxy configuration
2015-03-19 13:33:17 +01:00
Richard van den Berg
106b6cb06b
Allow SyncTool with empty $server
2015-03-19 13:03:16 +01:00
Richard van den Berg
05bc4c4389
Allow SyncTool to be used for generic HTTP(S) connections
2015-03-19 12:57:46 +01:00
Richard van den Berg
0e66ff140f
Use SyncTool for diagnostics
2015-03-19 12:31:35 +01:00
Richard van den Berg
b62032fc7b
Fix typo
2015-03-19 12:20:16 +01:00
Richard van den Berg
2ccab722d7
Add proxy section to server diagnostics
2015-03-19 12:15:28 +01:00
Richard van den Berg
0d242d8549
configProxy() checks for empty arguments, no need to do it twice
2015-03-19 10:03:40 +01:00
Richard van den Berg
9e7ea8fe74
Add proxy support to SyncTool
2015-03-19 10:03:25 +01:00
Iglocska
c9d1badaa3
Organization field in Servers too short to fit valid organisation identifiers, fixes #436
...
- updated the MYSQL.sql file for future MISP installations
- added admin script to do the update from the web interface
2015-03-17 00:06:59 +01:00
Iglocska
b29e8fdada
Site admins can now create proposals, fixes #417
...
- site admins can now create proposals to an event / attribute as long as the event does not belong to their organisation
- new icon for proposals to differentiate them from edits
2015-03-14 09:01:20 +01:00
Iglocska
524871ab52
Sync users should default to termsaccepted and no password change required, fixes #432
2015-03-14 08:35:24 +01:00
Iglocska
50a03e897d
Search in logs fixed, fixes #434
...
- The log search incorrectly set the search terms for empty fields, meaning that any log entries that had unfilled columns, such as it is the case with admin_email would never return results
2015-03-14 08:29:19 +01:00
iglocska
6763159e87
Security fix
...
- filenames are now enclosed by quotes instead of double quotes while executing the zip command via exec
2015-03-10 10:58:15 +01:00
Richard van den Berg
7f201fdf81
Consistent timestamps for STIX objects
2015-03-05 13:26:13 +01:00
Richard van den Berg
2a56a00e88
Consistent id's for malware-sample artifacts
2015-03-04 17:28:44 +01:00
Richard van den Berg
bff42361ef
Consistent id's for observable compositions
2015-03-04 17:07:32 +01:00
Richard van den Berg
a4fd3b957a
Use property class name in object ID
2015-02-25 09:50:00 +01:00
Richard van den Berg
8b89caf5b9
Use attribute uuid for cybox id's
2015-02-24 18:02:51 +01:00
iglocska
66db71e835
json view fixed, fixes #411
2015-02-24 15:46:42 +01:00
iglocska
8dad666b38
Disabled the animation in the MISP logo
...
- it was quite heavy on CPU usage and it was too subtle to notice anyway
2015-02-20 11:11:00 +01:00
iglocska
4239edffc9
Org admins editing privileged users demotes the privileged user to a lower permission level, fixes #408
...
- an org admin now correctly can select the previously assigned privileged role for a user that he/she is editing
2015-02-20 09:17:25 +01:00
Richard van den Berg
d2556ff91d
Use org name and baseurl in XML namespace for STIX
2015-02-19 15:46:54 +01:00
Richard van den Berg
c9bd754adc
More informative CIQ titles
2015-02-19 15:46:45 +01:00
Richard van den Berg
3c205c66f7
More informative STIX titles
2015-02-19 15:46:34 +01:00
iglocska
6782159b53
API search incorrectly generating JSON with several events, fixes #407
...
- also fixed the edit button on the index
2015-02-18 11:45:15 +01:00
iglocska
0dd8318fb3
Further work on the exports
...
- Performance improvements for the event search exports
- JSON view code moved to Lib
- Fixed an issue that didn't restrict the dates correctly with the from / to parameters
2015-02-16 17:31:32 +01:00
iglocska
fbca80d680
Added more contextual info for the CSV exports, fixes #391
2015-02-16 14:47:21 +01:00
iglocska
b5be1a36fb
Correlation disabled for http-method, fixes #406
2015-02-16 13:30:15 +01:00
iglocska
eed95b1129
Missing json view file added
...
- return attributes fails when requesting the results in JSON
- added missing view file
2015-02-16 13:14:05 +01:00
iglocska
54a86732e4
Relaxed the auth key requirement for nids exports
...
- incorrect check on the nids exports blocked logged in users from downloading the snort/suricata rules of an event
- check removed
2015-02-16 08:59:53 +01:00
iglocska
701160acd9
Fixed an issue with the free-text import failing on more than ~100 parsed values, fixes #389
...
- Caused by a 1k variable / form limit imposed by php since 5.3.9
- Form data now collected by JS and passed as a single JSON in the POST request
- Allows massive IOC lists to be imported
- improved performance
2015-02-10 14:42:24 +01:00
Richard van den Berg
d5e556ee1e
Fixed missing parentheses
2015-02-05 17:40:56 +01:00
iglocska
12d7025bce
Patch fixing json download, fixes #387
...
- World's smallest patch
2015-02-05 17:25:40 +01:00
Richard van den Berg
12dc5b6579
Make unpublished events private if MISP.unpublishedprivate == true
2015-02-05 17:16:40 +01:00
Richard van den Berg
d3c0144b25
Merge remote-tracking branch 'upstream/master'
2015-02-05 14:17:10 +01:00
iglocska
2aa902cd4b
Removed the old documentation, fixes #378 and some small fixes
...
- resolved an issue of warnings being generated when an event without attributes / relations gets XML exported.
- added new dump of the documentation
2015-02-05 10:11:29 +01:00