Golbark
3fb47d1cce
chg: [internal] Using blocklist instead of blacklist
2020-09-01 16:27:36 +02:00
iglocska
e75828a34b
fix: [database] bruteforce check relaxed for datasource
2020-04-14 15:18:25 +02:00
Bechkalo Evgeny
4d5f1aaf00
Fixed bugs with PostgreSQL in bruteforce and feed models
2020-03-30 16:19:43 +03:00
iglocska
934c828192
fix: [security] Further fixes to the bruteforce handling
...
- resolved a potential failure of the subsystem when the MySQL and the webserver time settings are diverged
- as reported by Dawid Czarnecki
- several tightenings of the checks to avoid potential foul play
2020-02-10 11:41:54 +01:00
iglocska
c1a0b3b280
fix: [security] brutefoce protection rules tightened
...
- as reported by Dawid Czarnecki
2020-02-08 09:35:37 +01:00
iglocska
a81894f14c
chg: [CS] Changed to PSR-2
...
- to make contributions easier, adopted PSR-2
- used php-cs-fixer to rework the style
- *sniff sniff* Goodbye tab indentation
2018-07-19 11:48:22 +02:00
Iglocska
ab50d00b15
fix: Fix the broken bruteforce protection
...
- Moved the bruteforce protection directly to the login action
- Fixed the datetime format used by the protection
- Cleaned up the logging of failed attempts
2016-09-12 11:20:26 +02:00
Andreas Ziegler
9bf0e16ac6
new: add basic experimental support for PostgreSQL
2016-08-31 04:11:49 +02:00
iglocska
822b0bf8fa
chg: Cleanup of the controllers and models
...
- removed incorrect, useless boiler plate comments
- kept useful comments intact
- added some missing line breaks to make the codebase a bit more uniform
- removed some obviously obsolete TODO comments
2016-08-25 11:38:37 +02:00
Andreas Ziegler
b10a67219b
chg: replace a MySQL specific function by PHP code
2016-08-15 06:33:13 +02:00
Andreas Ziegler
4a37f4edbc
chg: remove obsolete backticks from sql queries
...
backticks are only necessary to escape reserved keywords.
as backticks are MySQL-specific, having them only where really necessary
makes integrating support for other DBMS easier.
2016-08-15 06:26:25 +02:00
Andreas Ziegler
0fe692c56a
remove whitespace at end of line
2016-06-04 01:10:45 +02:00
William Robinet
4fea371c4b
Fix permissions
2016-02-11 17:03:51 +01:00
iglocska
62a5b259c2
Bruteforce logging
...
- if a user becomes blacklisted, the system will log it. Fixes #206
2014-02-05 14:30:59 +01:00
noud
957b3e27b8
Merge branch 'master' into develop
...
Conflicts:
app/Controller/ServersController.php
2012-11-20 11:01:18 +01:00
noud
94a367c2f5
CakePHP Coding Standards
...
http://book.cakephp.org/2.0/en/contributing/cakephp-coding-conventions.html
Eclipse:
Window->Preferences
General->Editors->Text Editors
Displayed tab width: 4
Insert spaces for tabs NOT
PHP->Code Style->Formatter
Tab policy: Tabs
File->Convert Line Delimeters To->Unix [default]
http://mark-story.com/posts/view/static-analysis-tools-for-php
for instance:
phpcs --standard=CakePHP app/Model/
Not yet done is all camel caps format.
2012-09-18 15:30:32 +02:00
Christophe Vandeplas
0687d3f6f4
fixed huge SQL injection vulnerability created in bruteforce protection.
...
Shame on me !!!
2012-06-06 11:12:19 +02:00
Christophe Vandeplas
6e9ab97791
implementation of a anti-brute-force password guessing mechanism.
2012-06-06 11:00:02 +02:00