MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
17,068 Commits
35 Branches
366 Tags
190 MiB
Commit Graph

18 Commits (791dc9deabd2d7fdfd7c371331eb557d14782372)

Author SHA1 Message Date
Golbark 3fb47d1cce chg: [internal] Using blocklist instead of blacklist 2020-09-01 16:27:36 +02:00
iglocska e75828a34b
fix: [database] bruteforce check relaxed for datasource 2020-04-14 15:18:25 +02:00
Bechkalo Evgeny 4d5f1aaf00 Fixed bugs with PostgreSQL in bruteforce and feed models 2020-03-30 16:19:43 +03:00
iglocska 934c828192
fix: [security] Further fixes to the bruteforce handling 
- resolved a potential failure of the subsystem when the MySQL and the webserver time settings are diverged
  - as reported by Dawid Czarnecki
- several tightenings of the checks to avoid potential foul play
 2020-02-10 11:41:54 +01:00
iglocska c1a0b3b280
fix: [security] brutefoce protection rules tightened 
- as reported by Dawid Czarnecki
 2020-02-08 09:35:37 +01:00
iglocska a81894f14c chg: [CS] Changed to PSR-2 
- to make contributions easier, adopted PSR-2
- used php-cs-fixer to rework the style
- *sniff sniff* Goodbye tab indentation
 2018-07-19 11:48:22 +02:00
Iglocska ab50d00b15 fix: Fix the broken bruteforce protection 
- Moved the bruteforce protection directly to the login action
- Fixed the datetime format used by the protection
- Cleaned up the logging of failed attempts
 2016-09-12 11:20:26 +02:00
Andreas Ziegler 9bf0e16ac6 new: add basic experimental support for PostgreSQL 2016-08-31 04:11:49 +02:00
iglocska 822b0bf8fa chg: Cleanup of the controllers and models 
- removed incorrect, useless boiler plate comments
- kept useful comments intact
- added some missing line breaks to make the codebase a bit more uniform
- removed some obviously obsolete TODO comments
 2016-08-25 11:38:37 +02:00
Andreas Ziegler b10a67219b chg: replace a MySQL specific function by PHP code 2016-08-15 06:33:13 +02:00
Andreas Ziegler 4a37f4edbc chg: remove obsolete backticks from sql queries 
backticks are only necessary to escape reserved keywords.
as backticks are MySQL-specific, having them only where really necessary
 makes integrating support for other DBMS easier.
 2016-08-15 06:26:25 +02:00
Andreas Ziegler 0fe692c56a remove whitespace at end of line 2016-06-04 01:10:45 +02:00
William Robinet 4fea371c4b Fix permissions 2016-02-11 17:03:51 +01:00
iglocska 62a5b259c2 Bruteforce logging 
- if a user becomes blacklisted, the system will log it. Fixes #206
 2014-02-05 14:30:59 +01:00
noud 957b3e27b8 Merge branch 'master' into develop 
Conflicts:
	app/Controller/ServersController.php
 2012-11-20 11:01:18 +01:00
noud 94a367c2f5 CakePHP Coding Standards 
http://book.cakephp.org/2.0/en/contributing/cakephp-coding-conventions.html

Eclipse:
Window->Preferences
	General->Editors->Text Editors
		Displayed tab width:	4
		Insert spaces for tabs	NOT
	PHP->Code Style->Formatter
		Tab policy:	Tabs
File->Convert Line Delimeters To->Unix [default]

http://mark-story.com/posts/view/static-analysis-tools-for-php
for instance:
phpcs --standard=CakePHP app/Model/

Not yet done is all camel caps format.
 2012-09-18 15:30:32 +02:00
Christophe Vandeplas 0687d3f6f4 fixed huge SQL injection vulnerability created in bruteforce protection. 
Shame on me !!!
 2012-06-06 11:12:19 +02:00
Christophe Vandeplas 6e9ab97791 implementation of a anti-brute-force password guessing mechanism. 2012-06-06 11:00:02 +02:00