1603353ae8
Susimail escaping from psi plus some more
2014-07-26 16:50:58 +00:00
6753d23309
Add filtering for getParameterMap()
...
Don't return null entries in getParameterValues() array
Log in getParameterValues() too
static
2014-07-26 15:09:40 +00:00
ca5755b0fd
javadoc move new classes
2014-07-26 13:51:48 +00:00
2c8223274d
filter pattern tweaks
2014-07-26 13:43:52 +00:00
f0dd09cf9c
filter logging
2014-07-26 12:18:35 +00:00
4746d9eb80
Fix CSP to allow inline style and refresh
...
Add filter to all webapps
2014-07-26 11:01:16 +00:00
99401c5639
fix link
2014-07-26 10:51:42 +00:00
58578d9020
Console:
...
XSSFilter patch from str4d:
XSSFilter and XSSRequestWrapper were from http://ricardozuasti.com/2012/stronger-anti-cross-site-scripting-xss-filter-for-java-web-apps/
No provided license, but it is clearly intended for public consumption.
But most of it is boilerplate provided by the Servlet Filter system.
In fact, now that I have stripped out his JS-specific patterns and replaced it with the whitelist,
it is effectively identical to what I would have written from scratch.
2014-07-26 09:39:31 +00:00
af575d6c95
* Console:
...
- Fix several XSS issues (thx Aaron Portnoy of Exodus Intel)
- Add Content-Security-Policy and X-XSS-Protection headers
- Disable changing news feed URL from UI
- Disable plugin install from UI
- Disable setting unsigned update URL from UI
- Disable /configadvanced
* DataHelper: Disallow \r in storeProps() (thx joernchen of Phenoelit)
* ExecNamingService: Disable (thx joernchen of Phenoelit)
* Startup: Add susimail.config to migrated files
2014-07-26 09:32:26 +00:00
e9c8748c0b
Updated Eclipse settings
2014-07-26 02:48:49 +00:00
08409d016b
translation updates from Transifex
2014-07-23 13:55:58 +00:00
42bfbfc60b
geoip database updates
2014-07-23 13:54:36 +00:00
c7c087d964
fix poupdate target
2014-07-23 13:49:09 +00:00
bd45d5483f
Added new reseed host, thanks to Backup.
...
Notes: Only HTTPS and SU3 (v2) support.
2014-07-22 17:56:50 +00:00
ce4874d825
better logging of reseed su3 errors
2014-07-21 20:05:05 +00:00
9b408b67ef
Adding Matt's SU3 reseed key.
2014-07-21 18:07:02 +00:00
c3bf100082
readme_fr.html thx hummingbird
2014-07-21 13:24:13 +00:00
b282ccd890
increment error count on exception
2014-07-21 13:23:14 +00:00
f38b741813
Adding sindu's reseed key. ( i2p-netdb.innovatio.no )
2014-07-21 01:47:37 +00:00
3a899d52d1
Don't grab the ClientApp if we don't need to
2014-07-19 23:55:43 +00:00
a2567b0ee2
* SusiMail: Better error message on decode fail
...
http://forum.i2p/viewtopic.php?t=11469
2014-07-19 16:31:59 +00:00
4b0019c732
* SAM: Add support for RAW on the bridge socket in v3 (ticket #1334 )
...
log fixes
2014-07-19 15:43:51 +00:00
5d21738410
* i2psnark: Don't prefer leeches during end game, to
...
prevent slowdowns or stalls
2014-07-19 12:48:16 +00:00
df81006b42
javadoc
2014-07-19 12:40:23 +00:00
2c7006e9bd
Streaming; Disable fail-fast for now. It's failing on leaseset lookup
...
far too often. Need to fix that first.
2014-07-19 12:39:37 +00:00
b1caa8d5a3
fix URL in initialNews: It's i2p-projekt not i2p-project
...
(thanks to SeekingFor for the heads-up)
2014-07-15 23:46:08 +00:00
8b2ffada10
- fix test
...
- final
- last week's history
2014-07-15 14:30:19 +00:00
0998738e94
Updated history
2014-07-15 12:59:56 +00:00
c04062bbdf
Forgot to update @since
2014-07-15 12:58:58 +00:00
0c7a3a3a39
Stubs for I2CP connections over Unix domain sockets
2014-07-15 12:54:22 +00:00
f364a83f4f
mtn.i2p-projekt.i2p
2014-07-14 20:40:36 +00:00
9dabc75866
* SU3File: Disable the X.509 CN checking of local certs on Android,
...
as the javax.naming classes are not available.
Any issues with local certs will be discovered in non-Android testing.
2014-07-13 13:29:55 +00:00
2c185ea76c
* Datagrams:
...
- Redefine the repliable datagram signature for non-DSA_SHA1 sig types;
was the sig of the SHA-256 of the payload, now the sig of the payload itself.
This is an incompatible change but nobody is yet using the new
sig types for datagram applications.
- Don't pollute the hash cache with hashes of payloads
- Check for too-big datagrams
- Remove assertion check
- Cleanups
2014-07-11 19:31:44 +00:00
39e859c368
javadoc
2014-07-11 19:29:44 +00:00
dfbe3c4eb1
signing key type check
2014-07-09 13:29:52 +00:00
b8170a544b
add reseed cert
2014-07-09 13:27:57 +00:00
4e7f92ec89
Removing certificate + added it to delete list
2014-07-09 00:46:18 +00:00
292683268b
Thanks for the past support in reseeding pkol!
...
Removing reseed host after request.
From: pkol <pkol@mail.i2p >
To: Meeh <meeh@mail.i2p >
Subject: Reseed server shutdown
X-Mailer: smtp.postman.i2p - Official I2P Mailer
Hi meeh,
I wanted to announce the discontinuation of my reseed server
(reseed.pkol.de) at the end of July/beginning of August.
Thanks for your support during the initial setup.
Cheers
pkol
2014-07-09 00:29:59 +00:00
dc14abd4d3
BFNS: Trim whitespace from hosts.txt when importing
...
DataStructureImpl: Throw unique exception on bad base 64
2014-07-05 21:58:48 +00:00
dd782f08f7
hosts.txt: Remove trailing whitespace causing test failure
2014-07-05 21:44:23 +00:00
d57dc9a8a2
* Reseed: Check su3 version as date code
2014-07-05 19:15:26 +00:00
4e463d57ce
* Reseed: Send If-Modified-Since in fetches
...
* EepGet: Fixes for adding etag or lastmod headers before fetch
2014-07-05 18:41:09 +00:00
e0c0cc8b63
Avoid publishing null IP when using forced address config
2014-07-05 17:02:44 +00:00
cc50d47376
log warning on very low MTU
2014-07-05 17:01:29 +00:00
4da7548caa
* Reseed:
...
- Fix URLs without trailing /
- Cleanups of su3 code
2014-07-05 13:39:51 +00:00
91a676cb36
public constructors for SKM
2014-07-05 13:37:53 +00:00
48a32fb3b8
spacing
2014-07-05 13:37:35 +00:00
845b45a57d
javadoc
2014-07-05 13:36:29 +00:00
7b7a620999
* Console: Add event log viewer (ticket #1117 )
2014-07-03 13:13:57 +00:00
82217d5ebc
increase default refresh on graphs page
2014-07-03 13:08:24 +00:00
