• 0000317: [certificate issuing] SHA-2 support (duane)
  • 0000002: [account administration] [Support] Need web interface to modify the DOB of a user
  • 0000056: [account administration] EMail Ping not safe enough
  • 0000128: [organisational section] Need to get the email list of the org admins
  • 0000065: [website content] Security Hole: CrossSiteScripting (duane)
  • 0000145: [logged out] Beware of the Evil ...
  • 0000158: [source code] Inserting text into the CAcert website
  • 0000161: [source code] concerning variable reuse
  • 0000164: [source code] org eat org
  • 0000175: [website content] We need a way to shutdown the website (Sourcerer)
  • 0000181: [web of trust] Double Assurance (Sourcerer)
  • 0000183: [source code] don't trust my names
  • 0000194: [source code] Don't trust the users (Sourcerer)
  • 0000195: [source code] Session Security
  • 0000200: [web of trust] creating client certs with arbitrary names included
  • 0000203: [misc] old versions (duane)
  • 0000205: [website content] [security bug] information gathering
  • 0000206: [source code] [security bug] bad style of programming
  • 0000208: [source code] [security bug] unverified SQL injeciton in gpg.php (Sourcerer)
  • 0000217: [source code] remove old functionality for CSR
  • 0000218: [source code] variables not reset
  • 0000245: [GPG/PGP] Shell escape
  • 0000265: [certificate issuing] Server certificate included extra DNS names (Sourcerer)
  • 0000286: [my account] language issues (1/2)
  • 0000289: [misc] Exploiting whois and the add domain function
  • 0000309: [misc] New DNS servers (evaldo)
  • 0000335: [misc] OCSP responds "unknown" (Sourcerer)
  • 0000374: [website content] thawte verification wiki
  • 0000355: [account administration] Separation of Admin and Organisation-Assurer (Sourcerer)
  • 0000354: [website content] translation on page https://www.cacert.org/index.php?id=5 and other small corrections (wonderer)
  • 0000351: [website content] little corrections on http://www.cacert.org/index.php?id=51&lang=de_DE
  • 0000344: [GPG/PGP] Can't delete gpg key
  • 0000342: [GPG/PGP] Menu order: GPG/PGP Keys
  • 0000331: [organisational section] "Organisation Assurance" gives only error message "Parse error: syntax error, unexpected T_IF in /www/pages/wot/11.php on line 1
  • 0000323: [organisational section] Cannot add and remove an admin to/from an organisation
  • 0000321: [website content] PHP Error when trying to install certificate into IE7 (duane)
  • 0000319: [translations] Untranslated logos page (aanriot)
  • 0000316: [web of trust] Redesign of the CAP/TTP forms
  • 0000314: [website content] localised a assurrer in Ingolstadt, Bayern, Germany (776272) (Sourcerer)
  • 0000311: [web of trust] You are receieving this email as you are the listed contact for: ??? (blank)
  • 0000308: [source code] tverify missing (Sourcerer)
  • 0000306: [web of trust] ID copies (Sourcerer)
  • 0000296: [translations] german translation "März" not "Mrz"
  • 0000295: [translations] english text in german page
  • 0000302: [website content] in Germany we have ä, ö and ü | the cities in your db are only written with a o u and not with ae oe ue
  • 0000300: [my account] assured people don`t get points from me
  • 0000299: [source code] sqldump without ; (Sourcerer)
  • 0000298: [website content] ©2002-2005 by CAcert
  • 0000294: [translations] english text in german translation
  • 0000293: [translations] english text in german translation
  • 0000297: [translations] missing translations to german in menu on right side (duane)
  • 0000292: [translations] The german translation are not display complete (duane)
  • 0000288: [misc] Bad usage of checkEmail
  • 0000284: [account administration] move the LostPassphrase answers (+questions) to an additional page (duane)
  • 0000283: [account administration] move the DOB editing to a seperate page (duane)
  • 0000281: [source code] make.php.dist (duane)
  • 0000278: [web of trust] Location DB Admin broken (duane)
  • 0000277: [website content] Secure IRC missing (duane)
  • 0000275: [certificate issuing] Race condition
  • 0000274: [website content] More information about CAcert Inc. (duane)
  • 0000271: [source code] dsffdfdd
  • 0000267: [source code] register globals CSR (duane)
  • 0000266: [account administration] My Alerts reset
  • 0000261: [my account] not listed as assurer although defined "i want to be listed" as well as the correct region "Wien, Wien, Austria"
  • 0000256: [certificate issuing] Cert Renewal Problem - Link to Wiki
  • 0000255: [account administration] Mantis email interface is not RFC compliant
  • 0000252: [translations] Translation not working at all (Sourcerer)
  • 0000248: [account administration] password reset does not work in admin mode (duane)
  • 0000244: [account administration] AJAX (location) From stopped working (duane)
  • 0000240: [web of trust] OCSP response signer's certificate expired
  • 0000233: [account administration] marriage
  • 0000229: [certificate issuing] no "cancel" Button (wonderer)
  • 0000228: [account administration] No confirmation mail after registration
  • 0000219: [web of trust] "Find an Assurer" unusable (at least without javascript)
  • 0000212: [source code] Missing "Your Certificate is about to expire" scripts
  • 0000211: [website content] in index/1.php, there is irritating text
  • 0000210: [misc] unabled to add .EU domain / Cookie issue with Mozilla (duane)
  • 0000209: [source code] unauthenticated access on the test1 website (duane)
  • 0000201: [web of trust] incorrect baltic character encoding/font on CAP form
  • 0000199: [misc] necessary security update for wordpress blog software
  • 0000191: [my account] "Assurance Points You Issued" entries are out of sequence
  • 0000189: [account administration] Can login with Certificate but can't change Password
  • 0000187: [website content] Website menu : Point system (duane)
  • 0000185: [my account] Irritating message when trying to log into unverfied account
  • 0000182: [source code] index.php?id=2 always writes confirmation message
  • 0000180: [organisational section] man in the middle attack to mails (Sourcerer)
  • 0000178: [account administration] missing numbering of Assurances
  • 0000177: [account administration] Safety question for 0 points assurance (Sourcerer)
  • 0000174: [translations] Deutsche Übersetzung der Startseite, Gebü_h_ren bitte mit h (duane)
  • 0000171: [source code] missing email notification
  • 0000170: [web of trust] Set focus to email field on load
  • 0000169: [website content] Use https for bugs.cacert.org (Sourcerer)
  • 0000168: [my account] Add secondary contact language
  • 0000167: [web of trust] No points might be added because the member already has got 35 points (Sourcerer)
  • 0000166: [website content] Better usability for new localization
  • 0000163: [account administration] Avoid a user to put 5 time the same question in the Q/A password recovery system
  • 0000162: [source code] Useless setting of $id
  • 0000160: [source code] "pointsalready <= 1500" makes no sence (duane)
  • 0000159: [source code] $_SESSION['profile']['email'] in index/4.php
  • 0000157: [source code] index/0.php uses initialized $rss
  • 0000155: [source code] unparsed variables used in mysql query
  • 0000154: [source code] Privacy concern
  • 0000153: [source code] _SESSION['config'] doesn't exist
  • 0000151: [account administration] Admin function to remove notification settings for users (Sourcerer)
  • 0000150: [source code] Who is organized?
  • 0000148: [GPG/PGP] site shouldn't rely on magic_quotes_gpc turned on
  • 0000147: [website content] useless $key = $val
  • 0000146: [source code] Unparsed variable written to session variable
  • 0000142: [organisational section] The location db listing page should show the long/lat values of places (duane)
  • 0000141: [website content] Certificate Classes need explanation (Sourcerer)
  • 0000140: [website content] Please rename link "Further Information" or move it else where
  • 0000136: [web of trust] How to get a blank CAP "WoT" or TTP form ?
  • 0000132: [website content] Collision in variable names (Sourcerer)
  • 0000125: [my account] wrong confirmationmessages if account was not validated (duane)
  • 0000122: [organisational section] System Admin, Location DB: edit does not work
  • 0000121: [website content] Help Translation Bug (Sourcerer)
  • 0000116: [organisational section] Org master should be able to delete org admins
  • 0000115: [account administration] Organisation Domain listing (Sourcerer)
  • 0000112: [website content] A link to the mailing list index page would be useful (evaldo)
  • 0000110: [account administration] View Domains (MichaelDiederich)
  • 0000108: [account administration] Delete Email Accounts (MichaelDiederich)
  • 0000101: [organisational section] Allowing organisational users to set any OU during certificate requests
  • 0000094: [website content] Improved Errormessages (Sourcerer)
  • 0000093: [account administration] Storing the original points that were awarded by assurance, even if rounded down afterwards (Sourcerer)
  • 0000092: [account administration] Logging of the email addresses and the account of the person that generates an Email Ping (Sourcerer)
  • 0000088: [my account] Check for security questions with the same answer
  • 0000084: [certificate issuing] Organisational web certs do not include any attributes besides CN
  • 0000083: [certificate issuing] Random Number exhaustion (duane)
  • 0000080: [account administration] Account blocking/lockout feature request
  • 0000076: [certificate issuing] Inclusion of the Certificates information (CN, O etc) in the cert expiration warning mail
  • 0000074: [translations] Some less detail required (about 29.98 days == > about 30 days)
  • 0000073: [translations] Untranslated texts in certificate renewal reminder e-mail
  • 0000071: [website content] Certificate Login - usability problem (Sourcerer)
  • 0000058: [certificate issuing] Expire policy compliance
  • 0000046: [website content] Add another CRL link
  • 0000036: [website content] 0000014: Image Translation (duane)
  • 0000033: [website content] 0000008: Contact Us Page (Forms)
  • 0000032: [website content] 0000007: Stylesheets for h3 tag
  • 0000031: [website content] 0000006: Further Information Page
  • 0000030: [GPG/PGP] 0000033 GPG Keysigning Broken for RSA Keys?
  • 0000029: [my account] 0000029: Max Points on cap.php forms makes no sence
  • 0000025: [website content] 0000020: Change-Language Links all Link to index.php
  • 0000018: [website content] 0000032 Autocomplete should be set to off for LostPassword Questions
  • 0000016: [website content] 0000018: Wrong or missing information on CAcert pages
  • 0000014: [web of trust] 0000019: Tverify does not work in some cases : wrong thawte cert verification assumptions ?
145 issues View Issues