Main CAcert Website - Change Log

0000317: [certificate issuing] SHA-2 support (duane) 0000002: [account administration] [Support] Need web interface to modify the DOB of a user 0000056: [account administration] EMail Ping not safe enough 0000128: [organisational section] Need to get the email list of the org admins 0000065: [website content] Security Hole: CrossSiteScripting (duane) 0000145: [logged out] Beware of the Evil ... 0000158: [source code] Inserting text into the CAcert website 0000161: [source code] concerning variable reuse 0000164: [source code] org eat org 0000175: [website content] We need a way to shutdown the website (Sourcerer) 0000181: [web of trust] Double Assurance (Sourcerer) 0000183: [source code] don't trust my names 0000194: [source code] Don't trust the users (Sourcerer) 0000195: [source code] Session Security 0000200: [web of trust] creating client certs with arbitrary names included 0000203: [misc] old versions (duane) 0000205: [website content] [security bug] information gathering 0000206: [source code] [security bug] bad style of programming 0000208: [source code] [security bug] unverified SQL injeciton in gpg.php (Sourcerer) 0000217: [source code] remove old functionality for CSR 0000218: [source code] variables not reset 0000245: [GPG/PGP] Shell escape 0000265: [certificate issuing] Server certificate included extra DNS names (Sourcerer) 0000286: [my account] language issues (1/2) 0000289: [misc] Exploiting whois and the add domain function 0000309: [misc] New DNS servers (evaldo) 0000335: [misc] OCSP responds "unknown" (Sourcerer) 0000374: [website content] thawte verification wiki 0000355: [account administration] Separation of Admin and Organisation-Assurer (Sourcerer) 0000354: [website content] translation on page https://www.cacert.org/index.php?id=5 and other small corrections (wonderer) 0000351: [website content] little corrections on http://www.cacert.org/index.php?id=51&lang=de_DE 0000344: [GPG/PGP] Can't delete gpg key 0000342: [GPG/PGP] Menu order: GPG/PGP Keys 0000331: [organisational section] "Organisation Assurance" gives only error message "Parse error: syntax error, unexpected T_IF in /www/pages/wot/11.php on line 1 0000323: [organisational section] Cannot add and remove an admin to/from an organisation 0000321: [website content] PHP Error when trying to install certificate into IE7 (duane) 0000319: [translations] Untranslated logos page (aanriot) 0000316: [web of trust] Redesign of the CAP/TTP forms 0000314: [website content] localised a assurrer in Ingolstadt, Bayern, Germany (776272) (Sourcerer) 0000311: [web of trust] You are receieving this email as you are the listed contact for: ??? (blank) 0000308: [source code] tverify missing (Sourcerer) 0000306: [web of trust] ID copies (Sourcerer) 0000296: [translations] german translation "März" not "Mrz" 0000295: [translations] english text in german page 0000302: [website content] in Germany we have ä, ö and ü | the cities in your db are only written with a o u and not with ae oe ue 0000300: [my account] assured people don`t get points from me 0000299: [source code] sqldump without ; (Sourcerer) 0000298: [website content] ©2002-2005 by CAcert 0000294: [translations] english text in german translation 0000293: [translations] english text in german translation 0000297: [translations] missing translations to german in menu on right side (duane) 0000292: [translations] The german translation are not display complete (duane) 0000288: [misc] Bad usage of checkEmail 0000284: [account administration] move the LostPassphrase answers (+questions) to an additional page (duane) 0000283: [account administration] move the DOB editing to a seperate page (duane) 0000281: [source code] make.php.dist (duane) 0000278: [web of trust] Location DB Admin broken (duane) 0000277: [website content] Secure IRC missing (duane) 0000275: [certificate issuing] Race condition 0000274: [website content] More information about CAcert Inc. (duane) 0000271: [source code] dsffdfdd 0000267: [source code] register globals CSR (duane) 0000266: [account administration] My Alerts reset 0000261: [my account] not listed as assurer although defined "i want to be listed" as well as the correct region "Wien, Wien, Austria" 0000256: [certificate issuing] Cert Renewal Problem - Link to Wiki 0000255: [account administration] Mantis email interface is not RFC compliant 0000252: [translations] Translation not working at all (Sourcerer) 0000248: [account administration] password reset does not work in admin mode (duane) 0000244: [account administration] AJAX (location) From stopped working (duane) 0000240: [web of trust] OCSP response signer's certificate expired 0000233: [account administration] marriage 0000229: [certificate issuing] no "cancel" Button (wonderer) 0000228: [account administration] No confirmation mail after registration 0000219: [web of trust] "Find an Assurer" unusable (at least without javascript) 0000212: [source code] Missing "Your Certificate is about to expire" scripts 0000211: [website content] in index/1.php, there is irritating text 0000210: [misc] unabled to add .EU domain / Cookie issue with Mozilla (duane) 0000209: [source code] unauthenticated access on the test1 website (duane) 0000201: [web of trust] incorrect baltic character encoding/font on CAP form 0000199: [misc] necessary security update for wordpress blog software 0000191: [my account] "Assurance Points You Issued" entries are out of sequence 0000189: [account administration] Can login with Certificate but can't change Password 0000187: [website content] Website menu : Point system (duane) 0000185: [my account] Irritating message when trying to log into unverfied account 0000182: [source code] index.php?id=2 always writes confirmation message 0000180: [organisational section] man in the middle attack to mails (Sourcerer) 0000178: [account administration] missing numbering of Assurances 0000177: [account administration] Safety question for 0 points assurance (Sourcerer) 0000174: [translations] Deutsche Übersetzung der Startseite, Gebü_h_ren bitte mit h (duane) 0000171: [source code] missing email notification 0000170: [web of trust] Set focus to email field on load 0000169: [website content] Use https for bugs.cacert.org (Sourcerer) 0000168: [my account] Add secondary contact language 0000167: [web of trust] No points might be added because the member already has got 35 points (Sourcerer) 0000166: [website content] Better usability for new localization 0000163: [account administration] Avoid a user to put 5 time the same question in the Q/A password recovery system 0000162: [source code] Useless setting of $id 0000160: [source code] "pointsalready <= 1500" makes no sence (duane) 0000159: [source code] $_SESSION['profile']['email'] in index/4.php 0000157: [source code] index/0.php uses initialized $rss 0000155: [source code] unparsed variables used in mysql query 0000154: [source code] Privacy concern 0000153: [source code] _SESSION['config'] doesn't exist 0000151: [account administration] Admin function to remove notification settings for users (Sourcerer) 0000150: [source code] Who is organized? 0000148: [GPG/PGP] site shouldn't rely on magic_quotes_gpc turned on 0000147: [website content] useless $key = $val 0000146: [source code] Unparsed variable written to session variable 0000142: [organisational section] The location db listing page should show the long/lat values of places (duane) 0000141: [website content] Certificate Classes need explanation (Sourcerer) 0000140: [website content] Please rename link "Further Information" or move it else where 0000136: [web of trust] How to get a blank CAP "WoT" or TTP form ? 0000132: [website content] Collision in variable names (Sourcerer) 0000125: [my account] wrong confirmationmessages if account was not validated (duane) 0000122: [organisational section] System Admin, Location DB: edit does not work 0000121: [website content] Help Translation Bug (Sourcerer) 0000116: [organisational section] Org master should be able to delete org admins 0000115: [account administration] Organisation Domain listing (Sourcerer) 0000112: [website content] A link to the mailing list index page would be useful (evaldo) 0000110: [account administration] View Domains (MichaelDiederich) 0000108: [account administration] Delete Email Accounts (MichaelDiederich) 0000101: [organisational section] Allowing organisational users to set any OU during certificate requests 0000094: [website content] Improved Errormessages (Sourcerer) 0000093: [account administration] Storing the original points that were awarded by assurance, even if rounded down afterwards (Sourcerer) 0000092: [account administration] Logging of the email addresses and the account of the person that generates an Email Ping (Sourcerer) 0000088: [my account] Check for security questions with the same answer 0000084: [certificate issuing] Organisational web certs do not include any attributes besides CN 0000083: [certificate issuing] Random Number exhaustion (duane) 0000080: [account administration] Account blocking/lockout feature request 0000076: [certificate issuing] Inclusion of the Certificates information (CN, O etc) in the cert expiration warning mail 0000074: [translations] Some less detail required (about 29.98 days == > about 30 days) 0000073: [translations] Untranslated texts in certificate renewal reminder e-mail 0000071: [website content] Certificate Login - usability problem (Sourcerer) 0000058: [certificate issuing] Expire policy compliance 0000046: [website content] Add another CRL link 0000036: [website content] 0000014: Image Translation (duane) 0000033: [website content] 0000008: Contact Us Page (Forms) 0000032: [website content] 0000007: Stylesheets for h3 tag 0000031: [website content] 0000006: Further Information Page 0000030: [GPG/PGP] 0000033 GPG Keysigning Broken for RSA Keys? 0000029: [my account] 0000029: Max Points on cap.php forms makes no sence 0000025: [website content] 0000020: Change-Language Links all Link to index.php 0000018: [website content] 0000032 Autocomplete should be set to off for LostPassword Questions 0000016: [website content] 0000018: Wrong or missing information on CAcert pages 0000014: [web of trust] 0000019: Tverify does not work in some cases : wrong thawte cert verification assumptions ?