summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2014-06-10Prepare release of suhosin-0.9.36suhosin-0.9.36Stefan Esser
2014-06-09Improve SessionHandler() recursion protectionStefan Esser
2014-06-09Fixed problem with SessionHandler() class and endless recursionStefan Esser
2014-06-09Document new rand/mt_rand featuresStefan Esser
Add reseeding on srand/mt_srand if ignore is activated
2014-06-09Add suhosin.rand.seedingkey to protectkey testStefan Esser
2014-06-09Added various improvements to rand()/mt_rand() protectionStefan Esser
2014-06-09Whitespace fixStefan Esser
2014-06-09Fix variable logging statistics outputting on every includeStefan Esser
2014-06-09Add protection against injection attacks (like XSS/SQL/other) through HTTP ↵Stefan Esser
User-Agent String
2014-05-15List changesStefan Esser
2014-05-15Adding some tests for logging shellscriptsStefan Esser
2014-05-15Better handling of non existing/non executable fileupload verification scriptsStefan Esser
2014-05-15Better tracking of non existing/non executable logging scriptsStefan Esser
2014-05-13Add new Changelog and fix version numberStefan Esser
2014-05-13Add LICENSE file so that linux distributions are magically happyStefan Esser
2014-02-24Prepare release of suhosin extension 0.9.35suhosin-0.9.35Stefan Esser
2014-02-18Some tests for the cookie encryption feature from BenStefan Esser
2014-02-18For test compatibility with PHP 5.3Stefan Esser
2014-02-18This test will fail under PHP < 5.4 with magic_quotes_gpc turned onStefan Esser
2014-02-18Without this in PHP < 5.4 we do not get the variable skip summary on POST ↵Stefan Esser
uploads.
2014-02-18Fix test cases for PHP installations that have a different ↵Stefan Esser
session.hash_bits_per_character default
2014-02-18Some of the test cases fail because log buffer limit was too small.Stefan Esser
2014-02-18Forgot to change the version number here.Stefan Esser
2014-02-17Add some PHP 5.6.0aplha2 compatibilityStefan Esser
2014-02-16Add tests for max_array_index_length filterStefan Esser
2014-02-16Refactor array index handling in input filter, to make it work in all cases.Stefan Esser
2014-02-16Add tests for suhosin.get/post/cookie/request.max_value_lengthStefan Esser
2014-02-16Add test for suhosin.request.max_totalname_lengthStefan Esser
2014-02-16Add tests for suhosin.get/post/cookie.max_totalname_length filterStefan Esser
2014-02-16Fix suhosin.get/post/cookie.max_totalname_length filterStefan Esser
2014-02-16Add various tests for include filename checksStefan Esser
2014-02-16Tests for suhosin.executor.include.allow_writable_filesStefan Esser
2014-02-15Back to developmentStefan Esser
2014-02-15Changelog for 0.9.35-RC1suhosin-0.9.35-RC1Stefan Esser
2014-02-15Tests for suhosin.upload.disallow_binaryStefan Esser
2014-02-15Tests suhosin.upload.disallow_elfStefan Esser
2014-02-15Some "incomplete" tests for suhosin.server.strip and suhosin.server.encodeStefan Esser
2014-02-15Tests for suhosin.disable.display_errorsStefan Esser
2014-02-15Add ini_set() fail mode to suhosin.disable.display_errorsStefan Esser
2014-02-15Test for suhosin.protectkeyStefan Esser
2014-02-15Test for RFC1867 version of suhosin.post.disallow_nulStefan Esser
2014-02-15Binary safety.Stefan Esser
2014-02-15Binary safety.Stefan Esser
2014-02-15Test for suhosin.upload.max_uploadsStefan Esser
2014-02-15Add tests for suhosin.executor.allow_symlinkStefan Esser
2014-02-15Adding a few more session id testsStefan Esser
2014-02-15Add a bunch of session id / session encryption tests from Ben.Stefan Esser
2014-02-15Change algorithm a bit for empty keys to make it easier testableStefan Esser
2014-02-13Tests for suhosin.XXX.max_name_length and suhosin.request_max_varname_lengthStefan Esser
2014-02-13Tests for suhosin.XXX.max_array_depthStefan Esser