summaryrefslogtreecommitdiff
AgeCommit message (Expand)Author
2014-07-15simplified else/breakBen Fuhrmannek
2014-07-14updated changelog after mergeBen Fuhrmannek
2014-07-14Merge branch 'filter'Ben Fuhrmannek
2014-07-14Merge branch 'sql'Ben Fuhrmannek
2014-07-14updated changelogBen Fuhrmannek
2014-07-14*ignore*Ben Fuhrmannek
2014-07-12introduced suhosin.upload.allow_utf8Ben Fuhrmannek
2014-07-11remove_binary and disallow_binary allow utf-8. +testcasesBen Fuhrmannek
2014-07-11disallow_ws now matches all single-byte whitespace charactersBen Fuhrmannek
2014-07-09untested features must be enabled: configure --enable-suhosin-experimentalBen Fuhrmannek
2014-07-09experimental PDO supportBen Fuhrmannek
2014-07-09test cases for user_prefix + user_postfixBen Fuhrmannek
2014-07-09SQL username check in sim. mode checks only for the first occ. of inv. charsBen Fuhrmannek
2014-07-09enforce SQL username check + return FALSE instead of bailoutBen Fuhrmannek
2014-07-09more files to be ignored by gitBen Fuhrmannek
2014-07-09added sql.user_match + username character checkBen Fuhrmannek
2014-07-07brand new default suhosin.ini with documentation and correct default valuesBen Fuhrmannek
2014-06-24Added SQL injection protection for Mysqli and several test casesBen Fuhrmannek
2014-06-10Prepare release of suhosin-0.9.36suhosin-0.9.36Stefan Esser
2014-06-09Improve SessionHandler() recursion protectionStefan Esser
2014-06-09Fixed problem with SessionHandler() class and endless recursionStefan Esser
2014-06-09Document new rand/mt_rand featuresStefan Esser
2014-06-09Add suhosin.rand.seedingkey to protectkey testStefan Esser
2014-06-09Added various improvements to rand()/mt_rand() protectionStefan Esser
2014-06-09Whitespace fixStefan Esser
2014-06-09Fix variable logging statistics outputting on every includeStefan Esser
2014-06-09Add protection against injection attacks (like XSS/SQL/other) through HTTP Us...Stefan Esser
2014-05-15List changesStefan Esser
2014-05-15Adding some tests for logging shellscriptsStefan Esser
2014-05-15Better handling of non existing/non executable fileupload verification scriptsStefan Esser
2014-05-15Better tracking of non existing/non executable logging scriptsStefan Esser
2014-05-13Add new Changelog and fix version numberStefan Esser
2014-05-13Add LICENSE file so that linux distributions are magically happyStefan Esser
2014-02-24Prepare release of suhosin extension 0.9.35suhosin-0.9.35Stefan Esser
2014-02-18Some tests for the cookie encryption feature from BenStefan Esser
2014-02-18For test compatibility with PHP 5.3Stefan Esser
2014-02-18This test will fail under PHP < 5.4 with magic_quotes_gpc turned onStefan Esser
2014-02-18Without this in PHP < 5.4 we do not get the variable skip summary on POST upl...Stefan Esser
2014-02-18Fix test cases for PHP installations that have a different session.hash_bits_...Stefan Esser
2014-02-18Some of the test cases fail because log buffer limit was too small.Stefan Esser
2014-02-18Forgot to change the version number here.Stefan Esser
2014-02-17Add some PHP 5.6.0aplha2 compatibilityStefan Esser
2014-02-16Add tests for max_array_index_length filterStefan Esser
2014-02-16Refactor array index handling in input filter, to make it work in all cases.Stefan Esser
2014-02-16Add tests for suhosin.get/post/cookie/request.max_value_lengthStefan Esser
2014-02-16Add test for suhosin.request.max_totalname_lengthStefan Esser
2014-02-16Add tests for suhosin.get/post/cookie.max_totalname_length filterStefan Esser
2014-02-16Fix suhosin.get/post/cookie.max_totalname_length filterStefan Esser
2014-02-16Add various tests for include filename checksStefan Esser
2014-02-16Tests for suhosin.executor.include.allow_writable_filesStefan Esser