| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | [core] abstraction layer for HTTP header manip | Glenn Strauss | 2018-09-23 | 1 | -3/+4 |
| * | [core] code reuse with array_insert_key_value() | Glenn Strauss | 2018-09-16 | 1 | -23/+2 |
| * | [core] some header cleanup | Glenn Strauss | 2018-04-08 | 1 | -0/+1 |
| * | [mod_auth] constant time compare plain passwords | Glenn Strauss | 2018-03-11 | 1 | -0/+17 |
| * | [core] initialize globals at top of main() | Glenn Strauss | 2017-01-31 | 1 | -0/+8 |
| * | [mod_auth] structured data, register auth schemes | Glenn Strauss | 2016-09-22 | 1 | -1/+106 |
| * | [mod_auth] http_auth_md5_hex2bin() | Glenn Strauss | 2016-09-09 | 1 | -0/+33 |
| * | [mod_auth] extensible interface for auth backends | Glenn Strauss | 2016-08-20 | 1 | -690/+14 |
| * | [mod_auth] refactor out auth backend code | Glenn Strauss | 2016-08-18 | 1 | -232/+289 |
| * | [mod_auth] refactor out auth backend code | Glenn Strauss | 2016-08-18 | 1 | -481/+2 |
| * | [mod_auth] refactor out auth backend code | Glenn Strauss | 2016-08-14 | 1 | -116/+104 |
| * | [mod_auth] Digest auth fails after rewrite (fixes #2745) | Glenn Strauss | 2016-08-13 | 1 | -5/+9 |
| * | [mod_auth] fix Digest auth to be better than Basic (fixes #1844) | Glenn Strauss | 2016-07-16 | 1 | -0/+39 |
| * | fix errors detected by Coverity Scan | Glenn Strauss | 2016-06-23 | 1 | -0/+2 |
| * | [mod_auth] skip blank lines and comment lines (fixes #2327) | Glenn Strauss | 2016-04-28 | 1 | -0/+6 |
| * | fallback to lseek()/read() if mmap() fails (#fixes 2666) | Glenn Strauss | 2016-04-28 | 1 | -66/+34 |
| * | use li_[iu]tostrn() instead of li_[iu]tostr() | Glenn Strauss | 2016-04-01 | 1 | -2/+2 |
| * | pass buf size to li_tohex() | Glenn Strauss | 2016-04-01 | 1 | -12/+13 |
| * | [http_auth/mod_fastcgi] check get_http_*_name() for NULL return (#2583) | Glenn Strauss | 2016-03-26 | 1 | -0/+1 |
| * | consistent inclusion of config.h at top of files (fixes #2073) | Glenn Strauss | 2016-03-19 | 1 | -0/+2 |
| * | [core] refactor base64 functions into separate file | Stefan Bühler | 2015-11-22 | 1 | -115/+10 |
| * | [mod_auth] implement and use safe_memclear, using memset_s or explicit_bzero ... | Loganaden Velvindron | 2015-09-26 | 1 | -150/+153 |
| * | [scons] fix crypt() detection, other improvements | Stefan Bühler | 2015-08-29 | 1 | -1/+2 |
| * | [mod_auth] use crypt_r instead of crypt if available | Stefan Bühler | 2015-02-12 | 1 | -1/+9 |
| * | Use buffer API to read and modify "used" member | Stefan Bühler | 2015-02-08 | 1 | -40/+31 |
| * | Remove buffer_prepare_copy() and buffer_prepare_append() | Stefan Bühler | 2015-02-08 | 1 | -1/+1 |
| * | fix buffer, chunk and http_chunk API | Stefan Bühler | 2015-02-08 | 1 | -7/+7 |
| * | fix/silence bugs reported by ccc-analyzer (clang) | Stefan Bühler | 2013-11-13 | 1 | -2/+3 |
| * | [mod_auth] some cleanup, only search for matching auth.require path once | Stefan Bühler | 2013-08-30 | 1 | -23/+5 |
| * | [mod_auth] fix invalid read in digest qop=auth-int handling (fixes #2478) | Stefan Bühler | 2013-06-29 | 1 | -1/+13 |
| * | [mod_auth] fix base64_decode (#2484) | Stefan Bühler | 2013-05-15 | 1 | -22/+36 |
| * | [mod_auth] add htpasswd -s (SHA1) support if openssl is used (needs openssl f... | Stefan Bühler | 2013-04-29 | 1 | -0/+38 |
| * | [mod_auth] use crypt() on encrypted password instead of extracting salt first... | Stefan Bühler | 2013-04-29 | 1 | -44/+11 |
| * | fix typo in debug output | Stefan Bühler | 2012-05-18 | 1 | -1/+1 |
| * | [mod_auth] Fix digest "md5-sess" implementation (Errata ID 1649, RFC 2617) (f... | Stefan Bühler | 2012-04-19 | 1 | -1/+3 |
| * | [mod_auth] Fix signedness error in http_auth (fixes #2370, CVE-2011-4362) | Stefan Bühler | 2011-11-29 | 1 | -1/+1 |
| * | Always use our 'own' md5 implementation, fixes linking issues on MacOS (fixes... | Stefan Bühler | 2011-07-30 | 1 | -84/+88 |
| * | [ssl/md5] prefix our own md5 implementation with li_ so it doesn't conflict w... | Stefan Bühler | 2011-04-24 | 1 | -0/+6 |
| * | cleanup fdevent code, removed linux-rtsig handler, replaced some fprintf calls | Stefan Bühler | 2010-08-06 | 1 | -5/+0 |
| * | - Include IP addresses on error log on password failures (fixes #2191) | Elan Ruusamäe | 2010-05-28 | 1 | -3/+3 |
| * | Fix header inclusion order, always include "config.h" before any system header | Stefan Bühler | 2009-10-11 | 1 | -10/+6 |
| * | Fix issues found with clang analyzer | Stefan Bühler | 2009-07-21 | 1 | -15/+9 |
| * | Adding support for additional chars in LDAP usernames (fixes #1941) | Stefan Bühler | 2009-06-11 | 1 | -2/+7 |
| * | Add support for "real" entropy from /dev/[u]random (fixes #1977) | Stefan Bühler | 2009-06-11 | 1 | -0/+1 |
| * | Fix error message if no auth backend was set | Stefan Bühler | 2009-04-27 | 1 | -1/+5 |
| * | Now really fix mod auth ldap (#1066) | Stefan Bühler | 2008-09-30 | 1 | -27/+16 |
| * | Fix base64 decoding in mod_auth (#1757, thx guido) | Stefan Bühler | 2008-09-30 | 1 | -15/+18 |
| * | workaround ldap connection leak if a ldap connection failed (restarting ldap) | Stefan Bühler | 2008-09-17 | 1 | -12/+29 |
| * | r2096@chromobil: stefan | 2008-02-26 17:12:09 +0100 | Stefan Bühler | 2008-02-26 | 1 | -2/+3 |
| * | free the buffers after the printed them in the error-msg | Jan Kneschke | 2007-09-06 | 1 | -4/+2 |
