Commit | Line | Data |
---|---|---|
fe69da5f | 1 | - User mail is not working |
2 | ||
3 | - Registration process is not working | |
f657368b | 4 | (rewrite sending of reg. mails) |
fe69da5f | 5 | |
46c0767c | 6 | - SQL injections (many fixed, but some should be still there) |
fe69da5f | 7 | |
dcee7633 | 8 | - remove absolute paths from all source files (!) (over 50) |
fe69da5f | 9 | |
78cc8511 | 10 | - remove hard-coded hostname from: |
11 | ( registration mails ) | |
12 | ( scripts in "scripts" directory (system paths)) | |
13 | - Fix https vs http problem (url) | |
dcee7633 | 14 | |
15 | - Suspected security holes: | |
16 | ( cron/process-img.sh ) | |
f657368b | 17 | ( ./inc/eventz/spamuj_ubik.inc ) |
18 | ( ./inc/eventz/upload_own_template.inc ) (is even needed?) | |
dcee7633 | 19 | |
f657368b | 20 | - Remove eventz (and files) that are not used (verify this before removing) |
21 | ( ./inc/eventz/login_lockout_test.inc ) | |
22 | ( ./inc/eventz/add_test.inc ) | |
23 | ( ./inc/eventz/add_ubik_friend.inc ) | |
24 | ( ./inc/eventz/cron_test.inc ) | |
f657368b | 25 | ( ./inc/eventz/login_test.inc ) |
26 | ( ./inc/eventz/mail_test.inc ) | |
27 | ( ./inc/eventz/test_button.inc ) | |
28 | ( ./inc/eventz/testing_cron.inc ) | |
29 | ( ./inc/eventz/testm.inc ) | |
30 | ( ./inc/eventz/send-old.inc ) | |
31 | ( ./inc/eventz/destroy_synapse2.inc ) | |
32 | ( ./inc/eventz/login2.inc ) | |
33 | ( ./inc/eventz/send2.inc ) | |
34 | ( ./inc/eventz/set_parent2.inc ) | |
35 | ||
36 | - Remove/fix not working eventz | |
37 | ( ./inc/eventz/addClass.inc ) | |
38 | ( ./inc/eventz/addEvent.inc ) | |
39 | ( ./inc/eventz/addAjax.inc ) | |
40 | ( ./inc/eventz/addPlugin.inc ) | |
41 | ( ./inc/eventz/kyberia.inc ) (wtf) | |
42 | ||
d48685b8 | 43 | - Refactor directory structure |
2f9b4885 H |
44 | |
45 | - Deprecated PHP features | |
46 | ( Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 163 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 184 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 196 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 208 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 220 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 242 ) | |
fe69da5f | 47 | |
48 | - keep fixing XSS | |
49 | ||
50 | - documentation/installation guide (see README) | |
51 | ||
52 | - Clean code => fix uninitialized variables | |
f657368b | 53 | |
54 | - Implement URL handling using PATH_INFO instead of mod_rewrite | |
55 | ||
45a1b870 | 56 | - some templates are fixed only in .tpl, not in sql database |
57 | ||
f657368b | 58 | - (IMHO we should use SHA1 or stronger algorithm instead of MD5 for storing passwords) |
59 | (We can use multiple hash algorithms (so we'll have backward DB compatibility): | |
60 | {SHA256}0654209dbde29a5c17e4f04ab63a91d303d2e7c791c7b5777581a7fa6550054e | |
61 | {SHA1}f67c52c4a27cf05c99e4f3f946d6500f045a4735 | |
62 | 5b077a0ab90992d9763c5b120b22c9d7 | |
63 | ) Harvie | |
64 |