Commit | Line | Data |
---|---|---|
fe69da5f | 1 | - User mail is not working |
2 | ||
03796004 | 3 | - Uploading of datafiles is not working |
4 | ||
fe69da5f | 5 | - Registration process is not working |
f657368b | 6 | (rewrite sending of reg. mails) |
fe69da5f | 7 | |
dcee7633 | 8 | - fix ALL sql injections |
fe69da5f | 9 | |
dcee7633 | 10 | - remove absolute paths from all source files (!) (over 50) |
fe69da5f | 11 | |
dcee7633 | 12 | - remove hard-coded kyberia.sk from: |
13 | ( ./inc/eventz/configure_email.inc ) | |
14 | ( ./inc/eventz/delete.inc ) | |
15 | ( ./inc/smarty/node_methodz/modifier.replaceLocalURLs.php ) | |
16 | ( ./inc/replaceLocalURLs.inc ) | |
17 | ( ./nodes.php ) | |
18 | ( ./cron/rssparse.php ) | |
19 | ( ./scripts/contentregexp.php ) (obsolete?) | |
fe69da5f | 20 | Fix https vs http problem (url) |
dcee7633 | 21 | |
22 | - Suspected security holes: | |
23 | ( cron/process-img.sh ) | |
f657368b | 24 | ( ./inc/eventz/spamuj_ubik.inc ) |
25 | ( ./inc/eventz/upload_own_template.inc ) (is even needed?) | |
dcee7633 | 26 | |
f657368b | 27 | - Remove eventz (and files) that are not used (verify this before removing) |
28 | ( ./inc/eventz/login_lockout_test.inc ) | |
29 | ( ./inc/eventz/add_test.inc ) | |
30 | ( ./inc/eventz/add_ubik_friend.inc ) | |
31 | ( ./inc/eventz/cron_test.inc ) | |
32 | ( ./inc/eventz/login_lockout_test.inc ) | |
33 | ( ./inc/eventz/login_test.inc ) | |
34 | ( ./inc/eventz/mail_test.inc ) | |
35 | ( ./inc/eventz/test_button.inc ) | |
36 | ( ./inc/eventz/testing_cron.inc ) | |
37 | ( ./inc/eventz/testm.inc ) | |
38 | ( ./inc/eventz/send-old.inc ) | |
39 | ( ./inc/eventz/destroy_synapse2.inc ) | |
40 | ( ./inc/eventz/login2.inc ) | |
41 | ( ./inc/eventz/send2.inc ) | |
42 | ( ./inc/eventz/set_parent2.inc ) | |
43 | ||
44 | - Remove/fix not working eventz | |
45 | ( ./inc/eventz/addClass.inc ) | |
46 | ( ./inc/eventz/addEvent.inc ) | |
47 | ( ./inc/eventz/addAjax.inc ) | |
48 | ( ./inc/eventz/addPlugin.inc ) | |
49 | ( ./inc/eventz/kyberia.inc ) (wtf) | |
50 | ||
d48685b8 | 51 | - Refactor directory structure |
2f9b4885 H |
52 | |
53 | - Deprecated PHP features | |
54 | ( Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 163 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 184 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 196 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 208 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 220 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 242 ) | |
fe69da5f | 55 | |
56 | - keep fixing XSS | |
57 | ||
58 | - documentation/installation guide (see README) | |
59 | ||
60 | - Clean code => fix uninitialized variables | |
f657368b | 61 | |
62 | - Implement URL handling using PATH_INFO instead of mod_rewrite | |
63 | ||
45a1b870 | 64 | - some templates are fixed only in .tpl, not in sql database |
65 | ||
f657368b | 66 | - (IMHO we should use SHA1 or stronger algorithm instead of MD5 for storing passwords) |
67 | (We can use multiple hash algorithms (so we'll have backward DB compatibility): | |
68 | {SHA256}0654209dbde29a5c17e4f04ab63a91d303d2e7c791c7b5777581a7fa6550054e | |
69 | {SHA1}f67c52c4a27cf05c99e4f3f946d6500f045a4735 | |
70 | 5b077a0ab90992d9763c5b120b22c9d7 | |
71 | ) Harvie | |
72 |