Art Cancro [Sat, 7 Jul 2007 04:25:14 +0000 (04:25 +0000)]
Support the idea of a 'master user' logging in
as another user. This will be used to support Asterisk voicemail. It
is currently disabled because the master username/password is hardcoded
and we don't want anyone using that.
Art Cancro [Thu, 5 Jul 2007 19:53:58 +0000 (19:53 +0000)]
*All* <FORM> blocks now contain a nonce field, and the use of
a nonce is now enforced whenever method=POST is used. This prevents
an attacker from simply removing the nonce entirely.
Art Cancro [Thu, 28 Jun 2007 04:01:12 +0000 (04:01 +0000)]
Eliminate the 'Internet mail recommends
a subject' message; the presence of the 'Subject:' prompt
ought to be enough to communicate that. Also, do not prompt
if the subject is already set (which will be the case if the
user has selected a 'Reply' command).
Art Cancro [Sun, 24 Jun 2007 04:23:52 +0000 (04:23 +0000)]
Creating a mailbox room no longer automatically sets
the 'subject required' bit. Instead, the server recommends a subject at ENT0 time
if the 'subject required' bit is set *or* there is at least one Internet email
recipient. This allows local citadel users to send mail to each other without
subjects, which is customary.
* Also made the ENT0 result for this function numeric instead of a string.
Art Cancro [Wed, 20 Jun 2007 04:36:03 +0000 (04:36 +0000)]
The room info link in the banner no longer appears
as the words 'Room info'. Instead, it shows the room info itself if
it is short enough, or it shows a shortened version if it is too
long. Either way, the user may click on it to see the full version
in a popup.
I have also replaced the words 'close window' with the close window
icon, but I can't figure out how to make it appear on the right side
of the box.
Art Cancro [Tue, 19 Jun 2007 03:19:19 +0000 (03:19 +0000)]
citadel.rc: commented out the 'Doorway' function, and
file upload/download using xmodem/ymodem/zmodem commands. They can
be re-enabled by any sites that might still be using these antiquated
functions.
Art Cancro [Tue, 19 Jun 2007 02:39:32 +0000 (02:39 +0000)]
chkpwd is now a daemon that is started by citserver
prior to dropping root privileges. The pair communicate over a private
set of pipes. chkpwd no longer needs to be setuid.
Art Cancro [Mon, 18 Jun 2007 21:18:04 +0000 (21:18 +0000)]
Refuse to purge expired users if the
auto-purger determines that it would have purged every user
on the system. This is usually an error condition, such as
an inability to communicate with a PAM service.
Art Cancro [Mon, 18 Jun 2007 04:13:47 +0000 (04:13 +0000)]
Removed the --disable-chkpwd option, because it generates
a system that fails to build. (The non-chkpwd version of validpw() was
removed a long time ago.)
Art Cancro [Wed, 13 Jun 2007 03:46:44 +0000 (03:46 +0000)]
Add a forward slash to the generated paths for citadel.key,
citadel.csr, and citadel.cer. Without it, they were getting generated as
'/usr/local/citadel/keyscitadel.*' instead of '/usr/local/citadel/keys/citadel.*' which
is incorrect. If this creates double slashes in the FSSTND version, that's ok, the
kernel will strip them out.
Art Cancro [Wed, 13 Jun 2007 02:46:31 +0000 (02:46 +0000)]
Checked in a skeleton of the IMAP METADATA extension
(draft-daboo-imap-annotatemore-11). This will not be a full
implementation of the extension. We are only going to implement
enough of it to handle folder types in the Outlook connector.
Art Cancro [Tue, 5 Jun 2007 21:40:42 +0000 (21:40 +0000)]
New versions of Berkeley DB (I tested with 4.5.20) seem to
have a new algorithm that always creates a new log file on startup. This
broke Citadel's drop_root_perms and caused a database crash. Refactored
the order of startup functions, separating the code which performs chown
and chmod on files in ctdl_data_dir into its own function and calling that
immediately prior to dropping root permissions.
Art Cancro [Tue, 5 Jun 2007 20:47:43 +0000 (20:47 +0000)]
When config.c_ip_addr is set, use that IP address
not only for listening sockets, but also client sockets. This will
allow outbound email to be sourced from the correct IP address when
multiple unrelated Citadels are running on the same server.
Art Cancro [Mon, 4 Jun 2007 13:53:11 +0000 (13:53 +0000)]
Switched back to text/x-vcard as the MIME type generated
when serializing vCards. This may be not be a permanent change.
Also made it a #define so we can toggle back and forth.
Art Cancro [Tue, 29 May 2007 15:54:01 +0000 (15:54 +0000)]
Added HAVE_STATICDATA_DIR, STATICDATA_DIR, HAVE_UTILBIN_DIR,
and UTILBIN_DIR to acconfig.h. sysdep.h.in is once again being
generated by autoheader. Willi: please add comments to these.