Drupal
/
drupal
mirror of https://git.drupalcode.org/project/drupal.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
27,544 Commits
38 Branches
675 Tags
828 MiB
Commit Graph

138 Commits (27050971c0963992a5ce92f90b8127cd6fcf7684)

Author SHA1 Message Date
Alex Pott 1f380a6548 Issue #462950 by pwolanin: Mitigate the security risks that come from IE and other browsers trying to sniff the mime type 2015-01-05 09:57:30 +00:00
Nathaniel Catchpole 7725fcf661 Issue #1956698 by Gábor Hojtsy, xjm, alexpott, damiankloip, mgifford: Prevent access to YAML files using .htaccess and web.config. 2014-10-23 14:11:12 +01:00
Alex Pott 9315a45e01 Issue #2338759 by StryKaizer, tom_ek | alexpott: Fixed core/update.php is now just update.php. 2014-10-04 17:29:36 +02:00
Nathaniel Catchpole 3afec501d4 Issue #2250119 by ParisLiakos, Devin Carlson: Run updates in a full environment. 2014-09-02 10:28:33 +01:00
Alex Pott 168c314dc2 Issue #1587270 by klausi, greggles, sun: Forbid execution of PHP files in subfolders by default (except those needed by core). 2014-07-13 10:21:34 +01:00
Nathaniel Catchpole 5e58da00e6 Issue #2016629 by larowlan, neclimdul, sun, alexpott, jibran, ParisLiakos, donquixote, effulgentsia, msonnabaum: Refactor bootstrap to better utilize the kernel. 2014-06-26 11:47:01 +01:00
Alex Pott 6d2ce628bc Revert "Issue #2016629 by larowlan, neclimdul, sun, alexpott, jibran, ParisLiakos, donquixote, effulgentsia, msonnabaum: Refactor bootstrap to better utilize the kernel." 
This reverts commit cda051c425.
 2014-06-05 12:53:24 -05:00
Nathaniel Catchpole cda051c425 Issue #2016629 by larowlan, neclimdul, sun, alexpott, jibran, ParisLiakos, donquixote, effulgentsia, msonnabaum: Refactor bootstrap to better utilize the kernel. 2014-06-05 11:30:04 +01:00
Dries b75e86ae94 Issue #2253109 by alexpott, ParisLiakos: Followup: Bring .htaccess and web.config up to date. 2014-05-28 15:13:32 -04:00
webchick 4e2f0f3976 Issue #2253109 by ParisLiakos: Bring .htaccess and web.config up to date. 2014-05-16 11:14:55 -07:00
Alex Pott 9e72c8bfaf Issue #1599774 by longwave, kristofferwiklund, BTMash, marcingy | Letharion: .htaccess protections do not work on Apache 2.4 without mod_access_compat. 2014-03-29 16:28:16 +01:00
Dries 3a5c3b322a Issue #2152073 by dmouse, sun, Xano: Bump Drupal core's PHP requirement to 5.4.2. 2014-02-27 20:14:53 +01:00
Nathaniel Catchpole 52d3b49336 Issue #2097189 by damiankloip, sun, Albert Volkman, chx: Add a rebuild script. 2013-12-10 13:50:21 +00:00
Alex Pott bc44cbda91 Issue #1587270 by klausi: Added comment in .htaccess describing how to forbid execution of PHP files in subfolders. 2013-10-03 12:23:10 +01:00
Nathaniel Catchpole 1c9bd12778 Remove accidentally committed profiling cruft from .htaccess 2013-07-05 15:36:57 +01:00
Nathaniel Catchpole 58850a9493 Issue #1921426 by dawehner, chx, agentrickard, marcingy, alexpott: Move node access storage to DIC. 2013-07-05 14:39:57 +01:00
webchick a3a2b14f5e Issue #1962780 by David_Rothstein, petyovsky: Fixed 500 Internal server error on Apache 1.x servers after updating to Drupal 7.22. 2013-04-10 11:40:59 -07:00
catch 32806c41c8 Issue #670454 by pwolanin, cburschka, effulgentsia: Fixed Support HTTP Authorization in CGI environment. 2013-02-14 14:08:22 +00:00
webchick 8ad7708bd7 Issue #1907704 by ultimateboy, totten, acrollet, greggles: Restrict temporary files created by text editors. 2013-02-08 18:24:14 -08:00
catch 7525d1a702 Issue #1733476 by greggles, BMDan: Fixed Make default htaccess rules protocol sensitive to avoid man-in-the-middle-attacks if users don't fully customize the rule. 2012-11-20 11:07:38 +00:00
Dries 99243487d7 - Patch #1578590 by ksenzee: references to nonexistent function drupal_initialize_variables(). 2012-05-16 21:27:25 -04:00
catch d13fd18f1e Issue #1551626 by sun, Crell: Convert cron.php into a regular menu router page callback. 2012-05-07 11:50:05 +09:00
Nathan Haug f434037c0e Issue #22336 by quicksketch, scor, boombatower, and rfay. Move all core Drupal files under a core subdirectory. 2011-11-01 12:48:40 +09:00
Dries Buytaert 4b522e22ad - Patch #806974 by kiamlaluno, rocket_nova: fixed punctuation errors in messages. 2011-10-01 15:47:01 -04:00
Dries Buytaert 778ea2ceeb - Patch #1116416 by Kars-T, Coornail: use 'Header set' instead of 'Header append' in .htaccess to avoid double encoding. 2011-09-18 20:41:59 -04:00
Dries Buytaert 3b1d2f387f - Patch #76824 by geerlingguy, xjm, droplet, kbahey: Drupal should not handle 404 for certain files. Oh yeah. 2011-09-14 16:24:19 -04:00
Dries Buytaert b556c02492 - Patch #1110810 by JohnAlbin, TR: CVS $ tag lurks in .htaccess file (and other dank corners of Drupal). 2011-04-23 20:28:33 -04:00
Dries Buytaert fdc91796bf - Patch #919596 by mathroc, AnalogFile, dmitrig01, boombatower: -MultiViews in .htaccess requires odd AllowOverride Options=All,MultiViews. 2011-04-23 20:25:43 -04:00
Dries Buytaert 952445f5ab - Patch #919596 by mathroc, AnalogFile, dmitrig01: alias to /web cause 404 http response ode. 2010-11-23 02:59:05 +00:00
Dries Buytaert 563c673ea3 - Patch #101227 by mikeytown2, Owen Barton, grendzy: added Gzip aggregated CSS and JS. 2010-10-11 23:49:48 +00:00
Angie Byron 70097688f4 #348448 follow-up by mfb: Remove default E_STRICT error reporting. We're too far into the release cycle for changes like this. Let's pick it up again in Drupal 8! :) 2010-05-05 06:15:59 +00:00
Dries Buytaert ff301288f2 - Patch #348448 by mfb, c960657, marvil07, cdale, jpmckinney: fixed PHP strict warnings when running tests and for PHP 5.3. 2010-04-11 18:33:44 +00:00
Angie Byron 84d9994485 #581706 by c960657: Protect hidden directories (.git, .svn, etc.) in .htaccess. 2010-02-07 05:20:21 +00:00
Dries Buytaert cc4e41583d - Patch #638030 by dww: hide *.make files via .htaccess. 2010-02-02 07:25:01 +00:00
Dries Buytaert 1df3cfffef - Patch #284899 by c960657, voxpelli, mattconnolly: fixed Drupal url problem with clean urls. 2010-01-29 22:40:41 +00:00
Dries Buytaert 3df77d6b65 - Patch #550488 by c960657: turn of mod_expires for all .php files. 2009-08-16 12:10:36 +00:00
Dries Buytaert 29e3ab6091 - Patch #497736 by deekayen: code-style.sh is no more so it should not be part of .htaccess. 2009-06-21 10:48:06 +00:00
Dries Buytaert 8f2c63ea25 - Patch #352180 by Garret Albright, wrwrwr: better multi-site friendly 'www' addition/removal in .htaccess. 2009-06-09 05:08:16 +00:00
Angie Byron 2a56294315 #328155 by cog.rusty: Allow third-party subdirectories with index.html or index.htm files. 2009-05-16 13:19:12 +00:00
Dries Buytaert 526401c4c8 - Patch #147310 by c960657 et al: better cache headers for reverse proxies. 2009-04-22 09:45:03 +00:00
Angie Byron d046c0c211 #289120 by jastern: Set magic_quotes_sybase = 0 to prevent default php.ini settings from double-quoting JavaScript in Drupal. 2009-01-09 02:49:01 +00:00
Dries Buytaert 9b391c2e6e - Patch #281131 by Damien Tournoud: document the missing quote in .htaccess. 2008-11-28 09:39:13 +00:00
Dries Buytaert 6608f70cff - Patch #308834 by c960657: move setting of magic_quotes_runtime out of settings.php because (i) we don't want a user to change it and (ii) it gets executed a bit earlier in the Drupal bootstrap. 2008-11-22 13:46:11 +00:00
Dries Buytaert 4ebaf8b659 - Patch #217170 by maartenvg, rbiffl: boolean PHP settings are best set with php_flag instead of php_value. 2008-09-15 15:21:44 +00:00
Dries Buytaert 490afc1ed2 - Patch #28776 by lilou, Morbus Iff, Uwe Hermann: protect SVN files. 2008-08-30 13:22:14 +00:00
Dries Buytaert f5645d67e7 - Patch #275730 by boombatower: protect .test files by .htaccess. 2008-07-05 18:37:05 +00:00
Dries Buytaert 6fca076ead - Patch #174940 by gpk: fixed favicon.ico 404s. 2008-06-28 19:48:21 +00:00
Dries Buytaert 34fd475f24 - Patch #174940 by gpk: don't generate 404s for favicons. Work around broken browsers ... 2008-06-26 19:19:44 +00:00
Dries Buytaert ffdbe06e3a - Patch #221364 by thehong: Drupal 7, now with less PHP4. 2008-02-21 19:45:47 +00:00
Dries Buytaert 39706e3c51 - Patch #150245 by webchick, bjaspan, ralf, Arancaytar et al: move the .schema files into .install files to prevent mistakes. 2007-10-05 14:43:26 +00:00