aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2003-08-03 Mark Fletcher provided an excellent bug report that identified a problemDaniel Stenberg
with FOLLOWLOCATION and chunked transfer-encoding, as libcurl would not properly ignore the body contents of 3XX response that included the Location: header.
2003-08-03serios info leakage!Daniel Stenberg
2003-08-02When proxy authentication is used in a CONNECT request (as used for all SSLDaniel Stenberg
connects and otherwise enforced tunnel-thru-proxy requests), the same authentication header is also wrongly sent to the remote host. The name and password can then be captured by an evil host and possibly get used for malicious purposes.
2003-08-02updated as the second proxy-auth header was a proof of a serious info leakDaniel Stenberg
bug!!
2003-08-01Joerg Mueller-Tolk fixed a minor mistakeDaniel Stenberg
2003-08-01recent actionDaniel Stenberg
2003-08-01David Byron's makefile fix to allow 7.10.6 to build fine using VCDaniel Stenberg
2003-07-30add a check for 'ar' since the lack of it bit Jared IngersollDaniel Stenberg
we might need to check for some other tools too that on Solaris are put in those weird dirs...
2003-07-30removed silly target that only works when building from CVSDaniel Stenberg
2003-07-30Jörg Müller-Tolk updated this to build fine with 7.10.6Daniel Stenberg
2003-07-30ftp proxy support would be niceDaniel Stenberg
2003-07-30updated to match the recent ftp patch that makes it check for resumabilityDaniel Stenberg
2003-07-30Daniel Noguerol made the ftp code output "Accept-Ranges: bytes" in similarDaniel Stenberg
style like other faked HTTP headers when NOBODY and HEADER are used.
2003-07-30Make sure to generate an uncompressed hugehelp.c file for inclusion inDaniel Stenberg
the distribution archive, as it isn't sure zlib is present everywhere. Those who care much for compressed help should regenerate the file.
2003-07-30Reverted the 'filetime' struct field back to a 'long' as time_t is sometimesDaniel Stenberg
unsigned and we want this to be able to hold -1 for illegal/unset values.
2003-07-29CURLDEBUG not MALLOCDEBUGDaniel Stenberg
2003-07-28Fixes based on Gisle Vanem's input since this script failed due toDaniel Stenberg
possibly crlf newlines.
2003-07-28Digest *OR* Basic authorization testDaniel Stenberg
2003-07-287.10.6Daniel Stenberg
2003-07-28clear http->send_buffer when we have freed the memory it pointed toDaniel Stenberg
2003-07-28updated to the new ftp dir parsing code that allows a preceeding doubleDaniel Stenberg
slash
2003-07-28As noticed by Kevin Roth, we shall not speak of root dir when it isn'tDaniel Stenberg
necessarily the root...
2003-07-28François Pons brought a patch that once again made curl deal with ftp andDaniel Stenberg
"double slash" as indicating the root directory. In the RFC1738-fix of April 30, that ability was removed (since it is not the "right" way).
2003-07-28use the correct 'test71' file name for the temp fileDaniel Stenberg
2003-07-28got a bug report on -F in config files, so I wrote up this test to verifyDaniel Stenberg
that is works... and it did! ;-)
2003-07-25having it in CVS causes us problems *grrr*Daniel Stenberg
2003-07-25Andrés García updated with the added files etcDaniel Stenberg
2003-07-25With an unknown CA path, we undef the variable. To build properly withoutDaniel Stenberg
SSL/CA.
2003-07-25only check for CA bundle path if build with SSL supportDaniel Stenberg
set a conditional for the makefile if we know the CA path or not
2003-07-25Removed #include <sys/resource.h>, as pointed out by Henry Bland we don'tDaniel Stenberg
need it.
2003-07-23the test compared numericly if though it could contain a string, and IDaniel Stenberg
lowered the number of retries to 10
2003-07-23When we re-use an existing connection we must make sure that we don'tDaniel Stenberg
accidentally re-use the connect_addr field, as that might no longer be around. Fix verified by Tracy Boehrer who basicly debugged and tracked down this problem.
2003-07-23minor code style fixDaniel Stenberg
2003-07-23Split out the changes from the year 2002 into a separate file, namedDaniel Stenberg
CHANGES.2002.
2003-07-23SSLCERTS was moved into the docs/ directoryDaniel Stenberg
2003-07-23moved SSLCERTS into the docs/ directoryDaniel Stenberg
2003-07-23Daniel Kouril's fix to make the GSS-Negotiate work fine.Daniel Stenberg
2003-07-23Juan F. Codagnone's fixes to build properly on Windows againDaniel Stenberg
2003-07-23Plain default version of this file, to allow users to build easier fromDaniel Stenberg
CVS. This will be updated by the configure script, and a default is placed here by the maketgz script.
2003-07-22reversed the check for GSSAPI when request that authDaniel Stenberg
2003-07-22CURLDEBUG, not MALLOCDEBUGDaniel Stenberg
2003-07-22More support for NTLM on proxies, now proxy state and nonce is stored inDaniel Stenberg
a separate struct properly.
2003-07-22The NTLM functions now take a 'proxy' argument as well.Daniel Stenberg
2003-07-22Added a separate struct for the proxyntlm data, as it will/can be differentDaniel Stenberg
than the remote server's. That is, both the server and the proxy can in fact require NTLM auth.
2003-07-22CURLDEBUG is the symbol nowDaniel Stenberg
2003-07-22Don't depend on the TIME_WITH_SYS_TIME define. win32 doesn't have sys/time.hDaniel Stenberg
and I don't think we need it.
2003-07-21moved the proxyuser and proxypasswd fields from the sessionhandle to theDaniel Stenberg
connectdata to work as expected
2003-07-21adjusted to support NTLM for proxiesDaniel Stenberg
2003-07-21krb4-fixes for the moved user+password fields within the structsDaniel Stenberg
2003-07-21pre4-commitDaniel Stenberg