summaryrefslogtreecommitdiffstats
path: root/Bugzilla/Config/Advanced.pm
AgeCommit message (Collapse)AuthorFilesLines
2012-04-18Bug 728639: (CVE-2012-0465) [SECURITY] User lockout policy can be bypassed ↵Frédéric Buclin1-1/+2
by altering the X-FORWARDED-FOR header r=glob a=LpSolit
2010-11-14Bug 611979: Undefined subroutine &Bugzilla::Config::Advanced::check_multi ↵Frédéric Buclin1-0/+2
when enabling strict_transport_security r=glob a=LpSolit
2010-09-29Bug 600475 - Support the 'includeSubDomains' flag as an option for the ↵Reed Loden1-2/+4
'Strict-Transport-Security' advanced option in order to protect subdomains. [r=glob a=mkanat]
2010-09-28Bug 594990: Make the Strict-Transport-Security HTTP header only be sentMax Kanat-Alexander1-0/+6
if a particular parameter is enabled. r=glob, a=mkanat
2009-12-31Bug 527586: Use X-Forwarded-For instead of REMOTE_ADDR for trusted proxiesmkanat%bugzilla.org1-0/+6
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2009-12-31Bug 519858 - Move uncommonly used parameters out of the "Required" section ↵mkanat%bugzilla.org1-0/+51
and into a "General" and "Advanced" section Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit