History of file misc-stml.scm at check-in 30a1c2e2d252c371

2018-09-08
19:46
Moved everything into a single module for a more easy transition file: [30ba5d90bf] check-in: [de72dc8d9f] user: matt, branch: stml2, size: 700 [annotate] [blame] [check-ins using] [diff]
2018-07-29
22:04
first steps in refactoring to a module file: [7dbf69d08d] check-in: [8b66fa08e7] user: matt, branch: stml2, size: 7977 [annotate] [blame] [check-ins using] [diff]
2017-09-16
04:29
Added session:generate-random-string. file: [116e590e88] check-in: [9fe02f8d12] user: matt, branch: trunk, size: 10629 [annotate] [blame] [check-ins using] [diff]
2017-03-13
06:30
Added obfuscated set/get file: [512a2ac1ef] check-in: [544afe46f9] user: matt, branch: trunk, size: 10135 [annotate] [blame] [check-ins using] [diff]
2017-03-03
13:37
Merged in some forgotten changes file: [9856caabb9] check-in: [88e690f242] user: matt, branch: trunk, size: 9971 [annotate] [blame] [check-ins using] [diff]
2016-11-08
06:44
Added missing use dbi in misc-stml.scm file: [3b3dec56b0] check-in: [17ef0caa4a] user: matt, branch: trunk, size: 9954 [annotate] [blame] [check-ins using] [diff]
2016-10-20
17:53
Replace external openssl call with "crypt" egg.

The OpenSSL call was using the old UNIX crypt DES password hashing, which is very weak. Crypt will default to a more sensible mechanism (Blowfish, but in the future could transparently switch).

Old passwords will continue to work, because the crypt egg detects DES salts and happily hashes them. When creating new passwords, they will be hashed using the modern algorithm.

The OpenSSL call passed the password to the shell, so an onlooker on the server could see it in plaintext. It also neglected to escape the password for the shell, resulting in a command injection vulnerability. file: [fb9cd24234] check-in: [1b5a5d3a6e] user: sjamaan, branch: crypt, size: 9930 [annotate] [blame] [check-ins using] [diff]

2016-09-19
05:55
Add filtering to s:get-input. Switch to dbi. file: [1a4eccad68] check-in: [e78a65d865] user: matt, branch: trunk, size: 10165 [annotate] [blame] [check-ins using] [diff]
2014-09-03
05:46
Converted to using openssl for crypt. Added type checks to password compare to fix empty password compare failing file: [9494e07667] check-in: [1936d7e2b4] user: matt, branch: selfcontained, size: 10128 [annotate] [blame] [check-ins using] [diff]
2013-05-17
07:08
refactor for selfcontained executables (incomplete) file: [805de087f1] check-in: [55a8152be6] user: matt, branch: selfcontained, size: 9930 [annotate] [blame] [check-ins using] [diff]
2011-10-04
03:39
Moved to units based compilation file: [9d5a337236] check-in: [31955e0a02] user: matt, branch: move-to-ck4.7.x, size: 9927 [annotate] [blame] [check-ins using] [diff]
2011-10-02
19:47
Mostly ported to Chicken 4.7.x file: [f5de1fb05e] check-in: [2274e4ac36] user: matt, branch: move-to-ck4.7.x, size: 9887 [annotate] [blame] [check-ins using] [diff]
2011-09-24
22:13
Yikes. Changes sitting around on disk for long time.... s:any->pgint fix? file: [97e4132f22] check-in: [7807ffe39b] user: matt, branch: trunk, size: 9833 [annotate] [blame] [check-ins using] [diff]
2011-06-09
05:09
Added string to pgint file: [7db3e6d38a] check-in: [be70f56b97] user: matt, branch: trunk, size: 9828 [annotate] [blame] [check-ins using] [diff]
2011-05-15
20:43
Added: Initial check in after moving from http://www.kiatoa.com/fossils/opensrc file: [f82d8a5d54] check-in: [d3abae2d97] user: matt, branch: trunk, size: 9575 [annotate] [blame] [check-ins using]