otp.git - Mirror of Erlang/OTP repository.

Age	Commit message (Collapse)	Author
2015-06-18	Change license text to APLv2	Bruce Yinhe

2011-11-09	Initial merge from r13 topic branch. With minimal cleanup.	Micael Karlberg
	Merge branch 'bmk/inets/httpd/xss_when_erl_encoded/r13/OTP-9655' into bmk/inets/httpd/xss_when_erl_encoded/r14/OTP-9655 Conflicts: lib/inets/doc/src/notes.xml lib/inets/src/http_lib/http_uri.erl lib/inets/src/http_lib/http_util.erl lib/inets/src/http_server/httpd_file.erl lib/inets/src/http_server/httpd_request.erl lib/inets/src/http_server/httpd_request_handler.erl lib/inets/src/http_server/httpd_util.erl lib/inets/src/inets_app/inets.appup.src lib/inets/test/httpc_SUITE.erl lib/inets/test/httpd_SUITE.erl lib/inets/test/httpd_basic_SUITE.erl lib/inets/test/httpd_test_lib.erl lib/inets/vsn.mk
2011-10-25	The XSS prevention methods used was confused if the	Micael Karlberg
	URL was encoded (hex-encoded). OTP-9655
2011-09-15	Updated http-server to make sure URLs in error-messages	Micael Karlberg
	are URL-encoded. Added support in http-client to use URL-encoding. Also added the missing include directory for the inets application. OTP-8940 [httpd] Prevent XSS in error pages. Prevent user controlled input from being interpreted as HTML in error pages by encoding the reserved HTML characters. Michael Santos OTP-9124
2011-08-25	Typofix in httpd_file:handle_error message	András Veres-Szentkirályi

2011-03-28	Merge branch 'rj/fix-httpd-format' into bmk/inets/inet56_integration	Micael Karlberg
	OTP-9157
2011-03-17	Fix log messages formating in httpd	Ricardo Catalinas Jiménez

2010-11-30	Changed file error handling to be consistent	Ingela Anderton Andin
	Internal server error is only used for emfile and enfile all other errors are treated as 404 file not found, except 403 eacces.
2010-11-29	URL-encoding - add support in client and more usage in server. Also	Ingela Anderton Andin
	added missing include directory.
2009-11-20	The R13B03 release.OTP_R13B03	Erlang/OTP