* Security enhancement: Prevent image access through thumbs.php. For details...
authorMichael Stucki <michael.stucki@typo3.org>
Tue, 5 Dec 2006 00:18:07 +0000 (00:18 +0000)
committerMichael Stucki <michael.stucki@typo3.org>
Tue, 5 Dec 2006 00:18:07 +0000 (00:18 +0000)
commitf51015da3fa9ad7234088d8191c105109c66ac13
treeafbcf64095ee49a3dcedd66e13335d2f133fd91f
parente86168910edd961d6f0784737fbcbbdb29d413a1
   * Security enhancement: Prevent image access through thumbs.php. For details, see typo3.org/teams/security/security-bulletins/typo3-20061205-1/ - thanks to Marc Bastian Heinrichs for discovering and reporting this issue.
       * Security enhancement: Refuse BE logins of usernames starting with _CLI_ (they are only used by real CLI scripts)

git-svn-id: https://svn.typo3.org/TYPO3v4/Core/trunk@1854 709f56b5-9817-0410-a4d7-c38de5d9e867
ChangeLog
t3lib/class.t3lib_befunc.php
t3lib/class.t3lib_userauth.php
t3lib/thumbs.php
typo3/class.file_list.inc
typo3/show_item.php
typo3/sysext/cms/tslib/class.tslib_content.php