Ignore:
Timestamp:
2014-03-13T14:34:48+13:00 (10 years ago)
Author:
ak19
Message:

First security commit. 1. Introducing the new securitools.h and .cpp files, which port the functions necessary to implement security in Greenstone from OWASP-ESAPI for Java, since OWASP's C++ version is largely not yet implemented, even though their code compiles. The newly added runtime-src/packages/security which contains OWASP ESAPI for C++ will therefore be removed again shortly. 2. receptionist.cpp now sets various web-encoded variants for each cgiarg macro, such as HTML entity encoded, attr encoded, javascript encoded (and css encoded variants). These are now used in the macro files based on which variant is suited to the context. 3. This commit further contains the minimum changes to protect the c, d, and p cgi variables.

File:
1 edited

Legend:

Unmodified
Added
Removed

  • main/trunk/greenstone2/macros/spanish.dm

    r28522 r28888  
    5858_textdescrpref_ [l=es] {Página de Preferencias}
    5959_textdescrlogin_ [l=es] {Página de ingreso}
    60 _textdescrlogout_ [l=es] {Salir como _cgiargun_}
     60_textdescrlogout_ [l=es] {Salir como _cgiargunHtmlsafe_}
    6161
    6262_textdescrgreenstone_ [l=es] {Programa de la Biblioteca Digital Greenstone}
     
    199199_linktextPREFERENCES_ [l=es] {PREFERENCIAS}
    200200_linktextLOGIN_ [l=es] {INGRESAR}
    201 _linktextLOGGEDIN_ [l=es] {(conectado como _cgiargun_)}
     201_linktextLOGGEDIN_ [l=es] {(conectado como _cgiargunHtmlsafe_)}
    202202_linktextLOGOUT_ [l=es] {SALIR}
    203203
     
    362362# 'No matches for query: querystring', depending on whether or not there were
    363363# any matches
    364 _textquerytitle_ [l=es] {_If_(_thislast_,resultados _thisfirst_ - _thislast_ para la consulta:_cgiargq_,No se encontraron resultados correspondientes a  la consulta: _cgiargq_)}
     364_textquerytitle_ [l=es] {_If_(_thislast_,resultados _thisfirst_ - _thislast_ para la consulta:_cgiargqHtmlsafe_,No se encontraron resultados correspondientes a  la consulta: _cgiargqHtmlsafe_)}
    365365_textnoquerytitle_ [l=es] {Página de búsqueda}
    366366
Note: See TracChangeset for help on using the changeset viewer.