2003-03-09 """""""""" * Fixed a sorting/grouping bug in search. The results were presented wrong when sorting/grouping by author. * Added a hidden username field to message posting forms. It's another XSS precaution. 2003-03-08 """""""""" * Added referer check to all admin/moderator functions. "Fooling" an admin/moderator into performing a specific action using XSS should now be much more difficult (if not impossible). Thanks to Samuel Lidén Borell for reporting this. 2003-03-07 """""""""" * Added note to the change e-mail message that you have to be logged in in order for the activation link to work (thanks CodeDuck!). 2003-03-05 """""""""" * Fixed typo in english help language file (thanks Denniz Pop!). 2003-02-27 """""""""" * Added missing htmlspecialchars() to website display in viewtopic and profile (thanks max_w!). 2003-02-24 """""""""" * Fixed not being able to move forums to empty categories (thanks Sim!). 2003-02-17 """""""""" * Implemented a post report handling system. This system is meant to ease the rather tedious task of processing post reports. There is a new option in admin/options that sets how reports should be distributed: 1. Through the new report system. 2. By e-mail to the admin mailing list. 3. Both. * The report system has replaced what was once "alerts". Alerts are instead e-mailed to the recipients on the admin mailing list. 2003-02-15 """""""""" * Added webmaster_email. This address is the "From: address" in all e-mails that are sent from the forum. The default value for this field is the value of admin_email. * Replaced all occurrences of echo with print. print is simpler and should be a tiny bit faster. 2003-02-12 """""""""" * Changed the text representation of the rolleyes smiley from :roll: to :rolleyes: 2003-02-11 """""""""" * Added a second paramater to message() to supress the "back link". This is useful sometimes (thanks max_w!). * Rewrote some of the admin scripts. Some of the code in there was just plain ugly! * Changed the way moderators are handled in light of the changelog entry below. Adding a moderator to a forum is now done in the user administration controls in the moderators profile. The way in which this information is stored in the database has also changed. * Closed a potential security hole where a moderator, under special circumstances, can gain moderator access to forums in which he/she isn't a moderator. Please note that the user must have moderator status to do this. Credits go out to _3fps for locating this bug. 2003-02-09 """""""""" * Extended the template support a bit. There are now three different templates located in include/template/. The old "template.pun" has changed into "main.tpl" and now has a few more variables for improved visual configurability. "maintenance.tpl" is the template for the maintenance message page and "redirect.tpl" is the template for redirect pages. 2003-02-08 """""""""" * Finished a massive code run-through. The indent style has changed from my own (old) style into the well-known "Allman style" (a.k.a. BSD-style). The function and variable naming schema has also changed to fit the standards of PHP more closely. A few small bugs and inconsistencies were fixed during this run-through. I'm beginning to feel more comfortable with the code base now. 2003-02-05 """""""""" * Removed "phone home" feature from the install script. * "Show unanswered posts", "Show your posts" and "Mark all forums as read" are now displayed instead of the "forum jump" on search result pages. * Fixed file uploads in PHP 4.3.0. The problem was that $_REQUEST no longer contains the elements in $_FILES. Don't ask me why I relied on $_REQUEST in the first place. Thanks Muggen for helping me track this down! 2003-02-04 """""""""" * Fixed users being unsubscribed from a topic when subscribing multiple times. 2003-02-03 """""""""" * tags for smilies now have the alt attribute set to the smiley in question. 2003-02-02 """""""""" * Changed index.php so that it doesn't convert \n to
in forum descriptions. 2003-01-31 """""""""" * Added missing links to help.php in edit dialog (thanks Gardell!). 2003-01-27 """""""""" * Fixed bug in admin/categories which caused forums to be "left over" in the database when a category was deleted (thanks _3fps!). 2003-01-23 """""""""" * Fixed admin/categories so that only the controls for adding a new category are displayed if there are no categories to edit/delete. 2003-01-21 """""""""" * Changed the password text box for "SMTP password" back to a regular plaintext box as it was causing some odd behaviour with certain browsers "remember password feature". 2003-01-18 """""""""" * Fixed install.php so that it looks like the rest of Pun. 2003-01-17 """""""""" * Moved loading of DB abstraction layer and connect stuff into it's own file include/dblayer/commondb.php. * PunTags are from now on called BBCode for reasons I would rather not discuss here :-) * Cache-Control, Expires and Last-Modified headers are now sent for every page (header.php). This should fix most (if not all) caching problems with Opera. 2003-01-13 """""""""" * Fixed typo in se_topic.php (thanks Henke!). 2003-01-12 """""""""" * Removed the very thourough "consistency check" on GIF-files in profile.php. Width and height of avatars are now fetched with getimagesize() and the HTML properties for are set whenever an avatar is displayed. Opera still screws up the layout with "hacked GIF's", but I guess you can't win 'em all! * Fixed problem with file_exists() in index.php (thanks Cactuz!). * Fixed typo in admin_titles.php (thanks Henke!). 2003-01-11 """""""""" * Changed so that the forum title is a link in search.php. 2003-01-10 """""""""" * Fixed submit buttons beeing disabled when going back to a page with a form that was just submitted. This only affected Opera and it is avoided by simply checking the user agent string for 'Opera' and if so, don't disable any submit buttons. Crude, but probably rather effective. 2003-01-06 """""""""" * Simplified the registration form a lot. A user now fills in username, password and e-mail (depending on validate registrations setting). There are also two checkboxes (hide e-mail and save username and password). * Moved buildCensorWords() into censorWords(). Similar to what was done to ranks and banlist yesterday. It's prettier. * Made validation of guest username more robust. It now checks for censor words as well. * Removed some left over entries in the post language file. 2003-01-05 """""""""" * Added admin note and title to the search fields in admin_users.php. * Removed functions buildBannedusers() and buildTitles(). See below. * Improved getTitle() a lot. The functionality of buildBannedusers() and buildTitles() is now built into getTitle(). This makes the code much prettier. This inadvertently fixed a bug later reported by kotten (thanks!) where a user would be displayed as Administrator even though he/she is a Moderator. * Added user editable titles. The administrator can set whether users should be allowed to edit their titles or not (admin/permissions). If a user has a title that title will be displayed instead of any rank or "default title" such as Member or Banned. * What was once called "Titles" is now called "Ranks". See above :-) * Fixed typo in admin_users.php. * Merged the four fields for password and e-mail activation in the users table into two fields. * Moved language entry 'Username censor' from the langprofreg language file into the register language file (it's not used in profile.php). * Removed entries 'Pass key expired' and 'E-mail key expired' from language files. 2003-01-03 """""""""" * Fixed typo in swedish translation (thanks kotten!).