for tracking login attacks.

enthusiasm of those who want to replace expensive commercial solutions
(and so I don't have to tell people over and over...)

Currently, this only means defining a signature file and creating a
utility to make them and check them against a disk.  The signature file
is not used by frisbee/imageunzip yet.

object coz it is currently disallowed.

the compiler on cash happy.

testsuite, which doesn't have a webserver assiocated with it. This
will also allow the target to work before apache is up and running.

Fix a bug with $LOGFACIL .

connect a vnode to itself):

Move up the point at which we consider a vnode to be assigned - we
want to do this before we look for link resolutions, or the 'other
end' of a loopback link appears to be unassigned, which is not true.

Add a mecahism to watch out for scoring lookpback links twice. The
edge iterator for an undirected graph sees each vlink twice (there
are two 'out' edges from the vnode). So, we have to avoid scoring it
the second time.

Note that we still only allow loopback links if they are 'trivial_ok'.

tree.

parser:

* Change xmlconvert to use XML::Parser instead of the ad-hoc stuff I
  wrote. This was easier then trying to deal with multiline fields or
  all the special chars. XML::Parser does all that for me. Also make
  sure all fields are either properly quoted (with DBQuoteMeta) or
  regex'ed before we stick them into the DB. For the future, we need
  to add table/slot specific regular expressions.

* Also add Shashi's fixes to the parser; properly escape XML special
  characters, as well as cleanup of my original spitxml code.

no need to go to all this trouble; just create the tables.

them - the old method was relying on them coming out of the database
in the same order, which may not be the case.

cannot have a pkg-comment file.

version of the schema.

'perl foo.pl'

for key upload). Add more regexes and addslashes().

Various things that need to go into new sites' databases, but don't really fit
into database-fill.sql, which is auto-generated. Also, unlike the contents of
database-fill.sql, inserting these is not idempotent, since a site may have
changed them for some reason.

for key upload). Also fix parsing code for version 7 SFS keys.

* Use superglobals for page/form arguments.

* Add regex functions for email and phone number.

* Remove stripslashes calls; not needed and actually incorrect for
  data returned from the DB.

Leigh's recent security enhancements.

with SWIG, and update the README explaining how to use it.

to logout any random user on the testbed; only logged in admin users
can do that now!

* Add TBvalid_uid() function to regex uid's. To be used throughout the
  system. Eventually add routines for checking other things like pids
  and eids, etc.

* Regex the uid value we get from the cookie, and switch to $_COOKIE
  superglobal.

* Strict regex checking in DOLOGIN() of uid.

* Change login.php to use superglobals, and general tightening of
  parameter checking.