BitFolk » Panel

2017-04-11

15:46 Feature #157 (New): Reduce idle timeout on security-sensitive pages

The default session timeout of 30 minutes may not be appropriate for security-sensitive pages. Consider reducing it (... admin

13:50 Bug #156 (Resolved): Secure all forms against CSRF

All remaining forms have now been secured against CSRF. admin

2017-04-09

21:13 Bug #156: Secure all forms against CSRF

Done:
> * /account/invoices/pay/
admin

2017-04-08

21:29 Bug #156: Secure all forms against CSRF

Done:
> * /account/
admin

18:43 Bug #156: Secure all forms against CSRF

These two done (on test site):
> * /xfer/
> * /account/config/
admin

2017-04-06

15:10 Bug #156: Secure all forms against CSRF

As the remaining forms are only for trivial uses, or redirect to third party suppliers (e.g. for payment), there's pr... admin

2017-04-04

20:19 Bug #156 (Closed): Secure all forms against CSRF

A number of forms on the Panel are susceptible to Cross-Site Request Forgery. Any form which does a POST will need pr... admin

2017-03-30

13:36 Feature #155 (New): User-defined VPS name / description

I have a number of VPS's with rather generic names (xxx, xxx-1, xxx-2, etc.) and I can never remember which VPS provi... oozlum