Permalink
Switch branches/tags
Nothing to show
Commits on May 7, 2014
  1. Merge branch 'hide-length-when-proxied' of https://github.com/eatstoo…

    bradleybuda committed May 7, 2014
    …muchjam/breach-mitigation-rails into eatstoomuchjam-hide-length-when-proxied
    
    Conflicts:
    	lib/breach_mitigation/length_hiding.rb
  2. Merge branch 'configurable' of https://github.com/nealharris/breach-m…

    bradleybuda committed May 7, 2014
    …itigation-rails into nealharris-configurable
    
    Conflicts:
    	lib/breach_mitigation/version.rb
  3. Merge pull request #18 from davidbalbert/patch-1

    bradleybuda committed May 7, 2014
    Fix activesupport gem name
Commits on May 6, 2014
  1. Fix activesupport gem name

    davidbalbert committed May 6, 2014
    The proper name of the Active Support gem seems to be `activesupport`. There is an `active_support` gem, but it has been yanked. This doesn't change the paths used with `require` which still include `active_support`.
    
    We cannot upgrade to `breach-mitigation-rails` without this change.
    
    Note: I edited the gemspec on GitHub, so I haven't actually verified that this works, but I have confirmed the proper gem name.
Commits on Apr 1, 2014
  1. Use a Rack::Request to detect SSL instead of just using the rack http…

    Dan Dockery
    Dan Dockery committed Apr 1, 2014
    … scheme environment variable
Commits on Mar 25, 2014
  1. version bump

    Neal Harris
    Neal Harris committed Mar 25, 2014
  2. pad both html and xhtml documents

    Neal Harris
    Neal Harris committed Mar 25, 2014
  3. refer to activesupport dependency without _

    Neal Harris
    Neal Harris committed Mar 25, 2014
  4. allow length-hiding to be disabled

    Neal Harris
    Neal Harris committed Mar 25, 2014
Commits on Nov 6, 2013
  1. Merge pull request #12 from ehlertij/master

    bradleybuda committed Nov 6, 2013
    Only append length hiding string on HTTPS requests
Commits on Aug 9, 2013
  1. Merge pull request #11 from ehlertij/master

    bradleybuda committed Aug 9, 2013
    Fix LengthHiding middleware for Rails 3.0
Commits on Aug 7, 2013
  1. Version bump to 0.0.3

    bradleybuda committed Aug 7, 2013
    * Fix bad padding that would max out at 26 extra characters
    * Don't accidentally escape comments in production
    * Handle bad user input (invalid base64) gracefully
  2. Merge pull request #8 from socialcast/html-safe-length-padding

    bradleybuda committed Aug 7, 2013
    HTML-safe the Length Hiding HTML comment
  3. Merge pull request #7 from socialcast/base64-error-handling

    bradleybuda committed Aug 7, 2013
    Rescue errors arrising from invalid base64 strings
  4. Merge pull request #5 from waynerobinson/make_length_hiding_random

    bradleybuda committed Aug 7, 2013
    Fix: Make Length Hiding Junk String Length Random
  5. Merge pull request #3 from younited/master

    bradleybuda committed Aug 7, 2013
    Insert middleware before Rack::ETag
  6. Make Length Hiding Junk String Length Random

    waynerobinson committed Aug 7, 2013
    Array#sample(n) only returns an array of up to the original array size
    containing only unique entries from array. Therefore, the junk strink in
    the original implementation was usually always 26 characters in length.
Commits on Aug 5, 2013