Desc: - Corrected some cookie issues and referrals with tell-a-friend. Complete docs are in INFTFAH.PDF - Added new configuration options AUDNOSGA to turn off audit trail records for NON-SGA CLIENT connections. A lot of spammers try to connect with NON-SGA clients, so you may see a lot of TELNET SERVER - NON-SGA CLIENT messages. Set this to NO to not record those connections in the audit trail.

Topic: NetVillage Sysop Community Newsletter

"wow!..."

Desc: * Various mineo security issues - /SIGNUP/ path traversal warning. - Added "X-FRAME-OPTIONS: SAMEORIGIN" to the A-HTML 302 redirects. Usually when server appending '/' to end of a-html url. - Handle Slowloris and Slow HTTP attacks DoS attacks. Under CNF option SLOWDCHK (Web Server, Text Blocks). Set this to monitor for slow CPS rates and disconnect accordingly. - Force SSL. If you want to force all access to your web server to go through the SSL service via an HTTP 301 redirect page, set this

Topic: NetVillage Sysop Community Newsletter

Desc: fixes some issues with the facebook login interface

Topic: NetVillage Sysop Community Newsletter

Topic: NetVillage Sysop Community Newsletter

Desc: * some notes on how to avoid click-jacking. * galwebd.dll: -added file Flush to weblog.log debug logs to be sure they were recorded even if the system crashed. NOTE: if you enable this, the file will get big quick, and slow the system down -added additional debug information to weblog.log. -fixed small bug with byeweb(0) for DoS attacks. * galacth.dll: -Sometimes text var [ACTH_ORIGINAL_URL_HTMLENC] contained old content as it was not cleared after use. -added file Flush to galacth debug logs to be sure they were recorded even if the system