Patch By Tomas Kopal <Tomas.Kopal@altap.cz> r=wicked, a=justdave

Patch By Tomas Kopal <Tomas.Kopal@altap.cz> r=mkanat, a=justdave

Patch By Tomas Kopal <Tomas.Kopal@altap.cz> r=mkanat, a=justdave

Patch By Tomas Kopal <Tomas.Kopal@altap.cz> r=mkanat,a=justdave

Patch By Tomas Kopal <Tomas.Kopal@altap.cz> r=mkanat,a=myk

Bug 59351 - move all calls to sendmail to a central place. Patch by mkanat; r=gerv,vladd; a=justdave.

Bug 250897: Enforce a 10 minute waiting period between password reset attempts to prevent the user getting mailbombed if the form is submitted multiple times.
Patch by Joel Peshkin <bugreport@peshkin.net>
r=kiko, a=justdave

r= gerv, a= justdave

Bug 192516: Moving the loose .pm files into the Bugzilla directory, where they belong.  These files pre-date the Bugzilla directory, and would have gone there had it existed at the time.  The four files in question were copied on the CVS server to preserve CVS history in the files.  This checkin deletes them from the old location and modifies everything else to know where they are now.
r= myk, gerv
a= justdave

r,a=justdave

patch by 'Randall M! Gee', r=bbaetz, a=justdave

r=gerv, justdave
a=justdave

Bug 193989: EmailSuffix wasn't getting used for password change tokens.  Also removes real name from To: header which wasn't being escaped properly for RFC2822 specs.
Patch by Jeff Lawson <jlawson-mozilla@bovine.net>
r=justdave, a=justdave

Bug 164038 - token.cgi: Cancel token messages should be moved into the templates. Patch by burnus; r=gerv.

r=joel, preed

r=joel x2

2xr=bbaetz

Bug 135836 - change requests should include expiration details. Patch by zeroJ@null.net; r=gerv, justdave.

Fix for bug 125516: the recent fix for emails truncating when a period occurred on a line by itself broke Exim because it
needs the -t and -i as separate parameters instead of stacked (the original patch had -ti)
Patch by Tobias Burnus <burnus@gmx.de>
r= justdave, gerv

Fix for bug 117055: Emails were being truncated if they contained a line with nothing but a period on them.  We now pass -i to
sendmail and its clones to tell it to ignore periods (since we close the pipe when we're done, rather than signalling it with
a period).  Has been tested with sendmail and postfix.
Patch by Dave Miller <justdave@syndicomm.com>
r= afranke, bugzilla@bkor.dhs.org, jake

Patch by Brad Baetz <bbaetz@student.usyd.edu.au>
r= jake, justdave

Fix for bug 95731: "INSERT INTO shadowlog" failed because "Table 'shadowlog' not locked", fixed typo in lock tables command.
Patch by Myk Melez <myk@mozilla.org>
r= justdave@syndicomm.com

Fix for bug 95535: the token generator for password resets is allowing the & character to be used for tokens, but wasn't escaping them for the URL it emailed to users to use to get in to reset their password.
Patch by Dave Miller <justdave@syndicomm.com>
r= myk@mozilla.org

Fix for bug 77473, bug 74032, and bug 85472: Passwords are no longer stored in plaintext in the database.  Passwords are no longer encrypted with MySQL's ENCRYPT() function (because it doesn't work on some installs), but with Perl's crypt() function.  The crypt-related routines now properly deal with salts so that they work on systems that use methods other than UNIX crypt to crypt the passwords (such as MD5).  Checksetup.pl will walk through your database and re-crypt everyone's passwords based on the plaintext password entry, then drop the plaintext password column.  As a consequence of no longer having a plaintext password, it is no longer possible to email someone their password, so the login screen has been changed to request a password reset instead.  The user is emailed a temporary identifying token, with a link back to Bugzilla.  They click on the link or paste it into their browser and Bugzilla allows them to change their password.
Patch by Myk Melez <myk@mozilla.org>
r= justdave@syndicomm.com, jake@acutex.net