when a user is disconnected while in a door,e.g.
lbshell.js line 505: TypeError: xtrn_area.sec_list[sec] is undefined

Will add an (empty) avatar for the user and disable it.
Appears for users who have no avatar configured.

addresses from dumb web-scrapers, but not smart ones.

avatar_chooser.js line 76: TypeError: bin is null

the user to create/select an avatar.

isn't going to happen.

Also, add more errors, especially when a certificate is installed, but the
state data can't be updated.  That (very unlikely - some would say impossible)
situation will result in a new cert being requested every time the script is
ran (ideally every day), and likely running into throttling issues.

solution since we're not actually building it as a library but rather
cherry picking specific files and this just introduces more problems since
don't have all the required files in this massive alias.

"base64.h: No such file or directory"). Boy, it should be simpler to
just include smblib/*.

an error.

If LetSyncrypt does create it, add a webctrl.ini file that removes access
restrictions so that the file can be validated.

This allows disabling authentication after a higher level specifies an
AccessRequirements value, eliminating the last reason to keep access.ars
around.

when they're 30 days old.

ssl.cert and generate a new key.

The defl-signed certificates are 1536 bits, so cannot be reused for Let's
Encrypt.

Modify ctrl/letsyncrypt.ini and in the Domains section, add the web root
for each domain in the format:
example.com=/sbbs/web/root

If the list of domains changes, a new certificate will be generated next
time letsyncrypt runs.

You DO NOT need to specify the domains if you only need to support the single
host system.inet_addr.

Also, allow signing unrecognized attributes.

These changes allow getting a Let's Encrypt certificate covering multiple
domain names.

when the extension is natively supported by Cryptlib.  This is to work
around the apparent impossiblity of adding multiple DNSName entries to the
Subject Alt Name field.

Sorry DigitalMan, you'll have to compile the Win32 libraries again.  :-)

large multi-line strings though.

attribute_get/set[_string|_time]? interface.  This is way easier than a
bunch of tiny getter/setter functions, and most of these certificate
extensions aren't actually going to be used anyway.

Also, surface the attribte cursor constants for more advanced certificate
parsing/creation.

time.

time.

the default/all target.
So a single "make" command in src/sbbs3 should build these nested targets
as well.
Caveat: "make clean" does not clean these sub-make targets.

run this as a daily event.

uedit.c:1475:5: warning: this 'if' clause does not guard...
     if(uifc.changes)

but it's parsed as a number.  Use the JS Date type for the values.

This script will request and install a certificate, then recycle your web
server.  This is barely sufficient, but a lot more needs to be done...
1) Tracking certificate expiration, and only placing a new order when
   appropriate.
2) Handling failure better.
3) Handle changes in the system password (like anyone ever does THAT).
4) Clean up stale authorizations.

Also, some enhanced features would be nice:
1) Adding a bunch of SANs, so virtual hosts Just Work
2) Key aging and updating
3) More control of certificate contents... I can't find a list of what
   Let's Encrypt supports in CSRs.