fixed topic name in posts so that it came out right; fixed SIG welcome

page so that it generates correct URL; repaired a security hole (well, not
really, but a PERCEIVED security hole) regarding accounts that have been
created but not yet confirmed

web/format/posts.jsp

@@ -26,18 +26,13 @@
   RenderData rdat = RenderConfig.createRenderData(application,request,response);
 %>
 <% if (rdat.useHTMLComments()) { %><!-- <%= data.getIdentifyingData() %> --><% } %>
-<%
-  String tmp;
-  if (data.isTopicArchived())
-    tmp = "(Archived) ";
-  else if (data.isTopicFrozen())
-    tmp = "(Frozen) ";
-  else
-    tmp = "";
-  rdat.writeContentHeader(out,data.getTopicName(),tmp + data.getTotalMessages() + " Total; "
-                          + data.getNewMessages() + " New; Last: "
-                          + rdat.formatDateForDisplay(data.getLastUpdate()));
-%>
+<%= rdat.getStdFontTag("#3333AA",5) %><B><%= data.getTopicName() %></B></FONT>&nbsp;&nbsp;
+<%= rdat.getStdFontTag("#3333AA",3) %><B>
+  <% if (data.isTopicArchived()) { %>(Archived)<% } else if (data.isTopicFrozen()) { %>(Frozen)<% } %>
+  <%= data.getTotalMessages() %> Total; <%= data.getNewMessages() %> New;
+  Last: <%= rdat.formatDateForDisplay(data.getLastUpdate()) %>
+</B></FONT>
+
 <TABLE BORDER=0 WIDTH="100%" CELLPADDING=0 CELLSPACING=0>
   <TR VALIGN=BOTTOM>
     <TD NOWRAP ALIGN=LEFT>
@@ -176,7 +171,8 @@
     </EM>)
     <% if (msg.hasAttachment()) { %>
       <A HREF="<%= rdat.getEncodedServletPath("attachment?" + data.getConfLocator() + "&msg="
-                                              + msg.getPostID()) %>" TARGET="_blank"><IMG
+                                              + msg.getPostID()) %>"
+       <% if (data.displayAttachmentInNewWindow(msg)) { %>TARGET="_blank"<% } %> ><IMG
        SRC="<%= rdat.getFullImagePath("attachment.gif") %>"
        ALT="(Attachment <%= msg.getAttachmentFilename() %> - <%= msg.getAttachmentLength() %> bytes)"
        WIDTH=16 HEIGHT=16 BORDER=0></A>