Deprecated - Drupal core

when attempting to set a content-type header with;

drupal_set_header('Content-type: text/plain; charset=utf-8');

it appends my header to the already preexisting text/html content-type header.
the api documentation explicitly talks about setting content-type, so im a little confused.

any help would be appreciated.

I work for a large company evaluating the quality of third party application servers. Most of these servers use some form of HTTP as transport and if this is the case, we require our partners to provide some sort of secure authentication method. I've been using Drupal for a long time for various personal stuff, and I'd never really thought about it before, so this morning I decided to sniff the login, and lo and behold, there was my password getting passed in clear text to the public internet. Yee.

I can use hook_links() to add a link to my node, but I don't know how to get that link displayed in the body except by manually adding it to the node_body in hook_view(), i.e.:

$node->body .= l($link[<link name>]['href']) 

However, this doesn't handle $link properly when the format of the link is a "non-link" (i.e. w/o an href). What is the proper method for doing this?

I appear to have run into a bug in the line breaker code for filtered html posts. The symptom was that CCK text fields were being displayed even when empty, even though there is explicit code in the field display handler to exclude fields with no values. The reason that this was happening was because the line breaker was inserting a </p> tag followed by a newline even for fields that were just empty strings. This in turn prevented the field from ever being perceived as empty.

At my employer's behest, I'm writing a module or two to stiffen the security in drupal's core.

As part of his grand scheme, he wants me to completely wipe out the Request New Password functionality from the main login page and the my account page.

Given that I'm still a drupal n00b (though a well-seasoned php coder), I'm not sure what to "unset" from within my module code in order to achieve this. (Or if maybe there isn't an even better way...)

Any ideas?

Thanks in advance.

Steve

I recently removed a few themes from my themes folder and upon going to administer -> blocks I noticed the themes were still being displayed.

To recitify the probem I entered the database and truncated the menu cache table which then reset the themes available.

Hope this helps someone else who runs into the anomaly.