PEAK XOOPS - News in englishin japanese

Archive | RSS |
  
Site News : Updated into 2.0.7.1
Poster : GIJOE on 2004-08-21 16:07:17 (8612 reads)

PEAK XOOPS has been updated into XOOPS 2.0.7.1.

Also New autologin hack has been applied.
You can log-in here both by uname and by e-mail.

I think XOOPS 2.0.7.1 is a very good release and stable.
Thanks to Skalpa and XOOPS core team.

0 comments

XOOPS : Say good-bye to allow_url_fopen
Poster : GIJOE on 2004-07-21 17:09:37 (10950 reads)

The directive "allow_url_fopen" is a useful feature of PHP.
For example, xoopsheadline is depends on "allow_url_fopen".
If you turn "allow_url_fopen" off, you can't use xoopsheadline neither as main nor as block.

But this feature often cause serious vulnerablities in fact.
I think that "allow_url_fopen On" is a setting which should be avoided as much as "register_globals On".

Scripts using snoopy instead of fopen("http://...","r") can work under "allow_url_fopen Off".
Of course, xoopsheadline can also work under "allow_url_fopen Off" if it is modified as using snoopy.

Read more... | 1614 bytes more |1 comments

XOOPS : Final myblocksadmin has come
Poster : GIJOE on 2004-07-19 16:36:52 (7626 reads)


I've just released myblocksadmin 0.07.

Finally you can make mostly operation to blocks in this controll pannel in this version.
Certainly, when you want change block's options, you have to click "edit".
But new window will not be opened.
And you'll be back to myblocksadmin after editting options.

This will be final release of myblocksadmin.
I recommend this myblocksadmin to all the module developpers with confidence.

You can get it from download area

0 comments

XOOPS : DUPLICATABLE V2 has arrived
Poster : GIJOE on 2004-07-09 17:54:14 (8045 reads)

I've implemented a xhld module using 'DUPLICATALBE V2'.
This module knows the number of myself by suffix.

If the dirname is 'xhld0', xhld module judges the number of myself as 0.
Thus, xhld uses the templates of xhld0_*.html, and mysql0.sql.

You can rename the copies of xhld freely.
If you install this module as 'h1', xhld will judge the number of myself as 1.
Thus, xhld uses the templates of xhld1_*.html, and mysql1.sql with no errors.

If this technique is implemented in TinyD, you will be able to install the clones of TinyD as t0 or tc0 instead of tinycontent0.

0 comments

Site News : Some vulnerablities has been found in piCal 0.60beta03.
Poster : GIJOE on 2004-06-22 19:10:31 (7874 reads)

A XOOPS site in brasil has been posted illegal events from some cracker as a guest yesterday.
The cracker introduce him/herself as LEONE_PARK.

Although I don't see how to post the events, I've found some vulnerablities -SQL Injection & CSRF- from piCal 0.60beta03 at least.

Thus, I've just released fixed version of piCal named 0.60beta04.

I don't think this vulnerablity is so serious or emergency, you'd better update piCal to 0.60beta04.

This vulnerablities might exist in all versions of piCal but >= 0.60beta04.

0 comments

« 1 ... 48 49 50 (51) 52 53 54 55 »
Login
Username or e-mail:

Password:

Remember Me

Lost Password?

Register now!