The Ultimate Weblog System

Resources

Getting started

Support

Development

Sections

User Functions





Don't have an account yet? Sign up as a New User
Lost your password?


What's New

Stories

No new stories

Comments last 2 days

No new comments

Trackbacks last 2 days

No new trackback comments

Pages last 2 weeks

No new pages

NEW FILES last 14 days

No new files
No new comments

Links last 2 weeks

No recent new links

Older Stories

Sunday 22-Nov


Tuesday 17-Nov


Sunday 08-Nov


Thursday 15-Oct

Welcome to Geeklog
Tuesday, February 09 2010 @ 06:15 PM EST

Geeklog 1.6.0sr1 and 1.5.2sr5

Thursday, July 30 2009 @ 02:00 PM EDT

Contributed by: Dirk

Views: 2,276

Security

Geeklog 1.6.0sr1 and 1.5.2sr5 address the following security issues:

  1. Gerendi Sandor Attila reported an XSS in the forms to email a user and to email a story to a friend.
  2. The "Mail Story to a Friend" function didn't check story permissions, so that it was possible to email a story even if you didn't have the permissions to view it on the site.

For Geeklog 1.6.0, we also fixed two bugs (an SQL error when the story submission queue was off and a call to a nonexistent function).

The following files are available:

What's Related

Story Options

Trackback

Trackback URL for this entry: http://www.geeklog.net/trackback.php/geeklog-1.6.0sr1

Here's what others have to say about 'Geeklog 1.6.0sr1 and 1.5.2sr5':

http://devnote.com.mx/blog/2009/07/31/disponibles-geeklog-1-6-0sr1-y-1-5-2sr5/
[...] AudioPlayer.setup("http://devnote.com.mx/wp-content/plugins/podcasting/player/player.swf", { width: 290 ~); Geeklog.net . Fuente: Alcance Libre Comparte/Guarda Otros artículos relacionados Disponible Geeklog 1.5.2sr1. Disponible Geeklog [...] [read more]
Tracked on Friday, July 31 2009 @ 10:38 AM EDT

Disponibles Geeklog 1.6.0sr1 y 1.5.2sr5 - Soporte Geeklog Hispano
[...] desde Geeklog 1.5.2sr4 Un paquete acumulativo desde cualquier versión previa a 1.5.2 Fuente: Geeklog.net . Relacionado con esto... paquete completo paquete de actualizaci&... paquete de actualizaci&... paquete acumulativo Geeklog.net [...] [read more]
Tracked on Sunday, August 02 2009 @ 03:53 PM EDT

Geeklog 1.6.0sr1 and 1.5.2sr5 | 7 comments | Create New Account
The following comments are owned by whomever posted them. This site is not responsible for what they say.
Geeklog 1.6.0sr1 and 1.5.2sr5
Authored by: mysuzie on Thursday, July 30 2009 @ 05:19 PM EDT
When logging on to my site www.suzyq.ca, I get the following message. Can anyone advise what this means.

Message:
Warning: fopen(/home/mysuzie/logs/error.log) [function.fopen]: failed to open stream: Permission denied in /home/mysuzie/public_html/lib-common.php on line 1521
An SQL error has occured. Please see error.log for details.

Any help would be appreciated.

Thank you
Sue
[ # ]
error.log
Authored by: Dirk on Friday, July 31 2009 @ 03:29 AM EDT

First of all: Please do not post support request on completely unrelated articles. That's what our forums are for. Thanks.

You seem to have two problems: An SQL error occurs. Geeklog tries to log it, but you didn't make the error.log file writable. To fix the latter, please refer to the installation instructions again - all the files and directories that have to be writable are listed there. Once you did that, try again and if the error occurs again, post the error message in a new forum post.

[ # ]
Geeklog 1.6.0sr1 and 1.5.2sr5
Authored by: taca on Friday, July 31 2009 @ 10:35 AM EDT
Hi.

As for 1.5.2sr5, is there plan to full release tar ball?
I found some more changes with 1.5.2sr5, such as documentation update,
but they aren't included in these update archive files.

Best regards.
---
taca
[ # ]
Geeklog 1.6.0sr1 and 1.5.2sr5
Authored by: Dirk on Friday, July 31 2009 @ 04:08 PM EDT

We only provide complete tarballs for the current version - and that's 1.6.0 now.

[ # ]
Geeklog 1.6.0sr1 and 1.5.2sr5
Authored by: taca on Friday, July 31 2009 @ 07:30 PM EDT
I see.

But I wish updated documentation to be included in the update archive.

Best regards.
---
taca
[ # ]
Geeklog 1.6.0sr1 and 1.5.2sr5
Authored by: jspujji on Friday, July 31 2009 @ 05:11 PM EDT
How can I view some sites created with geeklog
[ # ]
Geeklog sites
Authored by: Dirk on Saturday, August 01 2009 @ 08:18 AM EDT

Please use our forums for questions that are not related to a specific article.

Our Links section has many examples of Geeklog sites. Examples of popular sites are Groklaw, Mac OS X Hints, and MacFixIt.

[ # ]

© 2002-2010 Geeklog
Created this page in 0.27 seconds 		Powered by Geeklog 1.6.1 
Hosted by pair.com