Welcome to Geeklog, Anonymous Thursday, April 18 2024 @ 12:23 am EDT

Geeklog 1.6.0sr1 and 1.5.2sr5

Thursday, July 30 2009 @ 02:00 pm EDT
Contributed by: Dirk
Views: 8,716

Geeklog 1.6.0sr1 and 1.5.2sr5 address the following security issues:

Gerendi Sandor Attila reported an XSS in the forms to email a user and to email a story to a friend.
The "Mail Story to a Friend" function didn't check story permissions, so that it was possible to email a story even if you didn't have the permissions to view it on the site.

For Geeklog 1.6.0, we also fixed two bugs (an SQL error when the story submission queue was off and a call to a nonexistent function).

The following files are available:

a complete tarball of Geeklog 1.6.0sr1
an upgrade archive from Geeklog 1.6.0
an upgrade archive from Geeklog 1.5.2sr4
a combo update from any previous 1.5.2 version

Comments

Geeklog 1.6.0sr1 and 1.5.2sr5 | 7 comments | Create New Account

The following comments are owned by whomever posted them. This site is not responsible for what they say.

Comments are closed and no new posts are allowed.

Geeklog 1.6.0sr1 and 1.5.2sr5

Authored by: mysuzie on Thursday, July 30 2009 @ 05:19 pm EDT

When logging on to my site www.suzyq.ca, I get the following message. Can anyone advise what this means.

Message:
Warning: fopen(/home/mysuzie/logs/error.log) [function.fopen]: failed to open stream: Permission denied in /home/mysuzie/public_html/lib-common.php on line 1521
An SQL error has occured. Please see error.log for details.

Any help would be appreciated.

Thank you
Sue

error.log

Authored by: Dirk on Friday, July 31 2009 @ 03:29 am EDT

First of all: Please do not post support request on completely unrelated articles. That's what our forums are for. Thanks.

You seem to have two problems: An SQL error occurs. Geeklog tries to log it, but you didn't make the error.log file writable. To fix the latter, please refer to the installation instructions again - all the files and directories that have to be writable are listed there. Once you did that, try again and if the error occurs again, post the error message in a new forum post.

Geeklog 1.6.0sr1 and 1.5.2sr5

Authored by: Anonymous (Anonymous User) on Friday, July 31 2009 @ 10:35 am EDT

Hi.

As for 1.5.2sr5, is there plan to full release tar ball?
I found some more changes with 1.5.2sr5, such as documentation update,
but they aren't included in these update archive files.

Best regards.
---
taca

Geeklog 1.6.0sr1 and 1.5.2sr5

Authored by: Dirk on Friday, July 31 2009 @ 04:08 pm EDT

We only provide complete tarballs for the current version - and that's 1.6.0 now.

Geeklog 1.6.0sr1 and 1.5.2sr5

Authored by: Anonymous (Anonymous User) on Friday, July 31 2009 @ 07:30 pm EDT

I see.

But I wish updated documentation to be included in the update archive.

Best regards.
---
taca

Geeklog 1.6.0sr1 and 1.5.2sr5

Authored by: jspujji on Friday, July 31 2009 @ 05:11 pm EDT

How can I view some sites created with geeklog

Geeklog sites

Authored by: Dirk on Saturday, August 01 2009 @ 08:18 am EDT

Please use our forums for questions that are not related to a specific article.

Our Links section has many examples of Geeklog sites. Examples of popular sites are Groklaw, Mac OS X Hints, and MacFixIt.

Geeklog 1.6.0sr1 and 1.5.2sr5

Search

Resources

About

Getting started

Support

Development

Topics

User Functions

What's New

Articles last 4 weeks

Comments last 4 weeks

Pages last 4 weeks

Links last 4 weeks

Downloads last 4 weeks