1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

phpBB 2.016 (update today)

Discussion in 'phpBB' started by dvduval, Jun 27, 2005.

  1. #1
    For those of you running phpbb, there has been an update today, including an important security fix. I suggest you update as soon as possible.
    SEMrush
     
    dvduval, Jun 27, 2005 IP
    SEMrush
  2. stymiee

    stymiee Peon

    Messages:
    429
    Likes Received:
    22
    Best Answers:
    0
    Trophy Points:
    0
    #2
    Thanks for the heads up. I think it's time to join their mailing list.
     
    stymiee, Jun 27, 2005 IP
  3. obenix

    obenix Eats an apple a day......

    Messages:
    2,236
    Likes Received:
    180
    Best Answers:
    0
    Trophy Points:
    0
    #3
    Aren't we seeing a lot of updates recently for phpBB??
    Everytime I update, I lose my hacks..:(
    Anyone can tell me how to update without losing my hacks??
     
    obenix, Jun 27, 2005 IP
  4. dcristo

    dcristo Illustrious Member

    Messages:
    19,747
    Likes Received:
    1,190
    Best Answers:
    7
    Trophy Points:
    470
    Articles:
    7
    #4
    I am on the mailing list and didnt receive the update email :eek:

    Thanks for the heads up.
     
    dcristo, Jun 27, 2005 IP
  5. stymiee

    stymiee Peon

    Messages:
    429
    Likes Received:
    22
    Best Answers:
    0
    Trophy Points:
    0
    #5
    Unfortunately you'd have to either move your hacks or apply the patches manually (that's what I do).
     
    stymiee, Jun 27, 2005 IP
  6. dcristo

    dcristo Illustrious Member

    Messages:
    19,747
    Likes Received:
    1,190
    Best Answers:
    7
    Trophy Points:
    470
    Articles:
    7
    #6
    Just performed the update, its a very small one at that, only a few changed files to update.

    For those on the phpbb support mailing list, did you receive an email regarding the new update?
     
    dcristo, Jun 27, 2005 IP
  7. crazyhorse

    crazyhorse Peon

    Messages:
    1,137
    Likes Received:
    19
    Best Answers:
    0
    Trophy Points:
    0
    #7
    Took me about 2 minutes to change this security fix. Thanks for the notification.
     
    crazyhorse, Jun 28, 2005 IP
  8. just-4-teens

    just-4-teens Peon

    Messages:
    3,968
    Likes Received:
    168
    Best Answers:
    0
    Trophy Points:
    0
    #8
    anyone with 2.015 should reciev any news about updates when they login to admin area.
     
    just-4-teens, Jun 28, 2005 IP
  9. dcristo

    dcristo Illustrious Member

    Messages:
    19,747
    Likes Received:
    1,190
    Best Answers:
    7
    Trophy Points:
    470
    Articles:
    7
    #9
    Yes I noticed. But I was on the mailing list to get emailed about it :)
     
    dcristo, Jun 28, 2005 IP
  10. nddb

    nddb Peon

    Messages:
    803
    Likes Received:
    30
    Best Answers:
    0
    Trophy Points:
    0
    #10
    First, I think the reason we are seeing a lot of security updates is because they pissed off some coders with their attitude. I mean, broken is broken, but a lot of this seems malicious because of phpbb's attitude and responses to people. The bugs could have been reported and fixed, but instead, they put their pride (or something) above their users and then came the santy worm.

    That and their fondness for large regex's.. lol.

    Secondly, you should just apply the patches, they usually list them in their forum, and it's very easy to cut and paste them out. I usually just shut off whatever feature is exploitable (when I see it on bugtraq) until they come out with a patch.

    This is usually the place : http://www.phpbb.com/phpBB/viewforum.php?f=14&sid=0fa5df5e81c6b69d497ec453e4c71491

    This is the saga with phpbb and howdark, it's really pretty amusing.

    http://64.233.161.104/search?q=cach...ev.com/?postid=20+phpbb+exploit+howdark&hl=en

    That was shortly before the worm... lol, if I'm not mistaken. Since then, there's been a similar critical bug almost every new release. Some of them seem malicious to me, and the fact that phpbb never accepts blame, from what I read in their forums. It's always "upgrade php" or something.

    I love this... oops.
     
    nddb, Jun 30, 2005 IP