News:

Join the Facebook Fan Page.

Main Menu

SMF 1.0.5 released

Started by Compuart, June 20, 2005, 12:48:40 PM

Previous topic - Next topic

rbrown3rd

Thanks once again.  Great avatar by the way.  Love that beard.

Owdy

I still need new avatar. :P
Former Lead Support Specialist

Tarvitsetko apua SMF foorumisi kanssa? Otan työtehtäviä vastaan, lue:http://www.simplemachines.org/community/index.php?topic=375918.0

dtm.exe

Quote from: Owdy on June 24, 2005, 06:13:26 PM
I still need new avatar. :P

[offtopic]I like your polar bear avatar a lot better, Owdy.[/offtopic]

-Dan The Man

Owdy

Me too, but it has to be changed.
Former Lead Support Specialist

Tarvitsetko apua SMF foorumisi kanssa? Otan työtehtäviä vastaan, lue:http://www.simplemachines.org/community/index.php?topic=375918.0

xenovanis

Quote from: Owdy on June 24, 2005, 06:16:48 PM
Me too, but it has to be changed.

Use a penguin instead?
"Insanity: doing the same thing over and over again and expecting different results."

Killer Possum


rbrown3rd

#86
Wow, that was easy.  I think I made it seem harder than it was when I was anticipating it.  I had modded the style.css in the classic theme to change the colors slightly.  After upgrading I deleted the upgrade.php, uploaded the style.css from the old site that I had backed up and that was that.  Oh, I run my site inside MKPortal so I had to edit sources/subs.php in two places so that it runs inside MKPortal.  That was it.  Easy. You guys have done a fantastic job of creating and supporting this software.  You have made administration for non programmers like me very easy.  Thank you very much. 

[Unknown]

Quote from: xtremecruiser on June 24, 2005, 01:34:36 AM
I know I can do the quote below but I have had forums crash and burn with it before

Then you did it wrong.  Always make backups incase you make any mistakes.

Quote from: xtremecruiser on June 24, 2005, 01:34:36 AM
How are the integrations with MK portal, Coppermine Photo Gallery, and Mambo going to be effected with the current upgrade and when 1.1 comes out ?

There will be new integrations, new bridges for them which you will have to install.

-[Unknown]

Yonkey

I had to CHMOD 777 all the 1.0.5 updated files first and then delete their *.php~ backup from 1.0.4's Package Manager update in order to get rid of all the "failed to open stream: Permission denied" errors.  :-\

Other than that, this update went fine for me! :)

raedzaro

when I try to mark topics as read its gave me

Parse error: parse error, unexpected '}' in /home/josins/public_html/forum/Sources/Subs-Boards.php on line 330

Exposed_Bone

I am trying to install the update from the Package manager an I get this message:
2: fopen(): SAFE MODE Restriction in effect. The script whose uid/gid is 3086/3086 is not allowed to access /home5/sub001/sc12119-RNKW/www/forum/Packages/temp owned by uid/gid 99/99
Αρχείο: /home5/sub001/sc12119-RNKW/www/forum/Sources/Subs-Package.php
Γραμμή: 1476
What should I do?  :-[

dtm.exe

Quote from: Exposed_Bone on June 25, 2005, 09:35:17 AM
I am trying to install the update from the Package manager an I get this message:
2: fopen(): SAFE MODE Restriction in effect. The script whose uid/gid is 3086/3086 is not allowed to access /home5/sub001/sc12119-RNKW/www/forum/Packages/temp owned by uid/gid 99/99
Αρχείο: /home5/sub001/sc12119-RNKW/www/forum/Sources/Subs-Package.php
Γραμμή: 1476
What should I do?  :-[


Safe mode is on.  Extract the files to your root directory and upgrade from there.

-Dan The Man

spottedhog

SMF Development team:    ahhhhh.....  I am not a programmer, but I see why/what you did.  I am a PHP Nuke guy, so I am very familiar with the issues you probably had.

Not sure if this would help in the future, but as you probably know, PHP Nuke has been hard hit, nearly devastated by similar securty issues.  This is why there is one person working on "patches".  Just a thought....  you might want to talk a little with this guy about security issues as he has seen a lot of them because of PHP Nuke.  

see him at:  http://www.nukefixes.com  His name is chatserv.  (if you have seen nuke at all recently, you have probably heard of "chatserv's patches")

(please know that I am not questioning or judging programming abilities here..... but sometimes it is good to talk to someone who has been "in the war")

dtm.exe

Quote from: spottedhog on June 25, 2005, 09:44:51 AM
SMF Development team:    ahhhhh.....  I am not a programmer, but I see why/what you did.  I am a PHP Nuke guy, so I am very familiar with the issues you probably had.

Not sure if this would help in the future, but as you probably know, PHP Nuke has been hard hit, nearly devastated by similar securty issues.  This is why there is one person working on "patches".  Just a thought....  you might want to talk a little with this guy about security issues as he has seen a lot of them because of PHP Nuke.  

see him at:  http://www.nukefixes.com  His name is chatserv.  (if you have seen nuke at all recently, you have probably heard of "chatserv's patches")

(please know that I am not questioning or judging programming abilities here..... but sometimes it is good to talk to someone who has been "in the war")


I think our devs are quite capable...

-Dan The Man

spottedhog

#94
Thanks about not being mad....  This is really a serious issue.    I ran a nuke help website and we were the target of near hourly security hits.  One day we got hit 1000 times, but many of the exploits were of the type that this SMF patch repairs.   A week later, we got DoS.... then again the next day and the next day.  They finally got in by finding our path via Display Errors, and then kept trying passwords until one was found.   I gave up the battle, but now PHP Nuke is hiding the errors, so I will be launching something similar again......

With the popularity of SMF increasing, more and more script kiddies will be looking to exploit SMF.  This is not a guess.... this is fact.  PHP Nuke and phpbb have been hit hard, and in the future the challenge of hacking SMF will be the talk of the hacking community, and it is a large community.

Possible collaboration of thoughts and ideas could be mutually beneficial.   And I thought giving out the best possible contact who has had direct similar experiences could help .......

The time may soon come where the mod packages will need some security patches.  I have not used all of them, but I sense that more than one may have something that needs to be addressed.

again, just thoughts on how to make better applications.....

dtm.exe

Quote from: spottedhog on June 25, 2005, 12:36:22 PM
geez.........    I was just making a suggestion..... and I was NOT doubting capabilities.....    geez.........

I'm not mad, I'm just saying.

-Dan The Man

Exposed_Bone

Quote from: OIDanTheManIO on June 25, 2005, 09:42:19 AM
Quote from: Exposed_Bone on June 25, 2005, 09:35:17 AM
I am trying to install the update from the Package manager an I get this message:
2: fopen(): SAFE MODE Restriction in effect. The script whose uid/gid is 3086/3086 is not allowed to access /home5/sub001/sc12119-RNKW/www/forum/Packages/temp owned by uid/gid 99/99
Αρχείο: /home5/sub001/sc12119-RNKW/www/forum/Sources/Subs-Package.php
Γραμμή: 1476
What should I do?  :-[


Safe mode is on.  Extract the files to your root directory and upgrade from there.

-Dan The Man
who can  safe mode off?

dtm.exe


[Unknown]

Quote from: raedzaro on June 25, 2005, 03:10:08 AM
when I try to mark topics as read its gave me

Parse error: parse error, unexpected '}' in /home/josins/public_html/forum/Sources/Subs-Boards.php on line 330


Upload the Sources/Subs-Boards.php file again from the upgrade zip file.

Exposed_Bone, you can't, only your host can.  Just upload and lose your mods.  I'm sorry.

Quote from: spottedhog on June 25, 2005, 12:36:22 PM
Thanks about not being mad....  This is really a serious issue.

The package manager is used for patching.  Try it.

-[Unknown]

loudog

Do I need to un-install shoutbox mod before updating to 1.05 from 1.04? Also will this effect all my themes, I have like 10 of them on my forum for various topics. Thanks LD

Advertisement: