Al 20 jaar tevreden klanten door persoonlijke service
IS JOUW DOMEINNAAM NOG VRIJ?
Maand: maart 2010
Dubbele herinneringen verstuurd
Door de introductie van ons nieuwe administratiesysteem is het mogelijk dat u dubbele herinneringen heeft ontvangen. Onze excuses voor het ongemak.
SIDN gewijzigde procedures
Zoals al eerder aangekondigd, zal SIDN vanaf vandaag gebruik maken van een nieuw DomeinRegistratieSysteem (DRS). Middels dit systeem zullen er een aantal zaken wijzigen en vereenvoudigen met betrekking tot .nl domeinnamen. Een registratiecontract is niet langer nodig, een contract tussen u en Qweb is voldoende. Een andere wijziging is dat de eisen voor een geldige… Lees meer ›
[Afgerond] Gepland onderhoud 20-03-2010
Update (14:56): Alle werkzaamheden zijn afgerond. Mocht u nog problemen ervaren dan kunt u contact met ons opnemen via www.qweb.nl/contact
phpBB 3.0.7-PL1 released
Hi everyone,
We are sorry to announce the immediate release of phpBB 3.0.7-PL1 to address a security issue which was introduced in 3.0.7, unfortunately the issue wasn't noticed during testing and has only surfaced a week after the release of 3.0.7.
We promised working feeds for phpBB 3.0.7. Sadly, we were not able to deliver on that promise - a critical bug in the permission handling for feeds slipped past. To all people who already have updated to 3.0.7, it is of critical importance to update to 3.0.7-PL1. Otherwise, it is possible for users to bypass permission settings under the following circumstances:
Note: We recommend the use of a regular update routine over manually editing your files. If you manually edit your files your board will not recognise the update.
The fix for the issue is a single line change inside of feed.php, line 525 has changed from:
There were no other changes, in particular neither style nor language changes.
Installation instructions
A short explanation of how to do a conversion, installation or update is included within the provided INSTALL.html file, please be sure to read it. You can find a list of requirements on our Downloads page.
Security
If you find any security issues please report them to our security tracker.
Available packages
If you experience problems with the automatic update (white screens, timeouts, etc.) we recommend using the "changed files only" or "patch" method for updating.
Select the package most suitable for you. We recommend the following methods depending on your situation:
Please ensure you read the INSTALL and README documents in docs/ before proceeding with installation, updates or conversions!
Download Locations
The download is of course available on our downloads page.
Our release archive provides all packages we build. If you do not find your desired package you can probably find it in the release archive.
These are the files with their md5 sums:
phpBB-3.0.7-PL1.zip (Full Package)
md5sum: 1125b615e13a5bb8787afab58a27c627
phpBB-3.0.7-PL1.tar.bz2 (Full Package)
md5sum: 67570654462c442c29080007c0af1e1b
phpBB-3.0.7-PL1-patch.zip (Patch Files)
md5sum: 44d163c6f945207f666b4b8ecbf179b8
phpBB-3.0.7-PL1-patch.tar.bz2 (Patch Files)
md5sum: 4d611e1160599835ff48fc6454bf85e0
phpBB-3.0.7-PL1-files.zip (Changed Files)
md5sum: 579f5685cc37c69dd6ce023b46ce2593
phpBB-3.0.7-PL1-files.tar.bz2 (Changed Files)
md5sum: 2779984411598d919a6a1e6adc35894d
phpBB-3.0.7_to_3.0.7-PL1.zip (Automatic Update Package from 3.0.7)
md5sum: e135fd3b43c17c0bdc69f3fc246e6524
phpBB-3.0.7_to_3.0.7-PL1.tar.bz2 (Automatic Update Package from 3.0.7)
md5sum: 589d21934c14a6517583316659f0225f
phpBB-3.0.6_to_3.0.7-PL1.zip (Automatic Update Package from 3.0.6)
md5sum: b93e31c7930ace5af89d9804b55d8c66
phpBB-3.0.6_to_3.0.7-PL1.tar.bz2 (Automatic Update Package from 3.0.6)
md5sum: cf9b3a42872be8afcddb42648a390861
Download & Documentation
We are sorry to announce the immediate release of phpBB 3.0.7-PL1 to address a security issue which was introduced in 3.0.7, unfortunately the issue wasn't noticed during testing and has only surfaced a week after the release of 3.0.7.
We promised working feeds for phpBB 3.0.7. Sadly, we were not able to deliver on that promise - a critical bug in the permission handling for feeds slipped past. To all people who already have updated to 3.0.7, it is of critical importance to update to 3.0.7-PL1. Otherwise, it is possible for users to bypass permission settings under the following circumstances:
- Feeds are enabled
- Any of the posts or topics feeds are enabled
- The unauthorised user - or one of the groups they are a member of - have forum permissions set on a private forum
- If you have excluded a forum from the list of forums that provide feeds, it is unaffected
Note: We recommend the use of a regular update routine over manually editing your files. If you manually edit your files your board will not recognise the update.
The fix for the issue is a single line change inside of feed.php, line 525 has changed from:
- Code: Select all
$forum_ids = array_keys($auth->acl_getf('f_read'));
- Code: Select all
$forum_ids = array_keys($auth->acl_getf('f_read', true));
There were no other changes, in particular neither style nor language changes.
Installation instructions
A short explanation of how to do a conversion, installation or update is included within the provided INSTALL.html file, please be sure to read it. You can find a list of requirements on our Downloads page.
Security
If you find any security issues please report them to our security tracker.
Available packages
If you experience problems with the automatic update (white screens, timeouts, etc.) we recommend using the "changed files only" or "patch" method for updating.
- Full Package:
Full phpBB 3 source code and english language files. - Automatic Update Package:
Update package for the automatic updater, contains changes from previous release to this release. - Changed Files Only:
Complete files, but only those that were changed since previous releases of phpBB 3. This archive contains changed files for every previous release. - Patch Files:
This file contains diffs against the previous phpBB 3 release, which can be applied with the patch utility.
Select the package most suitable for you. We recommend the following methods depending on your situation:
- For new installations you should use the Full Package
- For updates of boards without modifications you can use the Automatic Update Package (guided update) or the Changed Files Only package (manual update).
- For updates of boards with modifications you should use the Automatic Update Package. If you are confident with patch files and patching you can use the Patch Files Package.
- International Support Teams may use the Patch Package in conjunction with the Code Changes to better support users with problematic conflicts during their update process or to help them update code sections.
- If you are a hoster/provider, you may want to use the Patch Files Package to update all of your client installations.
Please ensure you read the INSTALL and README documents in docs/ before proceeding with installation, updates or conversions!
Download Locations
The download is of course available on our downloads page.
Our release archive provides all packages we build. If you do not find your desired package you can probably find it in the release archive.
These are the files with their md5 sums:
phpBB-3.0.7-PL1.zip (Full Package)
md5sum: 1125b615e13a5bb8787afab58a27c627
phpBB-3.0.7-PL1.tar.bz2 (Full Package)
md5sum: 67570654462c442c29080007c0af1e1b
phpBB-3.0.7-PL1-patch.zip (Patch Files)
md5sum: 44d163c6f945207f666b4b8ecbf179b8
phpBB-3.0.7-PL1-patch.tar.bz2 (Patch Files)
md5sum: 4d611e1160599835ff48fc6454bf85e0
phpBB-3.0.7-PL1-files.zip (Changed Files)
md5sum: 579f5685cc37c69dd6ce023b46ce2593
phpBB-3.0.7-PL1-files.tar.bz2 (Changed Files)
md5sum: 2779984411598d919a6a1e6adc35894d
phpBB-3.0.7_to_3.0.7-PL1.zip (Automatic Update Package from 3.0.7)
md5sum: e135fd3b43c17c0bdc69f3fc246e6524
phpBB-3.0.7_to_3.0.7-PL1.tar.bz2 (Automatic Update Package from 3.0.7)
md5sum: 589d21934c14a6517583316659f0225f
phpBB-3.0.6_to_3.0.7-PL1.zip (Automatic Update Package from 3.0.6)
md5sum: b93e31c7930ace5af89d9804b55d8c66
phpBB-3.0.6_to_3.0.7-PL1.tar.bz2 (Automatic Update Package from 3.0.6)
md5sum: cf9b3a42872be8afcddb42648a390861
Download & Documentation
PHP 5.3.2 Released!
The PHP development team is proud to announce the immediate release of PHP 5.3.2. This is a maintenance release in the 5.3 series, which includes a large number of bug fixes.
Security Enhancements and Fixes in PHP 5.3.2:
- Improved LCG entropy. (Rasmus, Samy Kamkar)
- Fixed safe_mode validation inside tempnam() when the directory path does not end with a /). (Martin Jansen)
- Fixed a possible open_basedir/safe_mode bypass in the session extension identified by Grzegorz Stachowiak. (Ilia)
Key Bug Fixes in PHP 5.3.2 include:
- Added support for SHA-256 and SHA-512 to php's crypt.
- Added protection for $_SESSION from interrupt corruption and improved "session.save_path" check.
- Fixed bug #51059 (crypt crashes when invalid salt are given).
- Fixed bug #50940 Custom content-length set incorrectly in Apache sapis.
- Fixed bug #50847 (strip_tags() removes all tags greater then 1023 bytes long).
- Fixed bug #50723 (Bug in garbage collector causes crash).
- Fixed bug #50661 (DOMDocument::loadXML does not allow UTF-16).
- Fixed bug #50632 (filter_input() does not return default value if the variable does not exist).
- Fixed bug #50540 (Crash while running ldap_next_reference test cases).
- Fixed bug #49851 (http wrapper breaks on 1024 char long headers).
- Over 60 other bug fixes.
For users upgrading from PHP 5.2 there is a migration guide available here, detailing the changes between those releases and PHP 5.3.
Further information and downloads:
For a full list of changes in PHP 5.3.2, see the ChangeLog. For source downloads please visit our downloads page, Windows binaries can be found on windows.php.net/download/.
