[PHP] Phorum 3.4 Released!
Phorum 3.4 has been released. This is a biggest update in over a year. For those not familiar with Phorum, it was the first PHP/MySQL based message board ever made. It focuses on simplicity for those that want to add a message board to their existing site without having to comprimise their sites design. You can download it now at http://phorum.org/download.php Thanks, Brian Moon Phorum Dev Team -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] Phorum 3.4.2 Released - SECURITY NOTICE
Today, we released another bug fix for the Phorum 3.4 branch, version 3.4.2. Among other things, it fixes a Cross Site Scripting Vunerability. Here is the changelog: Phorum 3.4.2 Changelog More Postgres fixes. (tomaz) better date formatting for newer Postgres verions. (tomaz) Attempted to fix new flag issue. Could never duplicate, but found some buggy code. (blm) added script to clean up orphaned messages (blm) fixed disabling post-editing for users in non-threaded (ts) removed unneeded escape of ' in forum.php (blm) replaced striptags with a preg. Strip tags does not strip just tags (blm) Fixed some bad HTML in read.php (blm) Fixed horiz scroll in IE (blm) fixed tab order in form.php (blm) removed \r in secure script (blm) download.php works with non-apache and CGI now. (blm) escape ' in the quote word. (blm) fixed parse error in phorummail (blm) Fixed Forum List Url in moderator.php (blm) corrected upgrade30.php-script (ts) Strip tags and from author, subject and email (blm) That last item is what addresses the recent XSS exploit reported in the support forums. Ironicly, had I realized that was the case, we would have released something when I fixed that a while back. Brian Moon Phorum Dev Team -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] replacing register_shutdown_function
Hi all,
Ever since register_shutdown_function was changed to no longer happen after
the connection was closed, several things on our site have started to suck.
Not the main, public site, but our internal pages where cache is regenerated
and such.
I have tried using the pcntl functions in an exec'd script (both perl and
PHP) to fork and hopefully return to the web app to allow it to continue
(and not wait forever). This works great with CLI and the command line, but
does not work at all if I exec() from mod_php.
All I do is call:
exec("/dealnews/myscript.php");
in the PHP app. myscript.php then forks. Unfortunately, exec() waits for
the damn forked process to finish before he returns.
Am I just not seeing something in PHP pcntl support here or am I on a wild
goose chase?
Thanks,
Brian Moon
dealnews.com
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] PHP and Apachecon
Hello All, Apachecon is next week and I am preparing to request a BOF (Birds Of A Feather) for the PHP community. It will be an hour long session that is basically an open forum for users of PHP to meet and talk about PHP. What I would like from all you out there is a list of possible topics to be used as a starting point for discussion. Please just email them back to me as I am not on this list. Brian Moon -- dealnews.com, Inc. Makers of dealnews & dealmac http://dealnews.com/ | http://dealmac.com/ Look for my presentation at ApacheCon 2001. "Caching Dynamic Web Content to Increase Dependability and Performance" http://www.apachecon.com/ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
[PHP] Phorum 5.0.3-beta released!
About Phorum http://phorum.org/ Phorum is a web based message board written in PHP. Phorum was the first PHP based message board to use a database. Phorum is designed with high-availability and visitor ease of use in mind. Phorum has fresh ideas and features that do not follow the same design and bulky features of other message boards available. It works great for sites with 10 users or 10,000. After 2 long years, Phorum 5 has hit beta. It is 99.9% feature compatible with the latest Phorum 3 releases. At this point, we will be guaranteeing an upgrade path to future version of Phorum 5. The long alpha cycle means that this beta code is in really good shape. Some of the users that have already switched believe it is RC quality code. Here are some things that are not quite compatible with Phorum 3: * Permissions are much different in Phorum 5. There is no conversion script for them yet. * Phorummail has not yet been developed for Phorum 5. * Users without cookies will not be able to log in to Phorum 5 in this release. * Float-to-top in threaded view is not supported and will not be supported. * Colors and such are not set via the admin in Phorum 5. The HTML of the templates needs to be edited. Here are some neat features of Phorum 5 that are not in Phorum 3: * Access control to the forums is very detailed. Nearly any option can be given to a single user or a group of users. * Phorum 5 uses a template system that separates the HTML from the PHP code. * Phorum 5 stores all of its messages in a single table. * Phorum 5 requires no special file permisions for most installs. * Phorum 5 includes an HTML modlue that will safely allow your users to post HTML in their posts. * The new BBCode module is more robust than the PhorumCode options of Phorum 3. * Terrific new moderation features * Read message status is now stored in the database and moves with the user. * And more Enjoy and please report back any bug reports you find. Brian Moon Phorum Dev Team -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] PHP 5.1.1 still slower than PHP 4.x
I had run the numbers a while back when 5.0 came out and found that it was slower than the 4.x releases at that time. It seems that 5.1.1 does not change this. Even very simple scripts take longer. Phorum does not use any OO code, so, maybe that is the deal. Did OO get a big jump in speed? I hope they did, because the folks that like procedural code got no speed that I can find. See my results here: http://phorum.org/phorum5/read.php?14,52162 Brian Moon Phorum Dev Team -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
