PostNuke
Flexible Content Management System
News
pnFlashGames Redesign Launched
There are lots of great new features at the site so please come by and check it out. (More details about the new site)
www.pnFlashGames.com
AutoTheme Stand-alone released!
This is temporarily free of cost but under a restricted license and can not be redistributed.
Go to the Spidean Downloads
Also, I have a beta version of AutoTheme for WordPress. Any serious beta testers that are very familiar with WordPress, please contact me via the Spidean site.
Thanks!
-Shawn
PostNuke .762 Released
Addition of SafeHTML Class
To better protect PostNuke websites against the risk of Cross Site Scripting (XSS) attacks, the SafeHTML class has been included in this version. This class offers greater protection against many forms of XSS, over and above that provided in previous versions.
Languages module
The Languages module is obsolete and has been removed from the distribution. The pndefinemachine module does the same work better. Due to security problems you are also encouraged to remove this from the server after the update! The options that have been provided by the Languages module are now part of the Settings module.
Downloads
As before, both a full and patch download are available. Download the full distribution if you are installing a new site or upgrading from .760 or earlier. Users currently running a .761 site can download the patch release which contains changed files between .761 and .762 only. Upgrading with the patch version is simple, just replace the files, users upgrading with the full distribution should follow the instructions in docs/manual.txt.
Download 0.762 Full Distribution (ZIP)Download 0.762 Full Distribution (TAR.GZ)
Download 0.762 Patch (ZIP)
Download 0.762 Patch (TAR.GZ)
Support Forums
Security Mailing List
Hashes
MD5
PostNuke-0.762_patch.tar.gz - f4b36bc3ca9123464ec7bde05233dfe7
PostNuke-0.762_patch.zip - c6646f69f91841f0745064048922fde4
PostNuke-0.762.tar.gz - ea25bb933c4a99b30854815215dcdbb6
PostNuke-0.762.zip - 0e20db2ad3230c447747ec68540e8fb1
SHA-1
PostNuke-0.762_patch.tar.gz - 280b8cb4ff595fc556f137b5f7447f63c82b1b23
PostNuke-0.762_patch.zip - faa09a73e0f1dd82c73a9a53d5f69cef15d086fb
PostNuke-0.762.tar.gz - 59d3ba5ce3a91e67924ad6e3a8df643694849739
PostNuke-0.762.zip - 43f400b78adbad66cc0965b0322eeca9230d13bd
Bugs Fixed
#2227, #2229, #2233, #2246, #2255, #2259, #2270, #2272, #2321, #2358, #2384, #2441, #2471, #2476, #2503, #2528, #2542, #2544, #2545, #2546, #2547, #2548, #2589, #2602, #2604, #2612.
Simon Birtwistle [HammerHead]
PostNuke CMS Development Team
CSS :Stylesheets Behaviors, Bugs & Explanations
The site Position is Everything seemed helpful to me.
AllAppleNews.com Opens
PostNuke Directory.com Goes Live
Sure, just be sure to check to see if it has already been added. If not, please only add your site once.
Do I have to register to use this incredible resource?
Heck no, I just plan to bombard you with google ads so do a fellow nuker a a favor. ;)
If you guys have suggestions for categories, please post them here.
The site also hosts Postnuke ESP: The Survey Module has been updated for 760
Thanks Enjoy!
Multisite Analysis and Design Framework
Throttle-Status shows a critical analysis of Postnuke Multisite Scalability. Canada Ads Horses is out of the gate and pushing to catch up to the third genertion sequence demonstrated by Toronto. Reiteration improvements outlined briefly at this advancement describe the actual start date of the fourth generation sequence.
Lethbridge improved considerably as a direct database dump transfer over the previous second generation original creation Edmonton Work Wanted in the transfer to the Linux Guru domain. The main fault and subsequent end of life for municipality based linux advocacy and teaching sites arose from being replicated too much like the original.
First generation analysis of Swingerz was and still is the origin of thought for further analysis of multisite design. Each surviving platform gives clues as to what can be expected from the next generation. With a Black Diamond arriving in the heart of cowboy country this forth generation prototype takes its first cautious steps towards easy country living.
She's running the latest Regina post apocolyptic armagedon core. It consists of a highly customizable and extendable admin modular interface. The armagedon core prototype is slated to start undergoing basic sql preparations for advanced graphical user interface considerations almost immediatly.
Even in it's earliest infancy the post apocolyptic armagedon core proved invaluable in singular module replication affecting over three hundred websites with a one percent non-catastrophic failure rate. The armagedon core was in essence responsible for bringing the ads22Transfer.sql file to life after dump and proves that other data reiteration ideologies for Multisites are only hypothetical. Par for the reusable and simplistic module NS-MySQL_Tools
The practicality of of generating a large index of Multisites in one intall routine remains well tried according to this article. The data processed by the failure of the second generation reiteration concatenated with sequential envolution1-20 dot linuxguru.ca predisposed any notions of any glitzy bells and whistle transfers in the future. Neither is hand instantiation an option as evidenced in the heretofore previously mentioned article. It was the beginning of an unanswered and even unthought of question though.
It had something to do with creating an acceptable amount of content and community at an acceptable rate within standards applied by society. I find that having tried the blogging regression theories presented at this Drupal thread that I am still undergoing analysis of this project. The scope of my blogging content dissemination and aggregation theories reached a pitch with this announcement and slowly died an aggregating and aggravating RSS plague of duplicate destruction cumulating with the recinding of backend.php files from all root web directories.
With the creation of another advanced portal, very much like this one in many respects I continue to explore the bounds of Multisite space. Old ideas get reworked and new more efficient sites emerge. The future key to Multisites relies on advances in configuring common site options for all sites accross a given domain in order to reach more visitors quicker with quality original content. There reamins one small bug for image overwritting that I have to find still at Medicine Hat.
Planet-PostNuke.net
* PostNuke Development related
* RSS feed data contains datetime information
* published news in the last weeks
* english language
PostNuke Security Advisory 2006-1
Arbitrary SQL code execution via adodb (when db-user is 'root' without password)
SOLUTION
It is recommended that all admins check for the following files and folders and remove them if found:
/includes/classes/adodb/server.php
/includes/classes/adodb/cute_icons _for_site
/includes/classes/adodb/PEAR
/includes/classes/adodb/contrib
/includes/classes/adodb/session/old
/includes/classes/adodb/tests
Securing the whole /includes/classes directory from web access provides an extra layer of security, by protecting against potential as-yet undiscovered security risks in libraries.
The following .htaccess file, placed in the /includes/classes directory, will secure the directory (Download):
order allow,deny
deny from all
The main packages have been updated, the hash sums for the PostNuke CMS Platinum Edition 0.761a are:
PostNuke-0.761a.tar.gz
MD5: 0610c53c4bed0311862ccf422a68d6a5
SHA1: 0006f488cdb6ea53e532d9754a88fb17987a3a8c
PostNuke-0.761a.zip
MD5: e82bd983901e27e44ab8f82cc359dd00
SHA1: 3432699ded203a1b1fb2cdb6b1fab6cdbd367a4a
Download from downloads.postnuke.com
CREDITS
The exploit was originally discovered by Secunia (http://www.secunia.com), additional informations were given by Maksymilian Arciemowicz (http://www.securityreason.com)
REFERENCES
secunia.com/advisories/18260/
phplens.com/lens/lensforum/msgs.php?id=9350
Andreas Krapohl [larsneo]
PostNuke CMS Development Team
Page 16 / 277 (151 - 160 of 2763 Total)
