New Features - Geeklog now officially works with register_globals = off. Please note that some plugins may still require it to be on, though.
- Added support for sending and receiving Trackback and Pingback comments. Both are supported for stories, but there is also a new plugin API so that plugins can use this feature, too. Trackback and Pingback can be disabled in config.php.
- Added the ability to "ping" weblog directory services to advertise site updates (preconfigured to ping Ping-o-Matic). As with Trackback and Pingback, this is supported for stories, but plugins can also make use of this feature via the plugin API.
- New syndication framework so that Geeklog can now read and write feeds in different formats (currently supported: RSS, RDF, and Atom).
- New administrator controlled user status. Including banning and administrator activation of accounts.
- New Remote Authentication system to allow people with accounts on remote services such as Blogger.com or LiveJournal.com to login to your site without having to directly register on your site. (Remote accounts can be banned as normal accounts).
- The Admin sections have been revamped to provide a more consistent look and sortable lists. "Command and Control" (moderation.php) now also comes with a new set of icons and has one icon for every Admin section. Furthermore, the Admin block and Command and Control can be sorted alphabetically.
- Ships with FCKeditor (WYSIWYG editor). To enable, set $_CONF['advanced_editor'] = true; in your config.php.
- The search now only displays a specified amount of results per page to avoid running into timeouts when searching through large databases.
Note: Plugins will have to be updated to support the "paged" search. Until then, Geeklog fakes the paged results for plugin searches, which means that a plugin that hasn't been updated will still search through the entire database, but Geeklog will only display the results for the current result page. - Introduced an "Article Directory", providing an overview of all past articles, sorted by year and month.
- The default permissions for new objects (stories, topics, blocks, etc.) can now be set in config.php.
Compatibility - Due to the changes, themes will have to be updated to work with Geeklog 1.4.0. See the list of theme changes for details.
- The plugin API for comments has changed. Plugins using comments will have to be updated to work with Geeklog 1.4.0.
More Information We have posted a series of stories on the Geeklog homepage that highlight and explain some of the new features: Geeklog 1.3.11sr3 This release addresses the following security issues: - Provided you knew the story id, it was possible to submit comments for stories even if you did not have access to those stories (reported by LWC). The same problem also existed with poll comments.
- Supplying an illegal start or end date to the advanced search resulted in a warning message that disclosed the path to the Geeklog install on the server (reported by r0t3d3Vil).
It was not possible to use this for SQL injections.
Also included in this release are bugfixes, e.g. for the problems editing static pages when URL rewriting was enabled, that were introduced in 1.3.11sr2. Geeklog 1.3.11sr2 This release provides security enhancements and better spam protection originally developed for Geeklog 1.3.12. It also addresses a few bugs where the bugfix could be integrated with a reasonable amount of work (other bugfixes will have to wait for the 1.3.12 release). Security and Spam protection - There is now a speed limit for login attempts, defaulting to three tries in a five minute period (configurable in config.php).
- Linefeeds are filtered from the To:, From:, and Subject: fields of any email sent through COM_mail.
- When a new user account is created and the user submission queue is enabled in config.php, Geeklog now ensures that the new account is properly queued even in the unlikely event that the account creation fails halfway through.
- When a post is identified as spam, it now also triggers the speed limit (ie. posters will have to wait for the speed limit to expire before they can make another submission).
- Spam posts now get a 403 "Forbidden" HTTP response code.
- Spam checks are now done for comments, story, link, and event submissions, the message sent with the "email story to a friend" option, and for the contents of the user profile.
- Spam-X plugin 1.0.2 included.
Please note that MT-Blacklist (used by Spam-X) has recently been discontinued. The Spam-X plugin as included in this release is configured to get the last version of the blacklist from geeklog.net, but there will be no more updates. Bugfixes - Fixed an error message thrown up by PHP 5.0.5 or later when viewing the article page (bug #483).
- Quote names in email addresses as soon as they contain any non-alphanumeric characters, apart from the blank (bug #368). This should help when trying to email users with special characters in their name.
- Upgraded included kses class to version 0.2.2 which fixes problems with Japanese and Thai characters (bugs #94 and #119).
- Fixed SQL error when using the [staticpage:] autotag (bug #373).
For a complete list of bugfixes, please see the Changelog. Improvements - Added support for a custom_usercheck function (for the custom registration code). See the included lib-custom.php for details.
- Improved handling of the auto-archive option in index.php, which should slightly improve page load times.
- Includes several new and updated language files.
- Includes updated PEAR classes.
Giá trên chi bao gồm chi phí cài đặt
Tìm tin liên quan "Geeklog is allows you within minutes to set up a fully functioning dynamic website, and has many features to get you started."
|
