Check this out…

Aeonserv is an
authority grade package of the latest in Apache, MySQL, PHP, PERL, AWStats,
phpMyAdmin & Geeklog builds. Designed to easily be customized and deployed
within a matter of minutes it proves to be professional and ahead of its class.

The project site is @

http://sourceforge.net/projects/aeonserv/

Published
Categorized as GeekLog

Geeklog 1.3.8sr2 released!

Go grab a copy @
http://www.geeklog.net

From Geeklog

Tuesday, October 14 2003 @ 04:30 PM EDT
Contributed by:

Dirk

Views: 321

Following on the heels of

1.3.8-1sr1
is 1.3.8-1sr2, available as a (tiny)
upgrade
archive
as well as a

complete tarball
.

Jouko Pynnonen found a way to trick the new "forgot password"
feature, that was only introduced in 1.3.8, into letting an attacker
change the password for any account. This release addresses
this issue – there were no other changes.

Users of 1.3.7sr3 are not affected (as the feature simply didn’t
exist there).

bye, Dirk

Published
Categorized as GeekLog

Gallery fix for GL 1.3.7

Thanks to jlhughes

From: GL’s site.

fix for gallery 1.3.2-geeklog 1.3.7

Authored by: jlhughes on Tuesday, December 24 2002 @ 11:00 AM EST
In the gallery/classes/geeklog/user.php find the two lines with

$this->isAdmin = SEC_inGroup(‘Root’, ‘$uid’);

and change them to

$this->isAdmin = SEC_inGroup(‘Root’);

This will enable Gallery to test for Root user under Geeklog 1.3.7 changes to lib-security.php.

Published
Categorized as GeekLog