Home > News > Announcements > XOOPS 2.0.16 JP releaesd

XOOPS 2.0.16 JP releaesd

2
onokazu
onokazu submitted 2006/7/27 15:10, published 2006/7/27 15:10 | 17106 views
Tags:

The XOOPS Cube Development Team is pleased to announce the release of XOOPS 2.0.16 JP. This is a maintenance release for users of XOOPS 2.0.x JP.

Outline
========
This is maintenance release for users of XOOPS 2.0.15 JP to add safeguard against possible session hijack in some circumstance. We recommend that users using any of the previous versions of XOOPS 2.0.x JP upgrade to this latest version.
Please refer to 'Changelog' for details of bug fixes.

Although we still use the term 'XOOPS' and not 'XOOPS Cube' for the release package name, the 2.0.x packages offered by us (xoopscube.org) and the ones by xoops.org are not the same.
It is also a different package from 'XOOPS Cube 2.1' which is in alpha status.


Download and installation
========
Please refer to the download page on this site. If you are upgrading from XOOPS 2.0.15 JP, download the upgrade package XOOPS 2.0.15 JP -> XOOPS 2.0.16 JP, and overwrite the current files on your server with the new ones included. If you use SSL login function, please modify login.php in extra folder and overwrite the current file in SSL directory.
If you are upgrading from XOOPS 2.0.14 or below, please refer to this news.
Please note that the default setting for the debug option is 'PHP Debug' for a fresh install.


Feedback
========
If you find any bugs, please report it at the Core Development forum on this site.


Changelog (from XOOPS 2.0.16 JP)
===============================
Add safeguard against possible session hijack via session fixation attack.
- include/checklogin.php
- include/session.php
- (extras)/login.php

This safeguard may prevent some website which has inadvisability settings* from hijacking. (* e.g. session.use_trans_sid is enable in php.ini ) But we do not recommend users to use web applications in such websites. Please consider not only updating of XOOPS, but also settings of web server to ensure security of your website.


The XOOPS Cube Development Team

Comments (0)

Newest first | Oldest first | Nested view | RSS feed

Trackbacks (0)

Newest first | Oldest first | RSS feed

Votes (2)

Newest first | Oldest first | RSS feed
 

    Welcome | News | Overview | Documentation | Forum | Tutorialstop
    Brasilian | French | German | Greek | Japanese | Korean | Russian | T-Chinese
    Powered by XOOPS Cube 2001-2011 The XOOPS Cube Project