Skip to content

Posts from the ‘Forums’ Category

19
Dec

SMF 1.1.1 released

Simple Machines has released SMF 1.1.1.

The changes/fixes since SMF 1.1 directly from the changelog:

! Fixed multi-language support for Mambo/Joomla bridge login module on non-forum pages. (Mambo/Joomla bridge/mod_smf_login.php)
+ Added register mambot to Mambo 4.6 bridge so that users who register in Mambo are auto-created in SMF. (Mambo 4.6 bridge/SMF_register.php, SMF_register.xml)
! Fixed bridge registration so that it uses Mambo 4.6′s new language method. (Mambo 4.6 bridge/smf_registration.html.php)
! The regular expression used for parsing ‘/me’-lines didn’t work properly in older PHP versions. (Subs-Post.php)
! Fixed usage of array before it was declared (Load.php)
! Mambo/Joomla bridge config should go to main admin page if “Cancel” is clicked (Mambo/Joomla bridge/admin.smf.php)
! Fixed a missing global (Mambo 4.6 bridge/smf.php)
+ Changed the SEF handling in the bridge for use with third party Joomla SEF components (Mambo/Joomla bridge/smf.php)
+ Added Kindred’s enhancements to the bridged whos online (Mambo/Joomla bridge/smf.php, smf_integration_arrays.php)
! Deleting a member in SMF deleted in Joomla, but not in Joomla’s ACL (Mambo/Joomla bridge/smf.php)
! Bridge login module didn’t handle language variables correctly. (Mambo/Joomla bridge/mod_smf_login.php)
! Some dates in the installation script were not MySQL STRICT compatible. (install-1.1.sql)
! Log the ban check IP in messages. (Subs-Post.php)
! It was possible for files to be sent with the wrong mime type – reported by Jessica Hope and rotwang. (Display.php)
* Search template looked a little odd on IE. (Search template)
* In prune boards the checkbox for stickies would toggle with the board selection. (Admin template)
! Send annoucements in slightly smaller chunks. (Post.php)
! Make it impossible to make guests too much like administrators. (ManagePermissions.php)
! Aposthophes in smiley directories would cause a SQL error. (ManageSmileys.php)
! Fixed labelling personal messages not being restricted to the current member. (PersonalMessage.php)
! In rare cases search didn’t return any results, while it should have. (Search.php)

You can download the latest version of the board or the upgrade version.

About Ajay

A die-hard blogger, web developer, biker, singer, geek, non-stop talker, foodie, movie freak are just some of the words that begin to describe me.

3
Dec

Get SMF 1.1

Simple Machines has released SMF 1.1.

The changes/fixes since SMF 1.1 RC3 include:

  • Option to require visual verification when sending a personal message
  • Adjusted readability of visual verification system
  • Added option to limit number of personal messages that can be sent per hour
  • Fixed several javascript errors
  • Fixed time offset bug
  • Disallowed multiple failures with visual verification
  • Made several UTF8 fixes
  • Fixed various undefined index errors

You can download the latest version of the board or the upgrade version.

They also have a new Webinstall option, but it didn’t work for me, so I just went ahead and upgraded my copy from 1.1RC3.

The old themes issue a warning, so I’ve switched to the defaults on my boards.

Get hold of the new version because of the various fixes above. Also if you are using any version of the board below 1.1RC3a then you’re board is vulnerable to exploit.

If you want to learn more about SMF, then you can browse through their docs.

About Ajay

A die-hard blogger, web developer, biker, singer, geek, non-stop talker, foodie, movie freak are just some of the words that begin to describe me.

30
Oct

Security Patch Released for Simple Machines

Simple Machines has just released a security patch for SMF.

This release addresses a cross-site scripting vulnerability in the search function.

The fix for the 1.0.x has been released as 1.0.9. The version number of 1.1RC3 has remained as is, but you need to download and update your SMF installation ASAP!

Just last week my forum was hacked. I’m not sure if this is the reason, but having your software vulnerable XSS is a sure shot way to getting hacked.

Read the complete release notification or download the latest version.

Direct Download:

Download the files below (you may need to be registered to the forum) and replace the files in your installation with the php files in the package.

updated_files_SMF_1-0-9.zip (102.59 KB)
smf_patch_1-0-9_1-1-rc3-1.tar.gz (1.99 KB)
updated_files_SMF_1-1-rc3-1.zip (179.11 KB)

About Ajay

A die-hard blogger, web developer, biker, singer, geek, non-stop talker, foodie, movie freak are just some of the words that begin to describe me.