neuro
Forum Replies Created
-
Forum: Requests and Feedback
In reply to: full path disclosure: security problemWe should add a small script that creates empty index.php on every indexless folder at install time that should be regenerated the way the permalinks are.
But I guess there will be people who wants to have indexless directory and who will complain about this.
But I still believe this is really a sysadmin issue more than a WordPress concern.
Forum: Requests and Feedback
In reply to: full path disclosure: security problemOh, and talking about phpNuke it’s been on the top holed applications list of all security mailing lists for years.
Was not a very good idea to cite it as a modele of security concerns IMHO
Forum: Requests and Feedback
In reply to: full path disclosure: security problemDextro: you’re looking security issues on the wrong place, this for 2 reasons:
1/ .htacess is not enabled on every host so your solution is not a real one as it will only target a few person.2/ as macmanx said, 99.99999999% WordPress users will use the standard install path for plugins and themes.
A clever – or at least normal – sys admin will not allow Indexes option and PHP errors displaying, even if on public web hosts it’s usefull because you can’t check logs.
A simple solution should be to put a void index.php into those directories. Will work everywhere.
I think it’s not a wordpress concern and you just want to make a fuss claiming you have discovered a major security flaw on an open source project. Come back to play here when you’re grown up
Forum: Themes and Templates
In reply to: 4 or 5 column theme?Sorry, was upgrading to PHP5 and downgrading to apache 2.0.
The whole site is back now.Forum: Plugins
In reply to: “Recommend Us”you should have a look at http://wp-plugins.net database and http://wp-plugins.org as well.
If your plugin exist, it must be thereForum: Fixing WordPress
In reply to: 1.5.1 Comments Still Dont Send Notification Emailfinalcut: do you have access to your mailserver logs?
if so, can you tell us what happens when wordpress is supposed to send you a mail?Forum: Plugins
In reply to: So where’s the plugin manager gone?The plugin manager was not working anymore since a few weeks so dave decided to put it offline, waiting for someone who had promised to recode it quickly to do it (that’s to say: me)
Forum: Themes and Templates
In reply to: Identification Bands theme (4 columns)Eveums: that’s what a few people told me so I plan to design such a theme in the next few days
Forum: Themes and Templates
In reply to: WordPress Theme: ComplicatedThe icon just shows the theme in action using a hacked version of mr Peer theme switcher plugin. The download link is above the post.
Forum: Themes and Templates
In reply to: Designs / Layouts / Themes ListingI have ported Trident theme to WordPress 1.5.
You can find it at http://eretzvaju.org/download/trident/Forum: Themes and Templates
In reply to: Designs / Layouts / Themes ListingOld train thème
For both WP 1.2 and 1.5 (updated 2005/01/12)
http://www.eretzvaju.org/download/old_trainBack in black theme
For WP 1.5 only (updated 2005/01/10)
http://www.eretzvaju.org/download/black/Spiral theme
For both WP 1.2 and 1.5
http://www.eretzvaju.org/download/spiralForum: Fixing WordPress
In reply to: Upload imageGD is needed as soon as you want to manipulate picture, ie resize them to make thumbs. If you don have it, the picture will be uploaded but the thumb won’t be created.
You should ask your sysadmin to install gd and imagemagick as you will need them for many things.