July-12 - blogmarks, security, control panel, and more
214 files have been updated from the previous release
Don't be surprised by the high number of changed scripts. This comes from the impact of implementing new PHP standard variables. This release turns YACS links into blogmarks, addresses a security hole, and features numerous interface enhancements. Also a couple of bugs have been fixed.
Standard implementation: every
YACS already had powerful features to handle links. We have turned the links index to a blogmark simply by creating a weblog-like layout (see links/index.php and links/layout_links_as_daily.php). Basically, if you have selected the 'daily' layout in the configuration panel for skins, YACS will consider that you are blogging, and the blogmark view will be activated as well.
The viewable page used to blog and to trackback posted pages has been streamlined (links/trackback.php)
The back-end web service for ping has been enhanced (services/ping.php)
Checked links are now stamped based on
Public files (files/files.php) and links (links/links.php) are now listed even to on-associates.
Security alert: code added to avoid SQL code injection in the search engine (search.php) and in the login panel (users/login.php). Thanks to Antoine for having raised this issue.
Usability: the position of categories to be displayed as navigation boxes has been modified in reference templates (e.g., skins/skeleton/template.php)
Usability: most edit forms have been changed to better link to anchor pages and to display anchor information as well (e.g., actions/edit.php).
The form used to send a mail about an article has been enhanced as well (articles/mail.php).
Usability: the Control Panel (at control/index.php) has been enhanced to link to additional configuration panels and standard modules (e.g., back-end web services).
The test script at control/test.php now displays the working directory
phpDoc: documentation added to agents/uploads.php
Friendly URLS: code used to generate friendly links has been streamlined. Less risk that two different URLs are used to link to articles. See articles/view.php.
privacy.php has been translated to French. YACS now supports 100% English and French languages.
Standard implementation: redirections are now based on absolute links instead of relative links, to be conformant with HTTP specifications.
HEAD streamlined and post-processing hook added to control/backup.php, to feeds/flash/slashdot.php, to files/fetch_all.php, to scripts/fetch.php, to tables/fetch_as_csv.php, to users/feed.php
Regression tests: we have validated the installation process end-to-end on fresh server, just in case...
Numerous cosmetic changes and bug fixes (users/track.php)
Standard implementation: every $HTTP_GET_VARS has been changed to $_REQUEST, $HTTP_SERVER_VARS has been changed to $_SERVER, etc... Handling of session variables is now purely based on $_SESSION (see shared/surfer.php). YACS already had powerful features to handle links. We have turned the links index to a blogmark simply by creating a weblog-like layout (see links/index.php and links/layout_links_as_daily.php). Basically, if you have selected the 'daily' layout in the configuration panel for skins, YACS will consider that you are blogging, and the blogmark view will be activated as well. The viewable page used to blog and to trackback posted pages has been streamlined (links/trackback.php) The back-end web service for ping has been enhanced (services/ping.php) Checked links are now stamped based on Last-Modified: header (see links/check.php and links/link.php). Useful to track updates of linked pages. Public files (files/files.php) and links (links/links.php) are now listed even to on-associates. Security alert: code added to avoid SQL code injection in the search engine (search.php) and in the login panel (users/login.php). Thanks to Antoine for having raised this issue. Usability: the position of categories to be displayed as navigation boxes has been modified in reference templates (e.g., skins/skeleton/template.php) Usability: most edit forms have been changed to better link to anchor pages and to display anchor information as well (e.g., actions/edit.php).
The form used to send a mail about an article has been enhanced as well (articles/mail.php). Usability: the Control Panel (at control/index.php) has been enhanced to link to additional configuration panels and standard modules (e.g., back-end web services). The test script at control/test.php now displays the working directory phpDoc: documentation added to agents/uploads.php Friendly URLS: code used to generate friendly links has been streamlined. Less risk that two different URLs are used to link to articles. See articles/view.php. privacy.php has been translated to French. YACS now supports 100% English and French languages. Standard implementation: redirections are now based on absolute links instead of relative links, to be conformant with HTTP specifications. HEAD streamlined and post-processing hook added to control/backup.php, to feeds/flash/slashdot.php, to files/fetch_all.php, to scripts/fetch.php, to tables/fetch_as_csv.php, to users/feed.php Regression tests: we have validated the installation process end-to-end on fresh server, just in case... Numerous cosmetic changes and bug fixes (users/track.php)Rate this page
Posted by Bernard on Jul. 12 2004, (popular)
