-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
After an annoyingly long series of beta releases, say hello to MediaWiki 1.3.0!
Everyone running the beta releases is _strongly_ recommended to upgrade to the current code.
This release includes a security fix: the 1.3.0 beta releases may be vulnerable to a PHP inclusion attack if include files are exposed and you have allow_url_fopen and register_globals on (this is the default configuration in PHP 4.1.x, but register_globals is off by default in 4.2.x and later).
Note that while MediaWiki through 1.1 required register_globals to be on, 1.2 and 1.3 *do not*. If you have register_globals on, you should turn it off unless you are absolutely sure you require it for some other package. See http://php.net/register_globals for general information.
Release notes: http://sf.net/project/shownotes.php?group_id=34373&release_id=259965
Download: http://prdownloads.sf.net/wikipedia/mediawiki-1.3.0.tar.gz?download
Wiki admin help mailing list: http://mail.wikipedia.org/mailman/listinfo/mediawiki-l
Bug report system: https://sourceforge.net/tracker/?group_id=34373&atid=411192
Play "stump the developers" live on IRC: #mediawiki on irc.freenode.net
- -- brion vibber (brion @ pobox.com)
Hi,
I have previously installed MediaWiki 1.3.0beta4, and now wish to do the upgrade to the final 1.3.0.
However, I've made some changes on my templates, as well as I have set few non-default settings in configuration files.
Is there a chance I can update (i.e. overwrite) just the files that have changed since my beta version, without having to reinstall the whole thing? In that case, does somebody know which files exactly should be updated? Is there any documentation on that specific issue?
Thank you in advance.
Ivan Blecic
At 10.07 12/08/2004, you wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
After an annoyingly long series of beta releases, say hello to MediaWiki 1.3.0!
Everyone running the beta releases is _strongly_ recommended to upgrade to the current code.
This release includes a security fix: the 1.3.0 beta releases may be vulnerable to a PHP inclusion attack if include files are exposed and you have allow_url_fopen and register_globals on (this is the default configuration in PHP 4.1.x, but register_globals is off by default in 4.2.x and later).
Note that while MediaWiki through 1.1 required register_globals to be on, 1.2 and 1.3 *do not*. If you have register_globals on, you should turn it off unless you are absolutely sure you require it for some other package. See http://php.net/register_globals for general information.
Release notes: http://sf.net/project/shownotes.php?group_id=34373&release_id=259965
Download: http://prdownloads.sf.net/wikipedia/mediawiki-1.3.0.tar.gz?download
Wiki admin help mailing list: http://mail.wikipedia.org/mailman/listinfo/mediawiki-l
Bug report system: https://sourceforge.net/tracker/?group_id=34373&atid=411192
Play "stump the developers" live on IRC: #mediawiki on irc.freenode.net
- -- brion vibber (brion @ pobox.com)
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (Darwin) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFBGyVDwRnhpk1wk44RAjN2AJ42nlYPLntauo4+EsNVMOO/h6xPuwCgtHQN x0pVx9MsSUF5xHRyrp7nSRg= =53NN -----END PGP SIGNATURE----- _______________________________________________ MediaWiki-l mailing list MediaWiki-l@Wikimedia.org http://mail.wikipedia.org/mailman/listinfo/mediawiki-l
mediawiki-l@lists.wikimedia.org