The purpose of the templating engine is to provide web application
developers, who need to separate program code and design (HTML code) of
their web application projects, with a templating tool that can be
easily used by cooperating webdesigners who have no programming skills.
Templating language provided by the engine is inspired by Perl
templating module HTML::Template. Templates created for HTML::Template
can be used with this engine in case they do not violate character case
rules of htmltmpl.
This package includes easydoc, a module which uses the templating engine
to generate HTML documentation from docstrings embedded in source files
of Python modules.
(needed by GNOME Development Monitor which I'm currently working on)
This extension works with MediaWiki instances setup behind HTTP
authentication. It pulls usernames from $_SERVER['PHP_AUTH_USER'].
The extension will then either log the user on to MediaWiki if the
user name exists in the database or create a new user if it does not.
"ok with me" jasper@, "yeah hell import it" landry@
Community-ID is an OpenID implementation in PHP which is OpenID 2.0
compliant. Users can keep track of their trusted sites and manage them.
For Community-ID administrators statistics are available to track
registration of new users, authorized users per day or the number of
trusted sites. Administrators can set the site in maintenance mode or
send emails to all registered users.
StatusNet (formerly Laconica) is a Free and Open Source microblogging
platform. It helps people in a community, company or group to exchange
short (140 character) messages over the Web. Users can choose which
people to "follow" and receive only their friends' or colleagues' status
messages. It provides a similar service to sites like Twitter, Jaiku,
Yammer, and Plurk.
not hooking it up to the builds yet, as it will need some more tweaking
to set up.
"This release contains a couple new features, including additional weekly
overtime policy types and accrual milestone rollover limits, as well as
several bugfixes."
MFSA 2009-71 GeckoActiveXObject exception messages can be used to enumerate installed COM objects
MFSA 2009-70 Privilege escalation via chrome window.opener
MFSA 2009-69 Location bar spoofing vulnerabilities
MFSA 2009-68 NTLM reflection vulnerability
MFSA 2009-67 Integer overflow, crash in libtheora video library
MFSA 2009-66 Memory safety fixes in liboggplay media library
MFSA 2009-65 Crashes with evidence of memory corruption
Net::SFTP::Foreign is a Perl client for the SFTP protocol version 3 as
defined in the SSH File Transfer Protocol IETF draft.
It uses any compatible ssh command installed on the system (for
instance, OpenSSH ssh) to establish the secure connection to the remote
server.
It is a lightweight alternative to p5-Net-SFTP.
WWW::IndexParser is a module that uses LWP to fetch a URL from a web
server. It then attempts to parse this page as if it were an auto
generated index page. It returns an array of WWW::IndexParser::Entry
objects, one per entry in the directory index that it has found. Each
Entry has a set of methods: filename(), time(), size(), and others if
supported by the autoindex generated: type() and size_units().
i386 and amd64 supported.
Chromium is an open-source browser project that aims
to build a safer, faster, and more stable way for all
Internet users to experience the web. http://www.chromium.org/
This is version 4.0.251.0 with a tarball already including hundreds
of patches by myself, Sprewell, Ben Laurie and others from the original
FreeBSD effort. See homepage for more details and known issue:
http://sightly.net/peter/openbsd/chromium/
(right now, there are i386 & amd64 -current packages there that can
be pkg_add'ed, links to the FreeBSD page for more info, etc)
The patches are being cleaned up and sent upstream in chunks, the
goal will be to have a clean tarball eventually. I _just_ got this
working earlier this week so it may crash and burn (especially on
amd64 as some parts do not appear 64-bit clean), let me know.
"commit it and let's work on it in-tree" espie@, robert@ & others
MFSA 2009-71 GeckoActiveXObject exception messages can be used to enumerate installed COM objects
MFSA 2009-70 Privilege escalation via chrome window.opener
MFSA 2009-69 Location bar spoofing vulnerabilities
MFSA 2009-68 NTLM reflection vulnerability
MFSA 2009-65 Crashes with evidence of memory corruption
This is a minimal screen scraping interface to the Drupal admin pages.
Its primary purpose (at the moment) is to provide a means to automate
drupal core upgrades.
Most of the methods in this class depend on English strings from the
pages' value fields, because WWW::Mechanize doesn't use id fields as
selectors. Thus, this module will most likely not work for sites with
a backend set to any non-English language.
ok jasper@ and landry@
Markdown is a text-to-HTML conversion tool for web writers. Markdown
allows you to write using an easy-to-read, easy-to-write plain text
format, then convert it to structurally valid XHTML (or HTML).
PHP-Markdown is a port to PHP of the original Markdown program by John
Gruber.
as for security/nss:
SHA1_Update conflicts with openssl which may be dynamically loaded
at runtime via libcups or libgssapi so causing a crash due to using
the wrong binding. So rename here to avoid conflict.
ok jasper@ sthen@
Provides German translation of drupal6.
If you install this module prior to configuring drupal, thanks
to autolocale, the installation itself will be available in German!
ok sthen@ and landry@
Change the content type of your posts while editing them.
This module is extremely simple and *only* changes the node
type in the database column. That is all. It does not convert
any CCK fields or change other things about the node.
Only use it when you know *exactly* what you're doing!
ok espie@ and jasper@ ports-wise
Please note:
Users upgrading from a prior release should review Blogsum/Config.pm.dist
for new settings to merge with their local Blogsum/Config.pm.
pretty fucking awesome merdely@
From http://wordpress.org/development/2009/11/wordpress-2-8-6-security-release/:
2.8.6 fixes two security problems that can be exploited by registered,
logged in users who have posting privileges. If you have untrusted
authors on your blog, upgrading to 2.8.6 is recommended.
The first problem is an XSS vulnerability in Press This discovered by
Benjamin Flesch. The second problem, discovered by Dawid Golunski, is
an issue with sanitizing uploaded file names that can be exploited in
certain Apache configurations. Thanks to Benjamin and Dawid for finding
and reporting these.
This module strips scripting constructs out of HTML, leaving as much
non-scripting markup in place as possible. This allows web applications
to display HTML originating from an untrusted source without
introducing XSS (cross site scripting) vulnerabilities.
Change the content type of your posts while editing them.
This module is extremely simple and *only* changes the node
type in the database column. That is all. It does not convert
any CCK fields or change other things about the node.
Only use it when you know *exactly* what you're doing!
ok espie@ and jasper@ ports-wise
SabreDAV allows you to easily add WebDAV support to a PHP application.
It is meant to cover the entire standard, and attempts to allow integration
using an easy to understand API.
with comments from ajacoutot@
This LDAP integration module allows users to authenticate against a
configurable Lightweight Directory Access Protocol directory. This
is useful for organizations which have an existing organizational
directory with usernames and passwords, and want Drupal to be able
to authenticate against it.
ok'd-portswise by landry@ and sthen@, tested in production by me.
surf is a minimalistic web browser using webkit, in the spirit of
dwm/suckless.org softwares. It supports the Xembedded protocol which
makes it possible to embed it into another application. Furthermore
one can point surf to another URI by setting its XProperties.
Based on a submission from Tobias Ulmer some times ago on ports@, thanks!
WARNING: if you use both, update both. Especially if you use cck
node/user refs from a view, since that's broken with cck 2.5.
packages have an annotation to prevent this (@incompatibility) but it's
not yet implemented... ;-/
