Fixes multiple vulnerabilities:
CVE-2008-0412
CVE-2008-0413
CVE-2008-0414
CVE-2008-0415
CVE-2008-0419
CVE-2008-0591
CVE-2008-0593
More infos:
http://secunia.com/advisories/28758/
Tested by some people on ports@. Thanks!
ok martynas@, laurent@, steven@
LDAP support with group management has been added as a Trac extension.
This extension enables to use existing LDAP groups to grant permissions
rather than defining permissions for every single user on the system.
The latest release also permits to store permissions (both users and
groups permissions) in the LDAP directory itself rather than in the
SQL backend.
ok okan@
- fix HOMEPAGE/MASTER_SITES
- fix WANTLIB in mysql
- regen patches
- make escaping more pgsql friendly
- fixes to pgsql upsteam - no longer alpha
- run pkg/DESCR through fmt(1)
- use httpd(8) modules.sample for @sample
feedback and ok merdely@
detailed http 404 error reports. Webalizer author hinted me at this,
he does not intend to update. danh@ is ok with the maintainer change.
ok stehn, okan.
in a couple of months and people should use php5 in any conditions.
it's going to stay in the tree for a little more time with a comment about
the reasons, just to help people upgrading to php5
twill is a simple language that allows users to browse the web from a
command-line interface. With twill, you can navigate through web sites
that use forms, cookies, and most standard web features. twill supports
automated web testing and has a simple Python interface.
from Will Maier
ok merdely
Quixote is a framework for developing Web applications in Python.
Quixote is based on a simple, flexible design, making it possible to
write applications quickly and to benefit from the wide range of
available third-party Python modules. Deployed appropriately, Quixote
has excellent performance that allows you to put Quixote-based
applications into large-scale production use.
from Will Maier
ok merdely
It features tabbed browsing, session saving, dynamic bookmarks and
customizable mouse gestures. Uses xulrunner for gecko support and GnuTLS 2
for https:// links.
with feedback and testing from many on ports@, thanks !
"import it, it can't be worse than galeon and epiphany anyway.." ajacoutot@
Manager version H3 (2.1.4). And I am pleased to announce my 1000st committ ;)
This is a security release that fixes privilege escalation in the Horde API
and missing ownership validation in the share management. All users are
encouraged to upgrade to this version.
The major changes compared to the Nag H3 (2.1.3) version are:
* Fixed privilege escalation in the Horde API.
* Fixed missing ownership validation on share changes.
* Updated Japanese, Polish, and Spanish translations.
The full list of changes (from version H3 (2.1.3)) can be viewed here:
http://cvs.horde.org/diff.php/nag/docs/CHANGES?r1=1.115.2.54&r2=1.115.2.56.2.3&ty=h
Calendar Application version H3 (2.1.7).
This is a bugfix release that also fixes privilege escalation in the Horde API
and missing ownership validation in the share management. All users are
encouraged to upgrade to this version.
Major changes compared to the Kronolith H3 (2.1.6) version are:
* Fixed privilege escalation in the Horde API.
* Fixed missing ownership validation on share changes.
* Updated Japanese translation.
* Small bugfixes and improvements.
The full list of changes (from version H3 (2.1.6)) can be viewed here:
http://cvs.horde.org/diff.php/kronolith/docs/CHANGES?r1=1.165.2.158&r2=1.165.2.161.2.3&ty=h
This is a security release that fixes a privilege escalation in the Horde
API. All users are encouraged to upgrade to this version.
Major changes compared to the Turba H3 (2.1.5) version are:
* Fixed privilege escalation in the Horde API.
* Updated Japanese translation.
The full list of changes (from version H3 (2.1.5)) can be viewed here:
http://cvs.horde.org/diff.php/turba/docs/CHANGES?r1=1.181.2.113&r2=1.181.2.114.2.2&ty=h
Active Resource (ARes) connects business objects and Representational State
Transfer (REST) web services. It implements object-relational mapping for
REST webservices to provide transparent proxying capabilities between a
client (ActiveResource) and a RESTful service (which is provided by Simply
RESTful routing in ActionController::Resources).
Needed for rails 2.0.
ClientForm is a Python module for handling HTML forms on the client
side, useful for parsing HTML forms, filling them in and returning the
completed forms to the server. It developed from a port of Gisle Aas'
Perl module HTML::Form, from the libwww-perl library, but the interface
is not the same.
From Will Maier
ok eric@
Storm is a fast object-relational mapper (ORM) for Python and used in
Canonical's Launchpad project. Storm is developed in a test-driven
manner, provides small and clean public APIs and works with everything
from SQLite to PostgreSQL and MySQL.
From Will Maier
ok kili@
KnowledgeTree is the leading commercial open source electronic document
management software designed for teams and small to medium-sized
organizations.
KnowlodgeTree is document management made simple: easily secure, share,
track and manage the documents and records your organization depends on.
httplib2 is a comprehensive HTTP client library that supports many
features left out of other HTTP libraries.
from maintainer Benoit Chesneau with tweaks by me and CATEGORIES
reordering by ajacoutot@. ok ajacoutot@
wbox aims to help you having fun while testing HTTP related stuff. You
can use it to perform many tasks, including the following.
* Benchmarking how much time it takes to generate content for your
web application.
* Web server and web application stressing.
* Testing virtual domains configuration without the need to alter
your local resolver.
* Check if your redirects are working correctly emitting the right
HTTP code.
* Test if the HTTP compression is working and if it is actually
serving pages faster.
* Use it as a configuration-less HTTP server to share files!
from Laurent Fanis <laurent at humppa.nl> (MAINTAINER)
- include the suhosin extension and suhosin patch by default unless
the no_suhosin flavor is defined
- add all the suhosin configuration options to the sample config
files
PmWiki is a wiki-based system for collaborative creation and maintenance of websites.
PmWiki pages look and act like normal web pages, except they have an "Edit" link that
makes it easy to modify existing pages and add new pages into the website, using basic
editing rules. You do not need to know or use any HTML or CSS.
Page editing can be left open to the public or restricted to small groups of authors.
