|
If you've recently installed phpNuke with Fantistico (it's at the bottom of your Control Panel - if you haven't seen it - go look), you may have noticed that the phpBB version is about 5 releases out of date.
The most recent version of phpBB is 2.0.21, but the version within the phpNuke 7.8 Release is 2.0.15. However, before you run out and download the standalone updates/patches for phpBB, please keep reading.
This is a special version of phpBB that is designed to run inside and with phpNuke, so DO NOT simply patch phpBB with the "official version" from phpbb.com. This WILL break some of the functionality of the embedded version. Your gonna have to do a little bit of work, but it'll be worth it. You will be required to download some files, unzip them, upload to your webspace, and then run 4 URLs from your browser. Please note that this is a file-by-file update - and you cannot patch all in one fell swoop. It still will probably only take 10 minutes - and you'll have a much more secure version of phpBB.
Here are the steps: Download the individual files ( see at the bottom) : BBtoNuke 2.0.16
BBtoNuke 2.0.17
BBtoNuke 2.0.18
BBtoNuke 2.0.19
BBtoNuke 2.0.20
BBtoNuke 2.0.21 Save these files to your local PC. Unzip them one at a time (I'd do each one in a seperate temporary directory), fire up your FTP program and upload the files to the root directory on your AUSWEB hosting account (assuming that you have installed phpNuke to the root directory).
Make sure to keep the directory structures intact. Now, from your browser, run the various updater files. The URLs will look like this...
http://yourDOMAIN-phpnukeinstall.com/update15-16.php
http://yourDOMAIN-phpnukeinstall.com/update16-17.php
http://yourDOMAIN-phpnukeinstall.com/update17-18.php
http://yourDOMAIN-phpnukeinstall.com/update18-19.php
http://yourDOMAIN-phpnukeinstall.com/update19-20.php
http://yourDOMAIN-phpnukeinstall.com/update20-21.php
Note that you'll have to update in the order as show above and it's an incremental, file-by-file update.
So you'll be updating to verion 2.0.16, then 2.0.17, then 2.0.18, then 2.0.19, the 2.0.20 and 2.0.21 (if you choose).
Now, you have the latest version of phpBB running with your PHP-Nuke install and you haven't broken anything!
Dont forget to delete the update php files after you are finished (update16-17.php - update20-21.php) Below you can find the individual files to download
BBtoNuke 2.0.16 Description: Fixed critical issue with highlighting Url descriptions able to be wrapped over more than one line again Fixed bug with eAccelerator in admin_ug_auth.php Check new_forum_id for existence in modcp.php Prevent uploading avatars with no dimensions Fixed bug in usercp_register.php, forcing avatar file removal without updating avatar informations within the database Fixed bug in admin re-authentication redirect for servers not having index.php as one of their default files set Version: 2.0.16 Filesize: 46.86 Kb Download Now BBtoNuke 2.0.17
Description: The changelog (contained within this release) is as follows:
• Added extra checks to the deletion code in privmsg.php
• Fixed XSS issue in IE using the url BBCode
• Fixed admin activation so that you must have administrator rights to activate accounts in this mode - reported by ieure
• Fixed get_username returning wrong row for usernames beginning with numerics
• Pass username through phpbb_clean_username within validate_username function -
• Fixed PHP error in message_die function
• Fixed incorrect generation of {postrow.SEARCH_IMG} tag in viewtopic.php
• Also fixed above issue in usercp_viewprofile.php
• Fixed incorrect setting of user_level on pending members if a group is granted moderator rights
• Fixed ordering of forums on admin_ug_auth.php to be consistant with other pages
• Correctly set username on posts when deleting a user from the admin panel Version: 2.0.17 Filesize: 72.71 Kb Download Now BBtoNuke 2.0.18
Description: BBtoNuke 2.0.18 for core PHP-Nuke
• [Fix] incorrect handling of password resets if admin activation is enabled (Bug #88)
• [Fix] retrieving category rows in index.php (Bug #90)
• [Fix] improved index performance by determining the permissions before iterating through all forums (Bug #91)
• [Fix] wrong topic redirection after login redirect (Bug #94)
• [Fix] improved handling of username lists in admin_ug_auth.php (Bug #98)
• [Fix] incorrect removal of bbcode_uid values if bbcode has been turned off (Bug #100)
• [Fix] correctly preview signature if editing other users posts (Bug #101)
• [Fix] incorrect alt tag on generated search images in groupcp.php, viewtopic.php and usercp_viewprofile.php (Bug #102)
• [Fix] consistent forum ordering in all dropdown boxes (Bug #106)
• [Fix] correctly get compression status in page_tail.php and page_footer_admin.php (Bug #117)
• [Fix] set page title on summary page of groupcp.php (bug #125)
• [Fix] correctly test style and avatar in usercp_register.php (bug #129 and #317)
• [Fix] handling of reactivation notifications if admin activation is enabled (Bug #145)
• [Fix] handling of both forms of translation information used in language packs (Bug #159)
• [Fix] key length for activation keys fixed in usercp_sendpassword.php (Bug #171)
• [Fix] use GENERAL_MESSAGE constant in message_die instead of MESSAGE (Bug #176)
• [Fix] incorrect handling of move stubs (Bug #179)
• [Fix] wrong mode_type in memberlist (Bug #187)
• [Fix] SQL errors when setting maximum PMs to 0 (Bug #188)
• [Fix] removed unused variable from topic_notify email template (Bug #210)
• [Fix] removed unset variable from smilies popup window title (Bug #224)
• [Fix] removed duplicate template assignment from admin_board.php (Bug #226)
• [Fix] incorrect search link for guest posts in modcp.php (Bug #254)
• [Fix] all users removed from topics watch table on special occassions (Bug #271)
• [Fix] correctly check returned value from strpos in append_sid function (Bug #275)
• [Fix] correctly display username in private message notification (Bug #278)
• [Fix] fixed "var-by-ref" errors (Bug #322)
• [Fix] changed redirection to installation (Bug #325)
• [Fix] added timout of 10 seconds to version check (Bug #348)
• [Fix] fixed user_level default in postgresql schema file (Bug #444)
• [Fix] multiple minor HTML issues with subSilver
• [Change] deprecated the use of some PHP 3 compatability functions in favour of the native equivalents
• [Change] added 60 days limit for grabbing unread topics in index.php
• [Sec] backport of session keys system from olympus
• [Sec] fixed email bans to use the same pattern as email validation and allow wildcard domain bans
• [Sec] fixed validation of topic type when posting
• [Sec] unset database password once it is no longer needed
• [Sec] fixed potential to select images outside the specified path as avatars or smilies
• [Sec] fix globals de-registration code for PHP5
• [Sec] changed avatar gallery code sections to prevent possible injection points
• [Sec] signature field is not properly sanitised for user input when an error occurs while accessing the avatar gallery
• [Sec] check to_username and ownership when editing a PM
• [Sec] fixed ability to edit PM's you did not send
• [Sec] compare imagetype on avatar uploading to match the file extension from uploaded file Version: 2.0.18 Filesize: 269.39 Kb Download Now
BBtoNuke 2.0.19
The changelog (contained within this release) is as follows:
[Fix] corrected index on session keys table under MS SQL
[Fix] added session keys table to backup
[Fix] delete session keys entries when deleting user
[Fix] changes to support MySQL 5.0
[Fix] changes to some of the admin files to improve efficiency and remove a potential error condition when building the menu
[Fix] change truncation of username length in usercp_register.php
[Fix] incorrect path to avatars in admin_users.php (Bug #667)
[Fix] fixed get_userdata to support correct sql escaping (non-mysql dbs)
[Fix] fixed captcha for those not having the zlib extension enabled
[Change] Placed version information above who is online in admin panel for better visual presence
[Sec] fixed XSS issue (only valid for Internet Explorer) within the url bbcode
[Sec] fixed XSS issue (only valid for Internet Explorer) if html tags are allowed and enabled
[Sec] added configurable maximum login attempts to prevent dictionary attacks
Version: 2.0.19 Filesize: 148.23 Kb Download Now
BBtoNuke 2.0.20
Description: What has changed in this release?
The changelog (contained within this release) is as follows: * Prevent login attempts from incrementing for inactive users
* Do not check maximum login attempts on re-authentication to the admin panel
* Regenerate session keys on password change
* retrieving category rows in index.php (Bug #90)
* improved index performance by determining the permissions before iterating through all forums (Bug #91)
* Better handling of short usernames within the search (bug
#105)
* Send a no-cache header on admin pages as well as normal board pages (Bug #149)
* Apply word censors to the message when quoting it (Bug #405) * Improved performance of query in admin_groups (Bug #753)
* Workaround for an issue in either PHP or MSSQL resulting in a space being returned instead of an empty string
* Correct use of default_style config value (Bug #861)
* Replace unneeded unset calls in admin_db_utilities.php
* Improved error handling in modcp.php
* Improved handling of forums to which the user does not have any explicit permissions
* Assorted fixes and cleanup of admin_ranks.php, now requires confirmation of deletions
* Assorted fixes and cleanup of admin_words.php, now requires confirmation of deletions
* Addition and editing of smilies can no longer be performed via GET, now requires confirmation of deletions
* Escape group names in admin_groups.php
* Replace strip_tags with htmlspecialchars in private message subject
* Some changes to HTML handling if enabled
* Escape any special characters in reverse dns
* Typecast poll id values
* Added configurable search flood control to reduce the effect of DoS style attacks
* Changed the way we create "random" values for use as keys -
* Enabled Visual Confirmation by default
* Changed handling of the case where a selected style doesn't exist in the database
* Changed handling of topic pruning to improve performance
* Changed default forum permissions to only allow registered users to post in new forums
Version: 2.0.20 Filesize: 195.60 Kb Download Now
BBtoNuke 2.0.21
Description: The changelog (contained within this release) is as follows:
[Fix] Changes to random number generator code to explicitly truncate the length of the string
[Fix] Quoting on boards with HTML enabled
[Fix] Special characters on boards with HTML enabled
[Fix] Redirect to list if cancelling deletion of ranks, smilies or word censors
[Fix] Missing error message if an inactive user tried to login
[Fix] Do not alter post counts when just removing a poll
[Fix] Correct error in removal of old session keys
[Fix] Changed filtering of short search terms
[Sec] Improved filtering on language selection (also addresses a number of bug reports related to missing languages)
[Change] Backported more efficient highlighting code from Olympus
[Change] Backported zlib emulation code so that there is only a single confirmation image even if zlib is not available
Version: 2.0.21 NP Filesize: 116.83 Kb Download Now Here's a few extra links to some phpNuke resources:
Newer news items:
|
