Comments on: WPAU security fixes released http://techie-buzz.com/wordpress-plugins/wpau-security-fixes-released.html Know your technology head on Thu, 22 May 2008 19:58:38 +0000 http://wordpress.org/?v=2.5.1 By: Tomas http://techie-buzz.com/wordpress-plugins/wpau-security-fixes-released.html#comment-2818 Tomas Sat, 15 Sep 2007 12:23:41 +0000 http://techie-buzz.com/google/wpau-security-fixes-released.html#comment-2818 Hello! I have one question: how plugin operate if there are changes in WordPress file structure? Does it delete unused or moved files and folders? Tomas Hello!

I have one question:

how plugin operate if there are changes in WordPress file structure?

Does it delete unused or moved files and folders?

Tomas

]]> By: ovidiu http://techie-buzz.com/wordpress-plugins/wpau-security-fixes-released.html#comment-2785 ovidiu Thu, 13 Sep 2007 21:36:03 +0000 http://techie-buzz.com/google/wpau-security-fixes-released.html#comment-2785 being on debian I do a chown -R myuser:www-data /public_html so my user is the owner and www-data debians user for apache2 is the owning group. then chmod -R 775 /public_html so this should be enough for the plugin, but it does not work, I have to do a chown www-data:www-data for it to work. could you please refine your checks or tell me why it doesn't work like I described? any other plugin that needs to write to my public_html directory works with this setup... being on debian I do a chown -R myuser:www-data /public_html so my user is the owner and www-data debians user for apache2 is the owning group. then chmod -R 775 /public_html

so this should be enough for the plugin, but it does not work, I have to do a chown www-data:www-data for it to work.

could you please refine your checks or tell me why it doesn’t work like I described? any other plugin that needs to write to my public_html directory works with this setup…

]]> By: ovidiu http://techie-buzz.com/wordpress-plugins/wpau-security-fixes-released.html#comment-2755 ovidiu Wed, 12 Sep 2007 11:29:29 +0000 http://techie-buzz.com/google/wpau-security-fixes-released.html#comment-2755 hi there. I have one site where it always tells me the web server is not allowed to write to that directory. which is wrong. can you explain how your plugin checks for this? hi there.
I have one site where it always tells me the web server is not allowed to write to that directory. which is wrong. can you explain how your plugin checks for this?

]]> By: Ganadores del concurso: Wordpress Plugin Competition (conclusión: no descargar hasta que salgan parches que arreglen el problema) http://techie-buzz.com/wordpress-plugins/wpau-security-fixes-released.html#comment-2533 Ganadores del concurso: Wordpress Plugin Competition (conclusión: no descargar hasta que salgan parches que arreglen el problema) Tue, 28 Aug 2007 02:16:47 +0000 http://techie-buzz.com/google/wpau-security-fixes-released.html#comment-2533 [...] Link a la versión actualizada Actualización 2: Revisando el post de los ganadores en weblogs, me encuentro con una respuesta de Mark, el “de la página”, que dice lo siguiente: Estoy de acuerdo con Eduo pero agradezco el tiempo que David se ha tomado para informarnos. Los problemas de seguridad con los plugins están limitados solamente a usuarios que estén logeados, pero deberían ser reparados. Dado a que el autor original de la vulnerabilidad ha dicho que ha contactado a los autores, deberíamos tener versiones parchadas pronto. [...] [...] Link a la versión actualizada Actualización 2: Revisando el post de los ganadores en weblogs, me encuentro con una respuesta de Mark, el “de la página”, que dice lo siguiente: Estoy de acuerdo con Eduo pero agradezco el tiempo que David se ha tomado para informarnos. Los problemas de seguridad con los plugins están limitados solamente a usuarios que estén logeados, pero deberían ser reparados. Dado a que el autor original de la vulnerabilidad ha dicho que ha contactado a los autores, deberíamos tener versiones parchadas pronto. [...]

]]>