Upgrade to latest from 1.4.2 Upgrade to latest from 1.4.2
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

Upgrade to latest from 1.4.2

Started by singsong, April 05, 2012, 04:14:57 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

singsong

Hi there,

I just upgraded from 1.4.2 to the latest release 1.5.n.  (security one).  I should like someone to have a quick look at the warning messages at the bottom and tell me if there is anything to worry about.  I think all is well.

by the way the anti-spam question are excessive: 5 of them:
Type the letters shown in the picture:
What number is missing from this combination? 1 3 7 9:
Spell cat without the c:
20 + 4 = ?:
Twenty Nine minus 6 plus 0NE = ? (use digits to answer):

Give me a break. 


Performing Database Updates

Cut for brevity

INSERT INTO cpg_config VALUES ('session_cleanup', '0') OK
INSERT INTO cpg_config VALUES ('guest_token_cleanup', '0') OK
INSERT INTO cpg_config VALUES ('allow_guests_enter_file_details', '0') OK
UPDATE cpg_albums SET moderator_group = 0 Already Done
ALTER TABLE cpg_users ADD user_email_valid enum('YES','') NOT NULL default '' OK
INSERT INTO cpg_usergroups VALUES (3, 'Anonymous', 0, 0, 1, 0, 0, 0, 0, 1, 1, 3) Already Done
UPDATE cpg_users SET user_actkey = '' WHERE user_active = 'YES' Already Done
Encryption of passwords: OK
Encryption of album passwords: OK
Category tree: OK
Delete «charsetmgr.php» Could not delete due to missing permissions. Delete the file manually!
Delete «config.php» Could not delete due to missing permissions. Delete the file manually!
Delete «editOnePic.php» Could not delete due to missing permissions. Delete the file manually!
Delete «faq.php» Could not delete due to missing permissions. Delete the file manually!
Delete «image_processor.php» Could not delete due to missing permissions. Delete the file manually!
Delete «picEditor.php» Could not delete due to missing permissions. Delete the file manually!
Delete «relocate_server.php» Could not delete due to missing permissions. Delete the file manually!
Delete «scripts.js» Could not delete due to missing permissions. Delete the file manually!
Delete «bridge/phpbb22.inc.php» Could not delete due to missing permissions. Delete the file manually!
Delete «bridge/punbb.inc.php» Could not delete due to missing permissions. Delete the file manually!
Delete «bridge/smf.inc.php» Could not delete due to missing permissions. Delete the file manually!
Delete «bridge/vbulletin.inc.php» Could not delete due to missing permissions. Delete the file manually!
Delete «bridge/vbulletin23.inc.php» Could not delete due to missing permissions. Delete the file manually!
Delete «bridge/vbulletin3gamma.inc.php» Could not delete due to missing permissions. Delete the file manually!
Delete «bridge/woltlab21.inc.php» Could not delete due to missing permissions. Delete the file manually!
Delete «bridge/yabbse.inc.php» Could not delete due to missing permissions. Delete the file manually!
Delete «albums/edit/index.htm» Already Done
Delete «docs/COPYING» Could not delete due to missing permissions. Delete the file manually!
Delete «docs/faq.htm» Could not delete due to missing permissions. Delete the file manually!
Delete «docs/faq_de.htm» Could not delete due to missing permissions. Delete the file manually!
Delete «docs/faq_fr.htm» Could not delete due to missing permissions. Delete the file manually!
Delete «docs/index_es.htm» Could not delete due to missing permissions. Delete the file manually!
Delete «docs/index_fr.htm» Could not delete due to missing permissions. Delete the file manually!
Delete «docs/README.html» Could not delete due to missing permissions. Delete the file manually!
Delete «docs/showdoc.php» Could not delete due to missing permissions. Delete the file manually!
Delete «docs/tester-README.txt» Could not delete due to missing permissions. Delete the file manually!
Delete «docs/theme.htm» Could not delete due to missing permissions. Delete the file manually!
Delete «docs/translation.htm» Could not delete due to missing permissions. Delete the file manually!
Delete «docs/de/theme_upgrade_13x-14x.htm» Already Done
Delete «docs/de/images/plugin_manager.gif» Already Done
Delete «docs/de/tutorial/cpg1.5_plugin_hello_world_2-1.zip» Already Done
Delete «docs/de/tutorial/cpg1.5_plugin_hello_world_2-2-1.zip» Already Done
Delete «docs/de/tutorial/matching_theme/index.htm» Already Done
Delete «docs/de/tutorial/matching_theme/screenshot_missing_menu.png» Already Done
Delete «docs/de/tutorial/matching_theme/» Already Done
Delete «docs/de/tutorial/» Already Done
Delete «docs/en/theme_upgrade_13x-14x.htm» Already Done
Delete «docs/en/images/plugin_manager.gif» Already Done
Delete «docs/en/tutorial/cpg1.5_plugin_hello_world_2-1.zip» Already Done
Delete «docs/en/tutorial/cpg1.5_plugin_hello_world_2-2-1.zip» Already Done
Delete «docs/en/tutorial/matching_theme/index.htm» Already Done
Delete «docs/en/tutorial/matching_theme/screenshot_missing_menu.png» Already Done
Delete «docs/en/tutorial/matching_theme/» Already Done
Delete «docs/en/tutorial/» Already Done
Delete «docs/es/tutorial/cpg1.5_plugin_hello_world_2-1.zip» Already Done
Delete «docs/es/tutorial/cpg1.5_plugin_hello_world_2-2-1.zip» Already Done
Delete «docs/es/tutorial/matching_theme/index.htm» Already Done
Delete «docs/es/tutorial/matching_theme/screenshot_missing_menu.png» Already Done
Delete «docs/es/tutorial/matching_theme/» Already Done
Delete «docs/es/tutorial/» Already Done
Delete «docs/fr/theme_upgrade_13x-14x.htm» Already Done
Delete «docs/fr/tutorial/cpg1.5_plugin_hello_world_2-1.zip» Already Done
Delete «docs/fr/tutorial/cpg1.5_plugin_hello_world_2-2-1.zip» Already Done
Delete «docs/fr/tutorial/matching_theme/index.htm» Already Done
Delete «docs/fr/tutorial/matching_theme/screenshot_missing_menu.png» Already Done
Delete «docs/fr/tutorial/matching_theme/» Already Done
Delete «docs/fr/tutorial/» Already Done
Delete «docs/nl/theme_upgrade_13x-14x.htm» Already Done
Delete «docs/nl/images/plugin_manager.gif» Already Done
Delete «docs/nl/tutorial/cpg1.5_plugin_hello_world_2-1.zip» Already Done
Delete «docs/nl/tutorial/cpg1.5_plugin_hello_world_2-2-1.zip» Already Done
Delete «docs/nl/tutorial/matching_theme/index.htm» Already Done
Delete «docs/nl/tutorial/matching_theme/screenshot_missing_menu.png» Already Done
Delete «docs/nl/tutorial/matching_theme/» Already Done
Delete «docs/nl/tutorial/» Already Done
Delete «docs/pics/» Could not delete due to missing permissions. Delete the file manually!
Delete «docs/theme/» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_arrow.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_biggrin.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_confused.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_cool.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_cry.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_eek.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_evil.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_exclaim.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_frown.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_idea.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_lol.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_mad.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_mrgreen.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_neutral.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_question.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_razz.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_redface.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_rolleyes.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_sad.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_smile.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_surprised.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_twisted.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «images/smiles/icon_wink.gif» Could not delete due to missing permissions. Delete the file manually!
Delete «include/imageObjectGD.class.php» Could not delete due to missing permissions. Delete the file manually!
Delete «include/imageObjectIM.class.php» Could not delete due to missing permissions. Delete the file manually!
Delete «include/index.html» Could not delete due to missing permissions. Delete the file manually!

singsong

Interesting:
Forbidden
You don't have permission to access /logout.php on this server.

Yet its executable by all.
# find -name logout.php -ls
131355    4 -rw-r--r--   1 root     root         1663 Mar 29 16:33 ./logout.php
# ls -ld
drwxr-xr-x 15 root root 4.0K Apr  5 16:03 .

And would an admin sort out the anti-spam questions. Again five of the blighters :(

singsong

1) Also noticed that resizing images won't work. 
Fatal error: Allowed memory size of 50331648 bytes exhausted (tried to allocate 13056 bytes) in /web/poundingapples/include/imageobject_gd.class.php on line 112
Is this a php limit?

2) Password protection on albums is unenforced.  One can enter the password and password hint, but a guest is not prompted for a password.


- Hey the anti-spam questions have gone - Thank-you.

Αndré

Please respect our board rules by asking just one question per thread, after reading the docs and searching the board.

1.) Delete the files manually

2.) Please post a link to your gallery

3.) Yes, that's a PHP limit

4.) Please post a link to a password protected album

5.) If you volunteer to delete more than 100 spam posts per day in our board, we can consider to adjust the current anti-spam system

singsong



1. Files deleted.
2. Only on the condition the URL is removed from this thread afterwards.
3.Thanks. I shall increase via php.
4. See 2.
5. Do you use multiple DNS RBLs as well as captcha?

Αndré

A moderator will remove the URL on request. As this thread has no meaningful subject and already deals with several issues, please start a new thread for each remaining issue by following the board rules.

Locking.