LOL strange

« 
Previous topic
|
Developer
|
Next topic
 »
Author Message

Björn Dieding@xrow.de

Friday 19 December 2003 6:09:32 pm

http://www.ez.no/home/news/the_ez_crew_will_be_on_holiday_from_dec_23_jan_2#msg40811

permissions wrong? Looks like a forum post.

Looking for a new job? http://www.xrow.com/xrow-GmbH/Jobs
Looking for hosting? http://hostingezpublish.com
-----------------------------------------------------------------------------
GMT +01:00 Hannover, Germany
Web: http://www.xrow.com/

The Hidden Exception

Saturday 20 December 2003 12:40:53 pm

...

Bård Farstad

Saturday 20 December 2003 1:29:01 pm

Bjørn, the problem was a bug in the url alias system. In some cases it would create two url alias'es with the same name. In this case the comment got the same url alias as the post it self.

This is currently beeing fixed.

--bård

Documentation: http://ez.no/doc

Marco Zinn

Saturday 20 December 2003 1:34:01 pm

Hi Bard,
good to read this posting of you. I just wanted to send ýou a mail about the bug, that you mentioned.
We noticed this some weeks ago with ez 3.2-3, but just now, i notice, that it can be a security issue.
Please have this fixed in ez3.2-4, as hackers will notice this quickly and could hack ez3 sites. In this, I agree with "The Hidden Exception" (Mr. Anonymous).

Regards,
Marco

PS: The possibility to post a comment to Dev-News or the reference list must be either a bug in the permission system and/or a misconfiguration on ez.no. Please check this,too.

Marco
http://www.hyperroad-design.com

K259

Saturday 20 December 2003 2:36:42 pm

Also check out these comments:
http://www.ez.no/developer/ez_publish_3/forum/developer/to_zinistry_vacana_hacking_or_what#msg40876
Powered by eZ Publish™ CMS Open Source Web Content Management. Copyright © 1999-2014 eZ Systems AS (except where otherwise noted). All rights reserved.