You are not logged in.
#1 10 Jun 2006 16:51
Ottoman v1.1.3 Released
Lowter has released Ottoman v1.1.3 today, which fixed the vulnerabilities of remote file inclusion. (Errors 25916 - 25921 in the OSVDB)
We recommend that everyone upgrades, unless they are running Ottoman with register_gloals off (as recommended by both Lowter and the PHP Group).
Download Now
Offline
#3 13 Jun 2006 13:11
Re: Ottoman v1.1.3 Released
what?
Meaning of life: we learn a bunch of stuff then we die.
http://www.thehardcorelife.com
http://blog.thehardcorelife.com
Offline
#4 13 Jun 2006 13:24
- lotrgamemast
- Lowter Staff
- From: England
- Registered: 25 Jan 2005
- Posts: 2484
- Message Website
Re: Ottoman v1.1.3 Released
there was a majorish security issue with older version so we released an update to ottoman, this is not v2 just so you know, thats still planned for later.
Offline
#6 13 Jun 2006 15:23
Re: Ottoman v1.1.3 Released
There is no need for it to be on the front page. register_globals causes the issue, but has not be set "on" by default for quite some time. It is found on the Ottoman page, however.
Offline
#7 13 Jun 2006 18:01
Re: Ottoman v1.1.3 Released
you should have some sort of registration thing for people who download ottoman so you have a way of contacting them for such things as this security fix...
Meaning of life: we learn a bunch of stuff then we die.
http://www.thehardcorelife.com
http://blog.thehardcorelife.com
Offline
#8 13 Jun 2006 18:09
Re: Ottoman v1.1.3 Released
We offered a mailing list and no one signed up. The update checker will be more built into Ottoman v2 as well, to make this sort of thing easier to spread.
However, most people do not like to register to download software, which is why registration is pointless. They can register for Lowter's Forums and subscribe to a forum if they want.
Offline
#9 14 Jun 2006 16:09
Re: Ottoman v1.1.3 Released
then they are the fools...
Meaning of life: we learn a bunch of stuff then we die.
http://www.thehardcorelife.com
http://blog.thehardcorelife.com
Offline