Extensions: Individual FE-Lists and FE-editing: “Interview with Daniel Pötzinger about an extension for defining individual lists and for flexible editing-possibilities of any table in the FE. During the interview you can see how editors can define own tables and how to use this extension for flexible Frontend editing of tables. As an addition you can see a barrierfree TYPO3-Ajax framework in action.
Sponsor: http://www.lightwerk.com/”
(Via TYPO3 Podcast.)
YAML 3.0 geht an den Start: “Wie es der Versionssprung von 2.5.2 auf 3.0 bereits vermuten lässt, bringt die neue Version zahlreiche Verbesserungen und auch einige Veränderungen mit sich. Der wohl wichtigste Punkt ist die vollständig überarbeitete, zweisprachige Dokumentation (deutsch/englisch) des Frameworks. Daneben bietet YAML 3 eine deutlich übersichtlichere Dateistruktur, verbesserte Robustheit und Barrierefreiheit der CSS-Bausteine, optimierte CSS-Bausteine für den produktiven Einsatz sowie zahlreiche neue Layoutbeispiele.
Eine detaillierte Übersicht aller neuen Funktionen und Änderungen der neuen Version liefert das Changelog.”
(Via YAML News.)
Leaving PHP4 behind…: “It’s been quite some time ago that I learned programming PHP in 2000. PHP4 had just been released [1], and I was happy when I finished my first lines of code, printing out a simple ‘hello’ to the…”
(Via buzz.typo3.org: All entries.)
Angriffswelle gegen Webserver (”iFrame-Attacken”) – nun auch TYPO3: “Schon seit einiger Zeit wird von wiederkehrenden Angriffen auf Webserver berichtet, so etwa in den Pressemeldungen “Groß angelegter Angriff auf Web-Anwender im Gange”, “Weitere Details zu Web-Attack-Toolkit MPack” “Schneeball-Effekt: nur ein anfälliges PHP-Script genügt” und vielen anderen Quellen. In diesen Angriffen werden – zumindest teilweise automatisiert – verschiedene Wege ausgenutzt, um Kontrolle über die Webserver zu erlangen.
Dies hat nun auch TYPO3 (und andere CMS-Systeme) erreicht: Einige Berichte zu solchen Vorkommnissen waren in Foren zu lesen, andere wurden diskret dem TYPO3 Security Team gemeldet. In diesem Artikel möchte ich vorstellen, was davon von allgemeinem Interesse ist.”
(Via TYPO3 Security Blog.)
Zend Framework 1.0.0 production release: “
I am very proud to announce availability of the first production release of Zend Framework. Many thanks to the scores of PHP developers who have worked for many months to make this product milestone possible. Zend Framework has followed a mission to provide classes that are extremely simple, yet powerful and extensible. Zend Framework is now the best class library available for PHP 5 web application development.”
(Via Zend Developer Zone.)
Zend Framework 1.0.0 RC3 released:
“We’re pleased to update the Zend Framework 1.0.0 release candidate 3. We have every hope and expectation that the next release will be used as the general production release of Zend Framework 1.0.0. This release will be ready early in July.”
(Via Zend Developer Zone.)
HTML Purifier 2.0.0 released!:
“HTML Purifier is a standards-compliant HTML filter written in PHP. Because it uses whitelists and a comprehensive knowledge of the HTML specification, it is bullet-proof against XSS, fixes malformed input rather than reject it, and is open and extensible. The 2.0.0 release lets users customize HTML Purifier’s tag sets easier than ever before.”
(Via Zend Developer Zone.)
PHP Security Exploit With GIF Images:
“There is a new blog post in the PHPClasses site that talks about a PHP security exploit that can be performed using specially crafted GIF images that embed malicious PHP code.”
(Via Zend Developer Zone.)
WordPress 2.2.1 is now available. 2.2.1 is a bug fix release for the 2.2 series. Since 2.2 was released a month ago, the WordPress community has been improving fit-and-finish by identifying and fixing those little bugs that can be so annoying and by fine-tuning some small details. The result is a nicely polished 2.2.1 release. The full list of bugs fixed in 2.2.1 is available here. Here are some highlights.
Unfortunately, 2.2.1 is not just a bug fix release. Some security issues came to light during 2.2.1 development, making 2.2.1 a required upgrade. 2.2.1 addresses the following vulnerabilities:
Special thanks to Alexander Concha for his continued assistance in making WordPress more secure. Special thanks also to Daniel Jalkut of Red Sweater Software for his improvements to our XML-RPC implementation.
”
(Via WordPress Development Blog.)
Extensions: Static file publishing – 23000% speed gain and cooling the globe: “Interview with Michiel Roos about TYPO3 performance improvement using static file cache. During a 30+ minute interview and demonstration you will be introduced into the Dark Arts of optimizing TYPO3 performance using static files, mod_rewrite and mod_expires. Learn how to make your site 230 times as fast! Includes comparison of extensions doing more or less the same.
Sponsor: http://www.lightwerk.com/”
(Via TYPO3 Podcast.)