Work at SourceForge, help us to make it a better place! We have an immediate need for a Support Technician in our San Francisco or Denver office.

Close

]project-open[ - Project Server / News: Recent posts

]po[ - Security Advisory - Weak SSL Ciphers in VMware Installer

Hi!

Thanks to a security audit together with one of our customers, we have found that the default SSL configuration of our default VMware installer contains outdated ciphers that should be disabled.

This advisory only affects users who are using SSL encryption via the Pound reverse proxy.

Impact:

Sophisticated attackers will be able to listen to HTTPS protected connections between browsers and the ]po[ server and possibly steal your password.... read more

Posted by Frank Bergmann 2014-04-29

]project-open[ amongst Opensource.com: Top 10 open source projects

http://opensource.com/life/13/12/top-open-source-projects-2013

]project-open[ is featured amongst the top 10 open source projects 2013 of Opensource.com. The top 10 list also includes Project Libre which is compatible with ]project-open[ and that can be used as a ]po[ Gantt front-end.

Posted by Frank Bergmann 2013-12-31

]project-open[ V4.0 Released - Integration with MS-Project

Dear All,

The ]project-open[ team is proud to announce the availability of ]project-open[ V4.0. This is the first major release in 24 month and contains more then 15 new modules. The biggest news however is the bidirectional "round-trip" integration with MS-Project allowing project managers to upload their project schedules and leave the communication and management accounting tasks to ]project-open[.... read more

Posted by Frank Bergmann 2013-05-03

New Tutorial: Building mobile ]po[ apps for iPhone & Android using Sencha Touch

Hi,

The following tutorial describes a 400 line sample app for listing, editing and creating "notes" using Sencha Touch as a front-end and the the ]project-open[ REST interface as a back-end. All development is done in JavaScript, you don't need to know TCL.

http://www.project-open.org/en/tutorial_building_sencha_touch_applications

Bests,
Frank

Posted by Frank Bergmann 2013-04-16 Labels: iPhone Android Sencha Touch HTML5 REST API JavaScript

]po[ V4.0.3.Beta-01 Windows Installer Released

Hi,

After a lot of testing and even more fixing we've just uploaded the first V4.0.3 "Beta" version of the Windows installer:

This is the improved version of the last alpha-28 (https://sourceforge.net/p/project-open/discussion/295937/thread/e7a1e4e9/).

Most of the issues listed in the posting above have been fixed, except for:... read more

Posted by Frank Bergmann 2013-01-18

]po[ - Security Advisory for ALL Versions

Hi,

We have just been informed about a security issue in the time sheet
logging functionality that allows any user with access to the HTTP port
to see the names of users logging hours and the names of the tasks
on which they have logged hours. The issue is already fixed in V3.5 and
V4.0 (please see below). Here is the detailed information:

Impact:

The issue is rooted in a non-exiting permission check in a set of time sheet
reports. The issue allows any unauthenticated user to:... read more

Posted by Frank Bergmann 2012-09-10

]po[ Data on MS-Outlook, iPhone and Android

Hi,

The ]project-open[ development team is proud to announce a first integration with the Funambol (http://www.funambol.com/) open-source middleware. Funambol allows to synchronize Contacts, Tasks and Calendar items between a number of PIM (Personal Information Managers) running on platforms including:

- Microsoft Office Outlook (2003, 2007)
- Apple iPhone
- Android
- BlackBerry
- Nokia
- etc.... read more

Posted by Frank Bergmann 2010-09-20

]project-open[ Localization Mailing List

Hi,

We're happy to announce the availability of the ]po[ Localization Mailing List. The mailing list is dedicated to the translators who are working on the different languages for the ]po[ V3.4 launch.

We've been working in the last weeks to prepare the localization efforts for ]po[ and asking around informally, we have received a surprising number of replies from ]po[ users and partners telling us that you are interested to participate in the localization of ]po[. ... read more

Posted by Frank Bergmann 2009-06-17

]project-open[ - Advisory service

Due to missing data, 'Finance' related elements might show zero values when created after 28th. of December 2008. Please do update your 3.2/3.3 server to the most recent version. A free patch is available on our CVS server.

Alternatively you can limit your update to package "intranet-exchange-rate" only.

In case you are not familiar with the update procedure please consult the manuals available at http://www.project-open.org/doc/ ... read more

Posted by Klaus Hofeditz 2009-01-05

]project-open[ V3.4.0.1.development "ITSM" Update-Release

Hi,

We've just uploaded an "update" release of ]po[ V3.4.0.1."development" in the SourceForge "Support Files" download section. I've chosen this somehow hidden location in order not to confuse those users who are used to "fully functional" software.

Instead, this release contains the bleeding edge of our ]project-open[ ITSM (IT Services Management) development.... read more

Posted by Frank Bergmann 2008-07-03

]project-open[ V3.3.Beta1 "Sneak Preview"

Dear All,

The ]project-open[ development team has just finished the first Beta1 "sneak preview" version of V3.3. You can find both a VMware virtual machine and a "package upgrade" at the download area. Both files contain a README explaining how to apply the update.

Version V3.3.Final is scheduled to be released the 22nd of July, 2008. We have chosen a relatively long Beta period in order to test the product well and to be able to inform magazines early.... read more

Posted by Frank Bergmann 2008-06-04

]po[ Security Advisory: Remote Information Exploit

Overview:

The ]project-open[ team has fixed two security vulnerability that exhibit project information to unprivileged users.

Vulnerability Details:

Issue #1 allows unregistered users via the Internet to find out the names of persons associated with a project and to determine the number of hours logged on the project.

Issue #2 allows registered users without financial permissions to find out about the hourly rates (compound cost rate) of project members. ... read more

Posted by Frank Bergmann 2007-10-08

]project-open[ V3.2 + GanttProject to form Application Stack

]project-open[ V3.2 Integrates With GanttProject to form OSS Business Application Stack

BARCELONA, Spain, May 9th -- The ]project-open[ development team is proud to announce the release of version V3.2. of its project management and project collaboration application. ]po[ is currently ranked #65 at SourceForge.net with >100,000 downloads.

The main feature of the new version is an integration with GanttProject, the no. #1 open-source project management application. Together, the two applications form an integrated open-source based application stack covering the complete project cycle for IT departments and IT companies from definition and planning to execution, tracking and invoicing.... read more

Posted by Frank Bergmann 2007-05-05

]project-open[ V3.2 Released

Dear All,

The ]project-open[ team is proud to announce the availability of ]project-open[ V3.2. A VMware image will be available on May 2nd. RPM installers for OpenSuSE, Fedora and CentOS will follow this week. A Win32 installer will be available until end of May, so we urge Windows users to consider the VMware installer meanwhile.

V3.2 includes a vast number of extensions and improvements compared with V3.1., most importantly an integration with the GanttProject open-source Gantt editor (http://sourceforge.net/projects/ganttproject/). This integration allows project managers to define and modify ]po[ projects using a graphical editor and to perform basic resource planning. ... read more

Posted by Frank Bergmann 2007-04-30

]project-open[ V3.2.Beta5 Released

Dear All,

We've just released a VMware image with V3.2.Beta5 with a few fixes for issues from V3.2.Beta4. The rest ist the same, so I just copy the annoucement of V3.2.Beta4 below. RPM installer will be available tomorrow afternoon CET.

---

The ]project-open[ development team is proud to announce the availability of ]project-open[. V3.2.Beta4 is the first release candidate for V3.2 and includes a vast amount of extensions and improvements. ... read more

Posted by Frank Bergmann 2007-03-12

]project-open[ V3.2.Beta4 Released

Dear All,

The ]project-open[ development team is proud to announce the availability of ]project-open[. V3.2.Beta4 is the first release candidate for V3.2 and includes a vast amount of extensions and improvements.

The V3.2.Beta4 release is based on a VMware virtual machine with SuSE 9.3 Linux. RPM installers for OpenSuSE, Fedora and CentOS will follow this week. A Win32 installer will come out in Q3 2007, so we urge Windows users to consider the VMware installer meanwhile.... read more

Posted by Frank Bergmann 2007-03-04

Looking for Freelance ]po[ Consultants and TCL Developers

Hi,

We (the "]project-open[ core team" in Barcelona) are looking for several TCL software developers and experienced ]po[ consultants around the world to help us deal with projects of various sizes.

Please let us know if you feel that you fit one (or both) of the profiles below.

TCL Developer: You receive a (more or less) complete specifications for new functionality or for the modification of an existing module. You plan and develop the solution and help the customer to install it in his system. You can count on some help from us in your first projects.... read more

Posted by Frank Bergmann 2007-01-06

]po[ Security Advisory: Default Session Config (Serious)

Overview:

The ]project-open[ team has identified a vulnerability in ]project-open[ that allows attackers to shortcut the login process with information gained from other ]po[ instances.

Vulnerability Details:

The vulnerability consists of a weak configuration in the "preconfigured" demo system of the V3.1.2 installer. Your system is not affected if you have installed your server "from scratch".... read more

Posted by Frank Bergmann 2006-10-03

]project-open[ V3.2.Beta1 "Sneak Preview"

Dear All,

The ]project-open[ development team has just released the first Beta1 "sneak preview" version of V3.2. You can find the pcdev32.v32.beta1.tar.bz in the "Support Files" section.

The file contains a zip of our /web/pcdev32/ development server plus a README. The README tells you how to continue. People familiar with ]po[ will know how to proceed. Please wait for a proper release if you are not. Please use a staging or development server for testing and DON'T install in a production server.... read more

Posted by Frank Bergmann 2006-07-25

Update Required: Linux AOLServer 3.3 Issue

Hi,

Recently there were reports at the AOLServer mailing list (http://www.aolserver.com/) about incidents with AOLServer 3.3.1. This version is the base of most ]project-open[ installations, so this is a serious incident and we recommend you to upgrade your installation.

Windows installations are not affected.

The error seems to occur due to a kind of "Year 2000" issue with the 32 bit Unix date format. As a result AOLServer will try to allocate a large quantity of virtual memory, which will fail and lead to a failure and then to a restart of AOLServer.... read more

Posted by Frank Bergmann 2006-05-18

Announcing ]project-open[ V3.2 Roadmap

Hi,

We have finally agreed with stakeholders and customers on a schedule for V3.2 of ]project-open[.

Please see our Roadmap (http://www.project-open.org/roadmap.html) for details.

New features include:

- An improved GUI
- Integration with GanttProject
- Resource Assignments and Resource Planning
- Integration of "Petri-Net Workflow"
- Expenses and Travel Costs
- An Integration API (XML-RPC and ODBC)... read more

Posted by Frank Bergmann 2006-04-28

]project-open[ V3.1.2 Virtual Machine Released

Dear All,

The ]project-open[ development team is proud to announce the availability of ]project-open[ V3.1.2 as a "Virtual Machine" for VMWare Server E.X.P.

The VM includes a production configuration of both ]project-consulting[ and ]project-translation[. "Production configuration" means that we have configured everything necessary to run your company with the system including daily backups, database maintenance, virtual server setup etc. This configuration is very similar to the configuration used by our main customers and allows your company to "go live" with ]project-open[ in hours rather then days.... read more

Posted by Frank Bergmann 2006-04-06

]project-open[ V3.1.2 Released

Dear All,

The ]project-open[ development team is proud to announce the availability of ]project-open[ V3.1.2 (Windows and Linux). V3.1.2 is a minor enhancement and bugfix release. The changes have been made during several customer rollouts, greatly increasing overall robustness and usabilty. We definitely recommend you to upgrade to V3.1.2.

For questions and suggestions please contact our support team at: mailto:support@project-open.com ... read more

Posted by Frank Bergmann 2006-02-28

]project-open[ CVS Server Ready to Serve Software Updates

Hi,

Our main server crashed a few days ago (http://sourceforge.net/forum/forum.php?forum_id=533352). Most of the server got recovered quickly, but we had some issues with the CVS service that provides the ASUS funcationality. Since yesterday night everything is working again. Special thanks to Andrew Nimmo!

For those who want to update: Maybe wait until the end of this week and we'll release V3.1.2 with a few bugfixes for Windows and some nice enhacements.... read more

Posted by Frank Bergmann 2006-01-31

CVS Server Down

Hi,

Yesterday one of our main servers crashed. We've managed to get the demo server running etc., but the CVS server (ASUS, ...) is still offline. We hope to fix the situation within the next days.

Bests,
Frank

Posted by Frank Bergmann 2006-01-24