File Release Notes and Changelog
Release Name: v2.2.25 - stable - SECURITY UPDATE
Notes: Version update 2.2.25 Changes: - Closed various vulnerabilities. - As a note: It is always a BAD IDEA to accept links into your DB2 MC from any third party period. I can not stress how bad this can be. Stay clean! Get there yourself. - Additional setting have been added within the db2ini.php file VERIFY_ON_LOCK_ON_ADDRESS - true/(false) - only allow requests for a given IP address LOCK_ON_IP_ADDRESS - "127.0.0.1" - Only allow requests is the above is set from this IP VERIFY_ON_USER_AGENT - (true)/false - if your browser changes between requests you will be logged out. VERIFY_ON_CLIENT_ADDRESS - (true)/false - if your IP changes between requests you will be logged out. CYCLE_SESSION_ID - true/(false) - Every Query and new session ID will be created, this will break the back button. SESSION_TIMEOUT_IN_MIN - 30 - Time in minutes that if your session is ideal which you will then be logged out. FILE_VERIFICATION_REGEX - '/^[a-zA-Z0-9_\/-]+$/' - A regular expression which all file names are verified against. QUERY_FILES_DIRECTORY - './queryfiles/' - This can now be set to false to disable saving of SQL Queries. - Finally some legacy code has been removed.
Changes:
About SourceForge
Develop Software
Community
Copyright © 2010 Geeknet, Inc. All rights reserved. Terms of Use
