After an unproblematic and fast upgrade we are running now on latest Zikula 1.2.2 and will check the next days for eventual problems and fixes we need to do. If you experience any bugs in our forum, please do not hesitate to report a bug - thanks!
Greetings,
Chris

F-Secure and Secunia have recently reported a security advisory from StAkeR which relates to PNphpBB2. Some background research will tell you that this person is well known for spamming security boards with non proofen and often simply false advisories. His motivations are unclear, probably he is interested in discrediting PHP in general.



Also in our case he describes an attack which is technicially simply not possible, as all admin paths for PNphpBB2 are protected against intruders. Only people loged into PostNuke/PNphpBB2 and holding admin rights for PNphpBB2 are able to access these files, everyone else will receive a 403 error from the web server.



So, no vulnerability, no fix needed - no worry. :-)



Greetings,

Chris

The Zafenio team is happy to announce the release of the release candidate 1 for PNphpBB2-1.2i-patch4, a bug fix release for the latest stable version of our forum module. Please download from the Cozi.

It can already be used for new installations on Postnuke 0.764, Zikula 1.0.3 and 1.1.1, and is strongly recommended for upgrades of existing version of PNphpBB2-1.2. This release candiate will become the final release in 2-3 days if no problems come up last minute. Full Change log and release notes will be added with the final package. Please test and report.

Greetings, Chris (slam) Hildebrandt

One says that good developers eat their own dog food. Not sure if our code is good enough to qualify in a serious dog show, however we have upgraded this very site to Zikula 1.1.1 today. Problems with the forum: None. Problems with Zikula: Some minor issues, but nothing we can not fix.

Feel free to follow our example.

Greetings,

Chris

As most of you already might have recognized: We are late in our release plan looking at what we have planned 6 months ago. This is why I thought an update together with a new package to test would be nice: