Upgrading again: WordPress 2.2

Posted on May 16, 2007

Well, WordPress just released version 2.2 with a bunch of new stuff. I’ve upgraded the blog, and things seem to work so far — even on PHP5! They also included my workaround for the RPC bug in PHP 5.2.2.

I also upgraded the comments preview plugin, which now uses the actual post+comment page to show you the preview instead of showing a page that’s almost the same, but sorted in reverse.

At some point I need to test current versions of WP-Cache again, and see if WordPress’ internal cache works with PHP5 yet. And maybe it’s time to try a new theme. I’ve been tweaking this one pretty much since WP 2.0 came out.

WordPress 2.1.1 Security Alert

Posted on March 2, 2007

Kelson

Sometime in the last 3-4 days, someone managed to alter the download for WordPress 2.1.1, adding a remotely exploitable security hole. The WordPress team has declared the release “dangerous” and has issued an update, WordPress 2.1.2, taken from the clean source plus a few fixes. If you run WordPress 2.1.1, upgrade ASAP!

Things worth noting:

The SVN source that the developers use was not altered.
Older versions, such as 2.0, don’t seem to have been affected.
If you downloaded 2.1.1 when it was first released, it’s probably okay.
2.1.2 also includes a fix for a cross-site scripting vulnerability discovered a few days ago, so it’s worth updating anyway.

I still had the tar archive of 2.1.1 from when I grabbed it the day of the release, so I compared its contents to the 2.1.2 archive. The two files mentioned in the announcement, feed.php and theme.php, aren’t any different, confirming that the initial release was unaffected. That’s also where I saw the changes for that XSS bug.

*sigh* It’s always something…

WordPress Broken on PHP 5.2 Again

Posted on February 21, 2007

Kelson

Upgraded to WordPress 2.1.1. Supposedly should’ve fixed the PHP 5.2 problems. In reality, they’re ~~worse~~ unchanged. Bug 3354 is marked fixed, but it seems to have only been fixed on the 2.0 series.

Moved to Obsolete Tech Tips

Pumpkin Patch Day

Posted on October 10, 2006

Kelson

[Windows] Well, it’s the second Tuesday of the month. With Microsoft’s regular update cycle, that makes it Patch Tuesday.

It’s also October, the month leading up to Halloween.

I hereby declare today to be Pumpkin Patch Tuesday.

Update: Mozilla’s Josh Aas has carved the perfect pumpkin to go with this declaration.

Incremental Updates and the Problem of N+2

Posted on June 2, 2006

Kelson

There are two main ways to handle software updates: provide an updated installer, or provide a smaller updater that only includes the changes. (Either method can be automated.) Incremental updates have advantages, especially if you’re dealing with something as massive as, say, World of Warcraft, or Microsoft Office. But they do make things more complicated for the publisher.

One problem is the upgrade path. It’s one thing to provide an updater that goes from version N to version N+1. But what if someone doesn’t run the updater until N+2 is available? Or worse, N+3? Continue reading →

K-Squared Ramblings

Sci-fi, comics, humor, photos…it's all fair game.

Tag: upgrade

Upgrading again: WordPress 2.2

WordPress 2.1.1 Security Alert

WordPress Broken on PHP 5.2 Again

Pumpkin Patch Day

Incremental Updates and the Problem of N+2