There are quite a few actions that need to or should be performed asynchronously. These include:
Sending pings to blog directories
Double checking referers
Pruning stats & sessions
Generating static pages
Auto updating the antispam… more »
With Phoenix we now also have skins in the backoffice, loacted in /admin/skins
Currently these can only be switched through the config files.
The minimum we would need would be a SELECT list on the user profile form were the user could choose his… more »
At each request:
1) check if we can get a sess_ID + a sess_key from cookies. These should be matched against the evo_sessions table. If they match, the user is logged in. We can get his ID though sess_user_ID.
Note: sess_key is currently implemented… more »
Make it so that people have to update there blacklist before they can report new spammers.
For the ones keeping the blacklist up to date (like me) it's a tough job to deprecate all those spammers (because 1 good spam-word was choosen to avoid 200 other… more »
Here's how I think this should be implemented:
Right now we only have an EDITOR role who can create anything, edit anything and delete anything.
The extra granularity we need is this:
- being able to only create/edit one's own stuff without being… more »
A critical security issue has been discovered in the XML-RPC for PHP that most applications use, including b2evolution.
It is highly recommended you fix you installation by downloading this patch file and unzipping it into you /blogs/b2evocore/ folder.… more »
A moderately critical security advisory has been posted here: http://secunia.com/advisories/13718/
Methods to fix this issue are described here: http://forums.b2evolution.net/viewtopic.php?t=2695
We are encouraging all b2evo users to update their… more »
Interesting suggestions here: http://forums.b2evolution.net/viewtopic.php?p=9176
First, b2e Calendar has both month and years switch, this is great.
the trouble is that the switching links are not next to month and year text, they are gone in a… more »