Great Reviews!Need help setting up your website, installing Apache, PHP, MySQL, or RavenNuke(tm)?Need help customizing or designing scripts?Please contact us via the Contact Us option for further details and pricing.
Southern writes "Jorge Luis Alvarez Medina, a security consultant working for Core Security, has discovered a string of vulnerabilities in Internet Explorer that make it possible for an attacker to gain access to your C drive - complete with files, authentication and HTTP cookies, session management data, etc.
Exploitation of the vulnerability relies solely on the ability for a would-be attacker to provide malicious HTML content from a website and to predict the full path name for the file that will be used to cache it locally on the victim's system," says the advisory Core Security published. "If the entire path name can be predicted, the attacker can cause a redirection to the locally stored file using an URI specified in UNC form and force the local content to be rendered as an HTML document, which will permit to run scripting commands and instantiate certain ActiveX controls."
Posted by Raven on Thursday, January 28, 2010 @ 16:02:33 EST (830 reads) ( | Score: 0)
PHP SEC INFO
nb1 writes "PhpSecInfo provides an equivalent to the phpinfo() function that reports security information about the PHP environment, and offers suggestions for improvement. It is not a replacement for secure development techniques, and does not do any kind of code or app auditing, but can be a useful tool in a multilayered security approach
Posted by Raven on Thursday, January 28, 2010 @ 16:00:51 EST (808 reads) ( | Score: 0)
Web Hosting
papamike writes "I have been around the technology field for 30+ years as a Network Engineer. I retired in 1996 and started a hobby on the web. Since that time I had several different web host.
Recently I was hosted on a server running a unmanaged VPS. One day out of the blue all of the websites I manage were down. I was told that the servers drive was corrupt and that the data was lost permanently. I had backups of all my data but the aggravation it caused me was too much.
So I started the process of searching for a new host when I thought of Raven's Web Hosting. I contacted Raven and in just a small amount of time I had a new host. He was great in getting me ready to go on-line. Professional courteous service has won me over. The fact that I felt I was taking care of the folks who depend on me while at the same time supporting the community. Look around, when you are truly a member of Raven's community he has everything to offer all members. Need good web hosting, it's there, how 'bout knowledgeable friendly people to answer your questions on a forum that covers just about everything. Want to keep informed on the important news about things that affect the security of applications, it's here too.
Excellent prices, good relationships with his clients and members has won me over. I can safely say that I will be a client for the long haul.
Let's all support the community that gives us so much. To design and code a secure feature rich CMS is a daunting task, but the talented RavenNuke(tm) team is highly qualified to reach their goals.
Thanks for taking the time to read this.
Mike (papamike)"
Note:Mike, thank you so much for this endorsement and review! And, as always, for all you do in support of RavenNuke™!
Posted by Raven on Wednesday, January 27, 2010 @ 20:19:38 EST (601 reads) ( | Score: 0)
OurTube 1.2 released!
meotoo writes "
OurTube lets you manage and watch YouTube Videos from your phpnuke-based CMS, for full details on its feaures check out this page. The list of changes on this release are as follow:
OurTube 1.2 - 2010/01/27
Downloading Videos works again, and improved! Previously we just tried to download standard FLV videos, while we'll try now to download the highest quality available video, pre-defined videos are HD 1080p, HD 720p, Standard MP4, FLV HQ 480p, FLV LQ 360p, FLV LegacyHQ, and FLV LegacyLQ. The one which found first will be downloaded (forwarded to you)
Fixed links from pointing to your site root, in case it's in a subfolder.
We'll now use cURL if it's available, else fallback to the build-in engine.
Improved AJAX management, handling and routines.
Changed encoding algorithm for YouTube Videos ID so that it's more browser friendly and better suitable for modrewrite-enabled websites.
DESCRIPTION: Some vulnerabilities and weaknesses have been reported in Google Chrome, where some have unknown impacts and others can be exploited by malicious people to disclose potentially sensitive information, bypass certain security restrictions, or compromise a user's system.
Posted by Raven on Tuesday, January 26, 2010 @ 22:55:06 EST (802 reads) (Read More... | 2441 bytes more | Score: 0)
Apache SpamAssassin 3.3.0 released
nb1 writes "Apache SpamAssassin 3.3.0 is a mature, wide-spectrum, extensible email filtering package deployed by hundreds of thousands of organizations worldwide.
Apache SpamAssassin 3.3.0 represents a major shift in how SpamAssassin rules (the actual patterns that help to identify spam) are updated. Rules are now separate from the core product and are instead downloaded using "sa-update," SpamAssassin's automatic update software. This method was optional with the 3.2.x series of releases and has proven to be very popular.
SpamAssassin provides a comprehensive set of features and support for methods and standards such as text based patterns, bayesian scoring, DNS based black and white lists, DKIM and SPF sender authentication, and email signature clearing houses. The software utilizes a principle of identifying multiple reasons for classifying an email as spam to improve accuracy and decrease the chance of legitimate emails being incorrectly identified as spam
Posted by Raven on Tuesday, January 26, 2010 @ 22:31:39 EST (739 reads) ( | Score: 0)
Battlefield: Bad Company 2 Theme Released
xGSTQ writes "The Battlefield: Bad Company 2 Theme is my first theme of 2010 and is a very nice fixed width theme it will accommodate all screen resolution users, it comes with matching forums template, MP3 Block / Module and Popup Player and an interactive Admin Area to easily add songs, I have also included the Bad Company 2 Age Gate Splash Screen
The theme comprises of dark heavily textured images around the outer design, but then comprises of light textured white images to give the whole theme a very nice contrast and easy feel to the user.
Features:
Admin only link in header
Register Link for guests in header
Account Link for members in header
Header PSD to add your own clan name
MP3 Player Module and Block with integrated Admin Area Bad Company 2 Age Gate Splash Screen
Bad Company 2 Countdown Block to release date
Flash Block Dynamic Titles
Flash News Center Dynamic Titles
100% XHTML Complaint
100% CSS Compliant
Banner Advertisement placement in Footer
Legal Module links in footer (ravens nuke only)
Welcome Block and Image (with PSD)
XML Image/Banner rotating Block
Modified Center Forums Block
Matching NukeNav for Raven's RavenNuke™
Tested on Raven's RavenNuke™ v2.4 and Standard Nuke v8.1
Cross browser compatibility, tested in IE, Mozzila and Opera
Matching Forums template.
Posted by Raven on Saturday, January 23, 2010 @ 19:20:19 EST (2301 reads) ( | Score: 0)
NukeTAGS 2.1 has been released.
meotoo writes "
A new version of the popular TagClouds module for phpnuke-based CMSs has been just released, and its ChangeLog is as follow:
NukeTAGS 2.1 - 2010/01/21
TagClouds for pages whose access is restricted to non-registered users will no longer be gathered while visited by such users...
OPTIMIZE TABLE will be now used after expunging tags for old pages.
index.php?newlang=[lang] will be now ignored from being gathered.
Added a new configuration option which will control how to handle non-english (or non-yoursitelang, better say) pages. Previously we gathered pages the same way regardless the user's choosen-language, we'll now take this into account. What this mean, you ask? well, if your site's language is English and a user is viewing it in German, the tagclouds for your pages could be overwritten with German words as if they are in English. The new configuration option is 'langDiff' and its possible values are:
Do not handle pages which aren't in your site's language
Handle pages language regardless (that's how it worked previously)
Handle yoursitelang and non-yoursitelang pages individually.
Posted by Raven on Saturday, January 23, 2010 @ 01:38:24 EST (719 reads) ( | Score: 0)
Nuke Reflections Gallery Beta For RavenNuke(tm) Released
nuken writes "I have released a beta version of Nuke Reflections for RavenNuke(tm) for testing and feedback at Tricked Out News. I am aware of the remaining xhtml compliance issues and php warnings, I need some testers to find bugs with the gallery and report them to my forums. Thanks for your help."
Posted by Raven on Wednesday, January 20, 2010 @ 21:38:32 EST (1316 reads) ( | Score: 0)
Facebook Friends Apache Software Foundation with $100K Sponsorship
nb1 writes "Head over to the Apache Software Foundation's website and you'll see an announcement posted by ASF Chairman Jim Jagielski welcoming Facebook as the open-source company's newest sponsor.
"With Open Source in its DNA, Facebook is an enthusiastic champion and active contributor to the ASF, including the Hive subproject of Apache Hadoop, as well as the popular incubating projects Thrift and Cassandra -- all originally developed by Facebook," Jagielski wrote.
Per the announcement, Facebook signed on as a platinum-level sponsor, the highest membership level available and one which requires an annual donation of at least $100,000. Other membership levels include Gold ($40K/year), Silver ($20K/year), and Bronze ($5K/year).
![[Valid RSS]](http://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
:: 
::
