Archive for the ‘php’ Category
2011
02.08
Tags: code, upgrade, wordpress
Posted in code, php, security, sysadmin, wordpress | 1 Comment »
The upgrade to 3.0.5 was resleased yesterday. From the release notes:
Two moderate security issues were fixed that could have allowed a Contributor- or Author-level user to gain further access to the site.
One information disclosure issue was addressed that could have allowed an Author-level user to view contents of posts they should not be able to see, such as draft or private posts.
Two security enhancements were added. One improved the security of any plugins which were not properly leveraging our security API. The other offers additional defense in depth against a vulnerability that was fixed in previous release.
Download and upgrade now!
2010
12.09
Tags: remote publishing, upgrade, wordpress
Posted in code, php, sysadmin | No Comments »
… it’s time to go 0-3, I think — WordPress 3.0.3 is out – but the update is really only applicable to remote publishing-enabled systems…
WordPress 3.0.3 is available and is a security update for all previous WordPress versions.
This release fixes issues in the remote publishing interface, which under certain circumstances allowed Author- and Contributor-level users to improperly edit, publish, or delete posts.
2010
07.05
Tags: code error, iol, nigeria, soccer, spa
Posted in code, Did you know, php | No Comments »
IOL – the online offering of Independent Newspapers – seems to have issues — only two stories show up – one about Nigeria reversing their ban on its soccer team (and announcing that the football federation said it would disband and rebuild the side) and another after a very strange story about the Gatsby International Health Spa, and the search they performed on the suspicion of theft… (more…)
2010
06.04
Tags: document storage, high availability, high performance, JSON, meta data, mongo, open source, php, RDBMS, scalable, vork
Posted in code, linux, open source software, php, sysadmin | No Comments »
MongoDB has been around for a while now, with the current version of production-level code at 1.4.3. Full integration to PHP is available via PECL, across platforms, or precompiled binaries. And yes, it’s Open Source.
From the site itself, MongoDB puts itself out there as a database that bridges the gap between key-value stores (which are fast and highly scalable) and traditional RDBMS systems (which provide rich queries and deep functionality), and is geared toward document-type storage. It supports Map/Reduce for proper high-speed iteration through high volumes of data, allows for easy replication and HA (high availability – but you knew that already). Who uses it? Sourceforge, bit.ly, github and the New York Times, to name a few, use MongoDB in production, as does disqus, and shutterfly. It outputs JSON-style data structures.
MongoDB (from “humongous”) is a scalable, high-performance, open source, document-oriented database. (more…)
2010
05.14
Tags: events, security, security summit, web security
Posted in bash, code, conferences, javascript, linux, mysql, open source software, php, security, synch.cc, sysadmin, windows | No Comments »
So the Security Summit 2010 has come to an end. Featuring speakers such as Moxie Marlinspike, Joe Grand and Jeremiah Grossman (again), it’s a pity to say that there wasn’t much new that was presented. With repeated concerns about input- and output-validation, as the OWASP Top 10 for 2010 highlight and were used as a repeated example, and a call for a holistic approach to a company’s security posture, the idea of making the thought (and practice) of security part of the organisation’s culture came through over and over again. (more…)
2010
03.22
Tags: document indexing, document management, knowledgetree, solved
Posted in code, knowledgetree, open source software, php, sysadmin, ubuntu | 2 Comments »
Argh. Well, it’s really not quite out of the box, at least on Ubutu Server 9.10 (after reinstallations required after initial failures…), so this is just a selection of the fixes that made the import and indexing of the 160 000 files at 102GB possible. So for KnowledgeTree 3.7.0.2 Commercial Edition (the same holds true for the Community Edition), the following should help:
- Use the best-practice advice when doing the local file system import – rather do 10 000 files at a time rather than 100 000 at once. Really. Trust me. It defeats the whole idea of just running a batch job. Completely. As you’d expect the option of saying – just transfer all data in directory X. But alas, that doesn’t work. So do it in batches. Manually.
- Tika Apache Indexer for Lucene – not so much on PDFs, Docs, XLS or PPT files. Install catdoc (which includes
catppt and xls2csv) and pdftotext (which you’ll find in xpdf-utils).apt-get install catdoc pdftotext- modify
knowledgetree/search2/indexing/extractors/TikaApacheExtractor.inc.php and comment out the mime types that are affected above from the returned array in getSupportedMimeTypes() – PDF, XLS, DOC and PPT: (more…)
2010
03.21
Tags: configuration, knowledgetree, pear, php, solved
Posted in code, knowledgetree, linux, php, sysadmin, ubuntu | 1 Comment »
OpenOffice.org startup failures, indexing issues and other niggles forced me to re-install KnowledgeTree 3.7.0.2 Commercial Edition (the same holds true for the Community Edition) more than once during setup. I was met with this delicious error notification which killed all further activity on the site (and prevented the startup of /setup/wizard/, control.php, browse.php, login.php — well, everything, really):
Warning: include_once(DB/.php) [function.include-once]: failed to open stream: No such file or directory in /usr/share/knowledgetree/thirdparty/pear/DB.php on line 371
Warning: include_once() [function.include]: Failed opening ‘DB/.php’ for inclusion (include_path=’/usr/share/knowledgetree/search2:/usr/share/knowledgetree/ktapi:/usr/share/knowledgetree/thirdparty/xmlrpc-2.2/lib:/usr/share/knowledgetree/thirdparty/simpletest:/usr/share/knowledgetree/thirdparty/Smarty:/usr/share/knowledgetree/thirdparty/pear:/usr/share/knowledgetree/thirdparty/ZendFramework/library:.:/usr/local/zend/share/ZendFramework/library:/usr/local/zend/share/pear:/usr/share/knowledgetree/thirdparty/pear’) in /usr/share/knowledgetree/thirdparty/pear/DB.php on line 371
Warning: Cannot modify header information – headers already sent by (output started at /usr/share/knowledgetree/thirdparty/pear/DB.php:371) in /usr/share/knowledgetree/config/dmsDefaults.php on line 299 (more…)
2010
03.21
Tags: errors, knowledgetree, openoffice, soffice, solved, troubleshooting
Posted in code, knowledgetree, linux, php, sysadmin | No Comments »
Having repeatedly received the error that OpenOffice.org is not running on the standard installation of KnowledgeTree 3.7.0.2 Commercial Edition (the same holds true for the Community Edition), further investigation was necessary. The key area of investigation must focus on the dmsctl.sh file, particularly from line 47 onwards, but more of that further down below. This is on Ubuntu (9.10 Server).
First, do a few quick checks:
- Is the process running? Anywhere?
Check whether OpenOffice.org is actually running, using a simple netstat -pant| grep 8100 — as the default installation is running with a headless OpenOffice.org on port 8100. You should see something like:
tcp 0 0 127.0.0.1:8100 0.0.0.0:* LISTEN 9655/soffice.binFor the fix in question, it wasn’t giving any results on this check (sudo the commands where required, but you knew that already), which means that it’s not running properly. Also,
ps -aux | grep soffice
gave no results, indicating non-functioning backend software.
(more…)
2009
11.25
Tags: document management, knowledgetree, open source
Posted in open source software, php | No Comments »
PBGVVH25US66 They released the Knowledge Tree 3.7 RC Community Edition some time ago, which now runs on the full Zend-Server stack! Infrastructurally, this is the biggest changed; PHP-based setup wizards also feature, and sure – you can now run it on IIS6/IIS7, but that switch to the Zend stack with use of Optimiser features most highly for me on this development. But you knew that already! 
Curious to see the feedback from Steve Briggs from iBurst about their KnowledgeTree (not necessarily their whole CRM solution) usage and implementation experience at iBurst, after the chat I had with him yesterday…
2009
09.02
Tags: pear, php, phpdoc, phpdocumentor
Posted in code, open source software, php, windows | 5 Comments »
So the below description will give you a step-by-step to run phpDocumentor (which replaces phpDoc):
Get it at www.phpdoc.org or install it via PEAR (much easier – 2MB download or so).
For Windows machines:
- go-pear.bat (if you haven’t already — find it if you don’t know where it is) and pear install --alldeps phpdocumentor
- Do a search for PEAR_ENV.reg on your machine.
- Execute it.
- Make sure you’ve got the Environment Variables set to point to include the PHP bin directory (
set PATH=%PATH%;c:\path\to\php ) OR- From the desktop, right-click My Computer and click properties.
- In the System Properties window, click on the Advanced tab.
- In the Advanced section, click the Environment Variables button.
- Finally, in the Environment Variables window, highlight the path variable in the Systems Variable section and click edit. Add or modify the path lines with the paths you wish the computer to access. Each different directory is separated with a semicolon as shown below.
- In Vista:
- Open the the Control Panel, select the System and Maintenance link, and select the System link. Or, press the Windows key and the Pause / Break key at the same time.
- Select the Advanced System settings link.
- You can now call php and pear commands from the command line (you many need to restart for the changes to come into effect).
- Verify by typing phpdoc -h
phpdoc -d "c:\projectDir" -o HTML:default:default -t "c:\projectDir\docs"- for PDF files, replace the output parameter (-o): -o PDF:default:default
- Formatting in smarty (like PHP website etc): -o HTML:smarty:default
-t = target directory of generated documents
-d = source directory of files to check
-o output format as above.
(more…)