Revision history for WhatsNew142


Revision [2522]

Last edited on 2020-04-20 02:02:21 by BrianKoontz [typo]
Additions:
===== What's new in Wikka 1.4.2? =====
Deletions:
===== What's new in Wikka 1.4.12? =====

Revision [2516]

Edited on 2020-04-20 01:47:57 by BrianKoontz [updated]
Additions:
{{image url="http://docs.wikkawiki.org/images/force_password_reset.png" alt="force_password_reset" title="force_password_reset option"}}
We also introduce a new formatter for CSV data as well as numerous bug fixes.
Bug reports concerning this new security upgrade (as well as for other issues) are always welcome on the[[https://github.com/wikkawik/WikkaWiki/issues | Github issues tracker]].
You can find details on all security fixes, new/improved functionality and bugs/other issues [[https://github.com/bakoontz/WikkaWiki/issues?q=milestone%3A1.4.2 | here]].
Installation can be completed using either the [[Installing142 | upgrade]] method or by [[WikkaInstallation | installing a fresh package]].
You can browse the source code of [[https://github.com/bakoontz/WikkaWiki/tree/1.4.2 | Wikka 1.4.2]] from the Github repository.
""PLG, klenwell, isleofwighter, jkl3, awhorton, ldemattos, Rasputin2""
Deletions:
{{img src= http://docs.wikkawiki.org/WhatsNew142/files.xml?action=download&file=force_password_reset.png
This version now supports the PDO (PHP Data Objects) framework, which allows for a choice of back-end databases. As of this release, both mysql and sqlite are supported. **Please note that sqlite support is still being tested and is not recommended for production use.** Bug reports concerning sqlite integration (as well as support for other databases) are always welcome on the[[https://github.com/wikkawik/WikkaWiki/issues | Github issues tracker]].
You can find details on all security fixes, new/improved functionality and bugs/other issues [[https://github.com/bakoontz/WikkaWiki/issues?q=milestone%3A1.4.1 | here]].
Installation can be completed using either the [[Installing141 | upgrade]] method or by [[WikkaInstallation | installing a fresh package]].
There is a new configuration parameter, ##'behind_reverse_proxy'##, set to a default of 0. {{color c='red' text='Do not enable this unless you are actually running the instance behind a reverse proxy!'}} By design, the X-Forwarded-* headers are insecure, and enabling this setting generates the proper links to the public-facing reverse proxy. If this setting is enabled, and the instance is not behind a reverse proxy, anyone can send X-Forwarded-* headers.
You can browse the source code of [[https://github.com/bakoontz/WikkaWiki/tree/1.4.1 | Wikka 1.4.1]] from the Github repository.
""hlandau, oemunoz, paulmyatt, k1k9, sarabeee, judgemon, pataphysics, ldemattos, zorunno, cobrin, PLG, pika-boo, ghost, GeorgePetsagourakis, DarTar, DotMG, NilsLindenberg, MasinAlDujaili, vincent.fretin""

Revision [2515]

Edited on 2020-04-20 01:37:01 by BrianKoontz [typo]
Additions:
This version now uses the more secure PHP password_hash algorithm; the MD5 hash algorithm has been deprecated as of this release and is slated for removal within the next few releases. If you have a site with few users, simply changing the password for each user will generate the more secure password hash and bypass the MD5 check. If you have a busier site, there is an option on the AdminUsers page called "Force password reset for all non-admin users":
{{img src= http://docs.wikkawiki.org/WhatsNew142/files.xml?action=download&file=force_password_reset.png
Clicking this will force non-admin users to change their passwords (and by default transition to the more secure password hash). For safety reasons, admin users will need to manually initiate a password change before their passwords are upgraded.
Deletions:
This version now uses the more secure PHP password_hash algorithm; the MD5 hash algorithm has been deprecated as of this release and is slated for removal within the next few releases. If you have a site with few users, simply changing the password for each user will generate the more secure password hash and bypass the MD5 check. If you have a busier site, there is an option on the AdminUsers page called "Force password reset for all non-admin users." Clicking this will force non-admin users to change their passwords (and by default transition to the more secure password hash). For safety reasons, admin users will need to manually initiate a password change before their passwords are upgraded.
{{files}}

Revision [2514]

Edited on 2020-04-20 01:31:42 by BrianKoontz [typo]
Additions:
''Released on 19Apr2020''
Deletions:
''Released on 19Apr2020'

Revision [2513]

Edited on 2020-04-20 01:30:59 by BrianKoontz [update]
Additions:
===== What's new in Wikka 1.4.12? =====
''Released on 19Apr2020'
~-**[[Installing142 | Installation & upgrade notes for 1.4.2]]**
{{latestfiles float="left" show="stable" stableversion="1.4.2" stablereleasedate="19Apr2020"}}
This version now uses the more secure PHP password_hash algorithm; the MD5 hash algorithm has been deprecated as of this release and is slated for removal within the next few releases. If you have a site with few users, simply changing the password for each user will generate the more secure password hash and bypass the MD5 check. If you have a busier site, there is an option on the AdminUsers page called "Force password reset for all non-admin users." Clicking this will force non-admin users to change their passwords (and by default transition to the more secure password hash). For safety reasons, admin users will need to manually initiate a password change before their passwords are upgraded.
{{files}}
Deletions:
===== What's new in Wikka 1.4.1 ? =====
''Released on 29Aug2019''
~-**[[Installing141 | Installation & upgrade notes for 1.4.1]]**
{{latestfiles float="left" show="stable" stableversion="1.4.1" stablereleasedate="29Aug2019"}}

Revision [2512]

The oldest known version of this page was created on 2020-04-20 01:25:09 by BrianKoontz [update]
Valid XHTML :: Valid CSS: :: Powered by WikkaWiki