[geeklog-cvs] Geeklog-1.x/system lib-admin.php, 1.135, 1.136 lib-comment.php, 1.68, 1.69 lib-custom.php, 1.42, 1.43 lib-custom.php.dist, 1.3, 1.4 lib-database.php, 1.53, 1.54 lib-mbyte.php, 1.20, 1.21 lib-pingback.php, 1.14, 1.15 lib-plugins.php, 1.149, 1.150 lib-security.php, 1.74, 1.75 lib-sessions.php, 1.46, 1.47 lib-story.php, 1.132, 1.133 lib-syndication.php, 1.44, 1.45 lib-trackback.php, 1.51, 1.52 lib-user.php, 1.48, 1.49 lib-webservices.php, 1.43, 1.44
Dirk Haun
dhaun at qs1489.pair.com
Sun Sep 21 04:37:14 EDT 2008
Update of /cvsroot/geeklog/Geeklog-1.x/system
In directory qs1489.pair.com:/tmp/cvs-serv33344/system
Modified Files:
lib-admin.php lib-comment.php lib-custom.php
lib-custom.php.dist lib-database.php lib-mbyte.php
lib-pingback.php lib-plugins.php lib-security.php
lib-sessions.php lib-story.php lib-syndication.php
lib-trackback.php lib-user.php lib-webservices.php
Log Message:
Fixed protection against direct execution on non-case sensitive file systems
Index: lib-webservices.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-webservices.php,v
retrieving revision 1.43
retrieving revision 1.44
diff -C2 -d -r1.43 -r1.44
*** lib-webservices.php 28 Jul 2008 19:35:46 -0000 1.43
--- lib-webservices.php 21 Sep 2008 08:37:12 -0000 1.44
***************
*** 33,38 ****
// $Id$
! if (strpos ($_SERVER['PHP_SELF'], 'lib-webservices.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 33,38 ----
// $Id$
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-webservices.php') !== false) {
! die('This file can not be used on its own!');
}
Index: lib-custom.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-custom.php,v
retrieving revision 1.42
retrieving revision 1.43
diff -C2 -d -r1.42 -r1.43
*** lib-custom.php 17 Aug 2008 14:16:03 -0000 1.42
--- lib-custom.php 21 Sep 2008 08:37:11 -0000 1.43
***************
*** 3,7 ****
/* Reminder: always indent with 4 spaces (no tabs). */
// +---------------------------------------------------------------------------+
! // | Geeklog 1.4 |
// +---------------------------------------------------------------------------+
// | lib-custom.php |
--- 3,7 ----
/* Reminder: always indent with 4 spaces (no tabs). */
// +---------------------------------------------------------------------------+
! // | Geeklog 1.5 |
// +---------------------------------------------------------------------------+
// | lib-custom.php |
***************
*** 21,25 ****
// | |
// +---------------------------------------------------------------------------+
! // | Copyright (C) 2000-2007 by the following authors: |
// | |
// | Authors: Tony Bibbs - tony AT tonybibbs DOT com |
--- 21,25 ----
// | |
// +---------------------------------------------------------------------------+
! // | Copyright (C) 2000-2008 by the following authors: |
// | |
// | Authors: Tony Bibbs - tony AT tonybibbs DOT com |
***************
*** 46,51 ****
// $Id$
! if (strpos ($_SERVER['PHP_SELF'], 'lib-custom.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 46,51 ----
// $Id$
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-custom.php') !== false) {
! die('This file can not be used on its own!');
}
Index: lib-user.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-user.php,v
retrieving revision 1.48
retrieving revision 1.49
diff -C2 -d -r1.48 -r1.49
*** lib-user.php 3 Aug 2008 08:05:50 -0000 1.48
--- lib-user.php 21 Sep 2008 08:37:12 -0000 1.49
***************
*** 35,40 ****
// $Id$
! if (strpos ($_SERVER['PHP_SELF'], 'lib-user.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 35,40 ----
// $Id$
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-user.php') !== false) {
! die('This file can not be used on its own!');
}
Index: lib-story.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-story.php,v
retrieving revision 1.132
retrieving revision 1.133
diff -C2 -d -r1.132 -r1.133
*** lib-story.php 20 Sep 2008 08:20:54 -0000 1.132
--- lib-story.php 21 Sep 2008 08:37:12 -0000 1.133
***************
*** 36,41 ****
// $Id$
! if (strpos ($_SERVER['PHP_SELF'], 'lib-story.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 36,41 ----
// $Id$
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-story.php') !== false) {
! die('This file can not be used on its own!');
}
Index: lib-admin.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-admin.php,v
retrieving revision 1.135
retrieving revision 1.136
diff -C2 -d -r1.135 -r1.136
*** lib-admin.php 27 Jul 2008 09:11:31 -0000 1.135
--- lib-admin.php 21 Sep 2008 08:37:11 -0000 1.136
***************
*** 36,41 ****
// $Id$
! if (strpos ($_SERVER['PHP_SELF'], 'lib-admin.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 36,41 ----
// $Id$
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-admin.php') !== false) {
! die('This file can not be used on its own!');
}
Index: lib-trackback.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-trackback.php,v
retrieving revision 1.51
retrieving revision 1.52
diff -C2 -d -r1.51 -r1.52
*** lib-trackback.php 23 May 2008 11:23:43 -0000 1.51
--- lib-trackback.php 21 Sep 2008 08:37:12 -0000 1.52
***************
*** 32,36 ****
// $Id$
! if (strpos($_SERVER['PHP_SELF'], 'lib-trackback.php') !== false) {
die('This file can not be used on its own!');
}
--- 32,36 ----
// $Id$
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-trackback.php') !== false) {
die('This file can not be used on its own!');
}
Index: lib-plugins.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-plugins.php,v
retrieving revision 1.149
retrieving revision 1.150
diff -C2 -d -r1.149 -r1.150
*** lib-plugins.php 26 Jun 2008 21:39:06 -0000 1.149
--- lib-plugins.php 21 Sep 2008 08:37:11 -0000 1.150
***************
*** 41,46 ****
*/
! if (strpos ($_SERVER['PHP_SELF'], 'lib-plugins.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 41,46 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-plugins.php') !== false) {
! die('This file can not be used on its own!');
}
Index: lib-comment.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-comment.php,v
retrieving revision 1.68
retrieving revision 1.69
diff -C2 -d -r1.68 -r1.69
*** lib-comment.php 14 Sep 2008 07:10:15 -0000 1.68
--- lib-comment.php 21 Sep 2008 08:37:11 -0000 1.69
***************
*** 36,41 ****
// $Id$
! if (strpos ($_SERVER['PHP_SELF'], 'lib-comment.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 36,41 ----
// $Id$
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-comment.php') !== false) {
! die('This file can not be used on its own!');
}
Index: lib-syndication.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-syndication.php,v
retrieving revision 1.44
retrieving revision 1.45
diff -C2 -d -r1.44 -r1.45
*** lib-syndication.php 27 Jul 2008 09:11:31 -0000 1.44
--- lib-syndication.php 21 Sep 2008 08:37:12 -0000 1.45
***************
*** 36,41 ****
$_SYND_DEBUG = false;
! if (strpos ($_SERVER['PHP_SELF'], 'lib-syndication.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 36,41 ----
$_SYND_DEBUG = false;
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-syndication.php') !== false) {
! die('This file can not be used on its own!');
}
Index: lib-custom.php.dist
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-custom.php.dist,v
retrieving revision 1.3
retrieving revision 1.4
diff -C2 -d -r1.3 -r1.4
*** lib-custom.php.dist 17 Aug 2008 14:16:03 -0000 1.3
--- lib-custom.php.dist 21 Sep 2008 08:37:11 -0000 1.4
***************
*** 3,7 ****
/* Reminder: always indent with 4 spaces (no tabs). */
// +---------------------------------------------------------------------------+
! // | Geeklog 1.4 |
// +---------------------------------------------------------------------------+
// | lib-custom.php |
--- 3,7 ----
/* Reminder: always indent with 4 spaces (no tabs). */
// +---------------------------------------------------------------------------+
! // | Geeklog 1.5 |
// +---------------------------------------------------------------------------+
// | lib-custom.php |
***************
*** 21,25 ****
// | |
// +---------------------------------------------------------------------------+
! // | Copyright (C) 2000-2007 by the following authors: |
// | |
// | Authors: Tony Bibbs - tony AT tonybibbs DOT com |
--- 21,25 ----
// | |
// +---------------------------------------------------------------------------+
! // | Copyright (C) 2000-2008 by the following authors: |
// | |
// | Authors: Tony Bibbs - tony AT tonybibbs DOT com |
***************
*** 46,51 ****
// $Id$
! if (strpos ($_SERVER['PHP_SELF'], 'lib-custom.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 46,51 ----
// $Id$
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-custom.php') !== false) {
! die('This file can not be used on its own!');
}
Index: lib-mbyte.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-mbyte.php,v
retrieving revision 1.20
retrieving revision 1.21
diff -C2 -d -r1.20 -r1.21
*** lib-mbyte.php 16 Feb 2008 16:45:03 -0000 1.20
--- lib-mbyte.php 21 Sep 2008 08:37:11 -0000 1.21
***************
*** 32,36 ****
// $Id$
! if (strpos($_SERVER['PHP_SELF'], 'lib-mbyte.php') !== false) {
die('This file can not be used on its own!');
}
--- 32,36 ----
// $Id$
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-mbyte.php') !== false) {
die('This file can not be used on its own!');
}
Index: lib-pingback.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-pingback.php,v
retrieving revision 1.14
retrieving revision 1.15
diff -C2 -d -r1.14 -r1.15
*** lib-pingback.php 18 May 2008 15:54:36 -0000 1.14
--- lib-pingback.php 21 Sep 2008 08:37:11 -0000 1.15
***************
*** 32,37 ****
// $Id$
! if (strpos ($_SERVER['PHP_SELF'], 'lib-pingback.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 32,37 ----
// $Id$
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-pingback.php') !== false) {
! die('This file can not be used on its own!');
}
Index: lib-security.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-security.php,v
retrieving revision 1.74
retrieving revision 1.75
diff -C2 -d -r1.74 -r1.75
*** lib-security.php 13 Aug 2008 07:22:26 -0000 1.74
--- lib-security.php 21 Sep 2008 08:37:11 -0000 1.75
***************
*** 64,69 ****
$_SEC_VERBOSE = false;
! if (strpos ($_SERVER['PHP_SELF'], 'lib-security.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 64,69 ----
$_SEC_VERBOSE = false;
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-security.php') !== false) {
! die('This file can not be used on its own!');
}
Index: lib-database.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-database.php,v
retrieving revision 1.53
retrieving revision 1.54
diff -C2 -d -r1.53 -r1.54
*** lib-database.php 14 Aug 2008 16:52:02 -0000 1.53
--- lib-database.php 21 Sep 2008 08:37:11 -0000 1.54
***************
*** 39,44 ****
*/
! if (strpos ($_SERVER['PHP_SELF'], 'lib-database.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 39,44 ----
*/
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-database.php') !== false) {
! die('This file can not be used on its own!');
}
Index: lib-sessions.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/system/lib-sessions.php,v
retrieving revision 1.46
retrieving revision 1.47
diff -C2 -d -r1.46 -r1.47
*** lib-sessions.php 8 Jul 2008 18:42:54 -0000 1.46
--- lib-sessions.php 21 Sep 2008 08:37:12 -0000 1.47
***************
*** 42,47 ****
$_SESS_VERBOSE = false;
! if (strpos ($_SERVER['PHP_SELF'], 'lib-sessions.php') !== false) {
! die ('This file can not be used on its own!');
}
--- 42,47 ----
$_SESS_VERBOSE = false;
! if (strpos(strtolower($_SERVER['PHP_SELF']), 'lib-sessions.php') !== false) {
! die('This file can not be used on its own!');
}
More information about the geeklog-cvs
mailing list