1

(95 replies, posted in News)

good suggestions, there's more resources on PunRes. thanks a alot. smile

Smartys wrote:

1. 1.3 will have SEF URLs built in. For 1.2, you need to use a mod (check out PunRes)
2. With the right mod_rewrite rules it should be

In any case, if you have any more questions, it would be great if you could create a new topic for them smile

2

(95 replies, posted in News)

ok, i get it, sorry for misunderstanding.. smile
btw, i still have mod rewrite problem for punbb, could you feel free to help? the below is the problem:

1). I have enabled mod rewrite on my host, how to open rewrite function for punbb, seems like we need edit some files, not only .htaccess. smile

2). it it  possible to rewrite whole punbb site like as the below:

linux.abc.com/viewforum.php?id=1

rewrite to:

linux.abc.com/c1

and

linux.abc.com/viewtopic.php?id=1

rewrite to

linux.ab.com/cmd/1.html


wait ur message. thanks.

if u have updated to the latest version, u need not worry about mod rewrite vulnerability.

twohawks wrote:

qie, if you are using mod-rewrite, and you are saying someone is unwantedly accessing your site and collecting your files, or attaching to them,  theres two things I have gleaned at appache...

1) you need to be careful when using mod-rewrite not to unwittingly allow someone to be able to rewrite your urls!  I am not an expert, you should reseach this if you use mod-rewrite (try webmasterworld ;^)

2) theres a known mod_rewrite vulnerability... I was just reading about that at apache (I forget where - but you can easily find it (probably on the front page) I am sure.  They are urging upgrade/patching (I forget which).  I didn't read everything about it because I am not running my own server right now (blew up a while back and haven't had time to rebuild it 8^P), but I found it while studing up on mod_rewrite.  I would say go to apache and research this, it may be your issue.

I think it was mentioned that one could also try using some other protection codes in .htaccess if updating apache is not acceptable... just cannot recall clearly.  Try using all search words "mod_rewrite subdomain redirect vulnerability" (without the quotes of course) -google- and -webmasterworld- especially.
Hope this helps.

--my teh brain hurts today :^$
Cheers,

4

(95 replies, posted in News)

Rickard wrote:

..
As some of you might have noticed, I didn't update the copyright notice to include the year 2006 because that would affect all scripts (the GPL preamble) and make the diff's huge. It'll be in 1.3.

This means the punbb will change to copyrighted application in the next 1.4 version?