Stories
Slash Boxes
Comments

Slashcode

Slash Open Source Project

Stuff

This discussion has been archived. No new comments can be posted.

Full disclosure on Friday's security issue, and new patch More | Login

The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

Without JavaScript enabled, you might want to use the classic discussion system instead. If you login, you can remember this preference.

How's the new release coming ? (Score:1)

by penang (7873)

To all it may concern:

Just went to the slashcode place at http://sourceforge.net/project/showfiles.php?group _id=4421 [sourceforge.net] and I couldn't find any new package commit.

The latest package listed there is Bundle-Slash, version 2.52, dated 2006-08-18

And the latest Slashcode listed there is version 2.1.1 dated 2001-10-30

Would someone please kindly point me to the most updated version, containing the fix that is mentioned in the main message?

Thank you !
- Re: (Score:0)
  
  by Anonymous Coward
  
  If you have an old version of slashcode installed, you should follow the instructions in the article and patch it manually.
  
  If you have a recent version of slashcode, you must have gotten it via CVS.
  
  This page describes anonymous CVS access: http://sourceforge.net/cvs/?group_id=4421 [sourceforge.net]
Slashdot History Part II (Score:0)

by Anonymous Coward

I love slashdot and I like slashcode. Please, I mean no disrespect for bringing up the following thread. I do not mean to give any weight to one side of the argument (prepared statements) or the other (sanitized data access layers). Personally, I feel both arguments are very strong.

I just think the following thread is relevant to this article. And it may perhaps help code authors and contributors to think about future SQL injection problems. (In slashcode and other code.)

http://meta.slashdot.org/comments [slashdot.org]

Get More Comments