Slash Boxes

Slash Open Source Project

Ask SlashCode: Preferred Distro for Slash?

posted by jamiemccarthy on 04:00 PM October 20th, 2005   Printer-friendly   Email story
Justin Mazzi writes "Those of use eager to install slashcode come across what I would assume to be a common question. What is the best distro for running slashcode? Install seems possible on many different systems, but I'm looking for the best/most compatible." I think once you have the AMP installed the exact flavor of L doesn't much matter, but feel free to share positive/negative experiences.


posted by jamiemccarthy on 02:07 PM October 19th, 2005   Printer-friendly   Email story
Lord Satri writes "Probably the first brand-new slash site using the CSS code, we are pleased to announce the launch of As its name suggests, SlashGISRS target the Geographic Information Systems and Remote Sensing communities. SlashGISRS is a direct sibling of Applied-GIS-RS, a 1000+ members mailing list. Amongst many features offered such as the slash moderation system, slashgisrs is not bloated by ads and is managed by a non-for-profit organization. Read the full announcement here."

Slash: Slash + CSS

posted by vroom on 09:43 AM September 6th, 2005   Printer-friendly   Email story

We've been working for some time now on getting Slash to utilize CSS and also updating it's old crufty HTML while we're at it. We've moved Slash to HTML Strict 4.01. and are currently running on this code. You can take a look at the markup, or log in and take a look around.

If you'd like to see what Slashdot might look like you can activate the Slashdot stylesheet on in Firefox by choosing View > Page Style > Slashdot. I'm sure you can do the same thing with other browsers but you're on your own for the specifics of how to do so.

Slash: Full Disclosure and Patches on CVS Vulnerability

posted by jamiemccarthy on 02:50 PM December 20th, 2004   Printer-friendly   Email story
The "security issue" described on the morning of Dec. 15th is actually two separate and unrelated cross-site scripting (XSS) bugs. We're disclosing all of what we know about them at this point to allow site admins to patch sites which cannot reasonably be upgraded to the latest, fixed version of the code, the Dec. 8th build R_2_5_0_41.

Both of these issues were found by Michael Krax who we understand will be publishing something about them shortly. Again, we thank Mr. Krax for responsibly reporting these issues to us and letting us give administrators running Slash time to upgrade their code.

The first security bug was introduced to Slash in May 2002. The second was introduced in October 2004. Both have been fixed in CVS since Dec. 8, 2004. Neither is present in our last official release, version 2.2.6.

Slash: Temporary Workaround For CVS Vulnerability

posted by jamiemccarthy on 03:05 PM December 16th, 2004   Printer-friendly   Email story
We've gotten a couple of questions about whether there will be a workaround for site admins who don't want to upgrade into x_2_5_* CVS but who don't want to just wait until the patch comes out next week.

For security reasons, we don't want to reveal too much of what's going on until everyone has had a chance to upgrade, but we will say that you can temporarily make your site immune to the vulnerability by removing the symlinks to and

Today's News | October 21 | October 19  >