diff options
| author |   Gunnar Wrobel <wrobel@gentoo.org> | 2008-01-08 06:29:52 +0000 |
|---|---|---|
| committer | Gunnar Wrobel <wrobel@gentoo.org> | 2008-01-08 06:29:52 +0000 |
| commit | 78a8e229dff5d519347907f6831644ebab11a0af (patch) | |
| tree | 38b0c962be6c1733adf9fe1bf2fe52a7635d493e /www-apps/wordpress | |
| parent | ocamlopt use flag is still used; added it back (diff) | |
| download | gentoo-2-78a8e229dff5d519347907f6831644ebab11a0af.tar.gz gentoo-2-78a8e229dff5d519347907f6831644ebab11a0af.tar.bz2 gentoo-2-78a8e229dff5d519347907f6831644ebab11a0af.zip | |
Added wordpress-2.3.2 to the tree, removed insecure versions (sec issues
#202071 and #202779).
(Portage version: 2.1.4_rc7)
Diffstat (limited to 'www-apps/wordpress')
| -rw-r--r-- | www-apps/wordpress/ChangeLog | 12 | ||||
| -rw-r--r-- | www-apps/wordpress/files/digest-wordpress-2.2.3 | 3 | ||||
| -rw-r--r-- | www-apps/wordpress/files/digest-wordpress-2.3 | 3 | ||||
| -rw-r--r-- | www-apps/wordpress/files/digest-wordpress-2.3.1 | 3 | ||||
| -rw-r--r-- | www-apps/wordpress/files/digest-wordpress-2.3.2 | 3 | ||||
| -rw-r--r-- | www-apps/wordpress/files/postinstall-en.txt | 16 | ||||
| -rw-r--r-- | www-apps/wordpress/files/postupgrade-en.txt | 17 | ||||
| -rw-r--r-- | www-apps/wordpress/wordpress-2.2.3.ebuild | 89 | ||||
| -rw-r--r-- | www-apps/wordpress/wordpress-2.3.2.ebuild (renamed from www-apps/wordpress/wordpress-2.3.1.ebuild) | 4 | ||||
| -rw-r--r-- | www-apps/wordpress/wordpress-2.3.ebuild | 83 |
10 files changed, 48 insertions, 185 deletions
diff --git a/www-apps/wordpress/ChangeLog b/www-apps/wordpress/ChangeLog index c144f3f30b62..f6a6ad18dbd4 100644 --- a/www-apps/wordpress/ChangeLog +++ b/www-apps/wordpress/ChangeLog @@ -1,6 +1,14 @@ # ChangeLog for www-apps/wordpress -# Copyright 2000-2007 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/www-apps/wordpress/ChangeLog,v 1.87 2007/10/30 12:19:59 wrobel Exp $ +# Copyright 2000-2008 Gentoo Foundation; Distributed under the GPL v2 +# $Header: /var/cvsroot/gentoo-x86/www-apps/wordpress/ChangeLog,v 1.88 2008/01/08 06:29:52 wrobel Exp $ + +*wordpress-2.3.2 (08 Jan 2008) + + 08 Jan 2008; Gunnar Wrobel <wrobel@gentoo.org> files/postinstall-en.txt, + files/postupgrade-en.txt, -wordpress-2.2.3.ebuild, -wordpress-2.3.ebuild, + -wordpress-2.3.1.ebuild, +wordpress-2.3.2.ebuild: + Added wordpress-2.3.2 to the tree, removed insecure versions (sec issues + #202071 and #202779). *wordpress-2.3.1 (30 Oct 2007) diff --git a/www-apps/wordpress/files/digest-wordpress-2.2.3 b/www-apps/wordpress/files/digest-wordpress-2.2.3 deleted file mode 100644 index d62d4654c54a..000000000000 --- a/www-apps/wordpress/files/digest-wordpress-2.2.3 +++ /dev/null @@ -1,3 +0,0 @@ -MD5 98c1e611f8533d4fe4e8f995b8d83110 wordpress-2.2.3.tar.gz 824904 -RMD160 40e44c5950ee3072ab2abb0a97fc867c0cf780e6 wordpress-2.2.3.tar.gz 824904 -SHA256 6af35c864417fe3e5d4b2b2485cdedec7879f5f170088de79a71bc8cfb54110f wordpress-2.2.3.tar.gz 824904 diff --git a/www-apps/wordpress/files/digest-wordpress-2.3 b/www-apps/wordpress/files/digest-wordpress-2.3 deleted file mode 100644 index 8b911094b19c..000000000000 --- a/www-apps/wordpress/files/digest-wordpress-2.3 +++ /dev/null @@ -1,3 +0,0 @@ -MD5 36ffea2a049a071342efda985feedf31 wordpress-2.3.tar.gz 870766 -RMD160 fa9d1bdc75aca40a870cddc7e91cee8df5aff559 wordpress-2.3.tar.gz 870766 -SHA256 34c7589b7d40281e3f6f8ac6f4172e69c28b3c93cf394490b73eec55dccc8741 wordpress-2.3.tar.gz 870766 diff --git a/www-apps/wordpress/files/digest-wordpress-2.3.1 b/www-apps/wordpress/files/digest-wordpress-2.3.1 deleted file mode 100644 index 5e4bb9b39578..000000000000 --- a/www-apps/wordpress/files/digest-wordpress-2.3.1 +++ /dev/null @@ -1,3 +0,0 @@ -MD5 bd53264cbe80e470c5a9bc2cf7aa85e4 wordpress-2.3.1.tar.gz 883535 -RMD160 9136f1425e9ea377501c753749818d463c677713 wordpress-2.3.1.tar.gz 883535 -SHA256 20004580fab20c8801ca7a86c6d57db0bc794f2b59ab583aa6b82457c67f8cf7 wordpress-2.3.1.tar.gz 883535 diff --git a/www-apps/wordpress/files/digest-wordpress-2.3.2 b/www-apps/wordpress/files/digest-wordpress-2.3.2 new file mode 100644 index 000000000000..ea0f7201d527 --- /dev/null +++ b/www-apps/wordpress/files/digest-wordpress-2.3.2 @@ -0,0 +1,3 @@ +MD5 7489b5f2433f3b2096aa02bbca09b069 wordpress-2.3.2.tar.gz 884822 +RMD160 2432bf7a508d93e4d21e5a5d73518931dc9b936d wordpress-2.3.2.tar.gz 884822 +SHA256 fb14e3d41964091be03772941d657dfba49f2598c14672466a39520e95272168 wordpress-2.3.2.tar.gz 884822 diff --git a/www-apps/wordpress/files/postinstall-en.txt b/www-apps/wordpress/files/postinstall-en.txt index 695840d5cd17..ef25510f5b7f 100644 --- a/www-apps/wordpress/files/postinstall-en.txt +++ b/www-apps/wordpress/files/postinstall-en.txt @@ -31,3 +31,19 @@ Once this is done, you can log in to WordPress at http://${VHOST_HOSTNAME}/${VHOST_APPDIR} ------------------------------------------------------------------------ +!!!!!!!!! SECURITY WARNING !!!!!!!!!!! + +Wordpress has had a history of serious security flaws. Any application +with less widespread use but the same amount of security issues would +have been removed from the tree. + +We decided to keep the application in the unstable portage tree so that +it get's some level of attention from our security team. Currently +you can expect us to react within 40 days of a reported security +problem. + +This still means that you might open up your installation to hackers for +about a month after an issue has been made public. This is a severe +risk and you should keep a close eye on the common security trackers so +that you are able to fix problems with your installation yourself if +required. diff --git a/www-apps/wordpress/files/postupgrade-en.txt b/www-apps/wordpress/files/postupgrade-en.txt index bc0e55fc7a35..e205c82a7a42 100644 --- a/www-apps/wordpress/files/postupgrade-en.txt +++ b/www-apps/wordpress/files/postupgrade-en.txt @@ -11,3 +11,20 @@ http://${VHOST_HOSTNAME}/${VHOST_APPDIR}/wp-admin/upgrade.php and follow the instructions on the screen. ------------------------------------------------------------------------ +!!!!!!!!! SECURITY WARNING !!!!!!!!!!! + +Wordpress has had a history of serious security flaws. Any application +with less widespread use but the same amount of security issues would +have been removed from the tree. + +We decided to keep the application in the unstable portage tree so that +it get's some level of attention from our security team. Currently +you can expect us to react within 40 days of a reported security +problem. + +This still means that you might open up your installation to hackers for +about a month after an issue has been made public. This is a severe +risk and you should keep a close eye on the common security trackers so +that you are able to fix problems with your installation yourself if +required. + diff --git a/www-apps/wordpress/wordpress-2.2.3.ebuild b/www-apps/wordpress/wordpress-2.2.3.ebuild deleted file mode 100644 index d5bfb42fe9fe..000000000000 --- a/www-apps/wordpress/wordpress-2.2.3.ebuild +++ /dev/null @@ -1,89 +0,0 @@ -# Copyright 1999-2007 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/www-apps/wordpress/wordpress-2.2.3.ebuild,v 1.1 2007/09/08 17:02:42 beandog Exp $ - -inherit webapp eutils depend.php - -DESCRIPTION="Wordpress php and mysql based CMS system." -HOMEPAGE="http://wordpress.org/" -SRC_URI="http://www.wordpress.org/${P}.tar.gz" -LICENSE="GPL-2" -KEYWORDS="~amd64 ~hppa ~ppc ~ppc64 ~sparc ~x86" -IUSE="" - -S="${WORKDIR}/${PN}" - -need_php - -pkg_setup() { - webapp_pkg_setup - - require_php_with_any_use mysql mysqli - require_php_with_use pcre -} - -src_install() { - local docs="license.txt readme.html" - - webapp_src_preinst - - einfo "Installing main files" - cp wp-config-sample.php wp-config.php - cp -r * ${D}${MY_HTDOCSDIR} - einfo "Done" - - ewarn - ewarn Please make sure you have register_globals = off set in your /etc/apache2/php.ini file - ewarn If this is not an option for your web server and you NEED it set to on, then insert the following in your WordPress .htaccess file: - ewarn php_flag register_globals off - ewarn - - ewarn - ewarn You will need to create a table for your WordPress database. This - ewarn assumes you have some knowledge of MySQL, and already have it - ewarn installed and configured. If not, please refer to - ewarn the Gentoo MySQL guide at the following URL: - ewarn http://www.gentoo.org/doc/en/mysql-howto.xml - ewarn Log in to MySQL, and create a new database called - ewarn "wordpress". From this point, you will need to edit - ewarn your wp-config.php file in $DocumentRoot/wordpress/ - ewarn and point to your database. Once this is done, you can log in to - ewarn WordPress at http://localhost/wordpress - ewarn - - ewarn - ewarn If you are upgrading from a previous version BACK UP your - ewarn database. Once you are done with that, browse to - ewarn http://localhost/wordpress/wp-admin/upgrade.php and follow - ewarn the instructions on the screen. - ewarn - - # handle documentation files - # - # NOTE that doc files go into /usr/share/doc as normal; they do NOT - # get installed per vhost! - - dodoc ${docs} - for doc in ${docs} INSTALL; do - rm -f ${doc} - done - - # Identify the configuration files that this app uses - # User can want to make changes to these! - webapp_serverowned ${MY_HTDOCSDIR}/index.php - #webapp_serverowned ${MY_HTDOCSDIR}/wp-layout.css - webapp_serverowned ${MY_HTDOCSDIR}/wp-admin/menu.php - webapp_serverowned ${MY_HTDOCSDIR} - webapp_configfile ${MY_HTDOCSDIR}/wp-config.php - # Identify any script files that need #! headers adding to run under - # a CGI script (such as PHP/CGI) - # - # for wordpress, we *assume* that all .php files need to have CGI/BIN - # support added - - # post-install instructions - #webapp_postinst_txt en ${FILESDIR}/1.2/postinstall-en.txt - - # now strut stuff - webapp_src_install -} diff --git a/www-apps/wordpress/wordpress-2.3.1.ebuild b/www-apps/wordpress/wordpress-2.3.2.ebuild index af17d91a54c7..95efa807024e 100644 --- a/www-apps/wordpress/wordpress-2.3.1.ebuild +++ b/www-apps/wordpress/wordpress-2.3.2.ebuild @@ -1,6 +1,6 @@ -# Copyright 1999-2007 Gentoo Foundation +# Copyright 1999-2008 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/www-apps/wordpress/wordpress-2.3.1.ebuild,v 1.1 2007/10/30 12:19:59 wrobel Exp $ +# $Header: /var/cvsroot/gentoo-x86/www-apps/wordpress/wordpress-2.3.2.ebuild,v 1.1 2008/01/08 06:29:52 wrobel Exp $ inherit webapp eutils depend.php diff --git a/www-apps/wordpress/wordpress-2.3.ebuild b/www-apps/wordpress/wordpress-2.3.ebuild deleted file mode 100644 index 01d0a46c3313..000000000000 --- a/www-apps/wordpress/wordpress-2.3.ebuild +++ /dev/null @@ -1,83 +0,0 @@ -# Copyright 1999-2007 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/www-apps/wordpress/wordpress-2.3.ebuild,v 1.1 2007/10/08 12:55:42 anant Exp $ - -inherit webapp eutils depend.php - -DESCRIPTION="Wordpress php and mysql based CMS system." -HOMEPAGE="http://wordpress.org/" -SRC_URI="http://www.wordpress.org/${P}.tar.gz" -LICENSE="GPL-2" -KEYWORDS="~amd64 ~hppa ~ppc ~ppc64 ~sparc ~x86" -IUSE="" - -S="${WORKDIR}/${PN}" - -need_php - -pkg_setup() { - webapp_pkg_setup - - require_php_with_any_use mysql mysqli - require_php_with_use pcre -} - -src_install() { - local docs="license.txt readme.html" - - webapp_src_preinst - - einfo "Installing main files" - cp wp-config-sample.php wp-config.php - cp -r * "${D}${MY_HTDOCSDIR}" - einfo "Done" - - ewarn " " - ewarn "Please make sure you have register_globals = off set in your" - ewarn "/etc/apache2/php.ini file " - ewarn "If this is not an option for your web server and you NEED it" - ewarn "set to on, then insert the following in your WordPress " - ewarn ".htaccess file: " - ewarn "php_flag register_globals off " - ewarn " " - - ewarn " " - ewarn "You will need to create a table for your WordPress database." - ewarn "This assumes you have some knowledge of MySQL, and already " - ewarn "have it installed and configured. If not, please refer to " - ewarn "the Gentoo MySQL guide at the following URL: " - ewarn "http://www.gentoo.org/doc/en/mysql-howto.xml " - ewarn "Log in to MySQL, and create a new database called " - ewarn "'wordpress'. From this point, you will need to edit your " - ewarn "wp-config.php file in $DocumentRoot/wordpress/ and point to " - ewarn "your database. Once this is done, you can log in to " - ewarn "WordPress at http://localhost/wordpress " - ewarn " " - - ewarn " " - ewarn "If you are upgrading from a previous version BACK UP your " - ewarn "database. Once you are done with that, browse to " - ewarn "http://localhost/wordpress/wp-admin/upgrade.php and follow " - ewarn "the instructions on the screen. " - ewarn " " - - # handle documentation files - # - # NOTE that doc files go into /usr/share/doc as normal; they do NOT - # get installed per vhost! - - dodoc "${docs}" - for doc in "${docs}" INSTALL; do - rm -f "${doc}" - done - - # Identify the configuration files that this app uses - # User can want to make changes to these! - webapp_serverowned "${MY_HTDOCSDIR}/index.php" - webapp_serverowned "${MY_HTDOCSDIR}/wp-admin/menu.php" - webapp_serverowned "${MY_HTDOCSDIR}" - webapp_configfile "${MY_HTDOCSDIR}/wp-config.php" - - # now strut stuff - webapp_src_install -} |