headers
Chuck Hagenbuch | 2 May 2006 05:55
Favicon
Gravatar

SECURITY: exploit against out of date Horde versions

Folks, if you are running Horde 3.0 or later, and you have not updated  
to the latest security releases, PLEASE go right now to  
http://www.horde.org/, read the top blurb labeled "Security Releases",  
and upgrade to the appropriate version IMMEDIATELY.

If for any reason you are hesitant to upgrade, then replace  
horde/services/help/index.php with this file:
   http://cvs.horde.org/co.php?r=2.86&p=1&f=horde%2Fservices%2Fhelp%2Findex.php

It's from HEAD but should work with all Horde 3.x versions for now and  
will protect you.

There are active scans for this vulnerability, and far too many people  
are being caught off guard by it. Please take the time to upgrade now.

Thank you,
-chuck

-- 
"we are plastered to the windshield of the bus that is time." - Chris

--

-- 
Horde announcements mailing list
You are subscribed to this list as: gcha-announce <at> m.gmane.org
To unsubscribe, mail: announce-unsubscribe <at> lists.horde.org
Permalink | Reply | 0 comments |
headers
Chuck Hagenbuch | 2 May 2006 06:12
Favicon
Gravatar

Google Summer of Code 2006!

Calling all students!

Horde is extremely happy to be a mentoring organization once again for  
the Google Summer of Code program. It's a great way to spend the  
summer working on your favorite open source project for pretty darn  
good compensation.

Horde has our "ideas page" up here: http://wiki.horde.org/SummerOfCode2006
and you can sign up with google here:  
http://code.google.com/soc/student_step1.html

We had some promising work done last year, and I have even higher  
hopes for working with you. The Horde mentors will include myself and  
several of the other core developers, and we're very excited to get to  
bring some folks along in Horde and general open source programming.

I look forward to working with some of you,
-chuck

-- 
"we are plastered to the windshield of the bus that is time." - Chris

--

-- 
Horde announcements mailing list
You are subscribed to this list as: gcha-announce <at> m.gmane.org
To unsubscribe, mail: announce-unsubscribe <at> lists.horde.org
Permalink | Reply | 0 comments |
headers
Jan Schneider | 2 May 2006 14:31
Favicon
Gravatar

Ingo H3 (1.1.1) (final)

The Horde Team is pleased to announce the final release of the Ingo Email
Filter Rules Manager version H3 (1.1.1).

Ingo is an email-filter management application. It is fully internationalized,
integrated with Horde and the IMP Webmail client, and supports both
server-side (Sieve, procmail, maildrop) and client-side (IMAP) rule creation

--

-- 
Horde announcements mailing list
You are subscribed to this list as: gcha-announce <at> m.gmane.org
To unsubscribe, mail: announce-unsubscribe <at> lists.horde.org
Permalink | Reply | 0 comments |
headers
Jan Schneider | 2 May 2006 15:24
Favicon
Gravatar

Turba H3 (2.1.1) (final)

The Horde Team is pleased to announce the final release of the Turba Contact
Manager version H3 (2.1.1).

Turba is the Horde contact management application. It is a production level
address book, and makes heavy use of the Horde framework to provide
integration with IMP and other Horde applications.

Major changes compared to the Turba H3 (2.1) version are:
    * Fixed losing sessions when editing address books.
    * Added upgrade script for Oracle to upgrade from 1.2 to 2.x.
    * Fixes and improvements to the create_default_histories.php and
      public_to_horde_share.php scripts.
    * Updated Danish, Dutch, German, Greek, Estonian and Japanese translations.
    * Small bugfixes and improvements.

The full list of changes (from version H3 (2.1)) can be viewed here:

http://cvs.horde.org/diff.php/turba/docs/CHANGES?r1=1.181.2.68&r2=1.181.2.80&ty=h

The Turba H3 (2.1.1) distribution is available from the following locations:

    ftp://ftp.horde.org/pub/turba/turba-h3-2.1.1.tar.gz
    http://ftp.horde.org/pub/turba/turba-h3-2.1.1.tar.gz

Patches against version H3 (2.1) are available at:

    ftp://ftp.horde.org/pub/turba/patches/patch-turba-h3-2.1-h3-2.1.1.gz
    http://ftp.horde.org/pub/turba/patches/patch-turba-h3-2.1-h3-2.1.1.gz

Or, for quicker access, download from your nearest mirror:
(Continue reading)

Permalink | Reply | 0 comments |
headers
Jan Schneider | 2 May 2006 15:47
Favicon
Gravatar

Re: [ingo] Ingo H3 (1.1.1) (final)

The announcement message was stripped once again, looks like our  
release management script doesn't like Ingo, sorry about that. Here's  
the complete announcement:

The Horde Team is pleased to announce the final release of the Ingo Email
Filter Rules Manager version H3 (1.1.1).

Ingo is an email-filter management application. It is fully internationalized,
integrated with Horde and the IMP Webmail client, and supports both
server-side (Sieve, procmail, maildrop) and client-side (IMAP) rule creation.

Major changes compared to the Ingo H3 (1.1) version are:
     * Restored backward compatibility with Horde 3.0.x.
     * Enabled the filter setting to stop further filtering by default.
     * Small bug fixes and improvements.
     * New translations: Estonian, Greek.
     * Updated translations: Danish, Dutch, German.

The full list of changes (from version H3 (1.1)) can be viewed here:

http://cvs.horde.org/diff.php/ingo/docs/CHANGES?r1=1.55.2.39&r2=1.55.2.49&ty=h

The Ingo H3 (1.1.1) distribution is available from the following locations:

     ftp://ftp.horde.org/pub/ingo/ingo-h3-1.1.1.tar.gz
     http://ftp.horde.org/pub/ingo/ingo-h3-1.1.1.tar.gz

Patches against version H3 (1.1) are available at:

     ftp://ftp.horde.org/pub/ingo/patches/patch-ingo-h3-1.1-h3-1.1.1.gz
(Continue reading)

Permalink | Reply | 0 comments |
headers
Jan Schneider | 5 May 2006 13:14
Favicon
Gravatar

Vacation H3 (3.0) (final)

The Horde Team is pleased to announce the final release of the Vacation
Auto-Responding Manager version H3 (3.0).

Vacation is a Horde module for managing user e-mail "vacation notices" or
"auto-responders." It works via a local vacation program and the .forward
style forwarding mechanism supported by several popular mailers.

Right now, Vacation provides fairly complete support for managing .forward
style vacation notices on Sendmail or Courier mail based systems via an FTP
transport. It also has some support for LDAP, Qmail, and Exim SQL based
servers.

The major changes compared to the Vacation H3 (3.0-RC1) version are:
    * Allow to set encryption type for SQL driver.
    * Fixed realm support.
    * Added Greek translation.
    * Updated Danish, German, and Italian translations.
    * Minor bug fixes.

The major changes compared to the Vacation 2.2 versions are:
    * Compatible with Horde 3 and PHP 5.
    * Show current vacation messsage.
    * Configurable default vacation message.
    * Added an LDAP driver.
    * Several driver improvements.
    * Added Bulgarian, Czech, and Persian translations.

The full list of changes (from version 2.2.2) can be viewed here:

http://cvs.horde.org/diff.php/vacation/docs/CHANGES?r1=1.1.1.1.2.26&r2=1.57&ty=h
(Continue reading)

Permalink | Reply | 0 comments |
headers
slusarz | 18 May 2006 17:18
Favicon
Gravatar

MIMP H3 (1.0-RC2)

The Horde Team is pleased to announce the second release candidate of the MIMP
Webmail Client version H3 (1.0-RC2).

MIMP is a project to create a version of IMP suitable for mobile devices such
as WAP phones or PDAs. Basic IMP functionality is implemented including mailbox
viewing and paging, viewing messages, deleting, replying, forwarding, and
composing new messages.

This is a preview version that should not be used on production
systems.  This version is considered feature complete but a few bugs may still
exist in the code.

We encourage widespread testing and feedback via the mailing lists or our bug
tracking system.  Updated translations are very welcome, though some strings
will still change before the final release.

The MIMP H3 (1.0-RC2) distribution is available from the following locations:

    ftp://ftp.horde.org/pub/mimp/mimp-h3-1.0-rc2.tar.gz
    http://ftp.horde.org/pub/mimp/mimp-h3-1.0-rc2.tar.gz

Or, for quicker access, download from your nearest mirror:

    http://www.horde.org/mirrors.php

MD5 sums for the packages are as follows:

    50e59d50ae47967b9656ef9973678f06  mimp-h3-1.0-rc2.tar.gz

Have fun!
(Continue reading)

Permalink | Reply | 0 comments |

Gmane