0.5 is heavily underway, there will be major changes (for the better) and more options than previous versions, I have also changed how module files are called and it is now seamless and should work regardless of the module you are in (That means coppermine and EDL 2.0-2.1 and on and on, etc)
I will probably release a 0.4a in between so users can update their code and tweak their .htaccess file to be more efficient and take less resource time.
As outlined in an article on my site, 0.5 will offer a unique install experience that allows you to choose normal file-based NExtGEn compatibility or use a DB based NExtGEn storage method, this method is still being tested but looks very promising for those who would like a GoogleTap administrative panel type display. For those who will udpate and switch to DB, it will allow you to choose which GT Modules to import to the DB NExtGEn install.
Though 0.5 is underway, I am simultaneously securing my site my own way, I am/have migrated/ing to a complete PHP sessions based authentication/session system for nuke (needless to say, #$%@#$ sweetness!), goodbye base64_decode, cookiedecode and those other heart-breaking hacker encouraging functions. Sessions based admin/user management has been a challenge but is around 80% 85% complete and will offer functionality to nuke that has yet to be seen. I will try to package this up for the community once I am sure all of the kinks are worked out, it is sure to be a good (Good as in Beer) thing.
One thing in general I will say that is a little off topic, nuke and its path need to be thought of, just starting at the basics (i.e the flow of the site, etc), for example how many includes to a mainfile.php are really needed, how many checks of the db for authentication are really needed, what is enough and what is too much? Just some food for thought, for more information on 0.5, please visit gt.audioslaved.com. If you have questions I am around and the other NExtGEn users/contributors are a very cordial and helpful bunch.
One last thing, I haven't been around really since about Dec 2003, so for those that don't know me, I say hi and welcome you to the nuke/cpgnuke/nsnnuke/nukeplatinum/nukegold, and the other great nuke's I have forgotten! For those that do know me, how the hell are ya? Good to see you all again!
Will you be including patched files for all nuke forks?
_________________ Paul Laudanski, Microsoft MVP Windows-Security
CastleCops: [de] [en] [wiki]
Audioslaved Elite Nuker
Joined: Jun 14, 2003
Posts: 420
Location: Hawaii and The Fan Forum
Posted:
Thu Jun 10, 2004 2:25 pm
Are you referring to NExtGEn 0.5 or a possible release of sessions?
NExtGEn 0.5 will probably not contain any system files except mainfile.php (function worth of code), header.php (call to function) and footer.php (call to function)
The mainfile.php will be updated with the latest sec fixes where they apply.
As far as forks go, I really don't have time for releasing a NExtGen for all versions of regular nuke (6.5 - 7.3) and the forks. Perhaps after 0.5 is released I can go back and try to provide a few forks with a Tap.
As far as the sessions, that is a few months off here, I have to perfect my end first, the last thing I would want to do is release any code I was not 100% sure about every line I added, changed, updated, etc.
The whole thing is a major rewrite in some area's so I am expecting many will not want to even bother with such a task, but those that have little else to do may enjoy such a challenge.
As far as forks go there, I really would love to see all nuke's at least be able to handle the capability, but that is many many more months off of even where I am now and too far to paint a perfect picture. I would love to release a sessions based addon for all nuke's (big and small) but only time will tell, and if and when that may happens, I would ensure my code was secure.
Quote:
Will you be including patched files for all nuke forks?
The forks themselves would have to be customized to the code the forks are using, so we are looking at about 5 different systems of sessions not to mention the differences for all the sub-versions.
The only nukers thus far to begin such a challenge to my knowledge are cpgnuke, they from what I have seen are really putting their vision to good use and have incorporated admin-based sessions.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
