2019-06-10, 11:09 PM
https://github.com/mybb/mybb/commit/44fc...0e05355834
Can you confirm that all the vulns posted in the MyBB blog can be fixed by those commits?
How can you improve the upgrade experience for admins that simply want to keep their forums secure from exploits? May I please suggest that you label clearly security commits.
Not everyone is going to immediately do an upgrade. There are solid reasons to wait. One is that there could be bugs with the upgrade process. Another is that an upgrade might effect existing plugins. And for me it's about the fact I can't use the upgrade script at all anymore because my posts table is too large and it will timeout during the process and destroy my site.
So for those reasons can you please simplify the labeling of exploit patches?
Can you confirm that all the vulns posted in the MyBB blog can be fixed by those commits?
How can you improve the upgrade experience for admins that simply want to keep their forums secure from exploits? May I please suggest that you label clearly security commits.
Not everyone is going to immediately do an upgrade. There are solid reasons to wait. One is that there could be bugs with the upgrade process. Another is that an upgrade might effect existing plugins. And for me it's about the fact I can't use the upgrade script at all anymore because my posts table is too large and it will timeout during the process and destroy my site.
So for those reasons can you please simplify the labeling of exploit patches?