http://secunia.com/advisories/12065/
Do I have to do anything about this as a Moodle Administrator?
You can erase help.php file from your Moodle installation directory and wait for more info...
Hi!
This again raises the issue of some type of "vunerability reporting" of issues which may affect Moodle. I had raised the issue of the possiblity of creating a forum regarding security issues previously, However, it is unclear if there is a Moodler with expertise on these issues who would head and monitor this forum, therefore, it may be an unreasonable request at this time.
Moodle & Authentication
http://moodle.org/mod/forum/discuss.php?d=9882
WP1
This again raises the issue of some type of "vunerability reporting" of issues which may affect Moodle. I had raised the issue of the possiblity of creating a forum regarding security issues previously, However, it is unclear if there is a Moodler with expertise on these issues who would head and monitor this forum, therefore, it may be an unreasonable request at this time.
Moodle & Authentication
http://moodle.org/mod/forum/discuss.php?d=9882
WP1
I've spent all day packaging a new release of Moodle which is nearly ready - Moodle 1.3.3.
It addresses this issue (and another one).
Then, as I usually do, I will post an advisory to all registered sites with information and instructions. I don't publish this sort of information on the forums.
It addresses this issue (and another one).
Then, as I usually do, I will post an advisory to all registered sites with information and instructions. I don't publish this sort of information on the forums.
I will download the update when you make it available and also register my moodle site.
Thanks for your diligence.
Thanks for your diligence.