m-weisel2 writes:Want all of the features of PHP-Nuke 7.7 or 7.8 without the wysiwyg editor? Then this tutorial is for you. This tutorial on Redhat Resources will show you how to edit your config file to Completely Turn off the wysiwyg editor. Or Turn it back on if needed. Check it out here. Also Please Visit My Website Redhat Resources.Note:
While we try to remain independent and objective, as much as possible, in our responses, it is not always possible. It would be very irresponsible of us to endorse in any way a product that would open your site up to exploitation. That's one of the reasons we exist here and a few other sites, to warn and attempt to protect you from making mistakes. I hesitated about posting any news items promoting Nuke versions 7.7. and 7.8. Can it be fixed? Of course. Should it be fixed? Absolutely. I would encourage those of you who have decided to cast your fate to the wind to petition Mr. Burzi to fix his aborition before he releases another bad release. Good night, he hasn't had a safe release in the 2 years I've been using nuke! It's about time that the public stands up and says they've had enough.
Be that as it may, I have decided to be very particular in what articles get published. Please take heed to what is written here and in the forums about these versions.
Related
Re: Want all of the features of PHP-Nuke 7.7 or 7.8 without the wysiwyg editor? (Score: 1) |  | Do you mean: Karma (7.7) and New Banner / Ad management (7.8)? |
| Re: Want all of the features of PHP-Nuke 7.7 or 7.8 without the wysiwyg editor? (Score: 1) by m-weisel2 on Wednesday, June 29, 2005 @ 18:10:28 CDT (User Info | Send a Message) | |
yes I use the banner system myself. |
Re: Want all of the features of PHP-Nuke 7.7 or 7.8 without the wysiwyg editor? (Score: 1) | | I really hate to rain on anyone's parade, but I get the feeling that nobody actually listens or reads, which kind of bugs me after I've gone to all of the trouble to identify that what this article proposes is actually no solution at all. You can't simply disable the WYSIWYG editor... PERIOD. No, but's, no if's, no and's. This article proposes that you do something that is JUST AS DANGEROUS as having the TinyMCE editor in place. Let me explain it again for everyone that wasn't paying attention...If you look at the actual Nuke module code in every module, you would quickly discover that you can't merely disable the WYSIWYG editor. In EACH AND EVERY module (and blocks too!) in Nuke 7.7 and 7.8, you will discover that where the old editor functions were (for multi-line fields) there is EXTENSIVE coding to support HTML and plain text formatting. In Nuke 7.7 and 7.8 THAT CODING is gone, because TinyMCE is there instead. Thus, if you were to disable TinyMCE, you would need to physically go back and recode EVERY SINGLE MODULE and about 40% of your blocks too! If you don't go back and recode every single Nuke 7.7 and 7.8 block and module to add these functions back in, you are leaving a long list of HUGE security holes! Think about it, all of the "htmlspecialchars", "checkwords", "filtertext", "nl2br" and other functions are GONE from 7.7 and 7.8! Again, if you have not read my article on this subject, I highly suggest you do so at http://64bit.us/article83.html [64bit.us]. I can only advise everyone to NOT perform the actions that this "tutorial" recommends. Again, this would be just as bad, (and worse in some other ways) than having a WYSIWYG editor in place! Just a heads-up. Steph |
| Re: Want all of the features of PHP-Nuke 7.7 or 7.8 without the wysiwyg editor? (Score: 1) by money on Thursday, June 30, 2005 @ 15:19:18 CDT (User Info | Send a Message) | |
IMO most probably do not understand what you're even saying let alone have the patience to read your entire article. When you want to warn the masses, it's best to cut out the techie talk, keep your writing short, and come down to their level. When you say stuff like: "Think about it, all of the "htmlspecialchars", "checkwords", "filtertext", "nl2br" and other functions are GONE from 7.7 and 7.8!" Someone like me understands the impact this has. To the average user, you might as well be writing in Chinese. You need to accept the fact that most folks do not understand the significance when a particular section of code is missing or modified in some different way. Even after you take the time to explain in long excruciating detail, they still won't. The average user here is not a programmer. So, when a problem like this arises, I recommend hitting the main points of what is wrong the software in very simple, general terms then focus on what negative impact this will have on someone's site. Refer those who want to know more details to your longer article. |
| Re: Want all of the features of PHP-Nuke 7.7 or 7.8 without the wysiwyg editor? (Score: 1) by 64bitguy on Friday, July 01, 2005 @ 01:25:37 CDT (User Info | Send a Message) | |
Well, I don't know what to say other than I think the article [64bit.us] says everything that was necessary to say. Everything is broken down for both the technical and non-technical alike. But if anyone doesn't have the patience to read it, maybe PHP-Nuke isn't something they should be using in the first place. All of the, "How it affects me" points are covered and the language of the article is quite plain, or at least as plain as I'm able to make it. I don't think it would be appropriate for me to "dumb down" the contents any further. While the comments (above) that I made regarding this news post (above) are somewhat technical (and probably cryptic as I was running on the 25th hour of the day when I posted them), the article that I refer to which resides on my domain explains and identifies how everyone is affected and how both doing what this "tutorial" proposes (disabling the WYSIWYG editor) is not a solution at all. I also cover in detail other 7.7 and 7.8 issues that identify how these two versions of Nuke are not suitable for production use and should be avoided at all costs. In closing, I'm not one to write a "series" of articles on one issue. I try to avoid that so that users can find all of the relevant information in one place. It may make the contents longer than a 1 minute review, but if you are ready to deploy a website solution, you should be prepared to spend at least 5 minutes reading about the key issues regarding that software. Especially given how long it takes to recover after being hacked which happens to people deploying 7.7 and 7.8. As best I could, I tried to make the contents of the article suit the title of "Why You Should NOT Use PHP-Nuke 7.7 or 7.8 Explained", But thanks for the input. |
![[Valid RSS]](https://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
