Dextro
Forum Replies Created
-
Forum: Fixing WordPress
In reply to: exclude category from $wp_query@miklb: query_posts really ignores all the parameters it receives via the url.
@alphaoide: Thx! That’s what I was looking for.
Forum: Fixing WordPress
In reply to: exclude category from $wp_queryOn http://codex.ww.wp.xz.cn/Template_Tags/query_posts, you can read that WordPress then ignores the other parameters it receives via the URL (such as page number or category)
I just want the query to use this parameters, but exclude a specific category.
Forum: Fixing WordPress
In reply to: Links SidebarPut them in 1 category and don’t category in your theme?
Forum: Fixing WordPress
In reply to: html code in commentsthx, that’s indeed what i’m looking for.
But it doesn’t work very wel.<h1>tags are still parsed.Forum: Plugins
In reply to: Flickr Gallery 0.7 and 1.5??The website is apparantly back online.
Forum: Themes and Templates
In reply to: Creating a Page to utilise Archives.phpOk, The comment on top was missing.
Thx a lot for this great explanation.
Forum: Themes and Templates
In reply to: Creating a Page to utilise Archives.phpMoshu: archives.php and so on are all in the theme directory.
So I don’t get it why they don’t show up.
It’s the same with the default template. They don’t show up in the template list. I’m using version 1.5.1.
Forum: Themes and Templates
In reply to: Creating a Page to utilise Archives.phpSame problem here.
In my drop down list, there’s only:
-select-
_wp_page_templateSo no other template is detected.
Forum: Fixing WordPress
In reply to: wp_link_pages: problem with argumentsok, let me know if you can reproduce the same problem.
Forum: Fixing WordPress
In reply to: wp_link_pages: problem with argumentslink_pages runs perfectly, but wp_link_pages not, very strange.
I just copy-pasted the code like it is written here above.
Forum: Requests and Feedback
In reply to: full path disclosure: security problemThe security problem is that you can see the whole path structure where your wordpress is installed. For example with the website of macmanx:
Go to: http://www.macmanx.com/wordpress/wp-content/themes/default/index.phpand you get:
Fatal error: Call to undefined function: get_header() in /home/macmanxc/public_html/wordpress/wp-content/themes/default/index.php on line 1Now you have the full path of the installation on the server, also known as Full Path Disclosure, but apparantly no one has ever heard of that here before.
I just want to help making things safer, no problem for me. I don’t use WordPress.
.
Forum: Requests and Feedback
In reply to: full path disclosure: security problemWhat could be the avantage of an indexless dir?
Forum: Requests and Feedback
In reply to: full path disclosure: security problemneuro: about point 1, you’re right, i forgot that. And an empty index is a good alternative.
All the other crap you wrote under it sais more about you then about me… Btw, where did I wrote that phpnuke was a modele?
I discover nothing, it was only a simple question, but apparantly you folks don’t accept ‘new’ people in here… Especially the sentence about growing up doesn’t make sense in any way.Just don’t forget, a peace of code can only come better if you folks accept some criticism. And yes, I have some other questions and things that maybe could be better, but I now just discovered that it is better to shut up in here.
Forum: Requests and Feedback
In reply to: full path disclosure: security problemIn all other projects (Drupal, php-nuke, …), they take this stuff seriously.
I think it should be wise to ad this the default .htaccess file:
Options All -Indexes
# Turn off display_errors
php_flag display_errors off
Forum: Requests and Feedback
In reply to: full path disclosure: security problemI know that’s a solution for the open dir problem, but maybe this should be in de .htaccess in the initial installation.
And it doesn’t change anything with the full path disclosure:
http://www.example.com/wp-content/themes/default/index.php