http://buzz.typo3.org/ buzz.typo3.org: The TYPO3 buzz resource ;-) en http://buzz.typo3.org/fileadmin/news.typo3.org/xmlicon.gif http://buzz.typo3.org/ 88 31 buzz.typo3.org: The TYPO3 buzz resource ;-) http://backend.userland.com/rss091 Thu, 19 Jun 2008 06:30:00 +0200 http://buzz.typo3.org/teams/security/article/collective-security-bulletins-csb-the-reason-for/ The TYPO3 Security Team has started a new procedure for publishing bulletins on security issues in some extensions. This procedure only covers TYPO3 third party software. http://buzz.typo3.org/teams/security/article/advice-on-core-security-issue-regarding-filedenypattern/ Within Security Bulletin TYPO3-20080611-1, the Security Team has informed the public about the dangers of a wrong value of fileDenyPattern in combination with the Apache module mod_mime. This topic... http://buzz.typo3.org/teams/security/article/massive-web-server-hacks-iframe-attacks-now-extended-to-typo3/ Lately, numerous reports have been discussing a new scheme of attacks that affect all kinds of web servers. This wave has now reached TYPO3 (and other CMS systems). http://buzz.typo3.org/teams/security/article/welcome/ Dear reader,Welcome to the opening post of the TYPO3 Security Team on the buzz.Until now the security team has worked in a very close forum. That will continue, but we have started this blog to give...