Scripts.Indisguise.Org - a hobbyist's blog and scripts archive

A security vulnerability for Enthusiast 3 has been detected a few days back, and I’ve been notified just tonight about it. I do have a security fix up, and with that said — Enthusiast 3.1.5 is an important security upgrade, most especially if your server has register_globals on.

Please download the upgrade zip or the full zip if you prefer. The upgrade will be slightly more painful than the previous upgrades.

Before I get on with the upgrade instructions after the cut, I would like to take this time to say I apologize for the lack of updates and the sudden hiatus of Frontend Friday — I’ve moved houses and things have been rather crazy the past couple weeks. I haven’t forgotten this blog, I swear ;)

And now for the upgrade instructions. This is all in the upgrade zip, not to worry. :)

Important notice: the upgrade is not as simple as the previous upgrades, hence the additional instructions. Do not blindly overwrite your config.php file!

Read the rest of this entry »

I’ve been testing Enthusiast 3.1.4 on Aking Mahal for a few weeks now, and now I’ve released Enthusiast version 3.1.4, which incorporates a number of bug fixes plus a special feature — special because it gets added at a bugfix-level upgrade.

This update includes:

• Added mass rejection of new members feature
• Fixed bug where PEAR Mail class gets called twice when joining in certain server and/or website settings
• Fixed bug where showing/hiding of member emails do not get updated correctly when members update their information
• Fixed bug where there are still target attributes in links for the fanlisting statistics
• Fixed bug where non-numerical offsets are allowed in the pagination query

I’ve been vocal about not adding a mass-rejection feature for Enthusiast, but in the interest of helping those of us whose fanlistings get spammed, and the goal to make sure Enthusiast caters to an ever wider audience due to its openness and flexibility, I’ve finally added the feature in. However, as this is just one additional feature, I decided not to bump up the version to 3.2, as it feels rather sad that way ;)

You can download the full 3.1.4 release, or get an upgrade zip file instead.

If there are problems with regards to this upgrade, please feel free to leave comments, however all regular troubleshooting requests and support-related questions should be directed to the Enthusiast support forum at CodeGrrl. Thanks!

Gabrielle wrote an Enthusiast anti-spam addon, which may be useful for those of you whose listings have been targeted by spambots. Please check it out if you have this problem, as this may work for you. Thanks so much to Gabrielle for doing this. <3

On the subject of Enthusiast, I would like to assure everybody that I have not “abandoned ship”. Believe you me, I’ve been through a lot because of Enthusiast, from disgruntled users who swear at me or my script, to people who have ripped my script and claimed it as their own. Yes, I have thought of “abandoning ship” plenty of times, and I suppose this might keep happening far into the future.

But I haven’t thrown in the towel just yet.

That doesn’t mean, however, that everything will be oh-so-fine and dandy and scripts will get chugged out of this scripts archive/tech blog at a steady pace. I wish I could, but there are only 24 hours a day, and seven days a week. I am no longer a college student, as the case was when I started Enthusiast all those years ago and virtually no one knew about it.

(I started to break down my time in an attempt to show just how scrapped for time I am, but I decided not to let it go that far.)

Enthusiast is not the only thing I have to put my time on. I have three blogs, and none of them even get updated as regularly as I like. My first love is creative writing, but I can’t even allot proper time for that. If you look at my fanlistings, a whole chunk of them haven’t even had new layouts in a year, some of them over two! I’ve even relegated to using layouts made by others in my journal (and maybe others) in an attempt to cut down on whatever coding I need to do. I’m a developer/designer, coding is what I do, but I can’t have time to whip up a quick CSS file to customize my own things. How sad is that?

Enthusiast is not the only thing I want to do. I have three scripts I want to create, one script that desperately needs a revamp (and I mean really desperately, but guess what? Enth development is still ranked higher), and I have a couple of others (featured here) that needs an update sometime soon. They’re all competing for attention, and I’m trying to manage it all, along with my work as a Yahoo, the little things we need to do daily so that we continue living, take care of my health, interact with the people around me.

That said, Enthusiast is important to me. I don’t think any one of you who are using it can claim that Enthusiast is more important to them than it is to me. It is important to you only so far as it helps you maintain your fanlistings, but Enth as an entity by itself is useless to you. You’re free to move to other scripts if you find Enthusiast lacking, I’m not stopping you.

To those of you who have shown me support, who help others with their Enthusiast installations, who have donated a little bit to my tip jar for my efforts…I thank you, from the bottom of my heart. Your show of support does not go unnoticed, and they continue to fuel the work here when times are tough. <3

So last night, armed with my nifty new font, I decided I’d get a move on with the next top-level version of Enthusiast. (Yes, I’ve started working on Enthusiast 4.0.)

(For those of you interested in it, it will probably be slow going, as whatever free time I have needs to be spent juggling between rest/recreation/social/family/other hobbies… and because I’m putting in a lot more effort in the backbone, and in usability.)

One thing I’ve always believed in is that you only get as good as what you actually do. That one might read a lot of tech blogs, a lot of white papers, a lot of those hifalutin framework blueprints… but if you don’t get down and dirty with code, you can’t expect to get better. It’s a given that the first few codes you churn out will be riddled with flaws. That’s normal, but that’s better than never getting over that simply because “I can’t fully understand OOP yet, I need to read more about it”. Ugh, get a grip, and get on with playing with code.

My first PHP project, way back when I was doing self-studying, was actually the precursor to Enthusiast. It was the script that handled my then-fanlisting, Bubblegum Crisis. After it was working, I moved on to the first “system” — an admin tool for handling my directory for NeoPets galleries. I actually put up that site, got a pretty nice following for it, and then when I weaned off NeoPets, I shut it down.

And then I started working on Enthusiast (the single-fanlisting version).

Without these first projects, I’d never have learned PHP. And this time, with PHP4’s End of Life looming in the distance, Enthusiast will be bringing me forward to PHP5. OOP, Exceptions, and many newfangled stuff in PHP isn’t new to me, but it’s been a while since I’ve actually handled PHP code continuously (almost eight months–the same time I’ve been with Yahoo! as a frontend engineer). I will be getting personal with a lot of these new things, in order to do what I need for it to do. And that’s quite exciting.

For anyone who’s thinking of learning PHP, the best way to learn really is by doing something you’re passionate about using PHP. I was passionate about NeoPets galleries; I was passionate about fanlistings. The passion drives you forward, and that’s a great thing to have.

I will probably be blogging here occasionally about new things I find out while working with PHP, or thoughts on development in general — what would you like to hear about?

Happy, hopeful new year, everyone!

Life is just barely settling down after the holidays, and I’ve been meaning to work on Enthusiast for a while now, but kind of endlessly putting it off. I want that to change, but to change that, I’ll have to do a bit of reassessment, and to pinpoint why I have lost the thrill and joy of working on Enthusiast.

It won’t mean it will be gone, as even if I feel rather unmotivated to work on Enth, I still love it and want to bring it to the next level. I’ll just have to figure out what the next level is.

Just in case it helps others out there, here’s something I’ve started reading that I feel is helping me a lot: Getting Real. A lot of things won’t be applicable to Enth (I don’t think suddenly scaling down features is an option) but I’m trying to figure out what to do with the stuff I’m reading and taking in.