RSS

Bloggers

Brett Profitt
All posts
Twitter

Cash Costello
All posts
Twitter

Evan Winslow
All posts
Twitter

Juho Jaakkola
All posts
Twitter

Matt Beckett
All posts
Twitter

Paweł Sroka
All posts
Twitter

Steve Clay
All posts
Twitter

Search

Blog tagcloud

    Mar
    12th
    by
    Brett Profitt

    Elgg 1.8.19 and 1.7.22 released

    Elgg 1.8.19 and 1.7.22 have been released with important security enhancements. All users are encouraged to upgrade immediately to keep their sites and users protected. Users of 1.7 should migrate to 1.8 ASAP as Elgg 1.7 will no longer be updated when Elgg 1.9 is released.

    The security fixes in both version improves the security of the "Remeber Me" feature and introduces measures to prevent brute-force attacks of the Remember Me cookie. This upgrade will invalidate all Remember Me cookies for admin users, so admin users may need to log in again.

    Read more

    Feb
    01st
    by
    Evan Winslow

    2013 Review and the Road Ahead

    Statistics on our progress in 2013 and some thoughts about where Elgg is going from here.

    Read more

    Jan
    11th
    by
    Steve Clay

    Elgg 1.8.18 Released

    Elgg 1.8.18 has been released to address a bug in notifications introduced in Elgg 1.8.17.

    Upgrade Elgg to fix this problem.

    Read more

    Jan
    03rd
    by
    Juho Jaakkola

    Elgg 1.7.21 is released with an important bug fix

    The 1.7.20 release had a significant bug in htmlawed plugin that resulted in extra tags in content. Please upgrade immediately if you are using Elgg 1.7.

    Jan
    01st
    by
    Steve Clay

    Elgg 1.8.17 and 1.7.20 Security Releases

    Elgg 1.8.17 and 1.7.20 have been released to address a few critical security issues. Be sure to upgrade immediately to protect your sites.

    • A specially-crafted request can return the contents of sensitive files.
    • A reflected XSS attack is possible against 1.8 systems.
    • The cryptographic key used for various purposes may have been generated with weak entropy, particularly on Windows.

    ​Thanks to Mike Kasper and an anonymous contributor for reporting these vulnerabilities to us privately via security@elgg.org.

    1.8.17 also includes tons of other fixes:

    Read more

    Oct
    21st
    by
    Brett Profitt

    Welcome Matt Beckett and Juho Jaakkola to the core dev team

    I'm pleased to announce Matt Beckett and Juho Jaakkola are joining the team as core developers for Elgg!

    Matt's name should already be familiar as a very helpful and effective Community Administrator as well as a prolific plugin and core patch author. We're excited to have him join the core team in an official capacity.

    Juho has been involved with Elgg for a few years as a developer whose work can be found on the community site, GitHub, and in the developer discussion group. Read on to hear from Juho about how he plans to help improve Elgg and a bit about his other interests!

    Read more

    Aug
    24th
    by
    Evan Winslow

    Continuous Documentation

    Great documentation makes great projects, so of course we want Elgg to have high quality, up-to-date documentation. We'd love your help making that a reality.

    Read more

    Jul
    16th
    by
    Evan Winslow

    Introducing Matt Beckett

    Matt Beckett has joined the Elgg team as our very first Community Administrator! Please join me in congratulating him, and expect to see some great features roll out on the community the coming months.

    Read more

    Jul
    08th
    by
    Evan Winslow

    Elgg 1.9: Mobile-friendly

    Elgg 1.9 will ship with with a beautiful, responsive theme by Per Jensen. Please check out the demo and tell us what you think!

    Screenshots of Aalborg theme


    Read more

    Jun
    25th
    by
    Cash Costello

    Elgg 1.8.16 Released

    Elgg 1.8.16 has been released to address a flaw with avatar handling. Thanks to Jerôme Bakker of ColdTrick for discovering and reporting this issue to us.

    Keep your Elgg site running smoothly by upgrading today.

    Read more