[6.x] Album.pl - UBB-Integrated Photo Album - ubbDev

You are not logged in. [Log In] ubbDev » Forums » Vintage Modifications » UBB.Classic 6.4 - 6.7 Mods » [6.x] Album.pl - UBB-Integrated Photo Album

Page 1 of 5

1

Topic Options

#199367 - 02/25/03 02:16 AM [6.x] Album.pl - UBB-Integrated Photo Album
AllenAyres I type Like navaho Registered: 03/10/00 Posts: 25366 Loc: Texas	Name: Album.pl - UBB-Integrated Photo Album Description: Adds a ubb-member-database-integrated photo album to your site. Author: Mike Bobbitt Link: Support/Download Page Demo: http://perl.bobbitt.ca/cgi-bin/album.pl Requirement: UBB� 6.x - tho it can run standalone Notes: Version 6.1 is here! I thought it would be a good time to begin a thread here, since the old one is in the 6.0 forum and 23 pages long _________________________ - Allen - What Drives You?
Top

#199368 - 02/25/03 02:51 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
PrimeTime Member Registered: 11/06/01 Posts: 1046	That is sweet. Mike Bobbitt did an awesome job with the photo album. _________________________ Members Spotlight Winner bac-Clan --------------------
Top

#199369 - 02/25/03 06:38 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Mike Bobbitt Member Registered: 04/30/01 Posts: 230 Loc: Ottawa, ON, Canada	Thanks guys! The new thread looks much cleaner already! _________________________ Mike Bobbitt PERL Stuff
Top

#199370 - 02/25/03 10:46 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Stamoulis Member Registered: 09/17/01 Posts: 92 Loc: Germany	thx. cute
Top

#199371 - 02/25/03 07:34 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Bob Ferguson Member Registered: 01/23/03 Posts: 87 Loc: Philadelphia, PA	U Da Man Bobbitt! U Da Man! _________________________ Idiot at Work!
Top

#199372 - 02/25/03 07:46 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
PrimeTime Member Registered: 11/06/01 Posts: 1046	Whoa...The "wave" coming to you in 3D. _________________________ Members Spotlight Winner bac-Clan --------------------
Top

#199373 - 02/25/03 08:35 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Bob Ferguson Member Registered: 01/23/03 Posts: 87 Loc: Philadelphia, PA	Maybe we can get Bobbitt to upgrade the Authority List for UBB v6.4 _________________________ Idiot at Work!
Top

#199374 - 02/25/03 08:41 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Bob Ferguson Member Registered: 01/23/03 Posts: 87 Loc: Philadelphia, PA	QUESTION: Which file do I edit to make Album.Pl look basically like my forum? I tried the album.pl file to no avail. Is it the .tml files? _________________________ Idiot at Work!
Top

#199375 - 02/26/03 01:09 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
AllenAyres I type Like navaho Registered: 03/10/00 Posts: 25366 Loc: Texas	yes, the .tml files are the templates for album.pl _________________________ - Allen - What Drives You?
Top

#199376 - 02/26/03 03:28 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Charles Veteran Registered: 10/22/00 Posts: 2637 Loc: London, UK	shame this version still doen't work on my server running PSA tho it used to work well when I was running Cpanel _________________________ Do you believe in love at first sight, or should I walk by again?
Top

#199377 - 03/10/03 07:18 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
ericruhl Member Registered: 02/16/01 Posts: 57	Quote: quote: Originally posted by Bob Ferguson: Maybe we can get Bobbitt to upgrade the Authority List for UBB v6.4 So this does or does not work with 6.5? Checked out the website and it looks sweet!
Top

#199378 - 03/10/03 11:03 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
AllenAyres I type Like navaho Registered: 03/10/00 Posts: 25366 Loc: Texas	it works with 6.5... Mike is on the beta team _________________________ - Allen - What Drives You?
Top

#199379 - 03/11/03 10:07 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
bb777 Junior Member Registered: 08/27/02 Posts: 25 Loc: USA	This is a great feature for communities. I hope it makes it into the standard UBB.classic.
Top

#199380 - 03/18/03 07:44 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
messagedj Member Registered: 01/23/02 Posts: 84 Loc: Amsterdam	really curious about this one... would be a really nice addon... thnx! _________________________ FOUNDER & WEBMASTER OF DJWEBPAGES Dj Webpages UBB addicted
Top

#199381 - 04/16/03 05:42 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
catcherman Member Registered: 05/14/01 Posts: 262 Loc: Los Angeles, CA	I have a problem when installing this on Win 2K server... When using the upload feature, the software requires the web server to have write access to the TEMP directory. Apparently this isn't the Windows default Temp directory, it's a temp directory defined by IIS ( according to Mike Bobbit who made the software ). Have any of you installed this on Win2K? If so, can you tell me how to change where IIS wants the Temp directory to be? Right now, it's wanting the root of my web directory to be the Temp directory and I can't allow write permission there! That would be suicide! Thanks for your help. _________________________ Do more than just get your tackle wet - www.catcherman.com
Top

#199382 - 04/17/03 12:20 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
AllenAyres I type Like navaho Registered: 03/10/00 Posts: 25366 Loc: Texas	I installed it on a win2k server, but don't remember having to set that... is this a dedicated server? _________________________ - Allen - What Drives You?
Top

#199383 - 04/17/03 03:45 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
catcherman Member Registered: 05/14/01 Posts: 262 Loc: Los Angeles, CA	No, it's running several sites. _________________________ Do more than just get your tackle wet - www.catcherman.com
Top

#199384 - 04/19/03 08:32 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
catcherman Member Registered: 05/14/01 Posts: 262 Loc: Los Angeles, CA	Bump. _________________________ Do more than just get your tackle wet - www.catcherman.com
Top

#199385 - 04/25/03 02:13 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
AllenAyres I type Like navaho Registered: 03/10/00 Posts: 25366 Loc: Texas	You've got some unsual problems here and on other mods... I'm not sure how reliable your host is... _________________________ - Allen - What Drives You?
Top

#199386 - 04/26/03 01:27 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Mike Bobbitt Member Registered: 04/30/01 Posts: 230 Loc: Ottawa, ON, Canada	V6.2 has been released. Note that there are a number of fixes, including a security fix that prevents users from execuruting programs from the hosting system. (Programs are executed with the privileges of the web server user, and have to be pre-existing on the system.) An advisory detailing the problem will hit BugTraq on April 27th. (Thanks to AresU for finding this and for responsible disclosure!) As a result, I strongly recommend that everyone upgrade to V6.2. Download here . New Features Added a new "Popular" option. This shows the 10 (by default) most popular photos or albums. Popularity is based on rating, number of times rated and number of times viewed. New for this feature: popular_button and most_popular config items, thmb_album_popular.gif graphic, popular style sheet class and updated album_header.tml. SSI setting for popular modes defines number of images to display. (I.E. ssi=10 shows 10 most popular) Added self-administration: users can now create sub-albums and set album thumbnails for albums they own. Added new user class: guest. Guests are defined through the "default_guests" config item, and are like regular users but cannot upload. Added ability to set photo and album owners through the "Update Titles & Descriptions" form. Admins are now excluded from quota checking. A "thmb_root.jpg" image added to the root album will now be used as the album thumbnail for the root album. Re-organized Configuration Management screen into sections. Added "Edit User List" capability for flatfile authentication (authentication_type=1). This form shows up on the Configuration Management screen. Added jhead_comments config item, which uses jhead to automatically insert a photo's title/description (if present) as a comment in the EXIF header. Added a check to ensure the style sheet is working, through the use of a "hidden" class that hides the error when things are working properly. Added "postupload" config item, which allows an ImageMagick command to be run on a pic after upload. Added 2 new sort options: newest first and oldest first, by file creation date. Added public_albums option to protect only photos (thumbnail view is pulic). Login errors now display as a popup window. Improved "fatal error" troubleshooting. Jump Station will now go to target album on click (submit not required). Automatic ImageMagick sensing for new configs has been added. Allowed entered passwords to override cookies. Made DB code more robust. Bug Fixes Major security hole fixed where any program can be remotely executed has been closed -- thanks to AresU for finding this and for responsible disclosure! Fixed broken SSI code - it now won't display all the "extra stuff" in SSI mode. The ssirecentuploads style class has also been updated. Fixed security hole around creating albums. Fixed bug where first level sub albums showed their own thumbnail for the "root" album's nav button. Fixed problem where ()'s in album filenames broke the nav footer. Photos without a thumbnail are no longer displayed on the "Set Album Thumbnail" screen. Fixed "Update Titles & Descriptions" bug for "empty" albums. Movies can now be viewed when browsing through a batch of photos and movies. Fixed a bug where setting thumbnails for sub-sub albums threw an error. Fixed a bug where the "Full Size" viewing button didn't work if you had defined a default size. Removed double /'s from thumbnail links. Fixed a bug where rating_location wasn't being honoured. Fixed broken movie links on search results page. _________________________ Mike Bobbitt PERL Stuff
Top

#199387 - 04/26/03 03:18 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
usr bin geek Moderator / Kingpin Registered: 02/11/01 Posts: 817 Loc: Burlington, VT	Quote: quote:</font><hr />Originally posted by Mike Bobbitt: An advisory detailing the problem will hit BugTraq on April 27th. (Thanks to AresU for finding this and for responsible disclosure!)<hr /></blockquote>It must have went out on BugTraq early because I just got it: <blockquote><font class="small">quote: [qb]AresU Advisory 04/27/2003 Album.pl Vulnerability Severity : High (CGI Remote Command Execution) Systems Affected: Album.pl up to v6.1 Vendor URL: http://perl.bobbitt.ca/album Vuln Type : CGI Remote Command Execution Status : Vendor contacted, new fixed version available Author : AresU Greetz to : Mike B., Bosen, Tioeuy, syzwz, Heltz, eF73, SakitJiwa, nimdA, Br0374l, FreshFirst, Algorithm All 1ndonesian Security Team (1st) http://www.bosen.net/releases/ http://bosen.blogspot.com Summary ======= album.pl is a popular web photo album application that allows you to simply drop new photo files into a directory, and they will automatically be accessible via the web. Any user can execute commands with Web Server privileges (normally nobody) when use an alternate configuration file. Solution ======== Upgrade to a newer album.pl version (at least 6.2) http://perl.bobbitt.ca/album/album62.zip Acknowledgments =============== Vulnerability discovery and advisory by AresU Vendor Response =============== Vendor has been contacted and new fixed version is available. Exploit Code ============ I have refrained from publishing a more functional exploit at this time, to delay attacks against album.pl installations. ----------------------------------------------- This mail sent through http://webmail.bosen.net [/qb] _________________________ Steve #!/usr/bin/geek � \| WyldRyde IRC Network Sorry, I wont answer support questions by email, PM, or IM.
Top

#199388 - 04/26/03 05:05 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
AllenAyres I type Like navaho Registered: 03/10/00 Posts: 25366 Loc: Texas	Nice upgrade Mike, those are some sweet features _________________________ - Allen - What Drives You?
Top

#199389 - 04/29/03 12:10 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Mike Bobbitt Member Registered: 04/30/01 Posts: 230 Loc: Ottawa, ON, Canada	It went out on Indonesian time. _________________________ Mike Bobbitt PERL Stuff
Top

#199390 - 05/01/03 07:03 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Mike Bobbitt Member Registered: 04/30/01 Posts: 230 Loc: Ottawa, ON, Canada	Note: at least one site has been hacked through the album.pl vulnerability, so I can't stress enough that users should complete this upgrade. There is also a quick patch available here for those who don't want to tackle an upgrade right away: http://perl.bobbitt.ca/yabbse/index.php?board=2;action=display;threadid=740;start=new;boardseen=1 Cheers _________________________ Mike Bobbitt PERL Stuff
Top

#199391 - 05/01/03 10:04 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
tackaberry Pooh-Bah Registered: 11/28/00 Posts: 3208 Loc: NYC \| 100% Hockey	Hi Mike, Are there any particular settings required for talking to the ubb.x users table? _________________________
Top

#199392 - 05/01/03 08:32 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Mike Bobbitt Member Registered: 04/30/01 Posts: 230 Loc: Ottawa, ON, Canada	Ummm. I'm not really familiar with UBB.x's underlying settings. In case there's similar to UBB.thread's, here they are (from the Database section of album.cfg): db_driver=mysql db_name=[dbname] db_hostname=localhost db_user=[username] db_password=[password] db_port=3306 db_membertable=w3t_users db_username=U_LoginName db_passwdfield=U_Password If anyone knows of corrections for UBB.x, I'd gladly add them to the config notes... Cheers _________________________ Mike Bobbitt PERL Stuff
Top

#199393 - 05/02/03 09:14 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
tackaberry Pooh-Bah Registered: 11/28/00 Posts: 3208 Loc: NYC \| 100% Hockey	The settings should be: db_driver=mysql db_name=[yourwebsite_com] db_hostname=localhost db_user=[username] db_password=[password] db_port=3306 db_membertable=USERS db_username=USERNAME db_passwdfield=PASSWORD I've gotten as far as getting a line 2696 error I posted a similar thread @ infopop http://community.infopop.net/2/OpenTopic?a=tpc&s=729094322&f=1853060105&m=3403056517 I'll have to check the case settings for the table/fields when I get home _________________________
Top

#199394 - 05/07/03 01:59 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Mike Bobbitt Member Registered: 04/30/01 Posts: 230 Loc: Ottawa, ON, Canada	Thanks for the info, I've added it to the "standard" config that comes with album.pl... As for the error, was there a message to go with the line number? That's pretty much smack dab in the middle of DB code, which sounds right I guess... _________________________ Mike Bobbitt PERL Stuff
Top

#199395 - 06/24/03 11:19 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
BUZN_WILDLY Junior Member Registered: 05/24/03 Posts: 19 Loc: Ont.	How do I add a link in the my profile \| register \| search \|faq \| forum home for the Album? on UBB.classicTM 6.3.1.2 Thank-You in advance for your help... BUZN_WILDLY
Top

#199396 - 06/24/03 09:35 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Poopy Pants Member Registered: 08/22/01 Posts: 100	are there idiot instructions on how to integrate this into the ubb, i mean pure idiot instructions because i can't figure it out.
Top

#199397 - 06/24/03 11:54 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
R.J. Ferguson Junior Member Registered: 06/19/03 Posts: 3 Loc: Philadelphia, PA	In public_common.pl, find: # Forum Home Add Under: #Album push(@items, qq(<a href="$vars_config{CGIURL}/album.pl" title="$vars_wordlets_mods{album_link}">$vars_wordlets_mods{album_link}</a>)); ================================================= In vars_wordlets_mods.cgi, find: %vars_wordlets_mods = ( Add Under: q!album_link! => q!Album!, DON'T FORGET TO BACKUP THE ABOVE MENTIONED FILES PRIOR TO EDITTING THEM!
Top

#199398 - 06/25/03 07:52 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
BUZN_WILDLY Junior Member Registered: 05/24/03 Posts: 19 Loc: Ont.	I've tryed to make that link work, But not having any luck with it! I even altered the line q!album_link! => q!Album!, to album_link => "album" And still doesn't work... and I'm thinking you have to add #Album push(@items, qq(<a href="$vars_config{CGIURL}/album.pl" title="$vars_wordlets_mods{album_link}">$vars_wordlets_mods{album_link}</a>)); Add Under: # Forum Home push(@items, qq(<a href="$ULTIMATEBB" title="$vars_wordlets{forum_acronym}">$vars_wordlets{forum_home_link}</a>)); Would You Have any other Idea's? UBB.classicTM 6.3.1.2 Thank-You BUZN_WILDLY
Top

#199399 - 07/22/03 10:59 AM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Mike Bobbitt Member Registered: 04/30/01 Posts: 230 Loc: Ottawa, ON, Canada	Sorry I haven't replied - I don't get notified on this thread, so I never know when it's active... Do you get anything at all when you add those lines, or is it just the same? V6.3.1.2 has different templates from more recent versions (as I recall) so public_common.pl may look and act a bit differently... _________________________ Mike Bobbitt PERL Stuff
Top

#199400 - 08/12/03 04:47 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
caroth Member Registered: 05/30/01 Posts: 54	The album works great on our forum installed on a Win2k box. The only suggestion I have is to sort the albums by username, not the member number. I realize that is probably hard to do, but many of my members have asked for it. Chris
Top

#199401 - 10/10/03 03:42 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Mike Bobbitt Member Registered: 04/30/01 Posts: 230 Loc: Ottawa, ON, Canada	V6.3 has been released. ( Download ) New Features You can now create links to photos in other albums. The new "Link" item on the admin menu allows you to create links to existing photos. Only the original photo exists, with links simply pointing to it. Useful for a "favourites" album, without keeping multiple copies of your photos. Local templates now supported. Any template files found in an album directory will automatically be used for that album. New buttons! Added ssi=2 mode, which shows actual photos, not just thumbnails. (Good for use with random/slideshow features.) Added support for YaBB SE 1.5.1+ password protection. Digest::HMAC_MD5 Perl module required. Added ####NAVPREV####, ####NAVUP####, ####NAVNEXT#### and ####NAVJUMP#### tags, for extra granularity with the navigation footer. Updated album_footer.tml to use these tags. Added ####MOVIESIZE#### tag for the upload form, to show the max allowed movie upload size. Added "logout" button for flatfile authentication (type 1). Includes logout_button config item and thmb_album_logout.gif image. The postupload command can now use all regular ####TAGS####. (Such as ####CONFIG=loggedin#### to show the logged in user's name.) Improved cookie deletion (thanks Scouter!) Additional check to prevent bogus config update added. Tuned up album_test.pl. Added new default_linkdir to allow fast linking. Added new "delcookie" function to forcibly delete any album related cookies. New Config Items link_button: Filename of the "Link" button graphic. default_linkdir: When added, clicking on the "link" button will auto create the link in this directory, instead of prompting the user for a destination (not present by default). logout_button: Filename of the "Logout" button graphic db_displaynamefield: Used to define the database field containing a user's display name. Optional. movie_upload_size_limit: Allows admins to specify the max size for uploaded movies, separate from photos. Bug Fixes User edit no longer adds a blank line to the end of the list. Nav "up" link now takes you up to the right page. Album URLs are now properly escaped, allowing characters such as + in the album filenames. Fixed flatfile password carryover problem. Fixed ssi / authentication problem. Fixed a bug where search results weren't displayed properly. Fixed up static HTML to honour local configs. Fixed broken movie links. Files to replace album.pl album_test.pl album_footer.tml album_strings.txt (or appropriate language file) Photo_Album.css New files thmb_album_link.gif Enjoy! P.S. caroth, that's on the to do list, hope to get to it some time. _________________________ Mike Bobbitt PERL Stuff
Top

#199402 - 10/11/03 09:02 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
AllenAyres I type Like navaho Registered: 03/10/00 Posts: 25366 Loc: Texas	thanks Mike _________________________ - Allen - What Drives You?
Top

#199403 - 11/11/03 04:57 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
AllenAyres I type Like navaho Registered: 03/10/00 Posts: 25366 Loc: Texas	Do these errors look familiar? http://www.ubbdev.com/cgi-bin/album.pl And the images, even tho they are in the folder as specified in the config settings aren't being found (config settings say my setting is correct, even tho it's looking for the images in the public pages from a different url - appears to be looking for them in cgi_web and not album_web). _________________________ - Allen - What Drives You?
Top

#199404 - 11/11/03 05:24 PM Re: [6.x] Album.pl - UBB-Integrated Photo Album
Felix 10 Enthusiast Registered: 10/10/02 Posts: 391 Loc: Toronto	Allen, the path, in your case is only: cgi-bin/img/ so in the album.cfg would show something like this: Quote: quote: # The path to the directory containing all icons and buttons. This should be relative to album.pl's location, as it is appended to album_web to get the actual URL. img_dir=cgi-bin/img In my case was img_dir=ubb/img because I didnt want to mix the "img" folder in the cgi-bin, it doesnt have to be there. I have a question though: I dont get "Rate picture" and also dont get the Admin options: Delete, Move, Edit etc. Do you know why? Is there a page for Admin settings other than album.cfg file? http://romanianational.com/cgi-bin/album.pl Thank you, Felix
Top