Release Notes: This release fixes cookie lifetimes (Use Session Cookies), session expiration, and X_Forwarded_For IP logging, uses simpler Controller and Models class names, improves configuration, error handling, and .htaccess configuration directives, and adds DB CRUD Permission ACLs (select|update|delete|insert).
Release Notes: Directories were restructured. The database layer was rewritten to use the PDO driver. Object models were added. XHTML mark-up was changed from Transitional to Strict. Session database storage bugs, including CAPTCHA and CSRF session data loss, were fixed. A plug-in and model class auto-loader was added. SCMS dynamic configuration was implemented. Many bugs were fixed, including problems with account locking and error handling, and there were many code cleanups and optimizations.
Release Notes: The footer include has been changed from a .shtml to a PHP file. Changes have been made to the conditions of the GPL for SCMS: from this version on, it is requested that the link to Greyhat InfoSec Systems in scms_footer.php is not removed from any implementations of SCMS. The Error Page (error.html) for SCMS has been changed to a PHP file as well. Tooltip descriptions have been added to all SCMS configuration settings.
Release Notes: A bug in RegenPassword() in authc1.php was fixed. Deletion of the ROOT role is now prevented. The menu was split into ROOT and User Items. Restrictions were implemented in all SCMS pages to only allow access to the ROOT Role. ROOT access was given to the public for scms.za.net. A lot of path bugs related to setting up SCSM in a different scmsSITEROOT were fixed. The GetAll() functions of user and role objects were rewritten to contain an optional Role Id parameter.
Release Notes: A bug in authenticate.php has been fixed: mysql_real_escape_string() was called before a connection to MySQL was established.