Fixed two security vulnerabilities. Both were caused by problems with the implementation of Installatron's symbolic link handling that enabled users with server access to overwrite files owned by different users. WHM-enabled resellers specifically were able to use this to execute commands. While the ability to exploit either vulnerability requires server access, and neither exploit has been released publicly, we take these vulnerabilities very seriously and strongly recommend updating immediately.
Added new Email notification options, including the ability to email users information about new installations.
Fixed ionCube loaders to no longer cause a segmentation fault for some versions of PHP. This problem was introduced by the latest version of the ionCube loaders. Our fix was accomplished using a workaround, we're still waiting on an official fix from ionCube.
DirectAdmin: Fixed issue where List Builder did not automatically re-building lists for secondary administrator accounts.
cPanel: Fixed Converter to properly detect installations on secondary disk partitions.
Added error recovery to the Wizard subsystem. In the event a fatal error is encountered a 'Try Again' button enables some tasks to be re-attempted. (New locale entry: _buttons_tryagain)
Added new branding setting: Control Panel Name (New locale entries: _branding_controlpanelname and _branding_nameofcontrolpanel)
Added setting to control the subject of the admin Update Report emails.
IAPI: getUrlFileManager and getUrlFileManagerFile are now optional.
Fixed MySQL backup creation issues for some b2evolution installations.
Fixed Catalogs display issues for some servers on PHP 5.2.10.
Added improvements to 'Import existing install'. Database detection is quicker and the Install Location is now verified.
Added optimizations for large batches of application upgrades (including batches of upgrades forced by the server admin). Less memory is used and the process completes quicker.
Fixed charset issue affecting WordPress for some servers.
Fixed security issue that enabled users that could also create a symlink to change the ownership of the file the symlink pointed to. This bug was introduced by optimizations in 6.0.3. Prior versions are not affected. Thanks to Jeff for reporting this to us.
Installatron 6.0.3.1 Stable
Fixed security issue.
2009-07-01
Installatron 6.0.5 Release
Added minor clean up to the display of the Install Path for Install Wizard's Install Location step.
Added improvements to MySQL dump handling, particuarily in regard to foreign key constraints.
Fixed issue where restore would sometimes complain that the database didn't exist in lieu of creating it.
Plesk: Fixed a 500 errror occuring sometimes when using the Admin-level Auto-Installer Converter.
Added improvements to the user-level 'Import existing install' tool. Database information is now automatically detected. Admin-level 'Auto-Installer Converter' already has this functionality.
Added confirmation dialogue to Uninstall when additional non-default files/directories are selected.
Added alternate image for SEO stamp. Used for apps where text is intrusive.
Fixed an installatron_setup.sh error that occured under some strict Apache mod_security configurations.
Plesk Windows: Fixed log viewer to properly display log output.
Plesk Windows: Fixed issues with the MSSQL database type.
DirectAdmin: Changed DA API connect timeout to 90 seconds. Some distributed setups need the extra time.
cPanel: Fixed an error that occured under some SuPHP conditions when creating an install.
Installatron 6.0.3 Stable
6.0.3 is now the Stable version.
Accumulative update containing fixes and tweaks from Edge and Release.
Fixed Backups Database link to target a backup's containing directory when the sql file is over 5MB.
Fixed the new-version-available emails to no longer include versions prior to the installed version. This was only an issue for apps like Drupal that have multiple in-development branches.
cPanel: Fixed two issues pertaining to 'full access'-enabled cPanel resellers.
6.0.1 is now the Stable version. 5.x is no longer available.
Accumulative update containing fixes and tweaks from Edge and Release.
Installatron 6.0.2 Release
Added per-installed application server configuration detection. This is the new default option. Previously, Installatron only supported a server-wide configuration.
Added additional database connectivity check to Upgrade version step.
Changed "www" to be the default sub-domain selection, when available.
Fixed issue that caused some customized installer codes to not work properly.
Windows: Fixed a file permissions issue affecting the WordPress application.
cPanel: Improved the Admin/Reseller's Installed Applications view to load much quicker.
Kloxo/LxAdmin: Fixed some issues pertaining to the new Kloxo version.
DirectAdmin: Added redundancy to DA API calls. Now attempts each API up to three times before erring.
DirectAdmin: There is a slowness issue affecting some DA servers. While Installatron is slowed by a factor of two or three, Installatron is still usable. This is a DA issue that is fixed for their next release. See: http://directadmin.com/features.php?id=972
Accumulative update containing fixes and tweaks from Edge.
UI is now embedded into control panel theme by default. This can be changed on Theming settings page.
Fixed issue when embedded causing IE7 to ignore the CSS max-width value.
"External Tasks" have been depreciated and removed from current versions of most applications. There are a few applications remaining with External Tasks, however these will be removed in the near future.
A "HTML stamp" can now be displayed on many Installed applications for SEO purposes. This is a configurable setting, and can be edited/turned off on the Branding settings page. HTML is re-formatted to match the installed application exactly. Note if stamp settings are changed existing installed applications won't be updated until their next upgrade.
Added administrative-level Installers tab to allow finer control of which installers and versions are available to install.
Added improved installer version requirement handling, including options to configure specific requirements per-install. Multiple administrative-level Settings > Libraries tab options added. Per-install configuration will work for mod_php (Apache) and SuPHP environments. The SuPHP option works using the per-folder php.ini system, so lighttpd PHP and other environments should also work.
cPanel: Fixed issue where Converter would display incorrect version options for CPSkins Gallery 2.x.x installs.
cPanel: Fixed Installatron to no longer attempt to install for the demo account (it will fail due to cPanel account restrictions). Demo users will still be able to browse the script selection, just not install.
Plesk: Fixed 'return to plesk' link to properly return to the index on Plesk 7 and Plesk 8.
Plesk for Windows support is now stable for Plesk 9.x and Plesk 8.x.
Installatron's control panel API is now public, allowing intergration of Installatron into just about anything.
Fixed bug that caused installer version filters derived from requirements to sometimes be ignored.
cPanel and Plesk: Fixed Converter to always pre-select the correct version of convertable installs.
cPanel: Fixed to properly inherit the control panel locale setting.
cPanel: Added ability for Installatron to be embedded into cPanel themes (including RVSkin). Added new Adminstrative Theming Setting to control the default functionality.
Changed the Installed Scripts tab to display errant installs (with a corresponding error message). Prior to this change, errant installs would be hidden.
Fixed MySQL charset issue when restoring utf8 database dumps.
Plesk: Fixed issue that caused Branding settings to reset on some Plesk systems.
Added automatic re-branding of control panel links when Installatron itself is branded. Prior to this change, Installatron links in the control panel had to be manually edited.
Fixed Backups to properly backup MySQL databases when a remote MySQL server is used.
Non-Windows: Added improvements to start up time. Now uses less memory and is quicker. At this time this change will only apply to clean Installatron installs. To apply the change to an existing install, run this as root:
Added execution time improvements to most script install and upgrade methods.
Added support for very long domains to the Install and Import UIs.
Added headers to delimitate unique domains in the Install and Import UIs.
Added checkbox handling improvements to the Backup and Uninstall UIs.
Added new optional, boolean installer requirement: php-pdo-mysql. PDO_MYSQL is new, popular libarary required by scripts like Magento.
Added "PHP PDO_MYSQL" requirement to the Administration > Requirements tab. (Locale additions)(Defaults to activated, and pre-set with Installatron's best guess.)
Changed Script Browser UI's script links to allow the entire row to be clicked.
Added remembering of login details to the HTTP Password Protection system.
cPanel: Fixed "Connection Lost" error on EDGE.
DirectAdmin: Added a check to ensure DA's "allow_foreign_keys" setting is turned on when DA's "bind_address" setting is used. This will prevent API authentication issues when the setting is used.
Windows: Added support for an "ASP.NET version" requirement in installers. (Locale.)
Added domain resolution check to Install and Upgrade. If a domain doesn't resolve, Installatron won't let the task continue.
Added HTTP Password Protection prompt to Install and Upgrade. If the install location is protected by a username and password, Installatron now prompts for the login. (Locale additions.)
Added check to Upgrade to ensure install still exists on the filesystem.
Added improved External Task Window styling.
Plesk: Added Custom Buttons for Installatron. On systems that support Custom Buttons, this replaces our old method of adding Installatron buttons.
The Converter tool, found in Administration > Tools, is now fianlized and will allow you to quickly and easily import/convert, into the Installatron format, installs created by a long list of other auto-installers, including Fantastico, Application Vault, CPAddon Scripts, CPSkins Auto-Installer Pro, and CPSkins PSA-Installer Pro.
The old three-day demonstation license has been replaced with a new FREE SINGLE-DOMAIN EDITION. This free edition, which is free to use for as long as you like, will be locked to the first domain that you install a script on, and can be easily upgraded to the unlimited-domain version by purchasing a license.
Added BETA support for the 'Plesk for Windows' control panel. We will be testing this addition over the coming weeks.
Changed Uninstall to drop a database outright if all tables are selected. Previously, it would try to drop each table individually, then the DB.
Changed Uninstall to no longer fatal error when a database is already removed.
Added confirm screen for Backup creation. (Locale additions.)
Added required disk space warnings and errors to Install, Upgrade, Backup, and Revert.
Added enhancements to disk-usage check to speed it up.
Changed the latest-version in each branch to be properly labeled as the latest version for its respective branch.
2008-09-04
Installatron 5.0.59
cPanel: Installatron Converter is now avaiable as a BETA tool. Converter allows install data to be imported to Installatron from these auto-installer programs: * cPAddon Scripts * CPSkins Auto-Installer * Fantastico DeLuxe
2008-09-02
Installatron 5.0.58
cPanel: Fixed bug that prevented admin-settings from saving properly on some servers.
Added proper error in Upgrade for installs that were removed from the filesystem.
Changed ionCube error message to direct to http://installatron.com/troubleshooting for additional help.
cPanel: No longer relies on cPanel's copy of ionCube.
2008-05-24
Installatron 5.0.48
Changed form inputs to disable on submit. This will prevent inputs from being changed after a from is submitted, as well as relieving the "lag" feel while the user awaits the next screen.
shopping cart (