TEST Software Version Checker: Difference between revisions

From ULYSSIS documentation
Line 2: Line 2:
Many of our users use the same popular software. However, as is common in many popular and widespread software, various bug or errors can occur in the program. These flaws can be exploited by hackers to gain access to websites or databases connected.
Many of our users use the same popular software. However, as is common in many popular and widespread software, various bug or errors can occur in the program. These flaws can be exploited by hackers to gain access to websites or databases connected.


Whenever a new update is released for any other popular software (E.g., Wordpress, MediaWiki, Joomla) hackers will find out which security flaws have been patched, and with this knowledge, they try to find new systems flaws to gain access to the websites or databases. This is the reason why it is so critical to update the software itself,  plugins, themes, or any related software as soon as the updates roll out. To help facilitate this and prevent security breaches, we have created a tool to help you keep the most used software up-to-date. Currently, this feature is only active if you have an organization or student union  account.
Whenever a new update is released for any other popular software (E.g., WordPress, MediaWiki, Joomla) hackers will find out which security flaws have been patched, and with this knowledge, they try to find new systems flaws to gain access to the websites or databases. This is the reason why it is so critical to update the software itself,  plugins, themes, or any related software as soon as the updates roll out. To help facilitate this and prevent security breaches, we have created a tool to help you keep the most used software up-to-date. Currently, this feature is only active if you have an organization or student union  account.
==What to do when you receive an e-mail==
==What to do when you receive an e-mail==
When you receive an e-mail from the Software Version Checker, it is of upmost importance to update the sofware mentioned in the e-mail. It is also the best time to check if the other software you use is up-to-date. As mentioned below, our tool does not check all software.
When you receive an e-mail from the Software Version Checker, it is of upmost importance to update the software mentioned in the e-mail. It is a good habit to make sure the software you use is up-to-date It is also the best time to check if the other software you use is up-to-date. As mentioned below, our tool does not check all software.


You can find more information [[Updating WordPress|here]] on how to automate this for Wordpress to save a lot of time and effort. Since updating MediaWiki can be a somewhat daunting process we have made a more detailed guide accessible on [[Updating MediaWiki]].  
You can find more information [[Updating WordPress|here]] on how to automate this for WordPress to save a lot of time and effort. Since updating MediaWiki can be a somewhat daunting process, we have made a more detailed guide available on [[Updating MediaWiki]].  
==Supported Software==
==Supported Software==
kan niet alles supporteren etc, hebben populairste gekozen en gekeken welke het vaakste security breaches krijgen. die worden gekozen om te supporten. en die ook GEKUNNEN GESUPPORT WORDEN;
Sadly enough we cannot support every program, because of this we have picked the most popular software. Because of the popularity of the various software they are more likely to get security breaches. Sadly enough not every piece of software can be supported.  
*Drupal,(including modules and themes) Drupal Modules, Drupal Themes
*Drupal (including modules and themes)  
*Joomla (Plugins are not supported)  
*Joomla (Plugins are not supported)  
*MediaWiki (MediaWiki Extensions and Themes are not supported)
*MediaWiki (MediaWiki Extensions and Themes are not supported)
*PhpBB, PhpBB Plugins, PhpBB Styles
*phpBB (including plugins and styles)
*WordPress, WordPress Plugins, WordPress Themes
*WordPress(including plugins and themes)
==Operation==
==Operation==
In general, the Version Checker does the following:
In general, the Version Checker does the following:

Revision as of 23:47, 1 December 2021

Introduction

Many of our users use the same popular software. However, as is common in many popular and widespread software, various bug or errors can occur in the program. These flaws can be exploited by hackers to gain access to websites or databases connected.

Whenever a new update is released for any other popular software (E.g., WordPress, MediaWiki, Joomla) hackers will find out which security flaws have been patched, and with this knowledge, they try to find new systems flaws to gain access to the websites or databases. This is the reason why it is so critical to update the software itself, plugins, themes, or any related software as soon as the updates roll out. To help facilitate this and prevent security breaches, we have created a tool to help you keep the most used software up-to-date. Currently, this feature is only active if you have an organization or student union account.

What to do when you receive an e-mail

When you receive an e-mail from the Software Version Checker, it is of upmost importance to update the software mentioned in the e-mail. It is a good habit to make sure the software you use is up-to-date It is also the best time to check if the other software you use is up-to-date. As mentioned below, our tool does not check all software.

You can find more information here on how to automate this for WordPress to save a lot of time and effort. Since updating MediaWiki can be a somewhat daunting process, we have made a more detailed guide available on Updating MediaWiki.

Supported Software

Sadly enough we cannot support every program, because of this we have picked the most popular software. Because of the popularity of the various software they are more likely to get security breaches. Sadly enough not every piece of software can be supported.

  • Drupal (including modules and themes)
  • Joomla (Plugins are not supported)
  • MediaWiki (MediaWiki Extensions and Themes are not supported)
  • phpBB (including plugins and styles)
  • WordPress(including plugins and themes)

Operation

In general, the Version Checker does the following:

  • Scan relevant files, detect supported software, and store in database
  • Check the version and validity of outdated software
  • Mail accounts using outdated software

Stored Data

The following data is stored in the database:

  • The location of the CMS, plugin/extension or theme
  • The responsible organisation or student union (kring/facultair overlegorgaan)
  • The detected software version
  • The type and name of the software
  • The update URL for the software
  • The date the entry was added

Ignored Paths

The Version Checker has a feature allowing ULYSSIS members to specify paths that will not be searched for software. If you believe you have software that should be ignored (for example certain custom plugins or themes), you are free to e-mail a request to ulyssis@ulyssis.org. Please list your account name, the location of the specific file(s), the nature of what is being detected, and a detailed description of the specific situation.

Ignored Organisations/Student Unions

In addition to the ignored paths feature, the Version Checker can also ignore specific Organisations or Student Unions entirely. This feature is possible on request, but only after extensive deliberation with ULYSSIS. Enabling this feature also carries possible consequences: no more mails about outdated software, ever (unless enabled on request), and no support if/when your account gets hacked (the account will be suspended immediately).