Am 06.03.2013 16:28, schrieb Gregor Hermens:
Hallo Christoph,
Christoph Walser wrote:
ich habe nach dem heutigen Security Advisory (
http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-
sa-2013-001/
) von 4.7.8 auf 4.7.9 upgegraded und jetzt funktioniert ein Menupunkt
nicht mehr auf welchen ein Link hinterlegt ist ("Link to external URL").
Anstatt auf die Externe Seite weiterzuleiten wird nun folgender Fehler
angezeigt:
siehe das offizielle Security-Bulletin:
http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-
sa-2013-001/
Zitat:
-----
Important Notes: To fix this vulnerability, we had to break existing
behaviour of TYPO3 sites that use the access tracking mechanism (jumpurl
feature) to transform links to external sites. The link generation has been
changed to include a hash that is checked before redirecting to an external
URL. This means that old links that have been distributed (e.g. by a
newsletter) will not work any more. If you are using the jumpurl feature you
need to do the following:
Clear the TYPO3 caches to prevent old links without required validation
hash will be delivered
If it is important that already distributed links (e.g. by directmail
newsletter module) are still working, you have to additionally:
Install the provided extension (t3x, zip) which covers the following
cases:
URLs which are present in pages or content elements are allowed to
be redirected to, even if the validation hash is missing or wrong.
URLs which are present in newletters sent using the third party
module "directmail" are allowed to be redirected to, even if the validation
hash is missing or wrong.
Leider funktioniert das nicht in allen Fällen. Ich hab's auf zwei
Systemen mit Seiten vom Typ "Externe URL" ausprobiert. Bei einer
klappt's, bei einer nicht.
Gruß
Christian
_______________________________________________
TYPO3-german mailing list
TYPO3-german@lists.typo3.org
http://lists.typo3.org/cgi-bin/mailman/listinfo/typo3-german
