PDA

View Full Version : vBulletin Connect 5.5.4 is now available for Download.


vB.Org System
09-03-2019, 06:41 PM
<h1>vBulletin 5.5.4 Changes and Updates</h1>
<p>The Preview Release of vBulletin 5.5.4 is now available to download customers. Preview Releases should not be used on production servers and are for testing purposes only.</p>
<h2>Front End Changes</h2>
<h3>Avatars as Status Icons</h3>
<p>A new option has been added to show the user's avatar instead of the status icon in Topic Lists. This allows the system to be consistent with the responsive view. All views will display the same icons based on this option. You can access the option in the AdminCP under <code>Settings -&gt; Options -&gt; Topic Display Options</code>.</p>
<p>When displaying avatars as status icons, the avatar will link to the user's profile for consistency. Administrators and moderators will not be able to double-click on the status icon to open and close topics. If this functionality is important for your site, you will need to use the standard status icons.</p>
<blockquote>
<p>Note: Previous versions of vBulletin 5 would always show avatars in Responsive View. In order to maintain consistency, Responsive View now follows this new setting.</p>
</blockquote>
<h3>Semantic HTML</h3>
<p>By using semantic HTML tags, we can provide additional information to search engines and accessibility tools (e.g. Screen Readers). Using these tags allows the system to signify which information is more important on the page.</p>
<p>We have converted the header, footer, and Channel Navigation Modules to better use Semantic HTML tags. The system is now using the &lt;header&gt;, &lt;footer&gt;, &lt;nav&gt;, and &lt;main&gt; tags where appropriate. Header elements are wrapped in the &lt;header&gt; tag instead of using the &lt;div&gt; tag. Footer elements on each page now use the &lt;footer&gt; tag. Menus and breadcrumbs are wrapped in the &lt;nav&gt; tag. The primary content of each page now uses the &lt;main&gt;. We have worked to make these changes backwards compatible and you should not see any difference in the rendering of your pages. However, if your custom CSS targets container.class (e.g. div.header) then you will need to update your CSS for these changes.</p>
<p>If you are using one of the provided styles, then you will not have to do anything to take advantage of this change.</p>
<hr>
<h2>Back End / AdminCP</h2>
<h3>Style Variable Validation</h3>
<p>As a security measure, we have applied a series of validation rules to CSS attributes entered as Style Variable values and in User Profile Customization. These rules limit the amount of CSS that can be added to a variable and prevent users from adding their own attributes using third-party software to alter the page. As an Administrator, you can apply more complex CSS using the css_additional.css template for your style.</p>
<p>The following validation rules have been added to the system:</p>
<ol>
<li><strong>Default</strong>
<ul>
<li>Applies to all style variables unless specified below.</li>
<li>Limited to less than 250 characters.</li>
<li>Does not contain the characters &quot;{}&quot;.</li>
</ul>
</li>
<li><strong>URL and Image</strong>
<ul>
<li>URLs must be quoted.</li>
<li>Unescaped braces &quot;{}&quot; are not allowed.</li>
<li>Base64 is allowed as long as there are no braces.</li>
</ul>
</li>
<li><strong>Font Family</strong>
<ul>
<li>No more than 20 font families listed.</li>
<li>Font Family list is comma separated.</li>
<li>Each font name is no more than 100 characters.</li>
<li>Font names with spaces must be enclosed within quotation marks.</li>
</ul>
</li>
</ol>
<h3>Security Headers / Anti-Clickjacking</h3>
<p>We have added several options to control how your site can be embedded in frames. Embedding a website within another is a frequent method used to PHISH for user data. vBulletin now allows you to prevent this and control where your site appears. This security measure will help safeguard your user's information and your site overall.</p>
<p>These HTTP Headers are sent to the browser for interpretation. Each browser may interpret these headers differently.</p>
<p>The options can be found in the AdminCP under <code>Settings -&gt; Options -&gt; Cookie and HTTP Header Options</code>.</p>
<ul>
<li><strong>Anti-Clickjacking Headers</strong>: This setting can be used to prevent your site from being included within HTML Frames. The default value will allow your site to be used in frames originating from the same URL. This will prevent sites that currently use frames from breaking. Setting this to Deny will prevent any framing. There are for options available:
<ul>
<li>Allow all Framing. This is how vBulletin works today. This option provides no security.</li>
<li>Deny all Framing. This is the most restrictive Option.</li>
<li>Allow from Same Site. Allows the system to be embedded in frames on your site. This provides basic security but will not break current sites. This will allow your site to be embedded in Frames that share the same domain as your Forum URL. Note: Accessing via domain name and IP Address will be considered two different sites.</li>
</ul>
</li>
<li><strong>Content-Security-Policy Header Value</strong>: This header is supported by all modern browsers and provides a robust framework for browser security. Please view the inline help for more information. This option is for Advanced Users and Network Administrators. For best results, you should set the Anti-Clickjacking Header value to Allow All and then handle that within your Content Security Policy.</li>
</ul>
<h3>Content Notifications</h3>
<p>Administrators can specify words that will trigger notifications when they are used. The system works similarly to the existing word censor options. After you have created your list of words, the system will monitor them. When a word is used, the site Administrators and Moderators will be notified via their message center and email based on their notification settings.</p>
<p>The option for this is available in the AdminCP under <code>Settings -&gt; Options -&gt; User Banning Options</code>.</p>
<h3>PHP Imagick Support</h3>
<p>We have added support for the PECL imagick class available for PHP. Using this class can reduce server overhead and processing time when compared to the ImageMagick command line tools using the exec() function. Please see the <a href="https://www.php.net/manual/en/book.imagick.php">PHP Documentation</a> for information on installing this class on your server. Once installed, the class can be selected within the AdminCP under <code>Settings -&gt; Options -&gt; Image Settings</code>.</p>
<blockquote>
<p>Note: In a future version of vBulletin, we will be removing the older command line implementation of ImageMagick.</p>
</blockquote>
<h3>Guest Permissions</h3>
<p>On new installations, several permissions for the Guest Users usergroup have been changed. The following permissions have been changed so that they default to No for guests:</p>
<ul>
<li>Can view Member Info.</li>
<li>Skip Moderation for Topics.</li>
<li>Skip Moderation for Replies.</li>
<li>Skip Moderation for Posts/Topics With Attachments.</li>
</ul>
<hr>
<h2>Additional Information</h2>
<h3>Install / Upgrade</h3>
<ul>
<li><a href="https://www.vbulletin.com/forum/node/4391348">Installation Instructions</a></li>
<li><a href="https://www.vbulletin.com/forum/node/4391346">Upgrade Instructions</a></li>
</ul>
<h3>File Cleanup</h3>
<p>After upgrading your vBulletin system, you should delete any possible obsolete files. You can obtain more information on why this is needed and instructions on how to do this in this <a href="https://www.vbulletin.com/forum/node/4391346"><strong>topic</strong></a> in the vBulletin 5 Installs &amp; Upgrades forum.</p>
<h3>System Requirements</h3>
<h4>Minimum System Requirements</h4>
<ul>
<li>PHP Version: 7.1.0</li>
<li>MySQL Version: 5.6.10</li>
<li>MariaDB Version: 10.0.0</li>
</ul>
<h4>Recommended System Requirements</h4>
<ul>
<li>PHP Version: 7.3 or higher</li>
<li>MySQL Version: 8.0 or higher</li>
<li>MariaDB Version: 10.3+</li>
</ul>
<p>For more information see <a href="https://www.vbulletin.com/forum/node/4391344">vBulletin Connect System Requirements</a>.</p>
<h3>Current Version Support Schedule</h3>
<p>It is recommended to use the latest version of vBulletin at all times.</p>
<ul>
<li>Active Version - 5.5.4</li>
<li>Security Patch - 5.5.3</li>
<li>Security Patch - 5.5.2</li>
<li>No Patch Release - 5.5.1 or earlier.</li>
</ul>
<h3>Discussion</h3>
<p>If you have any questions about these changes you may discuss them here: </p>
<p>If you find an issue with the software or wish to place a feature request please visit our <a href="https://tracker.vbulletin.com">tracker</a>.</p>
<p>In order to receive support for your vBulletin Product please visit our <a href="https://www.vbulletin.com/forum/">community forums</a>.</p>