diff -uNr a/mp-wp/manifest b/mp-wp/manifest --- a/mp-wp/manifest 4ad5c0b7eda9c670f311a23da92114ab10bf30b9990b46882047aea3ab569395f643cb4aa6144ee0ba74b9821df1e69b26d299c1f0e9c11631a78c46f95913bd +++ b/mp-wp/manifest 69b0efa256e0f4de208ab3c73a6dec8882bd60f194a330bdb67f300b73f4cd12f2a57ccded30b236f9d6831263184eac2c4a3fa23c9fd30391d67c2f092baa5e @@ -5,3 +5,4 @@ 569483 mp-wp_remove-tinymce-and-other-crud billymg Remove tinymce, most of the importers, the self-update feature, and the google gears and press-this plugins 602064 mp-wp_apply-htmlspecialchars-to-post-edit-content billymg Run post content through htmlspecialchars() before loading into the post edit UI 605926 mp-wp_comments_filtering diana_coman Recent comments widget should show only people's comments (no track/pingbacks); theme default changed to show trackbacks/pingbacks as last/at the bottom in an article's comments list. +629903 mp-wp_remove-textselectionjs-pop3-etc-r2 jfw Remove the unreliable JS-based selection (reground: including wrapper spans), posting by POP3 login, and a stray .php.orig file. Neutralize and comment the example pingback updater. diff -uNr a/mp-wp/pingback-updater.php b/mp-wp/pingback-updater.php --- a/mp-wp/pingback-updater.php 219a4fc0cdfe92c1972a536e37c4d3d9dca6758d744eb7391787d87434543f1bb2961305a0f4dab21ee42bde64bc0870b70981eecad38a29f308123bb42b76b5 +++ b/mp-wp/pingback-updater.php 6b99c0b24445f116108a7e92dfc7018a7420dc01813dcfd12168a09dc1c19c7ea8801120f692809e67493eedcb4d2f3e2a9a88dd73abbe0ce8b94e9a56af1ca1 @@ -1,4 +1,6 @@ +/* See http://trilema.com/2015/how-to-fix-your-local-trackbacks/ (but note that .php files in your WP directory can be executed by anyone). + // Db connect data. $db_name = ''; @@ -45,4 +47,5 @@ } +*/ ?> diff -uNr a/mp-wp/wp-admin/includes/schema.php b/mp-wp/wp-admin/includes/schema.php --- a/mp-wp/wp-admin/includes/schema.php 261cb6fc5fc05c18a47689861feae94267b0ba35fa4e2f7138a2671ab615f553d10d345d6869187f3080e99daffa1bd0924a2c65f6d7955728c0d815ab176c95 +++ b/mp-wp/wp-admin/includes/schema.php c890a951b231c4c93f6b5c87cd66f0a3312c83fd26fa04718ee43a55d67b18c7e4cc2e3b44e54276e093bb952b191430260f6de08ad6fca55dc96e7987997c4a @@ -194,10 +194,6 @@ add_option('posts_per_rss', 10); add_option('rss_excerpt_length', 50); add_option('rss_use_excerpt', 0); - add_option('mailserver_url', 'mail.example.com'); - add_option('mailserver_login', 'login@example.com'); - add_option('mailserver_pass', 'password'); - add_option('mailserver_port', 110); add_option('default_category', 1); add_option('default_comment_status', 'open'); add_option('default_ping_status', 'open'); diff -uNr a/mp-wp/wp-admin/options-writing.php b/mp-wp/wp-admin/options-writing.php --- a/mp-wp/wp-admin/options-writing.php ce5dd19582efd856b7b9f0cec13cde48a400ed1535e83383619a236f7490e8779bdb9ae7a1fcb28baf6288442ce31205c946efc24001e074cdbaf5e41367aaf0 +++ b/mp-wp/wp-admin/options-writing.php 8cbbcb864590dd9ace0c79288a9b31e43b65223e3fe0b295b4d8b79102a08d0cfb47e5fc3516ab50c6e3b92e8995586ef57624453f4532082c47ac0c39646e1c @@ -78,38 +78,6 @@ -
-%s, %s, %s.'), wp_generate_password(8, false), wp_generate_password(8, false), wp_generate_password(8, false)) ?>
- -- | - - - | -
---|---|
- | - |
- | - - | -
- | - 0, 'name' => 'default_email_category', 'orderby' => 'name', 'selected' => get_option('default_email_category'), 'hierarchical' => true)); -?> - | -
- ")) : null; -$comment_checks = ( isset($_POST['comment_post_time']) ) ? trim($_POST['comment_post_time']) : null; -$comment_check = explode ("-",$comment_checks); -$comment_time = $comment_check[0]; -$comment_IP = $comment_check[1]; - -// Special handle for idiots. -/* -if (($comment_author_email == "icriss78@yahoo.com")||($comment_author_url == "http://blog.matinal.org")) { - $comment_author_url = ""; - $comment_content.= "\n\nEu sunt o simpla fictiune. Luati ce-am scris mai sus ca atare."; -} -*/ - -// GPG catchall. - -if (strpos($comment_content,"BEGIN PGP")>0) $comment_content = "
".$comment_content."
"; - -// Don't make it much more than 3 or it'll pester users. - -if (((time() - $comment_time) < 3)||(time() - $comment_time > 5000)||($comment_IP <> $_SERVER['REMOTE_ADDR'])) wp_die( __('Looks like you tried to comment off a stale page. Reload the article, count to three and try again.') ); - -$myrows = $wpdb->get_var('SELECT comment_ID FROM tril_comments WHERE comment_author_IP = "'.$_SERVER["REMOTE_ADDR"].'" and comment_approved = "spam";'); -if ($myrows > 0) wp_die( __('Spammers need not apply.') ); - -// If the user is logged in -$user = wp_get_current_user(); -if ( $user->ID ) { - if ( empty( $user->display_name ) ) - $user->display_name=$user->user_login; - $comment_author = $wpdb->escape($user->display_name); - $comment_author_email = $wpdb->escape($user->user_email); - $comment_author_url = $wpdb->escape($user->user_url); - if ( current_user_can('unfiltered_html') ) { - if ( wp_create_nonce('unfiltered-html-comment_' . $comment_post_ID) != $_POST['_wp_unfiltered_html_comment'] ) { - kses_remove_filters(); // start with a clean slate - kses_init_filters(); // set up the filters - } - } -} else { - if ( get_option('comment_registration') ) - wp_die( __('Sorry, you must be logged in to post a comment.') ); -} - -$comment_type = ''; - -if ( get_option('require_name_email') && !$user->ID ) { - if ( 6 > strlen($comment_author_email) || '' == $comment_author ) - wp_die( __('Error: please fill the required fields (name, email).') ); - elseif ( !is_email($comment_author_email)) - wp_die( __('Error: please enter a valid email address.') ); -} - -if ( '' == $comment_content ) - wp_die( __('Error: please type a comment.') ); - -$comment_parent = isset($_POST['comment_parent']) ? absint($_POST['comment_parent']) : 0; - -$commentdata = compact('comment_post_ID', 'comment_author', 'comment_author_email', 'comment_author_url', 'comment_content', 'comment_type', 'comment_parent', 'user_ID'); - -$comment_id = wp_new_comment( $commentdata ); - -$comment = get_comment($comment_id); -if ( !$user->ID ) { - setcookie('comment_author_' . COOKIEHASH, $comment->comment_author, time() + 30000000, COOKIEPATH, COOKIE_DOMAIN); - setcookie('comment_author_email_' . COOKIEHASH, $comment->comment_author_email, time() + 30000000, COOKIEPATH, COOKIE_DOMAIN); - setcookie('comment_author_url_' . COOKIEHASH, clean_url($comment->comment_author_url), time() + 30000000, COOKIEPATH, COOKIE_DOMAIN); -} - -$location = empty($_POST['redirect_to']) ? get_comment_link($comment_id) : $_POST['redirect_to'] . '#comment-' . $comment_id; -$location = apply_filters('comment_post_redirect', $location, $comment); - -wp_redirect($location); - -?> diff -uNr a/mp-wp/wp-content/themes/default/footer.php b/mp-wp/wp-content/themes/default/footer.php --- a/mp-wp/wp-content/themes/default/footer.php acdc1e30a585923e1b0879e650e51185df6faaf999e79ba34c37cf360181ed4a5d67e2d53e4a510c3f4958f776284b865b302130451c548a067dc5efca8fd575 +++ b/mp-wp/wp-content/themes/default/footer.php 44f4703acd8b81f7ddb3181a7e4fe2797a4aa0c2b90fcb615297fbd2e60f6cb79bea1155e56616e2503144862066ce022a16d781d18fa12850441978bb8d2bde @@ -22,6 +22,5 @@ -