Dear ILIAS Developer
Collaboration to reach good results in FOSS Development is great, however best results can be achieved if we have the best tools for communication at hand. In several projects in the recent past, we have experienced some difficulty in finding a good suiting tool in working groups. Many groups work together with teams. However, this is not an option for all members in the community. Others collaborate and chat on slack or WebEx. Since this scattered situation in terms of tools usage makes it hard especially for newcomers to find their way into the community, we would like to try to establish one tool as central hub for the community to exchange and work on ideas on projects to improve ILIAS. Therefore, we decided to organise this “Tool Shoot out” where in a first stage everybody is invited to propose her/his favorite “Tool for an Open ILIAS Workspace” along with some description.
You find all further information in the Group we created for that exact purpose on ilias.de<http://ilias.de>, see: https://docu.ilias.de/goto_docu_grp_10913.html
If you have any questions, do not hesitate to contact me.
Hope to hear from you there
Timon Amstutz on behalf of the ILIAS Technical Board
_____________________________
Universität Bern
Vizerektorat Lehre
iLUB - Supportstelle für ICT-gestützte Lehre und Forschung
Technische Leitung iLUB
Konzeption und Entwicklung ILIAS
Hochschulstrasse 6
3012 Bern
<mailto:timon.amstutz@unibe.ch>
http://ilias.unibe.ch/u/t.amstutzhttp://www.ilub.unibe.ch
Dear list members,
as written yesterday: ILIAS is not vulnerable to the current security
issue that is getting wide media coverage. But we have followed the
vendors recommendation and also the official BSI advisory and updated
the logging dependency in the ilServer to the newest available version.
The release manager and the product manager are already working on
preparing a special release out of the regular schedule and we are
confident to be able to announce that at very short notice. If you feel
you can't wait for the release to be bundled and tagged, you can already
update your installation using the "git pull" method as described in
https://docu.ilias.de/goto_docu_lm_367.html#minor-upgrade .
We always recommend to keep your ILIAS installations up-to-date. For
more detailed explanations don't hesitate to contact us.
Best regards,
The ILIAS Security Group
on behalf of the ILIAS e.V. and the Technical Board
Dear list members,
today we received several requests regarding CVE-2021-44228 (log4j -
0-day exploit).
According to our own analysis ILIAS and (more precisely) the ilServer is
most probably NOT affected by this vulnerabilty.
The java server uses the 1.x release of log4j, which seems to be NOT
impacted if(!) the configuration of the application does not(!) use JNDI
or JMS Appender, which is given for the ilServer.
Nevertheless the maintainer of the ilServer decided to upgrade the log4j
library to the recommended version 2.15.x in all maintained ILIAS
releases (still in progress).
We would like to also create awareness that other applications in your
infrastructure might be impacted by CVE-2021-44228.
We always recommend to keep your ILIAS installations up-to-date. For
more detailed explanations don't hesitate to contact us.
Best regards,
The ILIAS Security Group
on behalf of the ILIAS e.V. and the Technical Board
Dear developers,
I recently merged my pull-request (#3710) into trunk, which introduced a
static ilCtrl.
What I forgot to mention is that plugin configuration GUIs no longer work
"magically" as they did before. Every plugin config GUI now needs an
according `@ilCtrl_isCalledBy` statement, that references at least
`ilObjComponentSettingsGUI`. Otherwise link-targets to the config GUI can
no longer be determined and throw an exception.
Best regards,
--
*Thibeau Fuhrer*
Junior Software Developer
*Team ILIAS Core 1*
phone +41 31 972 52 30
support-core1(a)studer-raimann.ch
*studer + raimann ag*
IT- and Learning-Solutions
Farbweg 9
3400 Burgdorf
main +41 31 972 52 22
studer-raimann.ch
