最新リリースノート

Moodle 1.4.3 (17 December, 2004)

(このリリースにはセキュリティに関して重要な修正が行われていますので、可能な限り早急に以前のバージョンのMoodleをこのバージョンにアップグレードされることを強くお勧めします。)

重要なセキュリティに関する修正

クッキーデータに関するチェック/クリーニングの改善
セッション固定に関する予防策
RSSフィード、ipアトラスパラメータ、用語集、フォーラム、テーマ選択、SCORMモジュール、ドキュメントビューアに関するチェック/クリーニングの改善
アップロードファイルに関する保護手段の追加
ディレクトリ横断に関する保護手段の追加
cronで使用される変数$FULLMEに関する修正
内部ライブラリが直接呼び出されることを防ぐ修正
活動が非表示の場合、用語集を閲覧をさせない修正
最近の活動に関して非表示のセクションを学生から隠す修正
ゲストユーザがカレンダーを閲覧できる問題の修正
TEX表示のエンコーディングに関する修正

機能追加

ユーザ登録の唯一性に関する強制 - この追加により同時にパフォーマンスの改善も行われます。
PostgreSQLのトランザクションサポートを追加
ログインとログアウトの記録
WikiおよびSCORMの新しいzipコードの使用 - この修正によりSCORMに関して報告された問題を解決します。
用語集に関する新しいページングシステム
データロスを防ぐため、LDAPのユーザ情報をMoodleにインサート
pclzipのバージョンアップ
Memory_limitを、php.ini、commandline、httpd.conf、.htaccess等の上位のconfig設定により書き換えられるように変更
新しい翻訳の開始: マオリ語、カンナダ語、アルバニア語、ベトナム語
他の言語パックに関して多くの翻訳語の追加
開始されていなくても、教師は常にクイズを試すことが可能
用語集のプリントプレビューをフォーマット毎に変える
用語集の検索でエイリアス検索も可能
さらに柔軟なシンタックスを使用できるように多言語フィルタを改善

パフォーマンスの改善

ヘッダのキャッシングにより、全てのページにおいて、戻るボタンを使用する時のパフォーマンスを改善
大規模なMoodleの設置に関してパフォーマンスを上げるために、データベースのインデックスを数多く追加
Moodleでコース一覧が表示される場面において、パフォーマンスを改善
不必要なデータベースの検索、並び替えを取り除くことによる様々な部分の最適化

他のバグ修正

重複したコースID番号によるリストアに関する修正
Postgresに関する多くの細かな問題に関する修正
デバッグモード使用時の不必要な警告に関する修正
PHP5の警告に関数する修正
LDAPユーザデータで、アポストロフィ、クオート、バックスラッシュを使用できるように修正
Postgresのコース検索結果の表示に関する修正
ユーザ検索時の空白使用に関するバグの修正
複数のチャットルームで全てのユーザが表示されるバグの修正
インストールスクリプトのバグの修正
大量ユーザインポート時のユーザ名の大文字小文字の判別に関するバグの修正
フォーラムの投稿を評価した後のリダイレクトに関するバグの修正
小テストの○×問題に関するバグの修正
小テストのプレビューに関するバグの修正
言語の編集に関するバグの修正
SCORMモジュールの複数の細かなバグの修正
SCORMでユーザ写真を適切に表示できるように修正
活動フィルタにより活動名を名称でソートするように修正
用語集の検索においてエイリアスも検索するように修正
RSSエラーを、間違ったRSSよりもRSSファイルのエラーにより表示するように修正
SCORMパッケージの妥当性およびPHP5対応に関する問題の修正
空のカテゴリのバックアップ/リストアに関する問題の修正
wikiにおけるXHTMLの改善
最初のchatセッションに関数するチャットレポートのバグの修正
多くのファイルや大きなファイルを削除する時に発生するSCORMの問題の修正
用語集の百科事典フォーマットに関する問題の修正
SCORMにおけるzipコードとの統合に関するバグの修正
プレインテキストメール通知に関するダイアログのバグの修正
社会活動ブロックにおけるセッションキー変数喪失のバグの修正
コースにおいて余分なセクションをナビメニューに入れるように修正
カレンダーにおいて夏時間に関する修正を追加
新しいコースで最初のクイズを編集する場合、デフォルトカテゴリを割り当てるように修正
支払い合計金額の受け入れに関するPaypalモジュールのバグの修正
コースファイルに関してモード選択できないバグの修正

Moodle 1.4.2 (5th November, 2004)

(Because this release contains important security fixes, we highly advise that sites using any previous version of Moodle upgrade to this version as soon as possible.)

Some important security fixes

Better checking/cleaning of script parameters used in quite a few areas throughout Moodle (a BIG thanks to Petr Skoda for his recent security audit!)
Quoted some SQL parameters in the glossary module to prevent possible injection

A few small new things

New PAM authentication module for direct authentication on Unix/Linux
Course creators can now restore to new or existing courses
Forum posts now include detailed headers to allow correct threading in mail clients

And a bunch of other bug fixes

Backup is now more able to cope with errors (eg if backup is interrupted) and can clean up uncompleted files
Fix for database authentication against a PostgreSQL database
Fixes for some parts of installation to PostgreSQL
Forum subject lines are now only broken up in recent activity display
Database-based enrolments now actually work :-)
SQL fixes for creation of RSS feeds from PostgreSQL
Added rtsp to the list of allowed protocols in cleaned HTML text
User profile and profile editing page can be called without parameters
Upgraded xmlize library to latest version
Upgraded phpmailer library to latest version
Various small code-only cleanups
Admin menu now allows backup/restore of the "site course" (front page)
Fixed a display bug in the forums index which only showed in PHP5
Highlighting function (eg after search) was stripping backslashes
Info from LDAP is now decoded from utf8
Course listings now work better with very large amounts of courses
Two SCORM bugs fixed (a typo and a problem with onbeforeunload)
Some cleanups when printing text, headers and variables in Lesson
Calendar now functions as expected even when you login as someone else
Fixed a few remaining short PHP tags
Better randomness for random questions (fix for bug introduced in 1.4)
When a teacher is removed from a course, they are now also removed from all groups in that course
Fixed strip_pages bug in Wiki
Fixes for charset detection in backups and multilang filter under PHP5

Moodle 1.4.1 (12th September, 2004)

A few little new things

New "Email Protection" filter will obfuscate all email addresses within all texts (to help prevent automated address-harvesting)
Allowed email addresses can now be restricted (see config-dist.php for details)
Extra instructions for translators embedded in translation interface
New help page for Directory Paths

And some bug fixes

Improved performance when viewing site logs
Improved paging and performance in glossary
Glossary entries are now shown correctly if they belong to multiple categories
Do not redeclare auth_user_login upon failed login
Fixed two missing icons in the cordoroyblue theme
Fixed missing "New event" button on Upcoming Events page
Always addslashes on chat messages from daemon users before inserting into db.
Fixes for handling of fixed enrollment periods when this is set for a course
Site course ID (defined as SITEID) is no longer assumed to be always 1
Default memory limits are increased beyond 16M, to help Moodle continue working even when there is some unplanned memory problem
Smilies are now rendered as pictures in Markdown format texts
Workshops work under Recent Activity again
file.php can now only be used to access data within courses
Improved behaviour of calendar blocks on home page
Fixed quotes bug with PostgreSQL database specification produced by installer
Fixed sometimes-missing display of correct answers during quiz review
<tt> and <code> are now allowed tags
Section summaries, course summaries and labels are again no longer cleaned of Javascript
Fixed a rare LDAP bug that could cause new accounts not to be created

Moodle 1.4 (31st August, 2004)

Headlines

Compatibility with PHP 5
New easy installer wizard leads you through the creation of the initial config.php file
Installation is now completely localised to your preferred language
Completely revamped Resource module make it easier to add new resources and to send data to them.
New Enrolment system featuring modules such as completely automated Paypal payments, flatfile scanning, or external database control.
Blocks now work on the front page, plus you can put a topic section above the middle part
Chat now includes a server-side daemon (in PHP) for scalable, instant chat
New Wiki module!
New support for editing text using the Markdown format
Many bug fixes in all areas

Under the hood

Resource module has its own Add menu now, and uses class-based submodules, making it much easier now to add new resource types to this menu
Quiz module has been refactored into class-based questiontype plugins.
Enrolment process has been refactored into class-based enrolment plugins.
Glossary display formats are now name-based, and it's easier to plugin new ones.
Improved behaviour of many modules when they are used on the site page.
Revised Filter structure is faster and now compatible with Turck MMcache.
Adding activities is now more forgiving of fields left empty
We can now alter PostgreSQL columns at will using table_column()
RSS generation has been sped up tremendously, putting much less load on cron
Some bigger modules have split lib.php into locallib.php for less memory usage

Languages and localisation

Updates to nearly every language pack
Moodle can override the default character set in Apache, making languages more reliable
Multibyte languages now wrap properly
Better handling of locales and encodings on very multilingual sites (like moodle.org)
New languages: Slovenian and Hebrew!

Security Fixes

Fixed a number of possible XSS entry points and path disclosures
Attributes of tags in HTML are now parsed even more thoroughly for naughty scripts
User profile pages are no longer available by default to strangers
All text is now cleaned on output (not just input)
Email addresses are not used on outgoing mail if the user requests that
New setting loginhttps will use secure https for the login, then switch back to http

Administration

Spiffy new interfaces for adding/removing students, creators and admins
Failed logins are now logged, and can be displayed to users upon a successful login
Logs now support viewing by group, and by errors
Modules now behave more consistently on the site front page
Front page "students" can be all users on site, or all users in at least one course on the site
Email-sending can now be enabled/disabled on any user's profile page

Authentication

All authentication methods will now co-exist with internally-created accounts
New support for authenticating against First Class servers
Fixes for POP3 authentication

Navigation

Visitors can be automatically logged in as guest
Jump menu now always shows "Jump to" to help distribute clues about what it does
Jump menu now has a much clearer way of grouping activities into sections

Blocks

Block system can now cope with custom course formats and changes in format
New login block allows login from site front page
Online users block on home page shows users from the whole site

Editor

New editor configuration screen for the admin
New support for anchors within pages
Spell-checking is now supported in the editor, it uses aspell on your server operating system

Chat

Chat now includes a server-side daemon (in PHP) for scalable, instant chat

Choice

Significantly revamped to make a lot more sense, with more option

Forum

Several fixes when dealing with groups
Users can choose to receive forum posts as daily digests of subject lines or whole posts.
Discussion listing is now paged
Teachers now have complete control over forum subscriptions, and can subscribe anyone at will
"Last post" date is shortened and linked to the last post
Forums now list RSS feeds on the index page
Better-looking HTML mail using the full stylesheet
Forum mail older than two days is never sent out (to prevent unwanted floods)
Blocked mail is logged so that teachers can see it
Discussion branches can be "split" from the main discussion, into a new discussion

Glossary

Glossary entries can be defined as "always editable"
Glossaries now list RSS feeds on the index page
Many fixes throughout

Quiz

New floating timer for timed quizzes
Attempts may now be restricted to specific computers
Quizzes can now require a special password
New question type for Calculated Questions
Numerical questions now support units
Questions can be previewed in the editing pages
Questions can now be exported in several formats
More intelligent handling of category listing when editing questions
New (and incomplete) XML export format, will eventually be quiz-feature-complete
Shortanswers can now contain all sorts of strange characters

Resource

Adding resources is now a one-step process with more control
Web page, Web link, Uploaded file and Program resource all combined into one type!
Program resources replaced by Parameters that allow a lot of of interesting interaction with external resources, both remote and uploaded into Moodle.
Collapsible forms with memory to make forms less daunting for beginners without slowing down experienced users

SCORM

Many fixes and improvements - works with an even wider variety of packages
Optional extra verification of the manifest file


: Finally, don't forget to look at some of the many optional and innovative modules under development.

If you experience any bugs in this release, please report them moodle.org/bugs so we can fix them in the next release.

Old release information

Moodle Documentation

Version: $Id$