IMPORTANT: Security release, please update your instances! This is another security release, the exploit is documented as CVE-2015-3297 — If a specifically formatted URL is used to access Etherpad a file can be read from the filesystem. This issue has existed in Etherpad since 2012 so pretty much all deployments will be effected. We have […]
Category Archives: Features
Release 1.5.4
This is our final release before we introduce some breaking changes over the weekend. This release includes one critical security fix which can expose a file from your file system to a remote visitor. CVE due soon. Download and upgrade at http://etherpad.org
Release 1.5.3
Etherpad 1.5.3 is with us.. This release is a security release. The security issue is a big one so please do update… Security Don’t allow read files on directory traversal (CVE due very shortly) Accessibility Accessibility support for Screen readers, includes new fonts and keyboard shortcuts API API endpoint for Append Chat Message and Chat […]
Accessibility in Etherpad – a11n
Today we’re proud to announce that Etherpad is now accessibility enabled. TLDR; Screen readers are fully supported Keyboard shortcuts are now available for the pad and timeslider pages Various new fonts available in core (only changes viewers experience) High contrast user experience now available (see ep_themes plugin) Control Shift 2 shows author information pop-up for […]
Rewriting Server Name in Nginx
Nginx by Default with Etherpad will display the Nginx Server name value and not forward the Etherpad Server name value. This is a problem as it means your Etherpad version is not available in the Headers which makes debug more difficult among other things. To solve this add the below your Nginx config and you […]
Academic writing requirements
Here’s some plugins you can use to enable Etherpad to be useful for academic writing. All founds on the Etherpad plugin page with minimal effort. Rights Mgmt: Etherpad Admin Pads Privacy: Take your pick from the plugin page. Footnotes: Use ep_foot_note plugin Tables: Use the Etherpad Tables plugin Images: Use the Etherpad images plugin Formulas: […]
Update your Etherpad
Periodically we sweep through sites that run Etherpad and check for any instances that are out of date.. This time we were alarmed by the number of out of date instances that contain security issues.. Please update your instances.. This is the list of URLS of out of date instances that contain security issues. ยท […]
Etherpad CLI Client
Interact with Pad contents in real time from within Node and from your CLI. The CLI can be used to catch edit events from Etherpad. Changes are sent as Changesets so there is no performance drop or additional bandwidth required. We use the fastest possible method to reflected changes of a pad. The CLI Client […]
Etherpad v1.5.1 – “We’d rather die standing than live on our knees” edition
What’s new TLDR; Mostly bugfixes, one security/privacy fix. One UI feature (Chat and Users always on screen) NEW: High resolution Icon NEW: Use HTTPS for plugins.json download NEW: Add ‘last update’ column NEW: Show users and chat at the same time (try it) NEW: Support io.js Fix: removeAttributeOnLine now works properly Fix: Plugin search and […]
Etherpad 1.5 – Turkey Slayer Edition
Usually on releases the first thing we do is tell you what’s new and why you should upgrade. If you are looking for this, scroll down. This release is different. What makes Etherpad such a great project is the number of contributors that can maintain the software. This means that should one maintainer be unable […]