Updated Plone / Enfold Server 3 security fix

Enfold Systems has created an installer for the newly updated Plone hotfix. This update resolves a problem that caused failures when submitting forms after installing the previous security hotfix. These issues are in the open-source Plone content management system, which is the core of Enfold Server.

These issues affect only the Enfold Server 3.x series. They do not affect the Enfold Server 2.x series.

As soon as possible, all Enfold Server 3.x site administrators should:

1. Download the new installer:

   Download installer

2. Uninstall the old hotfix. In Windows Control Panel, open Add or Remove Programs and remove Enfold Server 2007.11.06 Update (build 7608).
3. Delete the old hotfix in the Zope product list. On your server, go to http://localhost:8080/Control_Panel/Products/manage. Select the check box next to PloneHotfix20071106, scroll down and click Delete.
4. Run the new installer.
5. Restart Enfold Server.
6. Verify the patch is working. Again, go to http://localhost:8080/Control_Panel/Products/manage.

7. Click PloneHotfix20071106 (Installed product PloneHotfix20071106 (20071106-2)). Note the "-2" inside the second set of parentheses.

   • If the patch is working, you will see an item named Help, as in this screenshot.
   • If the patch is not working, you will see an error message.

Hotfix details, including a list of changes in this new update, are available on the Plone community Web site.

If you have questions about installing this fix or how this issue may affect your system, please e-mail support@enfoldsystems.com.