Australia East – Intermittent Connectivity

Starting at approximately 00:30 UTC on 11 Sep 2019, a subset of customers in Australia East may experience intermittent connectivity failures when connecting to resources hosted in this region or when connecting to the Azure Portal. Engineers are currently investigating a possible root cause; some customers should see signs of recovery. The next update will be provided by 04:00 UTC 11 Sep 2019.

Ter informatie: Datacenters van BIT draaien op noodstroomaggregaten

Sinds circa 17:57 uur is er een stroomstoring in Ede en omstreken. De noodstroomvoorzieningen van de datacenters van BIT hebben het wegvallen van de netspanning probleemloos opgevangen. De noodstroomaggregaten zijn direct gestart en leveren nu de stroom voor de datacenters en de koelmachines daarvan. De noodstroomaggregaten hebben ruim voldoende diesel. BIT heeft daarnaast nog een 24/7 contract voor het leveren van diesel zodat er altijd voldoende beschikbaar is. Liander heeft laten weten dat de verwachte oplostijd van de stroomstoring circa 20:15 is.

People of WordPress: Abdullah Ramzan

You’ve probably heard that WordPress is open-source software, and may know that it’s created and run by volunteers. WordPress enthusiasts share many examples of how WordPress changed people’s lives for the better. This monthly series shares some of those lesser-known, amazing stories.

Meet Abdullah Ramzan, from Lahore, Punjab, Pakistan.

Abdullah Ramzan was born and brought up in the under-developed city of ​Layyah​, which is situated in Southern Punjab, Pakistan and surrounded by desert and the river ​Sindh​.

He graduated from college in his home town and started using a computer in ​2010​ when he joined ​Government College University Faisalabad​. Abdullah’s introduction to WordPress happened while he was finishing the last semester of his degree. His final project was based in WordPress.

Ramzan’s late mother was the real hero in his life, helping him with his Kindergarten homework and seeing him off to school every day. 

Before her heart surgery, Ramzan visited her in the hospital ICU, where she hugged him and said: ​“Don’t worry, everything will be good.” Sadly, his mother died during her surgery. However, her influence on Ramzan’s life continues.

Start of Ramzan’s Career:

After graduation, Ramzan struggled to get his first job. He first joined PressTigers as a Software Engineer and met Khawaja Fahad Shakeel, his first mentor. Shakeel provided Ramzan with endless support. Something had always felt missing in his life, but he felt like he was on the right track for the first time in his life when he joined the WordPress community. 

Community – WordCamps and Meetups:

Although Ramzan had used WordPress since ​2015​, attending WordPress meetups and open source contributions turned out to be a game-changer for him. He learned a lot from the WordPress community and platform, and developed strong relationships with several individuals. One of them is Nidhi Jain​ from Udaipur India who he works with on WordPress development. The second is Jonathan Desrosiers​ who he continues to learn a lot from.

In addition, Usman Khalid, the lead organizer of WC Karachi, mentored Ramzan, helping him to develop his community skills. 

With the mentorship of these contributors, Ramzan is confident supporting local WordPress groups and helped to organize ​WordCamp Karachi​, where he spoke for the first time at an international level event. He believes that WordPress has contributed much to his personal identity. 

Abdullah Ramzan at WordCamp Karachi 2018

WordPress and the Future:

As a ​co-organizer of WordPress Meetup Lahore,​ he would love to involve more people in the community leadership team, to provide a platform for people to gather under one roof, to learn and share something with each other.

But he has loftier ambitions. Impressed by Walk to WordCamp Europe, Abdullah is seriously considering walking to WordCamp Asia. He also one day hopes for the opportunity to serve his country as a senator of Pakistan and intends to enter the next senate election.

Words of Encouragement

Abdullah Ramzan knows there is no shortcut to success. “You have to work hard to achieve your goals,” explained Ramzan. He still has much he wishes to accomplish and hopes to be remembered for his impact on the project.

Abdullah believes WordPress can never die as long as people don’t stop innovating to meet new demands. The beauty of WordPress is that it is made for everyone.

Ramzan encouraged, “If you seriously want to do something for yourself, do something for others first. Go for open source, you’ll surely learn how to code. You’ll learn how to work in a team. Join local meetups, meet with the folks: help them, learn from them, and share ideas.”


This post is based on an article originally published on HeroPress.com, a community initiative created by Topher DeRosia. HeroPress highlights people in the WordPress community who have overcome barriers and whose stories would otherwise go unheard.

Meet more WordPress community members over at HeroPress.com!

WordPress 5.2.3 Security and Maintenance Release

WordPress 5.2.3 is now available!

This security and maintenance release features 29 fixes and enhancements. Plus, it adds a number of security fixes—see the list below.

These bugs affect WordPress versions 5.2.2 and earlier; version 5.2.3 fixes them, so you’ll want to upgrade.

If you haven’t yet updated to 5.2, there are also updated versions of 5.0 and earlier that fix the bugs for you.

Security Updates

  • Props to Simon Scannell of RIPS Technologies for finding and disclosing two issues. The first, a cross-site scripting (XSS) vulnerability found in post previews by contributors. The second was a cross-site scripting vulnerability in stored comments. 
  • Props to Tim Coen for disclosing an issue where validation and sanitization of a URL could lead to an open redirect. 
  • Props to Anshul Jain for disclosing reflected cross-site scripting during media uploads.
  • Props to Zhouyuan Yang of Fortinet’s FortiGuard Labs who disclosed a vulnerability for cross-site scripting (XSS) in shortcode previews.
  • Props to Ian Dunn of the Core Security Team for finding and disclosing a case where reflected cross-site scripting could be found in the dashboard.
  • Props to Soroush Dalili (@irsdl) from NCC Group for disclosing an issue with URL sanitization that can lead to cross-site scripting (XSS) attacks.
  • In addition to the above changes, we are also updating jQuery on older versions of WordPress. This change was added in 5.2.1 and is now being brought to older versions. 

You can browse the full list of changes on Trac.

For more info, browse the full list of changes on Trac or check out the Version 5.2.3 documentation page.

WordPress 5.2.3 is a short-cycle maintenance release. The next major release will be version 5.3.

You can download WordPress 5.2.3 from the button at the top of this page, or visit your Dashboard → Updates and click Update Now.

If you have sites that support automatic background updates, they’ve already started the update process.

Thanks and props!

This release brings together contributions from more than 62 other people. Thank you to everyone who made this release possible!

Adam SilversteinAlex ConchaAlex GollerAndrea FerciaAndrew DuthieAndrew OzzAndy Fragen, Ashish ShuklaAslam Shekhbackermann1978Catalin DogaruChetan PrajapatiChris ApreaChristoph Herrdan@micamedia.comDaniel LlewellyndonmhicoElla van DurpeepiquerasFencer04flaviozavanGarrett HyderGary Pendergastgqevu6bsizHardik ThakkarIan BelangerIan DunnJake SpurlockJb AudrasJeffrey PauljikamensJohn BlackbournJonathan Desrosiers, Jorge Costa, karlgrovesKjell ReigstadlaurelfulfordMaje Media LLCMartin SpatovaliyskiMary BaumMonika RaoMukesh Panchalnayana123Ned ZimmermanNick Daugherty, Nilambar SharmanmenescardiPaul Vincent BeigangPedro MendonçaPeter WilsonSergey BiryukovSergey PredvoditelevSharaz ShahidStanimir StoyanovStefano MinoiaTammie ListertellthemachinestmatsuurVaishali PanchalvortfuWill West, and yarnboy.

WordPress 5.2.3 Security and Maintenance Release

WordPress 5.2.3 is now available!

This security and maintenance release features 29 fixes and enhancements. Plus, it adds a number of security fixes—see the list below.

These bugs affect WordPress versions 5.2.2 and earlier; version 5.2.3 fixes them, so you’ll want to upgrade.

If you haven’t yet updated to 5.2, there are also updated versions of 5.0 and earlier that fix the bugs for you.

Security Updates

  • Props to Simon Scannell of RIPS Technologies for finding and disclosing two issues. The first, a cross-site scripting (XSS) vulnerability found in post previews by contributors. The second was a cross-site scripting vulnerability in stored comments. 
  • Props to Tim Coen for disclosing an issue where validation and sanitization of a URL could lead to an open redirect. 
  • Props to Anshul Jain for disclosing reflected cross-site scripting during media uploads.
  • Props to Zhouyuan Yang of Fortinet’s FortiGuard Labs who disclosed a vulnerability for cross-site scripting (XSS) in shortcode previews.
  • Props to Ian Dunn of the Core Security Team for finding and disclosing a case where reflected cross-site scripting could be found in the dashboard.
  • Props to Soroush Dalili (@irsdl) from NCC Group for disclosing an issue with URL sanitization that can lead to cross-site scripting (XSS) attacks.
  • In addition to the above changes, we are also updating jQuery on older versions of WordPress. This change was added in 5.2.1 and is now being brought to older versions. 

You can browse the full list of changes on Trac.

For more info, browse the full list of changes on Trac or check out the Version 5.2.3 documentation page.

WordPress 5.2.3 is a short-cycle maintenance release. The next major release will be version 5.3.

You can download WordPress 5.2.3 from the button at the top of this page, or visit your Dashboard → Updates and click Update Now.

If you have sites that support automatic background updates, they’ve already started the update process.

Thanks and props!

This release brings together contributions from more than 62 other people. Thank you to everyone who made this release possible!

Adam SilversteinAlex ConchaAlex GollerAndrea FerciaAndrew DuthieAndrew OzzAndy Fragen, Ashish ShuklaAslam Shekhbackermann1978Catalin DogaruChetan PrajapatiChris ApreaChristoph Herrdan@micamedia.comDaniel LlewellyndonmhicoElla van DurpeepiquerasFencer04flaviozavanGarrett HyderGary Pendergastgqevu6bsizHardik ThakkarIan BelangerIan DunnJake SpurlockJb AudrasJeffrey PauljikamensJohn BlackbournJonathan Desrosiers, Jorge Costa, karlgrovesKjell ReigstadlaurelfulfordMaje Media LLCMartin SpatovaliyskiMary BaumMonika RaoMukesh Panchalnayana123Ned ZimmermanNick Daugherty, Nilambar SharmanmenescardiPaul Vincent BeigangPedro MendonçaPeter WilsonSergey BiryukovSergey PredvoditelevSharaz ShahidStanimir StoyanovStefano MinoiaTammie ListertellthemachinestmatsuurVaishali PanchalvortfuWill West, and yarnboy.

The Month in WordPress: August 2019

This has been a particularly busy month, with a number of interesting and ambitious proposals for the WordPress project along with active progress across the entire community.


Core Development and Schedule

The upcoming minor release of WordPress, v5.2.3, is currently in the release candidate phase and available for testing.

Following that, the next major release is v5.3 and the Core team has laid out a schedule and scope for development. In addition, a bug scrub schedule and an accessibility-focused schedule have been set out to provide dedicated times for contributors to work on ironing out the bugs in the release.

Want to get involved in building WordPress Core? Follow the Core team blog, and join the #core channel in the Making WordPress Slack group.

Proposal for User Privacy Improvements

The Core Privacy Team has proposed a feature plugin to build a consent and logging mechanism for user privacy. This project will focus on improving the user privacy controls in WordPress Core in order to protect site owners and users alike.

The proposal includes some useful information about building effective controls for users, how other projects have worked on similar efforts, and what kind of time and resources the project will need in order to be developed.

Want to get involved in this feature project? Follow the Core team blog, and join the #core-privacy channel in the Making WordPress Slack group where there are open office hours every Wednesday at 19:00 UTC.

Core Notification System Proposal

A proposal has been made for a new feature project to build a robust notification system for WordPress Core. The aim of the project is to build a system to handle notifications for site owners that can be extended by plugin and theme developers.

This proposal comes on the back of a Trac ticket opened 18 months ago. With weekly meetings to discuss the project, the team behind WP Notify are in the planning phase while they establish exactly how to develop the feature.

Want to get involved in this feature project? Follow the Core team blog, and join the #core channel in the Making WordPress Slack group – meetings for this project happen every Monday at 14:00 and 22:00 UTC.

Local WordPress Development Environment

Members of the Core Team have put together a local development environment for WordPress that runs on Docker. This environment provides an easy way for developers to get involved with WordPress core development. 

The work on this was inspired by the environment used for local Gutenberg development, which has since been improved based on the new work that has been done here.

The announcement post explains how to use the Docker environment. If you have any feedback or bug reports, please comment on the post directly.

Updates for Older Versions of WordPress

On July 30, the Security Team shared that security updates need to undergo the same testing and release process for every major version of WordPress. This means they have to provide long-term support for over fifteen major versions of WordPress. This requires a lot of time and effort, and the team has sought feedback on potential solutions for this challenge

Following this discussion, a proposal was made to auto-update old versions of WordPress to v4.7. This proposal garnered many responses and has since been updated to incorporate feedback from comments. The current recommendation is to secure the six latest versions and to eventually auto-update all older versions of WordPress to 4.7. Since this proposal was made, it has been discussed at Hosting Team meetings and Dev Chat meetings, and the conversation is still ongoing.

Want to provide feedback on this proposal? Comment on the original post with your thoughts.


Further Reading:

Have a story that we should include in the next “Month in WordPress” post? Please submit it here.

Storing upload.bit.nl

Op dit moment is er een storing met ftp op upload.bit.nl. Hierdoor kan er geen verbinding gemaakt worden met ftp naar de Shared Linux Webhosting. Engineers zijn bezig dit te verhelpen.

Onderhoud diverse diensten

Urgentie: Gepland Getroffen diensten: - Webmail - Shared Linux Hosting - Shared MySQL databases - BIT VPN-accounts - UMTS accounts - DSL-accounts - BIT-website - BIT-portal Verwachte impact: - Webmail is kortstondig niet beschikbaar. - Websites op het Shared Linux hostingplatform kunnen kortstondig onbereikbaar zijn. - De uploadserver van het Shared Linux hostingplatform zal kortstondig onbereikbaar zijn. - MySQL-databases op de shared databaseserver db2.bit.nl zullen kortstondig onbereikbaar zijn. - VPN-, UMTS- en DSL-accounts kunnen zich kortstondig niet aanmelden. - BIT-website kan kortstondig niet beschikbaar zijn. - Op de BIT-portal zal het kortstondig niet mogelijk zijn om instellingen voor e-mailaccounts en bSMTP-domeinen aan te passen. Klantactie vereist: Nee Referentienummer: 163788 Samenvatting: Tijdens het onderhoud zal de webmailsoftware geüpgraded en verplaatst worden naar een nieuw databasecluster waardoor webmail kortstondig niet beschikbaar is. Het Shared Linux hostingplatform met PHP-versie 5.5 zal geüpgraded worden naar een nieuw platform met PHP 7.2. Daarnaast zal ook de back-endstorage voor alle Shared Linux hostingplatforms gemigreerd worden naar een nieuwe filer. Tijdens de upgrade en migratie kunnen websites kortstondig onbereikbaar zijn. Tevens is het kortstondig niet mogelijk om via upload.bit.nl websites te up- of downloaden. De shared databaseserver db2.bit.nl zal gemigreerd worden naar een nieuwe server. Tevens zal...

Shared Linux hosting

Op dit moment is er een storing op het Shared Linux hosting platform. Engineers zijn bezig dit te verhelpen. Update geplaatst op 13.13 uur Nodes zijn door de engineers herstart, hierdoor wordt het platform weer actief.

Management Operations West Europe/North Europe – Investigating

Starting at 06:20 UTC on 23 Aug 2019 a subset of customers with resources hosted in West and/or North Europe may receive failure notifications when performing service management operations - such as create, update, delete - for resources. Engineers are aware of this issue and are actively investigating. The next update will be provided in 60 minutes, or as events warrant.