YOURLS 1.7.9

YOURLS update : the latest release is now 1.7.9 and you will find it, as usual and only, on YOURLS release page on Github.

This release could have been nicknamed “the Quarantine Edition” since, because or thanks to the corona-lockdown (day 35 and counting) I’ve had quite some time to fix things and improve stuff, as you’ll see on the release page.

Truth be told, I’m also pushing this release as a security update. Last night, the DJ didn’t save my life, but the server hosting https://api.yourls.org was compromised. As a result, you may have seen a message in your YOURLS admin interface advertising a 1.7.8 release with an unusual download link. This was quickly noticed and fixed but a couple hundreds people still downloaded the fake archive, so I’m pushing a newer one for everyone.

Update as usual : download files and overwrite all existing files on your server (your personal files such as plugins or config will remain untouched).

Do the community a favor: stay safe, wash your hands, tweet this post and let friends know about this update!

Short URL to this post: http://yourls.org/eg

🖕 Twitter 😞

This is just a short announcement to highlight the fact that YOURLS online presence has been removed from Twitter. As a matter of fact, for completely unknown reasons, Twitter has suspended our @yourls and @yourls_dev accounts (allegedly: breaking the terms of use, but despite my claims and requests I have no details and they just won’t listen).

So, in you are on Twitter and find anything you read about YOURLS useful, be sure to share it. YOURLS “official” Twitter account being removed just means that, from now on, YOURLS Twitter accounts are its users’. Share the love and help your friends!

Stay safe. Virtual and social-distanced hugs from the YOURLS team.

Short URL to this post: http://yourls.org/ee

YOURLS 1.7.6

Hello 2020! We’re pushing a new release for YOURLS, tagged 1.7.6, with a couple small improvements. You can find boring details in the changelog and on the YOURLS release page on Github.

Updating is the same painless procedure as usual : download and overwrite existing files. But hey, since it’s a new year and everything, why not make a backup of your database somewhere? ;-)

Short URL to this post: http://yourls.org/eb

YOURLS 1.7.4

We’ve just released a security patch for YOURLS, so everyone is advised to update when possible.

What’s new? We’ve hardened security. All prior versions of YOURLS, up to 1.7.3, can be abused in a way that allows a script kiddy malicious user to use your API by forging a valid timestamp, and add unwanted links to your shortener.

How to update? Same and as painless as usual: download the archive and overwrite all existing files. While you’re at it, backup your database, and tell your friends and family to update too!

Short URL to this post: http://yourls.org/ea

YOURLS 1.7.3

Hello world, and happy new year everyone!

This year 2019 starts with a maintenance release of YOURLS, bumping its version to YOURLS 1.7.3.

What’s new? Mostly lil bug fixes and small enhancements here and there, nothing breath taking, but we thought it might be a good idea to push a release that would reflect changes committed this past months, mostly for folks who install “stable” releases, either manually or using third party tools.

How to update? Same as usual, download the archive and overwrite all existing files. While you’re at it, backup your database because this is one of your new year resolutions, and tell your friends and family to update too!

Love and short links to all !


Short URL to this post: http://yourls.org/e0

YOURLS history, sort of

Hello all, long time no see :)

There’s a comprehensive article explaining the history, development, business opportunities and philosophy behind YOURLS. It covers everything someone should know when considering installing YOURLS or an alternative, so I think from now on this will be my recommended reading for the average Joe who wants to know more. Head over to DatingNews: Your Own URL Shortener (YOURLS) Creates Customizable Links That Add Pizzazz to Dating Brands’ Online Marketing Efforts

The whole YOURLS crew wishes all users around the world a happy season and a merry Christmas!

Love and short links, Ozh

Short URL to this post: http://yourls.org/dx

YOURLS 1.7.2

Hello World! I’ve had some free time recently to devote to your favorite URL shortener, and as a result the latest is now YOURLS 1.7.2. Update now and be sure your friends update too!

What’s new? This is a bugfix lil’ release and you will probably won’t notice much if you don’t inspect under the hood. For those interested of course the CHANGELOG keeps track of everything that has been improved, added or fixed.

The only real “major” news is that PHP 5.2 support is officially dropped. To be honest it’s been unofficially supported for quite some time now, and if you still happen to run PHP 5.2 and YOURLS works on it, cool for you, but it should be definitely broken on your side from now on. For the record, as of today less than 2.9% of all YOURLS installs still run on 5.2, while 22% are on 5.3, 28% on 5.4, 20% on 5.5, 20% on 5.6 — as you can see this is pretty even — and just above 5% of you folks running PHP 7+. Yes, in case you were unaware, YOURLS is running fine on PHP 7+.

How to update? Same business as usual. Simply download the archive and overwrite all existing files. While you’re at it, why don’t you backup your database data? I’m sure it’s been a while already since last time :)

Update and tell your friends and family to update too!

Short URL to this post: http://yourls.org/du

YOURLS 1.7.1

Hello world! Your favorite URL shortener just got some love and the latest is now YOURLS 1.7.1. Update and let your friends know!

What’s new? Lots of bug fixes, lots of improvements, nothing that will rock your socks in awe, but several things you won’t notice because they just work better :) See the changelog for more details.

How to update? If updating through the command line is too hardcore for you, just download the archive and overwrite your existing install. This update doesn’t contain anything scary, but of course that’s no reason not to have a proper backup of your data from time to time, right? :)

What’s next? We’ll continue our slow trip down the road map but the most noticeable change for a few of you will be that we are going to start breaking things!

  • we’re dropping PHP 5.2 support. As of today 3.8% of all YOURLS installs run this super deprecated PHP version: folks, please.
  • We’ll probably drop MySQL support as well. An overhaul of the DB stuff has been planned for long, MySQL is deprecated in newer PHP builds, so we’ll very most likely switch to PDO. Sorry for the 1.9% of you that don’t have PDO installed on their server, but that is not something that’s acceptable from a decent web host :)

Update and tell your friends and family to update too!

Short URL to this post: http://yourls.org/dl

Integrating the New Google reCAPTCHA With YOURLS

This guide and screenshots are courtesy of Jared Stark and Erasure Web Services, originally available on their own bitty.link shortener. It’s duplicated here in case their goes offline or missing but please check on the original link first in case they have updated it. Much thanks to them!

How to integrate the New Google reCAPTCHA With YOURLS

The problem

URL shortening services are often a target for automated spam form submissions. The traditional way to prevent spam bots from doing this is to require a captcha to be properly filled out before a form can be submitted. Unfortunately, captchas can significantly reduce the quality of a user experience as they require deciphering cryptic text, putting the pieces of a puzzle together, or some other action which can significantly increase the amount of time a user spends trying to complete a form.

The new Google reCAPTCHA service aims to get rid of those traditional problems with captchas by providing what they call the “No CAPTCHA reCAPTCHA experience.” This is accomplished by using an “advanced risk analysis system” which can separate actual humans from bots with just the check of a box. More information about this system can be found on the Google reCAPTCHA website.

Because of its easy of use, the new Google reCAPTCHA is ideal for URL Shortening websites since it allows users to create short URLS quickly while preventing spam at the same time. This tutorial will show you how to integrate this service into a YOURLS installation, much like what this website, bitty.link uses.

The solution : tutorial

This tutorial will show how to implement the “No CAPTCHA reCAPTCHA” into the default YOURLS public interface setup. Obviously, it can be tweaked and modified for other public interfaces.

Please note that this tutorial uses the reCAPTCHA API 1.0.

  1. Visit the Google reCAPTCHA website. You will need to “Get reCAPTCHA,” which requires a Google account. After filling out the required information, you should receive your site key and secret key. Make sure to keep this information handy.
  2. In your YOURLS installation, open the file includes/functions-html.php. Copy the JavaScript client-side script from the reCAPTCHA website and place it in the described place (screenshot)
  3. Open your public interface file. On the reCAPTCHA website, copy the “sitekey” line and paste it in the described place (screenshot)
  4. Upload a copy of the captcha.php and recaptchalib.php files to the directory of your YOURLS installation that has your public user interface in it. Although those two files do not use the most recent reCAPTCHA API, they are easier to implement and will still work just fine.
  5. In the captcha.php file, paste in your secret and site keys to the indicated spots.
  6. Open your public user interface file. Paste the following under where it says “Part to be executed if FORM has been submitted:” include('captcha.php'); if ($resp != null && $resp->success) { (screenshot)
  7. Place a } at the end of the text block in the example photo: (screenshot)

This is the most basic way to get the new Google reCAPTCHA working on your YOURLS instillation. Although it will prevent spam bots from submitting automated requests, if a user fails to fill out the captcha, unfortunately, a reason to why the request failed will not be given unless more code is added.

Tutorial written by Jared Stark for bitty.link

Short URL to this post: http://yourls.org/di

YOURLS 1.7 and social bookmarklets

Last post in our series “What’s cool with YOURLS 1.7” — be sure to check previous posts dealing with SQL injections, security matters, HTTP improvements and other important subjects.

Today we’ll discuss about being social.

Social Bookmarklets

Bookmarklets have been polished and you have now 3 more to use. Head to the Tools page of your YOURLS install and you will discover these new buttons:

social-book

These bookmarklets will allow you to shorten a URL and share that short URL to Twitter, Facebook or Tumblr, all in one click. For extra goodness, you can also select text on the page you’re shortening before clicking the bookmarklet, and if the social site allows it, that text will serve as a highlight for your shared bit. Try it!

Oh, and of course, if you share links on social networks this way, be sure to tell your friends about YOURLS! :)

Happy shortening !

This ends the tour of new features in YOURLS 1.7. Have fun using it, shorten URLs like it’s your birthday, star the project on Github, follow @yourls for general YOURLS news and tell your friends about it.

Depending on feedback we may release a 1.7.1 if and when we feel it’s necessary. The next batch of features that will make it into 1.8 and 2.0 are currently being under development and, as usual, there is *no ETA* :)

Cheers!

Short URL to this post: http://yourls.org/d1