1.6

How do I restore my data?

Submitted by ehu on Mon, 05/13/2013 - 13:04

Assuming you have followed the How Do I Backup My Data instructions, you can restore your database as follows...

1) Restore the roles

$ psql -h [database host] -U [database admin user] < [roles backup file]

For example:

$ psql -h localhost -U lsmb_dbadmin < lsmb-roles.sqlc

2) Create a new database to restore into

$ psql -h [database host] -U [database admin user] -c 'CREATE DATABASE [new company name]'

For example:

Read more about How do I restore my data?
Log in or register to post comments

How do I backup my data?

Submitted by Anonymous (not verified) on Tue, 11/29/2011 - 19:44

Log in to the the 'setup.pl' administrative interface, using your ledgersmb database admin user (usually "lsmb_dbadmin" or "postgres"). The default address for setup.pl is http://localhost/ledgersmb/setup.pl.

There are 2 buttons:

Backup database (parts, customers, accounting records, etc)
Backup roles (your login accounts and rights)

One creates a backup of the content of your database. The other creates a backup of the roles.

Read more about How do I backup my data?
1 comment
Log in or register to post comments

Security advisory for CVE-2021-3731 (Clickjacking)

Submitted by ehu on Fri, 08/20/2021 - 14:22

Read more about Security advisory for CVE-2021-3731 (Clickjacking)

Insufficient protection against 'clickjacking'

Summary

LedgerSMB does not sufficiently guard against being wrapped by
other sites, making it vulnerable to 'clickjacking. This allows
an attacker to trick a targetted user to execute unintended actions.

Known vulnerable

All of:

Security advisory for CVE-2021-3693 (Cross site scripting)

Submitted by ehu on Fri, 08/20/2021 - 03:14

Read more about Security advisory for CVE-2021-3693 (Cross site scripting)

DOM cross-site scripting of authenticated users in LedgerSMB

Summary

LedgerSMB does not check the origin of HTML fragments merged into the browser's DOM. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure.

Known vulnerable

All of:

- 1.5.0 upto 1.5.30 (including)
- 1.6.0 upto 1.6.33 (including)
- 1.7.0 upto 1.7.32 (including)
- 1.8.0 upto 1.8.17 (including)

Known fixed

- 1.7.33
- 1.8.18

Security advisory for CVE-2021-3694 (Cross site scripting)

Submitted by ehu on Fri, 08/20/2021 - 03:13

Read more about Security advisory for CVE-2021-3694 (Cross site scripting)

Reflected cross-site scripting of authenticated users in LedgerSMB

Summary

LedgerSMB does not sufficiently HTML-encode error messages sent to the browser. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure.

Known vulnerable

All of:

1.6.33 Released

Submitted by LedgerSMB_Team on Thu, 06/03/2021 - 11:38

The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:

Changelog for 1.6.33

* Follow-up (fix) to upgrades blocked by files attached to transactions (Erik H)

Erik H is Erik Huelsmann

For installation instructions and system requirements, see
https://github.com/ledgersmb/LedgerSMB/blob/1.6.33/README.md

Read more about 1.6.33 Released

1.6.32 Released

Submitted by ehu on Sat, 05/29/2021 - 12:39

The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release will be the last one in the 1.6 release line as it will
hit end-of-life next week*; it contains the following fixes and improvements:

Read more about 1.6.32 Released

1.6.31 Released

Submitted by LedgerSMB_Team on Sun, 05/02/2021 - 10:28

The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:

Changelog for 1.6.31

* Improve upgrades in light of files attached to transactions (Erik H, #5405)

Erik H is Erik Huelsmann

For installation instructions and system requirements, see
https://github.com/ledgersmb/LedgerSMB/blob/1.6.31/README.md

Read more about 1.6.31 Released

1.6.30 Released

Submitted by LedgerSMB_Team on Sun, 03/21/2021 - 05:13

The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:

Changelog for 1.6.30

* Fix Number not updated by 'Save as New' on order and quote (Erik H, #5356)
* Performance improvements through added database indexes (Erik H)

Erik H is Erik Huelsmann

Read more about 1.6.30 Released

1.6.29 Released

Submitted by LedgerSMB_Team on Sun, 01/31/2021 - 11:10

The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:

Changelog for 1.6.29

* Disable the broken-on-orders Schedule button on orders (Erik H, #5295)
* Fix several LedgerSMB 1.3 migration issues (Erik H)
* Fix dates on weekly-entry timecards (Richard W, #5336)

Erik H is Erik Huelsmann
Richard W is Richard T. Weeks

Read more about 1.6.29 Released

Subscribe to 1.6