Actions

Contributors: Difference between revisions

From Mahara Wiki

 
(131 intermediate revisions by 2 users not shown)
Line 3: Line 3:
=Core Teams=
=Core Teams=


* [https://launchpad.net/~mahara-contributors/+members Contributors]
*[https://launchpad.net/~mahara-contributors/+members Contributors]
* [https://launchpad.net/~mahara-packaging/+members Debian/Ubuntu Packaging]
*[https://launchpad.net/~mahara-packaging/+members Debian/Ubuntu Packaging]
* [https://launchpad.net/~mahara-release/+members Release Managers and Maintainers]
*[https://launchpad.net/~mahara-release/+members Release Managers and Maintainers]
* [https://launchpad.net/~mahara-reviewers/+members Reviewers]
*[https://launchpad.net/~mahara-reviewers/+members Reviewers]
* [https://launchpad.net/~mahara-security/+members Security]
*[https://launchpad.net/~mahara-security/+members Security]
* [https://launchpad.net/~mahara-lang/+members Translation]
*[https://launchpad.net/~mahara-lang/+members Translation]


=Mahara Governance Group=
=Community=
 
*[http://www.ohloh.net/p/mahara/contributors?query=&sort=commits Developers]
*[https://translations.launchpad.net/+groups/mahara-translation-group Translators]
 
=Security researchers=
 
==Mahara code==
This is a list of security researchers that have contributed to Mahara itself. These people have followed the [[Security | responsible disclosure practise after finding security vulnerabilities in the Mahara codebase]].
 
*[https://twitter.com/spastk Aaron Barnes]
*[https://twitter.com/Abdulahhusam Abdullah Hussam Gazi]
*[https://www.facebook.com/ad271 Abhishek Dashora]
*[https://www.ad3sh.com Adesh Nandkishor Kolte]
*[https://twitter.com/yappare Ahmad Ashraff]
*[https://www.facebook.com/ahmed.jerbi.web.plus Ahmed Jerbi]
*[http://computersecuritywithethicalhacking.blogspot.in/ Ajay Singh Negi]
*[https://twitter.com/hexachordanu Anurag Srivastava]
*[https://www.facebook.com/vishnu.dfx C Vishnu Vardhan Reddy (Vishnu_dfx)]
*[https://chbi.eu/ chbi]
*[http://www.codesafe.cn/ 陈瑞琦 (Chen Ruiqi)]
*[https://blog.deesee.xyz/ Dominic Couture]
*Dushyant Sahu
*[http://www.twitter.com/tibitximer Dylan S. Hailey]
*[https://twitter.com/e3amn2l Emanuel Bronshtein]
*[http://faisalahmed.me/ FaisaL Ahmed]
* Gwenole T.
*[http://facebook.com/hammad.mahmood.14019 Hammad Mahmood]
*[https://twitter.com/hamihax Hamid Ashraf]
*[https://twitter.com/mehimansu Himanshu Kumar Das]
*[https://twitter.com/JKS___ Jaume Llopis Pujal]
*[https://twitter.com/kamilsevi Kamil Sevi]
*[https://m.facebook.com/kirti.ar Kirtikumar Anandrao Ramchandani]
*[https://twitter.com/fuserdd Marlon Starkloff]
*[https://twitter.com/vigneshkumarmr M.R.Vignesh Kumar]
*[http://www.mahmutesat.com Mahmut Esat Yildirim]
*Mike Haworth
*[http://Facebook.com/mushrafmustafaofficial Mushraf Mustafa]
*[https://twitter.com/NarendraBhatiB Narendra Bhati (R00t Sh3ll), Web Security Geeks]
*[https://www.linkedin.com/in/nitingoplani Nitin Goplani]
*[https://twitter.com/prashantnegi_ Prashant Negi]
*[http://rafayhackingarticles.net Rafay Baloch]
*[http://uk.linkedin.com/in/rmironov Roman Mironov]
*[https://www.facebook.com/WhiteHatSecuri SaifAllah benMassaoud]
*[https://www.facebook.com/sajibe.kanti Sajibe Kanti]
*Saksham Anand
*[https://facebook.com/saurabh.nemade Saurabh Chandrakant Nemade]
*Sergey Markov
*[http://iosec.in/ Shekhar Suman]
*[http://www.facebook.com/pen3t3r Siddhesh Gawde]
*[http://tomforb.es Tom Forbes]
*[https://twitter.com/the_real_clown Vineet Kumar]
*[https://twitter.com/rinakikun Wan Ikram]
*[https://launchpad.net/~wcchien Wen-Chang Chien (簡文章)]
*[https://twitter.com/yousukezan Yuji Tounai]
*[http://fb.com/zeex.zeeshan Zeeshan]
 
==Mahara project infrastructure==
This second list is of security researchers who have reported security issues with the configuration or version of software used on the infrastructure of the Mahara project which can include all the websites (mahara.org, wiki.mahara.org, manual.mahara.org, langpacks.mahara.org, reviews.mahara.org, git.mahara.org, test.mahara.org) and the servers that host those websites.
 
These people have followed the [[Security | responsible disclosure practise after finding security vulnerabilities in the Mahara project infrastructure]].
 
The list is in reverse chronological order.
===2021===
 
SPF record not configured for subdomains of mahara.org - [https://www.facebook.com/rimel.ahamedzz MD. Rimel]
 
===2019===
 
Restrict access to certain files on wiki.mahara.org - [https://www.linkedin.com/in/harsh-joshi-107397160 Harsh Joshi]
 
===2018===
 
*Content spoofing on mahara.org - [https://m.facebook.com/Mr.Ch4rLi3 Ratnadip Gajbhiye]
*X-Frame-Options HTTP header on wiki.mahara.org not set to "Deny" - [https://m.facebook.com/Mr.Ch4rLi3 Ratnadip Gajbhiye]
*SSH banner on git.mahara.org contains comment string - [https://m.facebook.com/kirti.ar Kirtikumar Anandrao Ramchandani]
*Not disclosed yet; awaiting reply from the open source project affected - [https://www.linkedin.com/in/nikhil-sahoo-87204b106/ Nikhil Sahoo] and [https://www.linkedin.com/in/ipsita-subhadarshan-sahoo-907b32150/ Ipsita Subhadarshan Sahoo]
*Host header attack on wiki.mahara.org - [https://www.linkedin.com/in/thrivikram-gujarathi-independent-web-penetration-tester-53074796 Thrivikram Gujarathi]
 
===2011-2017===
 
*Preloading of HSTS and increasing max age for wiki.mahara.org - [https://m.facebook.com/Mr.Ch4rLi3 Ratnadip Gajbhiye]
*DNSSEC and Domain Registry Protection (DRP is not available for .org domains though) - [https://m.facebook.com/kirti.ar Kirtikumar Anandrao Ramchandani]
*Set Certificate Authority Authorization - [https://www.facebook.com/profile.php?id=100011024580051 Shwetabh Suman]
*Proxy protection to prevent bypassing of X-Frame-Options - [http://Facebook.com/mushrafmustafaofficial Mushraf Mustafa]
*Extend spam protection with DMARC / DKIM - [https://www.facebook.com/sam.patel.9822 Pal Patel]
*Strict-Transport-Security header was not set - [https://www.linkedin.com/in/kyawthiha89 Kyaw Thiha]
*Content spoofing on 404 page - [https://www.facebook.com/T4YM.phtml Taimoor Abid]
*Some 301 redirects on mahara.org used Host field of HTTP request rather than hard-coded URL; potential for a cache poisoning attack - Vikram Singh Rathore of [https://www.torridnetworks.com/home Torrid Networks Pvt Ltd]
*SPF record for mahara.org breaks length limit - [https://twitter.com/rohittourister Rohit Kumar]
*X-XSS-Protection header is not set ([https://bugs.launchpad.net/mahara/+bug/1531987 Bug report to improve security allaround]) - [https://www.facebook.com/WhiteHatSecuri SaifAllah benMassaoud] - [http://fb.com/zeex.zeeshan Zeeshan]
*<span id="error-page-phishing">mahara.org printing full requested URL on error pages, which could potentially be part of a very weak phishing attack</span> - [https://twitter.com/Girish0777 Girish Sp]
*SSL configuration on mahara.org still allowing TLS_RSA_WITH_RC4_128_SHA and TLS_ECDHE_RSA_WITH_RC4_128_SHA - [http://shawarkhan.com Shawar Khan]
*SSL configuration on mahara.org still allowing TLSv1 128 bit RC4-SHA - [https://www.facebook.com/WhiteHatSecuri SaifAllah benMassaoud]
*SPF not setup for @mahara.org email - [https://www.facebook.com/ashesh1708 Ashesh Kumar] - [http://www.infobittechnologies.com/ Ketan Patil]
*SHA-1 intermediate SSL certificates on some *.mahara.org sites - [https://www.facebook.com/TnMcH Mohamed Chamli]
*mahara.org vulnerable to the CCS SSL/TLS attack (https://www.openssl.org/news/secadv_20140605.txt) - [https://twitter.com/pranavvenkats S. Venkatesh]
*Directory listings active on wiki.mahara.org - [https://www.facebook.com/proXy.test Parveen Yadav] & Ankit Bharathan
*mahara.org servers exposing web server version - [https://twitter.com/e3amn2l Emanuel Bronshtein]
*A problem in the custom DuckDuckGo search setup on mahara.org - [https://twitter.com/secalert David Vieira-Kurz of MajorSeurity]
*mahara.org vulnerable to the BEAST SSL/TLS attack - [http://adamziaja.com Adam Ziaja]
 
=Organisations=
 
A large part of the development on Mahara would not be possible without the funding from institutions and organisations.
 
 
==Mahara 23.04==
 
* [https://call-learning.fr/ CALL Learning]
*[https://carleton.ca/ Carleton University]
*[https://catalyst.net.nz/ Catalyst]
*[https://mitstek.com Mitstek]
*[https://www.pharmacycouncil.org.nz/ Pharmacy Council]
*[https://switch.ch/ SWITCH]
* [https://www.uvic.cat/ Universitat de Vic - Universitat Central de Catalunya]
* [https://www.ccdhb.org.nz/ Te Whatu Ora - Capital, Coast and Hutt Valley]
* [https://www.adhb.health.nz/ Te Whatu Ora - Te Toka Tumai Auckland]
*[https://waitematadhb.govt.nz/ Te Whatu Ora - Waitematā]
*[https://www.wiltshire.ac.uk/ Wiltshire College and University Centre]
 
==Mahara 22.10==
 
*[https://catalyst.net.nz/ Catalyst]
*[http://cqu.edu.au/ Central Queensland University]
*[https://www.curtin.edu.au/ Curtin University]
*[https://www.innersummit.co.uk Innersummit]
*[https://learningworks.co.nz/ LearningWorks]
*[https://learnopen.tech/ learnOPENtech]
*[https://mitstek.com Mitstek]
*[https://www.openlms.net/ Open LMS]
*[https://www.pharmacycouncil.org.nz/ Pharmacy Council]
*[https://www.phbern.ch/ PHBern]
*[https://schulportal.hessen.de/ Schulportal Hessen]
*[https://switch.ch/ SWITCH]
*[http://anu.edu.au/ The Australian National University]
*[http://www.waitematadhb.govt.nz Te Whatu Ora - Waitematā]
 
<br />
 
==Mahara 22.04==
 
*[http://carleton.ca Carleton University]
*[https://catalyst.net.nz/ Catalyst]
*[https://www.curtin.edu.au/ Curtin University]
*[https://www.dcu.ie/ Dublin City University]
*[https://www.griffith.ie/ Griffith College]
*[https://learnopen.tech/ learnOPENtech]
*[https://www.monash.edu Monash University]
*[https://www.pharmacycouncil.org.nz/ Pharmacy Council]
*[https://www.phbern.ch/ PHBern]
*[https://schulportal.hessen.de/ Schulportal Hessen]
*[https://switch.ch/ SWITCH]
*[https://usq.edu.au/ University of Southern Queensland]
*[https://www.unisg.ch/ University of St.Gallen]
*[http://www.waitematadhb.govt.nz Waitematā District Health Board]
 
<br />
==Mahara 21.10==
 
*[https://www.cambridgeassessment.org.uk Cambridge Assessment]
*[http://carleton.ca Carleton University]
*[https://catalyst.net.nz/ Catalyst]
*[https://www.d2l.com/ D2L]
*[https://www.griffith.ie/ Griffith College]
*[https://learningworks.co.nz/ LearningWorks]
*[https://mitstek.com Mitstek]
*[https://www.openedu.nl/ OpenEDU]
*[https://www.openlms.net/ Open LMS]
*[https://www.pharmacycouncil.org.nz/ Pharmacy Council]
*[https://switch.ch/ SWITCH]
*[http://anu.edu.au/ The Australian National University]
*[https://www.visol.ch/ Visol]
 
<br />
==Mahara 21.04==
 
*[https://catalyst.net.nz/ Catalyst]
*[https://www.ccdhb.org.nz/ Capital & Coast District Health Board]
*[https://learningworks.co.nz/ LearningWorks]
*[https://www.pharmacycouncil.org.nz/ Pharmacy Council]
*[https://switch.ch/ SWITCH]
*[https://www.uni-bremen.de/ Universität Bremen]
*[https://zhaw.ch ZHAW]
 
<br />
==Mahara 20.10==
 
*[https://catalyst.net.nz/ Catalyst]
*[https://learningworks.co.nz/ LearningWorks]
*[https://mitstek.com Mitstek]
*[https://switch.ch/ SWITCH]
*[http://www.waitematadhb.govt.nz Waitematā District Health Board]
*[https://zhaw.ch ZHAW]
 
<br />
==Mahara 20.04==
 
*[https://www.cambridgeassessment.org.uk Cambridge Assessment]
*[https://catalyst.net.nz/ Catalyst]
*[http://www.cal.org/ Center for Applied Linguistics]
*[http://education.govt.nz/ Te Tāhuhu o te Mātauranga Aotearoa Ministry of Education New Zealand]
*[https://mitstek.com Mitstek]
*[https://www.openedu.nl/en_US/ OpenEDU]
*[https://www.phbern.ch/ PHBern]
*[http://switch.ch/ SWITCH]
*[https://www.ecnz.ac.nz Te Rito Maioha Early Childhood New Zealand]
*[http://www.waitematadhb.govt.nz Waitematā District Health Board]
 
&nbsp;
==Mahara 19.10==
 
*[https://catalyst.net.nz/ Catalyst]
*[https://www.dcu.ie/ Dublin City University]
*[https://learningworks.co.nz/ LearningWorks]
*[https://mitstek.com Mitstek]
*[http://switch.ch/ SWITCH]
*[http://anu.edu.au/ The Australian National University]
*[https://www.uni-bremen.de/ Universität Bremen]
*[http://umontreal.ca Université de Montréal]
*[https://unisa.edu.au University of South Australia]
*[http://sussex.ac.uk University of Sussex]
 
&nbsp;
 
==Mahara 19.04==
 
*[http://carleton.ca Carleton University]
*[https://catalyst.net.nz/ Catalyst]
*[http://www.ls-bw.de/,Lde/Startseite Landesinstitut für Schulentwicklung] (State Institute for School Development in Baden-Württemberg, Germany)
*[https://learningworks.co.nz/ LearningWorks]
*[http://povsod.com/ Povsod]
*[https://recordingarts.com/ Recording Arts Canada]
*[http://switch.ch/ SWITCH]
*[http://synergy-learning.com/ Synergy Learning]
*[http://umontreal.ca Université de Montréal]
*[https://www.schule.de/ Verein zur Förderung eines Offenen Deutschen Schul-Netzes]
*[http://www.waitematadhb.govt.nz/ Waitematā District Health Board]
 
&nbsp;
 
==Mahara 18.10==
 
*[http://acu.edu.au/ Australian Catholic University]
*[https://catalyst.net.nz/ Catalyst]
*[http://cqu.edu.au/ Central Queensland University]
*[https://www.countiesmanukau.health.nz Counties Manukau District Health Board]
*[https://www.dcu.ie/ Dublin City University]
*[https://methodistnorth.org.nz/east-coast-bays-methodist/ East Coast Bays Methodist Parish]
*[https://enovation.ie/ Enovation]
*[http://www.kpu.ca/ Kwantlen Polytechnic University]
*[http://www.ls-bw.de/,Lde/Startseite Landesinstitut für Schulentwicklung] (State Institute for School Development in Baden-Württemberg, Germany)
*[https://learningworks.co.nz/ LearningWorks]
*[https://www.monashcollege.edu.au/ Monash College]
*[http://phbern.ch/ PHBern]
*[http://povsod.com/ Povsod]
*[https://www.qmul.ac.uk/ Queen Mary University of London]
*[http://switch.ch/ SWITCH]
*[https://www.stcatherinescollege.school.nz/ St. Catherine's College, Wellington]
*[http://synergy-learning.com/ Synergy Learning]
*[https://www.tc.columbia.edu/ Teachers College, Columbia University]
*[http://anu.edu.au/ The Australian National University]
*[https://www.uni-bremen.de/ Universität Bremen]
*[http://unil.ch/ Université de Lausanne]
*[https://www.canberra.edu.au/ University of Canberra]
*[https://usq.edu.au/ University of Southern Queensland]
*[http://www.waitematadhb.govt.nz/ Waitematā District Health Board]
*[https://www.yorksj.ac.uk/ York St John University]
 
&nbsp;
 
==Mahara 18.04==
 
*[http://anu.edu.au The Australian National University]
*[http://carleton.ca Carleton University]
*[https://catalyst.net.nz Catalyst]
*[http://cqu.edu.au Central Queensland University]
*[http://www.ls-bw.de/,Lde/Startseite Landesinstitut für Schulentwicklung] (State Institute for School Development in Baden-Württemberg, Germany)
*[http://education.govt.nz New Zealand Ministry of Education]
*[http://pace.edu Pace University]
*[http://phbern.ch PHBern]
*[http://povsod.com/ Povsod]
*[https://www.qmul.ac.uk Queen Mary University of London]
*[http://switch.ch SWITCH]
*[http://synergy-learning.com Synergy Learning]
*[https://www.totaralms.com Totara LMS]
*[http://sussex.ac.uk University of Sussex]
 
&nbsp;
 
==Mahara 17.10==
 
*[http://aut.ac.nz Auckland University of Technology]
*[http://anu.edu.au/ Australian National University]
*[http://blackboard.com/ Blackboard]
*[http://carleton.ca Carleton University]
*[http://catalyst.net.nz Catalyst]
*[http://cqu.edu.au Central Queensland University]
*[http://dcu.ie Dublin City University]
*[http://eticeo.fr Eticeo]
*[https://education.govt.nz New Zealand Ministry of Education]
*[http://www.switch.ch SWITCH]
*[http://tc.columbia.edu Teachers College, Columbia University]
*[https://www.totaralms.com Totara LMS]
*[http://umontreal.ca Université de Montréal]
*[http://uqam.ca/ Université du Québec à Montréal]
*[http://usq.edu.au University of Southern Queensland]
*[http://sussex.ac.uk University of Sussex]
 
&nbsp;
 
==Mahara 17.04==
 
*[http://catalyst.net.nz/ Catalyst]
*[http://catalyst.net.nz/academy Catalyst Open Source Academy]
*[http://donau-uni.ac.at/ Donau-Universität Krems] / [http://ats2020.eu/ ATS2020 Project]
*[http://instructure.com/ Instructure]
*[http://kineo.co.nz/ Kineo (Pacific)]
*[http://www.kpu.ca Kwantlen Polytechnic University]
*[http://www.minedu.govt.nz/ New Zealand Ministry of Education]
*[http://northlanddhb.org.nz/ Northland District Health Board]
*[http://povsod.com/ Povsod]
*[http://www.switch.ch/ SWITCH]
*[http://ecnz.ac.nz Te Rito Maioha Early Childhood New Zealand]
*[http://umontreal.ca/ Universit&eacute; de Montréal]
 
&nbsp;
 
==Mahara 16.10==
 
*[http://athabascau.ca/ Athabasca University]
*[http://anu.edu.au Australian National University]
*[http://catalyst.net.nz/ Catalyst]
*[https://www.phbern.ch/ PH Bern]
*[http://www.switch.ch/ SWITCH]
*[https://www.dvt.at/services/tsn-tiroler-schulnetz/ Tiroler Schulnetz]
*[http://uqam.ca Université du Québec à Montréal]
 
&nbsp;


The Mahara Governance group combines the strengths of the core partners; specialist e-learning service providers [http://www.kineo.co.nz Kineo Pacific] and the leading open source company [http://www.catalyst.net.nz/ Catalyst IT]:
==Mahara 16.04==


* Don Christie, Catalyst IT Director
*[http://athabascau.ca/ Athabasca University]
* Mike O'Connor, Catalyst IT Director
*[http://cardiff.ac.uk/ Cardiff University]
* Nolen Smith, Kineo Pacific Director
*[http://catalyst.net.nz/ Catalyst]
* [http://mahara.org/user/view.php?id=105 Richard Wyles], Project Leader and Kineo Pacific Director
*[http://catalyst.net.nz/academy Catalyst Open Source Academy]
*[http://federation.edu.au/ Federation University Australia]
*[http://pace.edu/ Pace University]
*[http://povsod.com/ Povsod]
*[http://tirol.gv.at/ Province of Tirol]
*[http://solent.ac.uk/ Southampton Solent University]
*[http://www.switch.ch/ SWITCH]
*[http://umontreal.ca/ Universit&eacute; de Montreal]
*[http://yale.edu/ Yale University]
*[https://www.zhaw.ch/en/university/ Zurich University of Applied Sciences]


The main function of this group is to provide overall project direction and policy and ensure the project has the appropriate resources from each respective company. As an open source community project, Mahara is guided by broad consultation with the Mahara community.
&nbsp;


=Community=
==Mahara 15.10==
 
*[http://catalyst.net.nz/ Catalyst]
*[http://catalyst.net.nz/academy Catalyst Open Source Academy]
*[http://edict.co.uk/ EdICT Training]
*[http://fernuni-hagen.de/ FernUniversität in Hagen]
*[http://www.icampus21.com/ iCampus 21]
*[http://www.kpu.ca/ Kwantlen Polytechnic University]
*[http://tirol.gv.at/ Land Tirol]
*[http://www.ncnu.edu.tw/ National Chi Nan University]
*[http://www.minedu.govt.nz/ New Zealand Ministry of Education]
*[http://pace.edu/ Pace University]
*[http://pratt.edu/ Pratt Institute]
*[http://www.switch.ch/ SWITCH]
*[http://totaralms.com/ Totara LMS]
*[http://umontreal.ca/ Université de Montreal]
*[http://usherbrooke.ca/ Université de Sherbrooke]
*[http://usq.edu.au/ University of Southern Queensland]
*[http://www.warwick.ac.uk/ University of Warwick]
*[http://yale.edu/ Yale University]
 
&nbsp;
 
==Mahara 15.04==
 
Mahara 15.04 was released on 17 April 2015.
 
*[http://www.athabascau.ca/ Athabasca University]
*[http://catalyst.net.nz Catalyst IT]
*[http://catalyst.net.nz/academy Catalyst Open Source Academy]
*[http://hbk-bs.de/ Hochschule für Bildende Künste Braunchschweig (The Braunschweig University of Art)]
*[http://www.icampus21.com/ iCampus21]
*[http://www.lancs.ac.uk/ Lancaster University]
*[http://liip.ch Liip]
*[http://nyit.edu/ New York Institute of Technology]
*[http://www.minedu.govt.nz New Zealand Ministry of Education]
*[http://www.switch.ch/ SWITCH]
*[http://www.canberra.edu.au/tlc Teaching and Learning Centre, University of Canberra]
*[http://totaralms.com Totara LMS]
*[http://umontreal.ca/ Université de Montreal]
*[http://www.arts.ac.uk University of the Arts London]
*[http://www.zml.kit.edu/ Zentrum für Mediales Lernen (Center for Technology-Enhanced Learning) at Karlsruhe Institute of Technology (KIT)]
 
&nbsp;
 
==Mahara 1.10==
 
Mahara 1.10 was released on 21 October 2014.


* [http://www.ohloh.net/p/mahara/contributors?query=&sort=commits Developers]
*[http://www.arnes.si/en.html ARNES]
* [https://translations.launchpad.net/+groups/mahara-translation-group Translators]
*[http://catalyst.net.nz Catalyst IT]
*[http://www.fsz.kit.edu/ Center for Open and Distance Learning at Karlsruhe Institute of Technology (KIT)]
*[http://www.icampus21.com/ iCampus21]
*[http://www.lancs.ac.uk/ Lancaster University]
*[http://www.minedu.govt.nz New Zealand Ministry of Education]
*[https://www.pratt.edu Pratt Institute]
*[http://www.switch.ch/ SWITCH]
*[http://www.canberra.edu.au/tlc Teaching and Learning Centre, University of Canberra]
*[http://totaralms.com Totara LMS]


=Security researchers=
&nbsp;


== Mahara code ==
==Mahara 1.9==
This is a list of security researchers that have contributed to Mahara. These people have followed the [[Security | responsible disclosure practise after finding security vulnerabilities in the Mahara codebase]].


* Ahmad Ashraff - [https://twitter.com/yappare @yappare]
Mahara 1.9 was released on 15 April 2014.
* Ajay Singh Negi (http://computersecuritywithethicalhacking.blogspot.in/) - [https://twitter.com/ajaysinghnegi @ajaysinghnegi]
* Anurag Srivastava - [https://twitter.com/hexachordanu @hexachordanu]
* Dushyant Sahu
* Dylan S. Hailey - [http://www.twitter.com/tibitximer @TibitXimer]
* Emanuel Bronshtein - [https://twitter.com/e3amn2l @e3amn2l]
* FaisaL Ahmed - [http://faisalahmed.me/ http://faisalahmed.me/]
* Himanshu Kumar Das - [https://twitter.com/mehimansu @mehimansu]
* Jaume Llopis Pujal - [https://twitter.com/JKS___ @JKS___]
* Kamil Sevi - [https://twitter.com/kamilsevi @kamilsevi]
* Mahmut Esat Yildirim - http://www.mahmutesat.com
* Mike Haworth
* Narendra Bhati (R00t Sh3ll), Web Security Geeks - [https://twitter.com/NarendraBhatiB @NarendraBhatiB]
* M.R.Vignesh Kumar - [https://twitter.com/vigneshkumarmr @vigneshkumarmr]
* Nitin Goplani - [https://www.linkedin.com/in/nitingoplani LinkedIn]
* Prashant Negi - [https://twitter.com/prashantnegi_ @prashantnegi_]
* Rafay Baloch (http://rafayhackingarticles.net)
* Saurabh Chandrakant Nemade - https://facebook.com/saurabh.nemade
* Sergey Markov
* Siddhesh Gawde - http://www.facebook.com/pen3t3r
* Tom Forbes - http://tomforb.es
* Wan Ikram - [https://twitter.com/rinakikun @rinakikun]


== Mahara project infrastructure ==
*[http://www.arnes.si/en.html ARNES]
This second list is of security researchers who have found security issues with the infrastructure of the Mahara project which can include all the websites (mahara.org, wiki.mahara.org, manual.mahara.org, langpacks.mahara.org, reviews.mahara.org), the servers that host those websites, and any auxillary tools (such as launchpad for bug tracking, gitorious for git hosting).
*[http://catalyst.net.nz Catalyst IT]
*[http://www.fsz.kit.edu/ Center for Open and Distance Learning at Karlsruhe Institute of Technology (KIT)]
*[http://deltak-innovation.com/ Deltak Innovation]
*[http://www.lancs.ac.uk/ Lancaster University]
*[http://liip.ch Liip]
*[http://nyit.edu/ New York Institute of Technology]
*[http://www.minedu.govt.nz New Zealand Ministry of Education]
*[http://www.pai.edu.au/ Principals Australia Institute]
*[http://www.switch.ch/ SWITCH]
*[http://tc.columbia.edu Teachers College Columbia University]
*[http://totaralms.com Totara LMS]
*[http://www.arts.ac.uk University of the Arts London]


* mahara.org vulnerable to the BEAST SSL/TLS attack
&nbsp;
** Adam Ziaja (http://adamziaja.com)
* A problem in the custom DuckDuckGo search setup on mahara.org
** David Vieira-Kurz of MajorSeurity - [https://twitter.com/secalert @secalert]
* mahara.org servers exposing web server version
** Emanuel Bronshtein - [https://twitter.com/e3amn2l&lang=en @e3amn2l]
* Directory listings active on wiki.mahara.org
** Parveen Yadav (https://www.facebook.com/proXy.test) & Ankit Bharathan
* mahara.org vulnerable to the CCS SSL/TLS attack (https://www.openssl.org/news/secadv_20140605.txt)
** S. Venkatesh - [https://twitter.com/pranavvenkats @pranavvenkats]


=Organizations=
==Mahara 1.8==


A large part of the development on Mahara would not be possible without the funding from institutions and organizations.
Mahara 1.8 was released on 24 October 2013.


==Pre Mahara 1.5==
*[http://www.arnes.si/en.html ARNES]
*[http://catalyst.net.nz Catalyst IT]
*[http://www.forthvalley.ac.uk/ Forth Valley College, Jasmin Jodge]
*[http://icampus21.com iCampus21]
*[http://www.lancs.ac.uk/ Lancaster University]
*[http://www.massey.ac.nz Massey University]
*[http://netspot.com.au/ NetSpot]
*[http://www.minedu.govt.nz New Zealand Ministry of Education]
*[http://tc.columbia.edu Teachers College Columbia University]
*[http://ucsf.edu University of California, San Francisco]
*[http://www.arts.ac.uk University of the Arts London]


The [http://www.gla.ac.uk/ University of Glasgow] have funded several pieces of work for us, including View Templates, part of Import/Export (the HTML export is thanks to them), and various bug fixes.
&nbsp;


[http://www.galeaders.org/ GLISI]/[http://ralphmerrill.com/ Ray Merrill] funded enhancements to Mahara's groups, and Ray has provided much invaluable guidance around Mahara's usability.
==Mahara 1.7==


With JISC funding we were able to add import/export functionality to the Mahara e-portfolio system, as part of the 1.2 release. This work was sponsored by the [http://www.ulcc.ac.uk/ University of London Computer Centre], University of Glasgow and [http://wiki.cetis.ac.uk/PIOP_Mahara JISC Cetis].
Mahara 1.7 was released on 19 April 2013.


A collaborative group in the State of New Hampshire funded the ability to submit Mahara Views for assessment in Moodle, through a grant from the [http://www.ed.state.nh.us/ New Hampshire Department of Education].
*[http://catalyst.net.nz Catalyst IT]
*[http://www.deltak-innovation.com/ Deltak edu]
*[http://www.eduone.net.au eduONE]
*[http://www.lancs.ac.uk/ Lancaster University]
*[http://www.liip.ch/ Liip]
*[http://www.massey.ac.nz Massey University]
*[http://www.mozilla.org/ Mozilla]


[http://www.medschl.cam.ac.uk/ Cambridge University School of Clinical Medicine] sponsored the development of the plugin [[index.php?title=Plugins/Artefact/Problems %26 Conditions|Problems &amp; Conditions]].
&nbsp;


The [http://bsce.uni.lu/ BScE] at the University of Luxembourg funded the development of the tag cloud, improvements to the feedback function in the 1.2 and 1.3 releases, and bug fixes for Mac servers.
==Mahara 1.6==


[http://bcu.ac.uk/ Birmingham City University] funded the initial development work for Collections and Plans (new features in Mahara 1.3). They also supported the development of locking down blog posts and files that are used in submitted views.
Mahara 1.6 was released on 17 April 2012.


Lancaster University Network Services ([http://www.luns.net.uk/ LUNS Ltd.]) was funded by Cumbria and Lancashire Education Online ([http://www.cleo.net.uk/ CLEO]) to design several features.
*[http://anzasw.org.nz Aotearoa New Zealand Association of Social Workers]
*[http://catalyst.net.nz Catalyst IT]
*[http://www.deltak-innovation.com/ Deltak edu]
*[http://www.lancs.ac.uk/ Lancaster University]
*[http://www.minedu.govt.nz New Zealand Ministry of Education]
*[http://plane.edu.au PLANE]
*[http://www.solent.ac.uk Southampton Solent University]
*[http://www.canberra.edu.au/tlc Teaching and Learning Centre, University of Canberra]
*[http://www.arts.ac.uk University of the Arts London]


The [http://www.minedu.govt.nz New Zealand Ministry of Education] funded a large number of features and usability changes to Mahara 1.4 and 1.5 that were implemented by [http://catalyst.net.nz Catalyst IT]
&nbsp;


==Mahara 1.5==
==Mahara 1.5==


* [http://www.bcu.ac.uk/ Birmingham City University]
Mahara 1.5 was released on 13 June 2011.
* [http://catalyst.net.nz Catalyst IT]
 
* [http://www.deltak-innovation.com/ Deltak edu]
*[http://www.bcu.ac.uk/ Birmingham City University]
* [http://esa.org.au/ Education Services Australia]
*[http://catalyst.net.nz Catalyst IT]
* [http://www.goucher.edu Goucher College]
*[http://www.deltak-innovation.com/ Deltak edu]
* [http://www.lancs.ac.uk/ Lancaster University]
*[http://esa.org.au/ Education Services Australia]
* [http://www.minedu.govt.nz New Zealand Ministry of Education]
*[http://www.goucher.edu Goucher College]
* [http://plane.edu.au PLANE]
*[http://www.lancs.ac.uk/ Lancaster University]
* [http://www.rockyview.ab.ca Rocky View Schools]
*[http://www.minedu.govt.nz New Zealand Ministry of Education]
* [http://www.twosensemedia.com/tsmhome/ Two Sense Media]
*[http://plane.edu.au PLANE]
* [http://www.uwcsea.edu.sg/ United World College of South East Asia]
*[http://www.rockyview.ab.ca Rocky View Schools]
* [http://www.canberra.edu.au/tlc Teaching and Learning Centre, University of Canberra]
*[http://www.twosensemedia.com/tsmhome/ Two Sense Media]
*[http://www.uwcsea.edu.sg/ United World College of South East Asia]
*[http://www.canberra.edu.au/tlc Teaching and Learning Centre, University of Canberra]
 
&nbsp;
 
==Pre Mahara 1.5==
 
The [http://www.gla.ac.uk/ University of Glasgow] have funded several pieces of work for us, including View Templates, part of Import/Export (the HTML export is thanks to them), and various bug fixes.


==Mahara 1.6==
[http://www.galeaders.org/ GLISI] / Ray Merrill funded enhancements to Mahara's groups, and Ray has provided much invaluable guidance around Mahara's usability.


{|border-spacing: 0; border-width: 0px; border-style: none; padding: 20; width="80%"
With JISC funding we were able to add import/export functionality to the Mahara e-portfolio system, as part of the 1.2 release. This work was sponsored by the [http://www.ulcc.ac.uk/ University of London Computer Centre], University of Glasgow and [http://wiki.cetis.ac.uk/PIOP_Mahara JISC Cetis].
| style="width: 30%;" |
* [http://anzasw.org.nz Aotearoa New Zealand Association of Social Workers]
* [http://catalyst.net.nz Catalyst IT]
* [http://www.deltak-innovation.com/ Deltak edu]
* [http://www.lancs.ac.uk/ Lancaster University
* [http://www.minedu.govt.nz New Zealand Ministry of Education]
* [http://plane.edu.au PLANE]
* [http://www.solent.ac.uk Southampton Solent University]
* [http://www.canberra.edu.au/tlc Teaching and Learning Centre, University of Canberra]
* [http://www.arts.ac.uk University of the Arts London]
|style="width: 50%;" |
<span class=”plainlinks”>[http://anzasw.org.nz http://anzasw.org.nz/images/site-logo.png]</span>
<span class=”plainlinks”>[http://catalyst.net.nz http://catalyst.net.nz/sites/all/themes/catalyst/logo.png]</span>
<span class=”plainlinks”>[http://www.minedu.govt.nz/ http://www.minedu.govt.nz/minedu/images/ui/header/moe-logo.gif]</span>
<span class=”plainlinks”>[http://plane.edu.au http://plane.edu.au/wp-content/themes/plane/images/plane-logo.png]</span>
<span class=”plainlinks”>[http://www.canberra.edu.au/tlc/ http://www.canberra.edu.au/__data/assets/image/0003/793164/university-of-canberra-logo-stacked.png]</span>
<span class=”plainlinks”>[http://www.arts.ac.uk http://www.arts.ac.uk/media/artsacukstyleassets/component-library/images/ual.gif]</span>
<span class=”plainlinks”>[http://deltak-innovation.com http://deltak-innovation.com/sites/deltak-innovation.com/themes/deltak/logo.png]</span>
<span class=”plainlinks”>[http://www.lancs.ac.uk/ http://www.lancs.ac.uk/media/lancaster-university/style-assets/images/bg-logo.png]</span>
<span class=”plainlinks”>[http://www.solent.ac.uk https://wiki.mahara.org/images/c/c8/Solent_logo_200w.jpg]</span>
|}


== Mahara 1.7 ==
A collaborative group in the State of New Hampshire funded the ability to submit Mahara Views for assessment in Moodle, through a grant from the [http://www.ed.state.nh.us/ New Hampshire Department of Education].
{|border-spacing: 0; border-width: 0px; border-style: none; padding: 20; width="80%"
| style="width: 30%;" |
* [http://catalyst.net.nz Catalyst IT]
* [http://www.deltak-innovation.com/ Deltak edu]
* [http://www.eduone.net.au eduONE]
* [http://www.lancs.ac.uk/ Lancaster University]
* [http://www.liip.ch/ Liip]
* [http://www.massey.ac.nz Massey University]
* [http://www.mozilla.org/ Mozilla]
|style="width: 50%;" |
<span class=”plainlinks”>[http://catalyst.net.nz http://catalyst.net.nz/sites/all/themes/catalyst/logo.png]</span>
<span class=”plainlinks”>[http://deltak-innovation.com http://deltak-innovation.com/sites/deltak-innovation.com/themes/deltak/logo.png]</span>
<span class=”plainlinks”>[http://www.eduone.net.au http://www.eduone.net.au/wp-content/uploads/2012/12/edu-one-logo.png]</span>
<span class=”plainlinks”>[http://www.lancs.ac.uk/ http://www.lancs.ac.uk/media/lancaster-university/style-assets/images/bg-logo.png]</span>
<span class=”plainlinks”>[http://www.liip.ch/ http://www.liip.ch/bundles/liipchcore/images/logo.png]</span>
<span class=”plainlinks”>[http://www.massey.ac.nz http://www.massey.ac.nz/massey/app_templates/_pagetemplates/images/_core/logo.png]</span>
<span class=”plainlinks”>[http://mozilla.org https://wiki.mahara.org/images/3/31/Mozilla_wordmark_small.png]</span>
|}


== Mahara 1.8==
[http://www.medschl.cam.ac.uk/ Cambridge University School of Clinical Medicine] sponsored the development of the plugin [[index.php?title=Plugins/Artefact/Problems %26 Conditions|Problems &amp; Conditions]].


{|border-spacing: 0; border-width: 0px; border-style: none; padding: 20; width="80%"
The [http://bsce.uni.lu/ BScE] at the University of Luxembourg funded the development of the tag cloud, improvements to the feedback function in the 1.2 and 1.3 releases, and bug fixes for Mac servers.
| style="width: 30%;" |
* [http://www.arnes.si/en.html ARNES]
* [http://catalyst.net.nz Catalyst IT]
* [http://www.forthvalley.ac.uk/ Forth Valley College, Jasmin Jodge]
* [http://icampus21.com iCampus21]
* [http://www.lancs.ac.uk/ Lancaster University]
* [http://www.massey.ac.nz Massey University]
* [http://netspot.com.au/ NetSpot]
* [http://www.minedu.govt.nz New Zealand Ministry of Education]
* [http://tc.columbia.edu Teachers College Columbia University]
* [http://ucsf.edu University of California, San Francisco]
* [http://www.arts.ac.uk University of the Arts London]
|style="width: 50%;" |
<span class=”plainlinks”>[http://www.arnes.si/en.html https://wiki.mahara.org/images/b/bf/Arnes_logo_92.png]</span>
<span class=”plainlinks”>[http://catalyst.net.nz http://catalyst.net.nz/sites/all/themes/catalyst/logo.png]</span>
<span class=”plainlinks”>[http://www.forthvalley.ac.uk/ https://wiki.mahara.org/images/1/1c/Forth-valley-college.png]</span>
<span class=”plainlinks”>[http://icampus21.com https://wiki.mahara.org/images/d/df/Icampus21-logo-small.png]</span>
<span class=”plainlinks”>[http://www.lancs.ac.uk/ http://www.lancs.ac.uk/media/lancaster-university/style-assets/images/bg-logo.png]</span>
<span class=”plainlinks”>[http://www.massey.ac.nz http://www.massey.ac.nz/massey/app_templates/_pagetemplates/images/_core/logo.png]</span>
<span class=”plainlinks”>[http://www.minedu.govt.nz/ http://www.minedu.govt.nz/minedu/images/ui/header/moe-logo.gif]</span>
<span class="plainlinks">[http://tc.columbia.edu https://wiki.mahara.org/images/6/62/TC_logo.jpg]</span>
<span class="plainlinks">[http://ucsf.edu https://wiki.mahara.org/images/b/be/Ucsf_logo.png]</span>
<span class=”plainlinks”>[http://www.arts.ac.uk https://wiki.mahara.org/images/9/98/Ual_logo.png]</span>
|}


== Mahara 1.9==
[http://bcu.ac.uk/ Birmingham City University] funded the initial development work for Collections and Plans (new features in Mahara 1.3). They also supported the development of locking down blog posts and files that are used in submitted views.


{|border-spacing: 0; border-width: 0px; border-style: none; padding: 20; width="80%"
Lancaster University Network Services ([http://www.luns.net.uk/ LUNS Ltd.]) was funded by Cumbria and Lancashire Education Online ([http://www.cleo.net.uk/ CLEO]) to design several features.
| style="width: 30%;" |
 
* [http://www.arnes.si/en.html ARNES]
The [http://www.minedu.govt.nz New Zealand Ministry of Education] funded a large number of features and usability changes to Mahara 1.4 and 1.5 that were implemented by [http://catalyst.net.nz Catalyst IT]
* [http://catalyst.net.nz Catalyst IT]
* [http://www.fsz.kit.edu/ Center for Open and Distance Learning at Karlsruhe Institute of Technology (KIT)]
* [http://deltak-innovation.com/ Deltak Innovation]
* [http://www.lancs.ac.uk/ Lancaster University]
* [http://liip.ch Liip]
* [http://nyit.edu/ New York Institute of Technology]
* [http://www.minedu.govt.nz New Zealand Ministry of Education]
* [http://www.pai.edu.au/ Principals Australia Institute]
* [http://www.switch.ch/ SWITCH]
* [http://tc.columbia.edu Teachers College Columbia University]
* [http://totaralms.com Totara LMS]
* [http://www.arts.ac.uk University of the Arts London]
|style="width: 50%;" |
<span class=”plainlinks”>[http://www.arnes.si/en.html https://wiki.mahara.org/images/b/bf/Arnes_logo_92.png]</span>
<span class=”plainlinks”>[http://catalyst.net.nz http://catalyst.net.nz/sites/all/themes/catalyst/logo.png]</span>
<span class="plainlinks">[http://fsz.kit.edu http://www.fsz.kit.edu/img/intern/kit_logo_V2_de.png]</span>
<span class=”plainlinks”>[http://deltak-innovation.com http://deltak-innovation.com/sites/deltak-innovation.com/themes/deltak/logo.png]</span>
<span class=”plainlinks”>[http://www.lancs.ac.uk/ http://www.lancs.ac.uk/media/lancaster-university/style-assets/images/bg-logo.png]</span>
<span class="plainlinks">[http://liip.ch https://wiki.mahara.org/images/1/18/Liip_logo.png]</span>
<span class="plainlinks">[http://nyit.edu https://wiki.mahara.org/images/9/93/Nyit_logo.png]</span>
<span class=”plainlinks”>[http://www.minedu.govt.nz/ http://www.minedu.govt.nz/minedu/images/ui/header/moe-logo.gif]</span>
<span class="plainlinks">[http://www.pai.edu.au https://wiki.mahara.org/images/b/ba/Pai_logo.png]</span>
<span class="plainlinks">[http://www.switch.ch http://www.switch.ch/export/system/modules/ch.SWITCH.ocms.www/resources/images/logo.png]</span>
<span class="plainlinks">[http://tc.columbia.edu https://wiki.mahara.org/images/6/62/TC_logo.jpg]</span>
<span class="plainlinks">[http://totaralms.com https://wiki.mahara.org/images/4/44/Totara_logo_big_transparent.png]</span>
<span class=”plainlinks”>[http://www.arts.ac.uk https://wiki.mahara.org/images/9/98/Ual_logo.png]</span>
|}

Latest revision as of 20:33, 27 April 2023

Mahara is developed by a world-wide team of programmers, translators, designers and enthusiastic amateurs. Many individuals and groups have contributed to Mahara so far.

Core Teams

Community

Security researchers

Mahara code

This is a list of security researchers that have contributed to Mahara itself. These people have followed the responsible disclosure practise after finding security vulnerabilities in the Mahara codebase.

Mahara project infrastructure

This second list is of security researchers who have reported security issues with the configuration or version of software used on the infrastructure of the Mahara project which can include all the websites (mahara.org, wiki.mahara.org, manual.mahara.org, langpacks.mahara.org, reviews.mahara.org, git.mahara.org, test.mahara.org) and the servers that host those websites.

These people have followed the responsible disclosure practise after finding security vulnerabilities in the Mahara project infrastructure.

The list is in reverse chronological order.

2021

SPF record not configured for subdomains of mahara.org - MD. Rimel

2019

Restrict access to certain files on wiki.mahara.org - Harsh Joshi

2018

2011-2017

Organisations

A large part of the development on Mahara would not be possible without the funding from institutions and organisations.


Mahara 23.04

Mahara 22.10


Mahara 22.04


Mahara 21.10


Mahara 21.04


Mahara 20.10


Mahara 20.04

 

Mahara 19.10

 

Mahara 19.04

 

Mahara 18.10

 

Mahara 18.04

 

Mahara 17.10

 

Mahara 17.04

 

Mahara 16.10

 

Mahara 16.04

 

Mahara 15.10

 

Mahara 15.04

Mahara 15.04 was released on 17 April 2015.

 

Mahara 1.10

Mahara 1.10 was released on 21 October 2014.

 

Mahara 1.9

Mahara 1.9 was released on 15 April 2014.

 

Mahara 1.8

Mahara 1.8 was released on 24 October 2013.

 

Mahara 1.7

Mahara 1.7 was released on 19 April 2013.

 

Mahara 1.6

Mahara 1.6 was released on 17 April 2012.

 

Mahara 1.5

Mahara 1.5 was released on 13 June 2011.

 

Pre Mahara 1.5

The University of Glasgow have funded several pieces of work for us, including View Templates, part of Import/Export (the HTML export is thanks to them), and various bug fixes.

GLISI / Ray Merrill funded enhancements to Mahara's groups, and Ray has provided much invaluable guidance around Mahara's usability.

With JISC funding we were able to add import/export functionality to the Mahara e-portfolio system, as part of the 1.2 release. This work was sponsored by the University of London Computer Centre, University of Glasgow and JISC Cetis.

A collaborative group in the State of New Hampshire funded the ability to submit Mahara Views for assessment in Moodle, through a grant from the New Hampshire Department of Education.

Cambridge University School of Clinical Medicine sponsored the development of the plugin Problems & Conditions.

The BScE at the University of Luxembourg funded the development of the tag cloud, improvements to the feedback function in the 1.2 and 1.3 releases, and bug fixes for Mac servers.

Birmingham City University funded the initial development work for Collections and Plans (new features in Mahara 1.3). They also supported the development of locking down blog posts and files that are used in submitted views.

Lancaster University Network Services (LUNS Ltd.) was funded by Cumbria and Lancashire Education Online (CLEO) to design several features.

The New Zealand Ministry of Education funded a large number of features and usability changes to Mahara 1.4 and 1.5 that were implemented by Catalyst IT