Today, I just upgraded to 2014-09-29b via the admin tool and again this particular file is kicking around. Checking the permissions, the file is set for RW/R/R for www-data:www-data which is the expected user.
Can someone throw an additional check in to verify that after an upgrade, the file is either properly deleted, and if not, alert the admin?
Time stamps on the files:
-rw-rw---- 1 samba www-data 19 2014-12-05 19:32 VERSION
-rw-rw---- 1 samba www-data 3398 2014-12-05 19:33 doku.php
root@vmWeb:/var/web/
{site}/wiki# date
Fri Dec 5 19:43:19 EST 2014
root@vmWeb:/var/web/
{site}/wiki# cat VERSION
2014-09-29b "Hrun"
root@vmWeb:/var/web/
{site}/wiki/data/cache# cat messages.txt
Hotfix release available to prevent XSS attack via SWF uploads: 2014-09-29b "Hrun".
<a href="http://download.dokuwiki.org">upgrade now!</a> [46.2] <a href="
http://www.dokuwiki.org/update_check">(what's this?)</a>
%