Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 90678 Details for
Bug 138552
app-admin/{webmin|usermin} Arbitrary remote file access (CVE-2006-3392)
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
webmin-1.290.ebuild
webmin-1.290.ebuild (text/plain), 4.02 KB, created by
Conrad Kostecki
on 2006-07-02 02:57:43 UTC
(
hide
)
Description:
webmin-1.290.ebuild
Filename:
MIME Type:
Creator:
Conrad Kostecki
Created:
2006-07-02 02:57:43 UTC
Size:
4.02 KB
patch
obsolete
># Copyright 1999-2006 Gentoo Foundation ># Distributed under the terms of the GNU General Public License v2 ># $Header: /var/cvsroot/gentoo-x86/app-admin/webmin/webmin-1.290.ebuild,v 1.1 2006/07/02 11:55:00 ConiKost Exp $ > >IUSE="apache2 postgres ssl webmin-minimal" > >inherit eutils pam > >VM_V="2.611" > >DESCRIPTION="Webmin, a web-based system administration interface" >HOMEPAGE="http://www.webmin.com/" >SRC_URI="webmin-minimal? ( mirror://sourceforge/webadmin/${P}-minimal.tar.gz ) > !webmin-minimal? ( mirror://sourceforge/webadmin/${P}.tar.gz > http://www.webmin.com/download/virtualmin/virtual-server-${VM_V}.wbm.gz )" > >LICENSE="BSD" >SLOT="0" > ># ~mips removed because of broken deps. Bug #86085 >KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86" > >DEPEND="dev-lang/perl" >RDEPEND="${DEPEND} > ssl? ( dev-perl/Net-SSLeay ) > postgres? ( dev-perl/DBD-Pg ) > dev-perl/XML-Generator" > ># See bug #62123 ># pam? ( dev-perl/Authen-PAM ) > > >src_unpack() { > unpack ${A} > > cd ${S} > > # in webmin-minimal apache2 are not present > if ! use webmin-minimal ; then > # Bug #50810, #51943 > if use apache2; then > epatch ${FILESDIR}/${PN}-1.140-apache2.patch > fi > > # Correct ldapness > epatch ${FILESDIR}/${PN}-1.270-ldap-useradmin.patch > > # Postfix should modify the last entry of the maps file > epatch ${FILESDIR}/${PN}-1.170-postfix.patch > > mv ${WORKDIR}/virtual-server-${VM_V}.wbm ${T}/vs.tar > tar -xf ${T}/vs.tar > > # Don't create ${HOME}/cgi-bin on new accounts > epatch ${FILESDIR}/virtual-server-2.60-nocgibin.patch > > # Check if a newly added IP is already active > epatch ${FILESDIR}/virtual-server-2.610-checkip.patch > > # Verify Postgres usernames > epatch ${FILESDIR}/virtual-server-2.31-pgsql.patch > > # Fix some all name virtual items > epatch ${FILESDIR}/virtual-server-2.31-namevirtual.patch > fi > > epatch ${FILESDIR}/${PN}-1.170-setup-nocheck.patch >} > >src_install() { > # Bug #97212 > addpredict /var/lib/rpm > > rm -f mount/freebsd-mounts* > rm -f mount/openbsd-mounts* > rm -f mount/macos-mounts* > > (find . -name '*.cgi' ; find . -name '*.pl') | perl perlpath.pl /usr/bin/perl - > dodir /usr/libexec/webmin > dodir /var > > cp -rp * ${D}/usr/libexec/webmin > > # in webmin-minimal openslp is not present > if [ ! -f "${D}/usr/libexec/webmin/openslp/config-gentoo-linux" ] ; then > cp ${D}/usr/libexec/webmin/openslp/config \ > ${D}/usr/libexec/webmin/openslp/config-gentoo-linux > fi > > newinitd ${FILESDIR}/init.d.webmin webmin > > newpamd ${FILESDIR}/webmin-pam webmin > echo gentoo > ${D}/usr/libexec/webmin/install-type > > # Fix ownership > chown -R root:0 ${D} > > dodir /etc/webmin > dodir /var/log/webmin > > config_dir=${D}/etc/webmin > var_dir=${D}/var/log/webmin > perl=${ROOT}/usr/bin/perl > autoos=1 > port=10000 > login=root > crypt="XXX" > host=`hostname` > use ssl && ssl=1 || ssl=0 > atboot=0 > nostart=1 > nochown=1 > autothird=1 > nouninstall=1 > noperlpath=1 > tempdir="${T}" > export config_dir var_dir perl autoos port login crypt host ssl atboot nostart nochown autothird nouninstall noperlpath tempdir > ${D}/usr/libexec/webmin/setup.sh > ${T}/webmin-setup.out 2>&1 || die "Failed to create initial webmin configuration." > > # Fixup the config files to use their real locations > sed -i -e "s:^pidfile=.*$:pidfile=${ROOT}/var/run/webmin.pid:" ${D}/etc/webmin/miniserv.conf > find ${D}/etc/webmin -type f | xargs sed -i -e "s:${D}:${ROOT}:g" > > # Cleanup from the config script > rm -rf ${D}/var/log/webmin > keepdir /var/log/webmin/ > > # Get rid of this crap... > rm -rf ${D}/usr/libexec/webmin/acl/Authen-SolarisRBAC-0.1 > rm -f ${D}/usr/libexec/webmin/acl/Authen-SolarisRBAC-0.1.tar.gz >} > >pkg_postinst() { > local crypt=$(grep "^root:" ${ROOT}/etc/shadow | cut -f 2 -d :) > crypt=${crypt//\\/\\\\} > crypt=${crypt//\//\\\/} > sed -i -e "s/root:XXX/root:${crypt}/" /etc/webmin/miniserv.users > > einfo "To make webmin start at boot time, run: 'rc-update add webmin default'." > use ssl && einfo "Point your web browser to https://localhost:10000 to use webmin." > use ssl || einfo "Point your web browser to http://localhost:10000 to use webmin." >} > >pkg_prerm() { > ${ROOT}/etc/init.d/webmin stop >& /dev/null >}
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Raw
Actions:
View
Attachments on
bug 138552
: 90678