--- phpmyadmin-2.9.1.1.orig/debian/changelog +++ phpmyadmin-2.9.1.1/debian/changelog @@ -0,0 +1,880 @@ +phpmyadmin (4:2.9.1.1-2~schmidham.net.1) unstable; urgency=low + + * Backport to sarge + * Changed build deps: + yada 0.52 -> 0.48 + + -- Korbinian Rosenegger Sun, 21 Jan 2007 23:16:49 +0100 + +phpmyadmin (4:2.9.1.1-2) unstable; urgency=high + + * Backport security-related changes from 2.9.2-rc1: + * CVE-2007-0203: Multiple unspecified vulnerabilities; + this turns out to be (1) cross site scripting and + (2) the same as CVE-2006-6374. (Closes: #406332, #406486) + * CVE-2006-6374: the vulnerability only applies to + PHP < 5.1.2 and < 4.4.2, so strictly speaking current + Debian is not vulnerable. Include it anyway, to not expose + those using older PHP versions. (Closes: #404744) + + -- Thijs Kinkhorst Fri, 12 Jan 2007 15:29:28 +0100 + +phpmyadmin (4:2.9.1.1-1) unstable; urgency=high + + * New upstream release. + - Addresses several security issues (Closes: #399329). + + * In Depends, explicitly prefer the apache2/apache PHP module, to make + sure the correct one is selected upon installation. + * Drop 100-dutch_fixtypo.patch, integrated upstream. + + * Add note to default config file about adding sensitive data + to that file (Closes: #321529). + * Update README.Debian with information about register_globals. + + -- Thijs Kinkhorst Wed, 22 Nov 2006 22:24:02 +0100 + +phpmyadmin (4:2.9.0.3-1) unstable; urgency=medium + + * New upstream bugfix release. + - Includes a fix for a XSS security issue. + (PMASA-2006-6, CVE-2006-5718, Closes: #396638) + + * 100-dutch_fixtypo.patch: Add patch to fix typo in Dutch + translation which also caused a layout problem in the login + screen. + * 021-config.inc.php_no_check_mtime.patch: Add patch to Config + class to disable checking for the mtime of config.inc.php. + Since we include other files from it, those will otherwise + never be read (Closes: #392022). + * Add depends on perl since it's used in the maintainer scripts. + * Update shipped htaccess to make it compatible with Apache 2.2 + (Closes: #396560). + + * Updated translations: + - Bokmål by Bjørn Steensrud. + - Basque by Piarres Beobide. + - Dutch by self. + - Danish by Claus Hindsgaul (Closes: #393871). + - Japanese by Hideki Yamane (Closes: #396548). + + -- Thijs Kinkhorst Thu, 2 Nov 2006 15:45:29 +0100 + +phpmyadmin (4:2.9.0.2-1) unstable; urgency=low + + * New maintainer, thanks Piotr for your previous work! + * Acknowledge NMU's, thanks Steinar! (Closes: #378681) + * Fix typo in debconf templates and unfuzzy that. + * Tweak package description. + + -- Thijs Kinkhorst Wed, 11 Oct 2006 14:46:37 +0200 + +phpmyadmin (4:2.9.0.2-0.1) unstable; urgency=high + + * Non-maintainer upload with maintainer consent. + * Upgrade to latest upstream version to battle cross-site + request forgery (PMASA-2006-5, CVE-2006-5116, CVE-2006-5117, + closes: 391090). + * New upstream also fixes broken database export functionality + (closes: 374918) and database/table copy (closes: 390484). + * Update translations: + - Danish by Claus Hindsgaul (Closes: 357972). + - Italian by Luca Monducci (Closes: 382139). + - Spanish by Nacho Barrientos Arias (Closes: 385365). + + -- Thijs Kinkhorst Tue, 10 Oct 2006 20:56:25 +0200 + +phpmyadmin (4:2.8.2-0.2) unstable; urgency=medium + + * Non-maintainer upload. + * Fix issue with /var/www pointing to /usr/share/phpmyadmin. + (Closes: #385889) + * Make sure we install /var/www as a directory, since we make a symlink into + it and we can't rely on it being there. + * Explicitly link to /var/www/phpmyadmin instead of /var/www, to make sure + we don't make a new /var/www even if it should be removed for some + reason. + + -- Steinar H. Gunderson Mon, 11 Sep 2006 00:14:54 +0200 + +phpmyadmin (4:2.8.2-0.1) unstable; urgency=high + + * Non-maintainer upload. + * New upstream release. + * Fixes cross-site-scripting issues. [CVE-2006-3388] (Closes: #377748) + + -- Steinar H. Gunderson Tue, 18 Jul 2006 12:52:19 +0200 + +phpmyadmin (4:2.8.1-1) unstable; urgency=medium + + * New upstream release. Closes: #373204. + - The French translation is correct. Closes: #362154. + - Generates correct dumps with UPDATE syntax. Closes: #364702. + * Security fix: XSRF vulnerability. + See: http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2006-3 + See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1804 + [CVE-2006-1803, CVE-2006-1804] + * Security fix: XSS vulnerabilities. It was not a problem for Debian with + the default settings. + See: http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2006-2 + See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2031 + [CVE-2006-2031, CVE-2006-2417, CVE-2006-2418] + Closes: #363519, #368082. + * Updated Portuguese debconf templates translation, thanks Miguel Figueiredo. + Closes: #363597. + * Updated Russian debconf templates translation, thanks Yuriy Talakan. + Closes: #367146. + * Convert non-ISO-8859-1 debconf templates translation to UTF-8. + + -- Piotr Roszatycki Sun, 25 Jun 2006 18:10:23 +0200 + +phpmyadmin (4:2.8.0.3-1) unstable; urgency=medium + + * New upstream release. + * Security fix: XSS vulnerability (calling directly css files under themes) + See: http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2006-1 + See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1678 + Closes: #362567. + + -- Piotr Roszatycki Fri, 14 Apr 2006 14:47:28 +0200 + +phpmyadmin (4:2.8.0.2-4) unstable; urgency=low + + * Fixed typos in debconf template. Closes: #360059. + * Updated Czech debconf templates translation, thanks Miroslav Kure. + Closes: #359757. + * Updated German debconf templates translation, thanks Daniel Knabl. + Closes: #359752. + * Updated Swedish debconf templates translation, thanks Daniel Nylander. + * Updated Vietnamese debconf templates translation, thanks Clytie Siddall. + + -- Piotr Roszatycki Fri, 31 Mar 2006 14:54:00 +0200 + +phpmyadmin (4:2.8.0.2-3) unstable; urgency=low + + * Add missing javascript files. Closes: #357743, #357579. + * Updated Brazilian Portuguese debconf templates translation, thanks Andre + Luis Lopes. Closes: #357840. + + -- Piotr Roszatycki Mon, 20 Mar 2006 11:06:09 +0100 + +phpmyadmin (4:2.8.0.2-2) unstable; urgency=low + + * Do not use 822-date command in postinst script. Close: #357605. + + -- Piotr Roszatycki Sat, 18 Mar 2006 15:02:47 +0100 + +phpmyadmin (4:2.8.0.2-1) unstable; urgency=low + + * New upstream release. Closes: #356013, #355931. + - Can work if DocumentRoot is set to phpMyAdmin's directory. + Closes: #352403, #349497. + - pma_* features work with PersistentConnection mode. Closes: #348489. + - Export of table works if __TABLE__ macro is used. Closes: #217364. + - Can navigate back to user after changing privileges on database. + Closes: #338758. + - Fixes XSS [CVE-2006-1258] + * Reedited package description. + * Tweaked dependencies. Prefer php5-cgi package and does not depend on + apache2, because the PHP can be started as FastCGI standalone server. + Closes: #340286, #307441. + * This release provides http://localhost/phpmyadmin/scripts/setup.php setup + script. This script requires authorization by default. + * Generate longer blowfish secret on install. + * Create symlink /var/www/phpmyadmin only at first install. + + -- Piotr Roszatycki Fri, 17 Mar 2006 10:56:43 +0100 + +phpmyadmin (4:2.7.0-pl2-1) unstable; urgency=low + + * New upstream release. Closes: #342203. + * Tweak the dependencies and prefer PHP5 with Apache2. + * Support cgid.so module for threaded Apache2. + * Removed all Debian specific patches. + * Portuguese debconf templates translation, thanks Miguel Figueiredo. + Closes: #336444. + + -- Piotr Roszatycki Wed, 4 Jan 2006 15:34:36 +0100 + +phpmyadmin (4:2.6.4-pl4-2) unstable; urgency=high + + * Security fix: Cross-site scripting by trusting potentially user-supplied + input. + See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3665 + New 200-CVE-2005-3665.patch. Closes: #340438. + + -- Piotr Roszatycki Wed, 23 Nov 2005 14:31:15 +0100 + +phpmyadmin (4:2.6.4-pl4-1) unstable; urgency=high + + * New upstream release. + * Security fix: HTTP Response Splitting vulnerability. + See: http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-6 + See: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3621 + Closes: #339437. + * New 105-bug_debian_324318.patch: + - Always set the default configuration values, even if the config.inc.php + file seems to be up to date. This fix allows to utilise more than three + databases. Closes: #324318. + + -- Piotr Roszatycki Wed, 16 Nov 2005 13:10:14 +0100 + +phpmyadmin (4:2.6.4-pl3-1) unstable; urgency=high + + * New upstream release. + * Security fix: (1) Local file inclusion vulnerability and (2) Cross-Site + Scripting vulnerability. + See http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3300 + See http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3301 + Closes: #335306, #335513. + * Assigned CVE number for 4:2.6.4-pl2-1 bug fix. + + -- Piotr Roszatycki Mon, 24 Oct 2005 20:14:08 +0200 + +phpmyadmin (4:2.6.4-pl2-1) unstable; urgency=high + + * New upstream release. + * Security fix: local file inclusion vulnerability. + See http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3299 + Closes: #333433. + + -- Piotr Roszatycki Wed, 12 Oct 2005 15:07:42 +0200 + +phpmyadmin (4:2.6.4-pl1-2) unstable; urgency=low + + * Rebuilt with new YADA. Depends: debconf (>= 0.2.26) | debconf-2.0 + * Swedish debconf templates translation, thanks Daniel Nylander. + Closes: #330645. + + -- Piotr Roszatycki Tue, 4 Oct 2005 13:01:25 +0200 + +phpmyadmin (4:2.6.4-pl1-1) unstable; urgency=medium + + * New upstream release. + * Security fix: Two Cross-Site Scripting vulnerabilities. + See http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2869 + Closes: #327345. + * Append the Debian package revision number to the upstream version number. + Marks that this phpMyAdmin package has additional Debian modifications so + the bugreports won't confuse phpMyAdmin's coders. + * Create minimal /usr/share/phpmyadmin/config.inc.php file with proper + comment. Closes: #321270. + * Reintroduced /etc/phpmyadmin/apache.conf. Closes: #307181, #308460, + #312611, #312668. + * Removed all Debian patches as are obsoleted now. + * Depends: apache2 | httpd + * Recommends: php4-mcrypt | php5-mcrypt. Closes: #321259. + * Arabic debconf templates translation. Closes: #320773. + * Vietnamese debconf templates translation. Closes: #316841. + * Updated Brazilian Portuguese debconf templates translation. Closes: #310875. + * Updated German debconf templates translation. Closes: #326141. + * New yada fixes postrm script fail when ucf is missing. Closes: #322139. + + -- Piotr Roszatycki Fri, 16 Sep 2005 16:21:21 +0200 + +phpmyadmin (4:2.6.2-3) unstable; urgency=high + + * Fix apache2.conf only for 4:2.6.2-1 release. Closes: #307901 (critical), + #307275 (critical), #304786 (critical). + * Clean up old 'Include /etc/phpmyadmin/apache.conf' from httpd.conf in safe + way. + * Removed old code which modified httpd.conf if 'Include /etc/apache/conf.d' + was missing. + * Note for release manager: cleaning up config.inc.php doesn't change the + application logic. The autoloading of the PHP extensions is already + implemented in the upstream's code. + + -- Piotr Roszatycki Sat, 7 May 2005 14:49:49 +0200 + +phpmyadmin (4:2.6.2-2) unstable; urgency=high + + * Doesn't modify apache2.conf. Try to revert the changes. + Closes: #307275 (critical). + * Remove obsoleted conffiles and symlinks on purge. Closes: #307415. + * The default behaviour is not to autoconfigurate webservers. + * Doesn't load the PHP extensions automatically in config.inc.php script. + + -- Piotr Roszatycki Thu, 5 May 2005 11:40:46 +0200 + +phpmyadmin (4:2.6.2-1) unstable; urgency=low + + * New upstream release + * NEWS and README.Debian file are documented about problem with logging + in with cookie based authentication. + * Removed suPHP directive from apache.conf file. Closes: #304018. + * Configuration in .htaccess doesn't override global access settings. + Closes: #303535. + * Updated Brazilian Portuguese debconf templates translation. + Closes: #304566. + * Apache configuration is installed separately, not through symlinks. + * Convert httpd.conf and apache.conf. They have to contain + "Include /etc/apache2/conf.d/*.conf" directive. + + -- Piotr Roszatycki Tue, 19 Apr 2005 11:51:21 +0200 + +phpmyadmin (3:2.6.2-rc1-1) unstable; urgency=high + + * New upstream release. + * Security fix: Cross-Site Scripting vulnerability. + See http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-3 + Closes: #303142. + * Don't enable PHP if mod_fcgid is loaded in Apache 2.x. + + -- Piotr Roszatycki Tue, 5 Apr 2005 15:17:25 +0200 + +phpmyadmin (3:2.6.1-pl3-2) unstable; urgency=high + + * Fixed the bug in postinst introduced in last upload. Closes: #299034. + + -- Piotr Roszatycki Fri, 11 Mar 2005 11:14:05 +0100 + +phpmyadmin (3:2.6.1-pl3-1) unstable; urgency=high + + * New upstream release. + * Fixed annoying bug that a user called 'xx@%' could be created but + not removed. Closes: #208539. + * Fixed critical bug introduced by php4 compiled with ZTS option. Added + 003-dl_with_zts.patch. Closes: #297725. + * Renamed debian/patches/*.diff to *.patch. + * Depends also on php5-fcgi. + + -- Piotr Roszatycki Mon, 7 Mar 2005 12:21:00 +0100 + +phpmyadmin (3:2.6.1-pl2-2) unstable; urgency=low + + * Fixed converting /etc/apache/conf.d/phpmyadmin to phpmyadmin.conf at + upgrade time. + + -- Piotr Roszatycki Wed, 2 Mar 2005 20:30:29 +0100 + +phpmyadmin (3:2.6.1-pl2-1) unstable; urgency=high + + * New upsteam release. + * Security fix: A variable injection vulnerability was found in phpMyAdmin, + that may allow an attacker to conduct Cross-site scripting (XSS) attacks + and / or perform remote file inclusion. + See http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-1 + Closes: #296845. + * Switched off register_globals in .htaccess. + * Does not recommend versioned apache, as far as it works wrongly with + aptitude. Closes: #295786. + + -- Piotr Roszatycki Sat, 26 Feb 2005 17:39:31 +0100 + +phpmyadmin (3:2.6.1-1) unstable; urgency=low + + * New upstream release. + * Czech debconf templates translation. Closes: #293611. + * Woody backward compatibility. See bug 1117907 on Sourceforge. + + -- Piotr Roszatycki Mon, 7 Feb 2005 15:20:09 +0100 + +phpmyadmin (2:2.6.1-rc2-2) unstable; urgency=low + + * Configuration for suPHP can't be in .htaccess. Closes: #287897. + + -- Piotr Roszatycki Tue, 18 Jan 2005 19:13:12 +0100 + +phpmyadmin (2:2.6.1-rc2-1) unstable; urgency=low + + * New upstream release. + * Rename the symlink /etc/$APACHE/conf.d and add .conf suffix. + Closes: #286100. + * Disable suPHP for security reasons. Closes: #287897. + * Use /cgi-bin/php if CGI mode is used. + * Depends on php4 | php4-cgi | php5 | php5-cgi. + * Modified Description field to make lintian happy. + * Fixed postinst script for better php5 support. + + -- Piotr Roszatycki Wed, 12 Jan 2005 21:37:02 +0100 + +phpmyadmin (2:2.6.1-rc1-1) unstable; urgency=high + + * New upstream release. + * Security fix: Command execution and file disclosure was found. + See http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2004-4 + Closes: #285488. + * Remove 003.non_standard_port_fix.diff applied to upstream. + * Add commented out options 'extension' and 'AllowRoot' to default config + file. + * Support mysqli.so extension. Autodetect modules from 'extension' option. + + -- Piotr Roszatycki Mon, 13 Dec 2004 19:23:57 +0100 + +phpmyadmin (2:2.6.0-pl3-2) unstable; urgency=high + + * Security fix is broken if non-standard HTTP(S) port is used. + Closes: #283044. + + -- Piotr Roszatycki Fri, 26 Nov 2004 09:55:29 +0100 + +phpmyadmin (2:2.6.0-pl3-1) unstable; urgency=high + + * New upstream release. + * Security fix: Multiple XSS vulnerability were found. + See http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2004-3 + * Tweaks dependencies: depends php4 | php4-cgi; don't suggests + non-free mysql-doc. + * Supports unofficial php5 packages. + + -- Piotr Roszatycki Mon, 22 Nov 2004 10:22:41 +0100 + +phpmyadmin (2:2.6.0-pl2-2) unstable; urgency=low + + * Updated German translation of the debconf templates. Closes: #280998. + + -- Piotr Roszatycki Thu, 18 Nov 2004 14:08:27 +0100 + +phpmyadmin (2:2.6.0-pl2-1) unstable; urgency=high + + * New upstream release. + * Security fix: If PHP is not running in safe mode, a problem in the + MIME-based transformation system (with an "external" transformation) + allows to execute any command with the privileges of the web server's + user. + + -- Piotr Roszatycki Thu, 14 Oct 2004 11:33:56 +0200 + +phpmyadmin (2:2.6.0-pl1-1) unstable; urgency=low + + * New upstream release. + * This release fixes patch 003.woody_compatibility. + + -- Piotr Roszatycki Wed, 29 Sep 2004 09:39:38 +0200 + +phpmyadmin (2:2.6.0-1) unstable; urgency=low + + * New upstream release. + * Depends: php4-cgi (>= 4.1.0) | libapache-mod-php4. The php4-cgi package + is recommended as easier for installation. Closes: #267878. + * Depends: apache | apache-perl | apache-ssl | apache2 | httpd. + * Added patch for woody with MySQL from backports.org compatibility. + + -- Piotr Roszatycki Tue, 28 Sep 2004 09:42:06 +0200 + +phpmyadmin (1:2.6.0-rc1-1) experimental; urgency=low + + * New upstream release. + * Disable the default warning that is displayed on the DB Details Structure + page if any of the required Tables for the relation features could not be + found. + + -- Piotr Roszatycki Mon, 9 Aug 2004 10:21:07 +0200 + +phpmyadmin (1:2.5.7-pl1-2) unstable; urgency=medium + + * blowfish_secret.inc.php must not be world readable. Closes: #257968. + + -- Piotr Roszatycki Thu, 5 Aug 2004 17:37:46 +0200 + +phpmyadmin (1:2.5.7-pl1-1) unstable; urgency=high + + * New upstream release + * Fixes security problems. See + http://securityfocus.com/archive/1/367486/2004-06-26/2004-07-02/0 + and the Documentation.html, FAQ 8.2. + + -- Piotr Roszatycki Thu, 1 Jul 2004 09:51:54 +0200 + +phpmyadmin (1:2.5.7-1) unstable; urgency=low + + * New upstream release + * Add /var/www/phpmyadmin to the apache.conf, closes: #246367. + * Suggests: php4-gd, closes: #243714. + * Should work with E_ALL, closes: #244672. + * Remove php3 from dependencies and DebConf templates, closes: #246002. + * Fixed typo in DebConf template, closes: #250841. + * Dutch debconf templates translation (unfinished...), closes: #216936. + * Split configuration to the /etc/phpmyadmin/config.inc.php and + /usr/share/phpmyadmin/config.inc.php, closes: #225766. + * Ask for restart only if required, closes: #249940. + + -- Piotr Roszatycki Fri, 25 Jun 2004 10:27:26 +0200 + +phpmyadmin (1:2.5.6-2) unstable; urgency=low + + * Supports PHP for Apache2, closes: #242797. + * apache.conf uses than , closes: #236978. + * Remove /etc/*/conf.d/phpmyadmin on purge, closes: #239080. + * Fixed DebConf scripts. Should not ask again about webservers, + closes: #239480. + * Install /var/www/phpmyadmin symlink than Alias, closes: #238598. + * Catalan debconf templates translation, closes: #236636. + * DebConf templates: + * Removed phpmyadmin/changed-extension + * Renamed phpmyadmin/webserver to phpmyadmin/reconfigure-webserver + * Renamed phpmyadmin/restart to phpmyadmin/restart-webserver + + -- Piotr Roszatycki Sat, 27 Mar 2004 13:16:26 +0100 + +phpmyadmin (1:2.5.6-1) unstable; urgency=low + + * New upstream release. + * Ignore missing /etc/phpmyadmin directory for postrm purge, close: #235696. + * Danish debconf templates translation, closes: #234948. + + -- Piotr Roszatycki Thu, 4 Mar 2004 17:16:56 +0100 + +phpmyadmin (2.5.6-rc2-1) unstable; urgency=low + + * New upstream release. + * Removed conffiles /etc/phpmyadmin/{header,footer}.inc.php. They are + not conffiles for a long time. Closes: #232557, #231880. + * Brazilian Portuguese debconf templates translation, closes: #231713. + * French debconf templates translation, closes: #220804. + * Japanese po-debconf template translation, closes: #222282. + + -- Piotr Roszatycki Sun, 22 Feb 2004 13:14:00 +0100 + +phpmyadmin (2.5.6-rc1-1) unstable; urgency=high + + * New upstream release. + * Security fix: possible attack against export.php, see + http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0129, + closes: #231050. + + -- Piotr Roszatycki Wed, 4 Feb 2004 12:34:11 +0100 + +phpmyadmin (2.5.5-pl1-2) unstable; urgency=low + + * Restored upstream release notes. + + -- Piotr Roszatycki Tue, 3 Feb 2004 15:33:54 +0100 + +phpmyadmin (2.5.5-pl1-1) unstable; urgency=low + + * New upstream release. + * Depends php4 or php4-cgi (>= 4.1.0) and suggests mysql-server (>= 3.23.36). + + -- Piotr Roszatycki Wed, 28 Jan 2004 11:17:25 +0100 + +phpmyadmin (2.5.4-2) unstable; urgency=low + + * Call modules-config rather than writing directly to modules.conf. + * Recommends: apache (>= 1.3.29.0.1-1), php4, php4-mysql + * Update Russian translation, closes: #221827. + + -- Piotr Roszatycki Fri, 19 Dec 2003 18:58:27 +0100 + +phpmyadmin (2.5.4-1) unstable; urgency=low + + * New official unstable release. + * Fixed apache.conf with IfModule directive. + * Closes bugs with pending tag: + o Fixed problem with password changes, closes: #216467 + o Fixed print view for one table, closes: #149172 + o Fixed grants for table contained backslash in its name, closes: #149416 + o Can login with empty password, closes: #171784 + o apache.conf includes DirectoryIndex directive, closes: #217100 + o Can copy user grants/permissions to other user, closes: #152807 + o Backs to browse listing after edting, closes: #168980 + + -- Piotr Roszatycki Fri, 7 Nov 2003 11:42:44 +0100 + +phpmyadmin (2.5.4-0.4) experimental; urgency=low + + * Fixed another ucf bug. + + -- Piotr Roszatycki Thu, 6 Nov 2003 19:45:31 +0100 + +phpmyadmin (2.5.4-0.3) experimental; urgency=low + + * ucf should be called on "configure" action. YADA relative problem. + + -- Piotr Roszatycki Tue, 4 Nov 2003 13:21:29 +0100 + +phpmyadmin (2.5.4-0.2) experimental; urgency=low + + * modules-config hangs up if postinst uses debconf. Write to modules.conf + directly. + + -- Piotr Roszatycki Fri, 31 Oct 2003 17:21:10 +0100 + +phpmyadmin (2.5.4-0.1) experimental; urgency=low + + * New upstream release. + * ucf handles configuration files. + * Don't use wwwconfig-common. + * Handle Apache2 webserver. + * Works with new DebConfized Apache package. + + -- Piotr Roszatycki Tue, 28 Oct 2003 15:45:34 +0100 + +phpmyadmin (2.5.3-1) unstable; urgency=low + + * New upstream release. + + -- Piotr Roszatycki Mon, 8 Sep 2003 10:37:07 +0200 + +phpmyadmin (2.5.2-pl1-1) unstable; urgency=low + + * New upstrem release. + * NEWS.Debian renamed to NEWS, closes: #204901. + + -- Piotr Roszatycki Mon, 11 Aug 2003 22:21:18 +0200 + +phpmyadmin (2.5.2-2) unstable; urgency=high + + * The upstream also fixes XSS vulnerabilities, information + encoding weakness and transversal directory attack. This was + mentioned in Debian.NEWS file only, not changelog.Debian file. + See http://www.securityfocus.com/archive/1/325641. Closes: #203092. + * CVS fix: another patch for path disclosure problem. + * CVS fix: a user could not edit his own global privileges. + + -- Piotr Roszatycki Mon, 28 Jul 2003 09:39:11 +0200 + +phpmyadmin (2.5.2-1) unstable; urgency=low + + * New upstream release + * French debconf translation, closes: #200724 + * Generates /etc/phpmyadmin/blowfish_secret.inc.php in postinst script. + + -- Piotr Roszatycki Thu, 24 Jul 2003 10:50:01 +0200 + +phpmyadmin (2.5.1-1) unstable; urgency=high + + * New upstream release + * Fixes security problem. Prevent transversal directory attacks and remote + local directory listing with discovering directory content. + + -- Piotr Roszatycki Sat, 28 Jun 2003 21:57:23 +0200 + +phpmyadmin (2.4.0-2) unstable; urgency=high + + * Fixes bug introduced by previous fix. I don't know how I could upload + this crap. Sorry. Closes: #184214, #184544 + + -- Piotr Roszatycki Thu, 13 Mar 2003 02:14:05 +0100 + +phpmyadmin (2.4.0-1) unstable; urgency=low + + * New upstream release + + -- Piotr Roszatycki Mon, 10 Mar 2003 19:29:09 +0100 + +phpmyadmin (2.3.3pl1-1) unstable; urgency=low + + * New upstream release + * phpMyAdmin can login without password and shows connection errors. + + -- Piotr Roszatycki Thu, 5 Dec 2002 12:01:54 +0100 + +phpmyadmin (2.3.2-4) unstable; urgency=low + + * Don't insert NULL value if textarea is not empty. Fix from CVS snapshot, + closes: #168979 + + -- Piotr Roszatycki Mon, 18 Nov 2002 19:17:14 +0100 + +phpmyadmin (2.3.2-3) unstable; urgency=low + + * Missing libraries, closes: #166698 + + -- Piotr Roszatycki Mon, 4 Nov 2002 15:43:58 +0100 + +phpmyadmin (2.3.2-2) unstable; urgency=low + + * Missing translators.html + + -- Piotr Roszatycki Thu, 17 Oct 2002 10:32:49 +0200 + +phpmyadmin (2.3.2-1) unstable; urgency=low + + * New upstream release, closes: #157915 + + phpMyAdmin showed that the one field is PRIMARY key even if no field + was PRIMARY, closes: #144362 + + Can dump table and field names with backquotes, closes: #144513 + + Fixed Russian translation, closes: #144617 + + Cookie path is autodetected, closes: #155108 + * Now the absolute URI is autodetected, closes: #147714 + * Spanish DebConf template, closes: #153071 + + -- Piotr Roszatycki Fri, 11 Oct 2002 12:46:29 +0200 + +phpmyadmin (2.2.6-1) unstable; urgency=low + + * New upstream release + + -- Piotr Roszatycki Mon, 22 Apr 2002 17:01:39 +0200 + +phpmyadmin (2.2.5-2.2.6-rc2-1) unstable; urgency=low + + * New upstream release + * Fixed wwwconfig-common stuff, closes: #139986 + + -- Piotr Roszatycki Thu, 18 Apr 2002 11:44:44 +0200 + +phpmyadmin (2.2.5-2.2.6-rc1-2) unstable; urgency=low + + * Fixed postrm for debconf if package is not configured yet. + + -- Piotr Roszatycki Fri, 12 Apr 2002 12:12:22 +0200 + +phpmyadmin (2.2.5-2.2.6-rc1-1) unstable; urgency=low + + * New upstream release + * Russian debconf template, closes: #137674 + + -- Piotr Roszatycki Thu, 11 Apr 2002 16:48:00 +0200 + +phpmyadmin (2.2.3-1) unstable; urgency=low + + * New upstream release + + -- Piotr Roszatycki Tue, 8 Jan 2002 13:02:45 +0100 + +phpmyadmin (2.2.2-2.2.3-dev-20011218-1) unstable; urgency=low + + * New upstream release (CVS snapshot) + * This upstream release implements cookie based authentication. Finally :) + * Fixes 'Query empty' bug when ordering by a column, closes: #123459 + * Fixes spelling error in description, closes: #125243 + * Removed invalid command for PHP3 from apache.conf, closes: #122941 + + -- Piotr Roszatycki Mon, 17 Dec 2001 16:17:11 +0100 + +phpmyadmin (2.2.1-2.2.2-rc1-2) unstable; urgency=low + + * Works with error_reporting=E_ALL, closes: #121328 + * Turn on register_globals in apache.conf + + -- Piotr Roszatycki Tue, 27 Nov 2001 11:10:59 +0100 + +phpmyadmin (2.2.1-2.2.2-rc1-1) unstable; urgency=medium + + * New upstream release, closes: #118716 + * New upstream fixes several security problems. + + -- Piotr Roszatycki Wed, 21 Nov 2001 12:13:07 +0100 + +phpmyadmin (2.2.0-4) unstable; urgency=low + + * Missing select_box() function added, required for multiserver config. + + -- Piotr Roszatycki Mon, 1 Oct 2001 12:38:08 +0200 + +phpmyadmin (2.2.0-3) unstable; urgency=low + + * User can login even if (s)he doesn't have priviliges to mysql + database, really closes: #112099 + * New yada, package should build from source. + * Remove CVS directories. + + -- Piotr Roszatycki Tue, 18 Sep 2001 15:57:25 +0200 + +phpmyadmin (2.2.0-2) unstable; urgency=low + + * Fixed typo in lib.inc.php, closes: #112099 + * Compatibility with potato's mysql server + * Frameset is now resizable, applied patch from CVS + + -- Piotr Roszatycki Tue, 18 Sep 2001 14:07:59 +0200 + +phpmyadmin (2.2.0-1) unstable; urgency=high + + * New upstream release, closes: #70086, #104515 + * Upstream changed to SourceForge project (http://phpmyadmin.sf.net). + * Security update, see SecurityFocus. + * Suggests: mysql-server, closes: #67547 + * DebConf and wwwconfig-common for automatic webserver reconfiguration. + + -- Piotr Roszatycki Fri, 31 Aug 2001 12:23:04 +0200 + +phpmyadmin (2.1.0.1-5) unstable; urgency=low + + * Fixed edit after select action, thanks Werner Ammon. + * Fixed german translation. + + -- Piotr Roszatycki Mon, 9 Jul 2001 17:37:46 +0200 + +phpmyadmin (2.1.0.1-4) unstable; urgency=high + + * Security update, see: http://securityfocus.com/vdb/bottom.html?vid=2966 + * Compiled with phpMyAdmin-SecureReality.diff patch from + http://www.securereality.com.au/srpre00001.html + * Added charset info to left.php + + -- Piotr Roszatycki Mon, 9 Jul 2001 12:51:00 +0200 + +phpmyadmin (2.1.0.1-3) unstable; urgency=low + + * German template file, closes: #99332 + + -- Piotr Roszatycki Thu, 31 May 2001 08:59:43 +0200 + +phpmyadmin (2.1.0.1-2) unstable; urgency=low + + * Clean up debian/packages + * Renamed .php3 to .php, see Debconf note. + * Purging /etc/phpmyadmin in postrm + + -- Piotr Roszatycki Mon, 21 May 2001 12:45:34 +0200 + +phpmyadmin (2.1.0.1-1) unstable; urgency=low + + * New upstream release from unofficial source, see copyright info, + closes: #82506 + * New yada + * Removed dependency on libmysqlclient + + -- Piotr Roszatycki Mon, 29 Jan 2001 17:12:30 +0000 + +phpmyadmin (2.1.0-1) unstable; urgency=low + + * php4-cgi added to Depends + * Standards-Version: 3.1.0 + * New upstream release + + -- Piotr Roszatycki Tue, 10 Oct 2000 18:17:07 +0200 + +phpmyadmin (2.0.5-2) unstable; urgency=low + + * Suggests: mysql-doc + * Load mysql.so module if not loaded + * Set charset in META tag + * Minor changes in debian/ directory + + -- Piotr Roszatycki Mon, 10 Jul 2000 12:43:41 +0200 + +phpmyadmin (2.0.5-1) frozen unstable; urgency=medium + + * This upstream source allows creating tables, closes: #53751 + * New upstream release + + -- Piotr Roszatycki Thu, 10 Feb 2000 19:09:11 +0100 + +phpmyadmin (2.0.4-3) unstable; urgency=low + + * Polish translation in polish.inc.php3 + * Slightly modified README.Debian + * New feature: logout.php3; required by Netscape browser. + * Suggests: mysql-doc; modified default conffile and sources. + * Depends: php4, php4-mysql; a minor changes in debian/*.dpatch files. + + -- Piotr Roszatycki Sat, 27 Nov 1999 14:32:24 +0100 + +phpmyadmin (2.0.4-2) unstable; urgency=low + + * yada 0.8 + * moved to main archive + + -- Piotr Roszatycki Sat, 6 Nov 1999 23:33:59 +0100 + +phpmyadmin (2.0.4-1) unstable; urgency=low + + * /usr/doc/... symlink. + * Removed some debhelper's constructions + * README.Debian in dpatch file. + * New option in config file: verbose. + * New language: Portuguese. + * New upstream release. + + -- Piotr Roszatycki Mon, 18 Oct 1999 19:09:48 +0200 + +phpmyadmin (2.0.3-1) unstable; urgency=low + + * Initial Debian version. + + -- Piotr Roszatycki Wed, 25 Aug 1999 21:32:14 +0200 + --- phpmyadmin-2.9.1.1.orig/debian/NEWS +++ phpmyadmin-2.9.1.1/debian/NEWS @@ -0,0 +1,21 @@ +phpmyadmin (4:2.6.2-1) unstable; urgency=low + + PROBLEM WITH COOKIES + + After upgrading the phpMyAdmin with cookie based authentication you might + notice the problem with loggin in. Remove the cookies from your browser + if there is no error message and you are returned to the login prompt. + + -- Piotr Roszatycki Tue, 19 Apr 2005 12:42:21 +0200 + +phpmyadmin (4:2.7.0-pl2-1) unstable; urgency=low + + Configuration files coming from before phpMyAdmin 2.3.0 (released with + Debian woody) are no longer supported. + + You can still use your config.inc.php file, but this file can be simplified, + containing only the parameters you want to change from their corresponding + default value in /usr/share/phpmyadmin/config.default.php. + + -- Piotr Roszatycki Wed, 4 Jan 2006 15:34:36 +0100 + --- phpmyadmin-2.9.1.1.orig/debian/packages +++ phpmyadmin-2.9.1.1/debian/packages @@ -0,0 +1,483 @@ +# $Id: /trunk/debian/dists/phpmyadmin/debian/packages 54 2006-06-26T08:56:00.163161Z dexter $ + +# If the debian/rules or debian/control file is missing, rebuild the file: +# +# $ yada rebuild control +# $ yada rebuild rules + + +Source: phpmyadmin +Section: web +Priority: extra +Maintainer: Thijs Kinkhorst +Standards-Version: 3.7.2 +Upstream-Source: +Home-Page: +Description: Administrate MySQL over the WWW +Copyright: GPL + Copyright (C) 1998-2000 Tobias Ratschiller + Copyright (C) 2001-2006 Marc Delisle + Olivier Mller + Robin Johnson + Alexander M. Turek + Michal Cihar + Garvin Hicking + Michael Keck + Sebastian Mendel + [check Documentation.txt/.html file for more details] +Major-Changes: +%`cd debian/patches && ls *.patch | sed -e 's/^/ /'` +Patches: patches/*.patch + +Package: phpmyadmin +Architecture: all +Depends: libapache2-mod-php5 | libapache-mod-php5 | php5-cgi | php5 | libapache2-mod-php4 | libapache-mod-php4 | php4 | php4-cgi +Depends: php5-mysql | php5-mysqli | php4-mysql +Depends: perl +Depends: [] +Recommends: apache2 | httpd +Recommends: php5-mcrypt | php4-mcrypt +Recommends: php5-gd | php4-gd +Recommends: [] +Suggests: mysql-server (>= 3.23.36) +Suggests: [] +Description: Administrate MySQL over the WWW + phpMyAdmin is intended to handle the administration of MySQL over the WWW. + Currently it can: + - easily browse through databases and tables + - create, copy, rename, alter and drop databases + - create, copy, rename, alter and drop tables + - do table maintenance + - add, edit and drop fields + - execute any SQL-statement, even multiple queries + - create, alter and drop indexes + - load text files into tables + - create and read dumps of tables or databases + - export data to SQL, CSV, XML, Word, Excel, PDF and Latex formats + - administer multiple servers + - manage MySQL users and privileges + - check server settings and runtime information with configuration hints + - check referential integrity in MyISAM tables + - using Query-by-example (QBE), create complex queries automatically + connecting required tables + - create PDF graphics of your Database layout + - search globally in a database or a subset of it + - transform stored data into any format using a set of predefined + functions, like displaying BLOB-data as image or download-link + - support InnoDB tables and foreign keys + - support mysqli, the improved MySQL extension + - communicate in 50 different languages + . + Homepage: http://www.phpmyadmin.net/ +Install: sh + yada install -data -into /usr/share/phpmyadmin *.php *.css + yada install -data -into /usr/share/phpmyadmin/scripts scripts/setup.php + yada copy -data -into /usr/share/phpmyadmin css js lang libraries themes + yada remove -data -into /usr/share/phpmyadmin/lang *.sh + yada remove -data -into /usr/share/phpmyadmin/libraries/fpdf README + yada remove -data -into /usr/share/phpmyadmin/libraries/transformations *.sh README TEMPLATE* + yada install -data -into /usr/share/phpmyadmin Documentation.html translators.html + yada install -data -into /usr/share/phpmyadmin ChangeLog INSTALL README + yada install -dir /var/lib/phpmyadmin + yada symlink -data -into /usr/share/phpmyadmin/config /var/lib/phpmyadmin/config.inc.php + yada install -dir /etc/phpmyadmin + yada install -conf -ucf -subdir phpmyadmin debian/conf/config.inc.php + yada install -conf -ucf -subdir phpmyadmin debian/conf/config.header.inc.php + yada install -conf -ucf -subdir phpmyadmin debian/conf/config.footer.inc.php + yada install -conf -ucf -subdir phpmyadmin debian/conf/htaccess + yada install -conf -ucf -subdir phpmyadmin debian/conf/apache.conf + yada symlink -into /usr/share/phpmyadmin -as .htaccess /etc/phpmyadmin/htaccess + yada install -into /usr/share/phpmyadmin debian/src/config.inc.php + yada install -into /usr/share/phpmyadmin debian/src/config.header.inc.php + yada install -into /usr/share/phpmyadmin debian/src/config.footer.inc.php + yada install -dir /var/www + . + perl -pi -e "s/'([0-9a-z.]+)'/'\$1-Debian-${VERSION##*-}'/ if /set..PMA_VERSION/" $ROOT/usr/share/phpmyadmin/libraries/Config.class.php + . + yada install -doc README TODO CREDITS + yada install -doc Documentation.html translators.html + yada install -doc -as changelog ChangeLog + yada install -doc -as README.Debian debian/README + yada install -doc -as NEWS.Debian -gzip debian/NEWS + yada install -doc -as NEWS debian/NEWS.upstream + yada install -doc -subdir scripts scripts/* + yada remove -doc -subdir scripts setup.php +Templates: + Template: phpmyadmin/reconfigure-webserver + Type: multiselect + Choices: apache, apache-ssl, apache-perl, apache2 + Default: + _Description: Which web server would you like to reconfigure automatically? + phpMyAdmin supports any web server that PHP does, but this automatic + configuration process only supports Apache. + . + Template: phpmyadmin/restart-webserver + Type: boolean + Default: false + _Description: Do you want me to restart ${webserver} now? + Remember that in order to activate the new configuration + ${webserver} has to be restarted. You can also restart ${webserver} + by manually executing /etc/init.d/${webserver} restart + . + Template: phpmyadmin/setup-username + Type: string + Default: admin + _Description: User name for web-based setup system: + phpMyAdmin comes with a setup script that can help you with creating + configuration. The script is located at http://localhost/phpmyadmin/scripts/setup.php . + For security reason it requires authorization. + . + Leave empty if you want to use the default user name 'admin'. + . + Template: phpmyadmin/setup-password + Type: password + Default: + _Description: Password for web-based setup system: + phpMyAdmin comes with a setup script that can help you with creating + configuration. The script is located at http://localhost/phpmyadmin/scripts/setup.php . + For security reason it requires authorization. + . + You can manage the usernames and passwords with `htpasswd' command. + They are stored in /etc/phpmyadmin/htpasswd.setup file. + . + Leave empty if you want to disable access to web-based setup. +Config: bash + db_input medium phpmyadmin/reconfigure-webserver || true + db_go || true + if [ ! -f /etc/phpmyadmin/htpasswd.setup ]; then + db_input medium phpmyadmin/setup-username || true + db_input medium phpmyadmin/setup-password || true + db_go || true + fi +Preinst: bash + if [ "$1" = "upgrade" -a -n "$2" ] && \ + dpkg --compare-versions "$2" lt-nl "2.1.0.1-2"; then + if [ -d /etc/phpmyadmin ]; then + for i in config footer header; do + mv -f /etc/phpmyadmin/$i.inc.php3 /etc/phpmyadmin/$i.inc.php || true + done + fi + fi + if [ "$1" = "upgrade" -a -n "$2" ] && \ + dpkg --compare-versions "$2" lt-nl "2.5.4-1"; then + for webserver in apache apache-perl apache-ssl; do + if grep -qs "^Include /etc/phpmyadmin/apache.conf" /etc/$webserver/httpd.conf; then + cp -af /etc/$webserver/httpd.conf /etc/$webserver/httpd.conf.old.phpmyadmin + grep -v "^Include /etc/phpmyadmin/apache.conf" /etc/$webserver/httpd.conf \ + > /etc/$webserver/httpd.conf.new.phpmyadmin + chmod --reference=/etc/$webserver/httpd.conf /etc/$webserver/httpd.conf.new.phpmyadmin + chown --reference=/etc/$webserver/httpd.conf /etc/$webserver/httpd.conf.new.phpmyadmin + mv -f /etc/$webserver/httpd.conf.new.phpmyadmin /etc/$webserver/httpd.conf + fi + done + fi + if [ "$1" = "upgrade" -a -n "$2" ] && \ + dpkg --compare-versions "$2" lt-nl "2.5.6-rc2-1"; then + if [ -d /etc/phpmyadmin ]; then + for i in footer header; do + mv -f /etc/phpmyadmin/$i.inc.php /etc/phpmyadmin/$i.inc.php.dpkg-old || true + ucf --purge /etc/phpmyadmin/$i.inc.php + done + fi + fi + if [ "$1" = "upgrade" -a -n "$2" ] && \ + dpkg --compare-versions "$2" lt-nl "2:2.6.1-rc2-1"; then + for webserver in apache apache-perl apache-ssl apache2; do + if [ -h /etc/$webserver/conf.d/phpmyadmin ]; then + mv /etc/$webserver/conf.d/phpmyadmin /etc/$webserver/conf.d/phpmyadmin.conf + fi + done + fi + if [ "$1" = "upgrade" -a -n "$2" ] && \ + dpkg --compare-versions "$2" lt-nl "3:2.6.1-pl2-2"; then + for webserver in apache apache-perl apache-ssl apache2; do + if [ -h /etc/$webserver/conf.d/phpmyadmin -a -h /etc/$webserver/conf.d/phpmyadmin.conf ]; then + rm -f /etc/$webserver/conf.d/phpmyadmin + fi + done + fi + if [ "$1" = "upgrade" -a -n "$2" ] && \ + dpkg --compare-versions "$2" lt-nl "3:2.6.2-rc1-2"; then + for webserver in apache apache-perl apache-ssl apache2; do + if [ -h /etc/$webserver/conf.d/phpmyadmin.conf ]; then + cat /etc/$webserver/conf.d/phpmyadmin.conf > /etc/$webserver/conf.d/phpmyadmin.conf.dpkg-tmp + rm -f /etc/$webserver/conf.d/phpmyadmin.conf + cp /etc/$webserver/conf.d/phpmyadmin.conf.dpkg-tmp /etc/$webserver/conf.d/phpmyadmin.conf + fi + done + mv -f /etc/phpmyadmin/apache.conf /etc/phpmyadmin/apache.conf.dpkg-old || true + ucf --purge /etc/phpmyadmin/apache.conf + rm -f /etc/phpmyadmin/apache.conf.md5sum + fi + # Trying to fix the mess. Sorry :( See #307275. + if [ "$1" = "upgrade" -a "$2" = "4:2.6.2-1" ]; then + if grep -qs "^# Include /etc/apache2/conf\.d/\[^\.#\]\*$" /etc/apache2/apache2.conf; then + cp -af /etc/apache2/apache2.conf /etc/apache2/apache2.conf.old.phpmyadmin + grep -v "^Include /etc/apache2/conf\.d/\*\.conf" /etc/apache2/apache2.conf.old.phpmyadmin | \ + sed "s%^# \(Include /etc/apache2/conf\.d/\[^\.#\]\*\)$%\1%" > /etc/apache2/apache2.conf.new.phpmyadmin + chmod --reference=/etc/apache2/apache2.conf /etc/apache2/apache2.conf.new.phpmyadmin + chown --reference=/etc/apache2/apache2.conf /etc/apache2/apache2.conf.new.phpmyadmin + mv -f /etc/apache2/apache2.conf.new.phpmyadmin /etc/apache2/apache2.conf + fi + fi + if [ "$1" = "upgrade" -a -n "$2" ] && \ + dpkg --compare-versions "$2" lt-nl "4:2.6.4-pl1-1"; then + for webserver in apache apache-perl apache-ssl apache2; do + if echo "869f29f7cae89228518a87b0758e6bd4 /etc/$webserver/conf.d/phpmyadmin.conf" | md5sum -c >/dev/null 2>&1; then + rm -f /etc/$webserver/conf.d/phpmyadmin.conf + fi + done + ucf --purge /etc/$webserver/conf.d/phpmyadmin.conf + fi + . + if [ -f /etc/phpmyadmin/apache.conf ]; then + md5sum /etc/phpmyadmin/apache.conf 2>/dev/null >/etc/phpmyadmin/apache.conf.dpkg-md5sum || true + fi +Postinst: bash + if [ "$1" = "configure" -a -f /etc/phpmyadmin/blowfish_secret.inc.php ] \ + && dpkg --compare-versions "$2" lt-nl "1:2.5.7-pl1-2"; then + chgrp www-data /etc/phpmyadmin/blowfish_secret.inc.php + chmod 640 /etc/phpmyadmin/blowfish_secret.inc.php + fi + . + if [ "$1" = "configure" ]; then + . + if [ -z "$2" ] || dpkg --compare-versions "$2" lt-nl "4:2.8.0.2-1"; then + if [ ! -e /var/www/phpmyadmin ]; then + ln -s /usr/share/phpmyadmin /var/www/phpmyadmin || true + fi + fi + . + if [ ! -f /etc/phpmyadmin/blowfish_secret.inc.php ]; then + touch /etc/phpmyadmin/blowfish_secret.inc.php + chgrp www-data /etc/phpmyadmin/blowfish_secret.inc.php + chmod 640 /etc/phpmyadmin/blowfish_secret.inc.php + printf "\n" \ + `perl -le 'print map{("a".."z","A".."Z",0..9)[int(rand(62))]}(1..24)'` \ + >> /etc/phpmyadmin/blowfish_secret.inc.php + fi + . + if [ ! -f /etc/phpmyadmin/htpasswd.setup ]; then + touch /etc/phpmyadmin/htpasswd.setup + chgrp www-data /etc/phpmyadmin/htpasswd.setup + chmod 640 /etc/phpmyadmin/htpasswd.setup + db_get phpmyadmin/setup-username + setup_username=${RET:-admin} + db_get phpmyadmin/setup-password + if [ -n "$RET" ]; then + setup_password=`perl -le 'print crypt($ARGV[0], join("", map{("a".."z","A".."Z",0..9)[int(rand(62))]}(1..2)))' "$RET"` + else + setup_password="*" + fi + echo "$setup_username:$setup_password" > /etc/phpmyadmin/htpasswd.setup + db_reset phpmyadmin/setup-username || true + db_reset phpmyadmin/setup-password || true + fi + . + if [ ! -f /var/lib/phpmyadmin/config.inc.php ]; then + if [ -z "$2" ] || dpkg --compare-versions "$2" lt-nl "4:2.8.0.2-1"; then + date=`LANG=C date -R` + for php in /usr/bin/php /usr/bin/php5 /usr/bin/php4 /usr/lib/cgi-bin/php /usr/lib/cgi-bin/php5 /usr/lib/cgi-bin/php4 ''; do + test -n "$php" || break + test -x $php || continue + php_test=`echo '' | $php -q 2>&1` + test "$php_test" = "OK" && break + done + if [ -n "$php" ]; then + blowfish_secret=`echo '' | $php -q 2>/dev/null` + else + blowfish_secret=`cat /etc/phpmyadmin/blowfish_secret.inc.php | perl -nale "s/(\\/\\/|#).*//; s/^\\s+//; next unless s/^\\\$cfg\[['\"]?blowfish_secret['\"]?\\]\\s*=\\s*['\"](.*)['\"].*$/\$1/; print" | tail -n1` + fi + if [ -z "$blowfish_secret" ]; then + blowfish_secret=`perl -le 'print map{("a".."z","A".."Z",0..9)[int(rand(62))]}(1..24)'` + fi + touch /var/lib/phpmyadmin/config.inc.php + chown www-data:www-data /var/lib/phpmyadmin/config.inc.php + chmod 640 /var/lib/phpmyadmin/config.inc.php + cat << 'END' | sed 's/%DATE%/'"$date"'/g; s/%BLOWFISH_SECRET%/'"$blowfish_secret"'/g' > /var/lib/phpmyadmin/config.inc.php +%`cat debian/var/config.inc.php | sed -e 's/^/ /; s/^ $/ ./'` + END + fi + fi + . + db_get phpmyadmin/reconfigure-webserver + webservers="$RET" + restart="" + . + for webserver in $webservers; do + webserver=${webserver%,} + test -x /usr/sbin/$webserver || continue + . + case "$webserver" in + apache|apache-perl|apache-ssl) + if [ -x /usr/sbin/modules-config ]; then + if [ -f /usr/lib/apache/1.3/libphp4.so ]; then + if ! grep -qs "^LoadModule php4_module " /etc/$webserver/modules.conf && \ + ! grep -qs "^LoadModule php5_module " /etc/$webserver/modules.conf; then + modules-config $webserver enable mod_php4 + fi + elif [ -f /usr/lib/apache/1.3/mod_php5.so ]; then + if ! grep -qs "^LoadModule php4_module " /etc/$webserver/modules.conf && \ + ! grep -qs "^LoadModule php5_module " /etc/$webserver/modules.conf; then + modules-config $webserver enable mod_php5 + fi + else + if [ -f /usr/lib/apache/1.3/mod_actions.so ]; then + if ! grep -qs "^LoadModule action_module " /etc/$webserver/modules.conf; then + modules-config $webserver enable mod_actions + fi + fi + if [ -f /usr/lib/apache/1.3/mod_cgi.so ]; then + if ! grep -qs "^LoadModule cgi_module " /etc/$webserver/modules.conf && \ + ! grep -qs "^LoadModule fastcgi_module " /etc/$webserver/modules.conf; then + modules-config $webserver enable mod_cgi + fi + fi + fi + fi + ;; + apache2) + if [ -d /etc/$webserver/mods-enabled ]; then + if [ ! -f /etc/$webserver/mods-enabled/actions.load -a ! -h /etc/$webserver/mods-enabled/actions.load ]; then + ln -s /etc/$webserver/mods-available/actions.load /etc/$webserver/mods-enabled/actions.load + fi + if [ -f /etc/apache2/mods-available/php4.load -a -f /usr/lib/apache2/modules/libphp4.so ]; then + if [ ! -f /etc/$webserver/mods-enabled/php4.load -a ! -h /etc/$webserver/mods-enabled/php4.load -a \ + ! -f /etc/$webserver/mods-enabled/php5.load -a ! -h /etc/$webserver/mods-enabled/php5.load -a \ + ! -f /etc/$webserver/mods-enabled/php5_filter.load -a ! -h /etc/$webserver/mods-enabled/php5_filter.load -a \ + ! -f /etc/$webserver/mods-enabled/fcgid.load -a ! -h /etc/$webserver/mods-enabled/fcgid.load -a \ + ! -f /etc/$webserver/mods-enabled/fastcgi.load -a ! -h /etc/$webserver/mods-enabled/fastcgi.load ]; then + ln -s /etc/$webserver/mods-available/php4.conf /etc/$webserver/mods-enabled/php4.conf + ln -s /etc/$webserver/mods-available/php4.load /etc/$webserver/mods-enabled/php4.load + fi + elif [ -f /etc/apache2/mods-available/php5.load -a -f /usr/lib/apache2/modules/mod_php5.so ]; then + if [ ! -f /etc/$webserver/mods-enabled/php4.load -a ! -h /etc/$webserver/mods-enabled/php4.load -a \ + ! -f /etc/$webserver/mods-enabled/php5.load -a ! -h /etc/$webserver/mods-enabled/php5.load -a \ + ! -f /etc/$webserver/mods-enabled/php5_filter.load -a ! -h /etc/$webserver/mods-enabled/php5_filter.load -a \ + ! -f /etc/$webserver/mods-enabled/fcgid.load -a ! -h /etc/$webserver/mods-enabled/fcgid.load -a \ + ! -f /etc/$webserver/mods-enabled/fastcgi.load -a ! -h /etc/$webserver/mods-enabled/fastcgi.load ]; then + ln -s /etc/$webserver/mods-available/php5.conf /etc/$webserver/mods-enabled/php5.conf + ln -s /etc/$webserver/mods-available/php5.load /etc/$webserver/mods-enabled/php5.load + fi + else + if [ ! -f /etc/$webserver/mods-enabled/cgi.load -a ! -h /etc/$webserver/mods-enabled/cgi.load -a \ + ! -f /etc/$webserver/mods-enabled/cgid.load -a ! -h /etc/$webserver/mods-enabled/cgid.load -a \ + ! -f /etc/$webserver/mods-enabled/fastcgi.load -a ! -h /etc/$webserver/mods-enabled/fastcgi.load -a \ + ! -f /etc/$webserver/mods-enabled/fcgid.load -a ! -h /etc/$webserver/mods-enabled/fcgid.load ]; then + if /usr/sbin/$webserver -l 2>&1 | grep -qs prefork.c; then + cgi=cgi + else + cgi=cgid + fi + ln -s /etc/$webserver/mods-available/$cgi.load /etc/$webserver/mods-enabled/$cgi.load + fi + fi + fi + ;; + esac + . + case "$webserver" in + apache|apache-perl|apache-ssl|apache2) + newfile=false + if [ -d /etc/$webserver/conf.d -a ! -f /etc/$webserver/conf.d/phpmyadmin.conf -a ! -h /etc/$webserver/conf.d/phpmyadmin.conf ]; then + ln -s /etc/phpmyadmin/apache.conf /etc/$webserver/conf.d/phpmyadmin.conf + newfile=true + fi + if $newfile = true || ! md5sum -c /etc/phpmyadmin/apache.conf.dpkg-md5sum >/dev/null 2>&1; then + db_reset phpmyadmin/restart-webserver || true + db_subst phpmyadmin/restart-webserver webserver "$webserver" + db_input high phpmyadmin/restart-webserver || true + db_go + db_get phpmyadmin/restart-webserver + if [ "$RET" = "true" ]; then + restart="$restart $webserver" + fi + fi + ;; + esac + done + . + for webserver in $restart; do + webserver=${webserver%,} + if [ -x /usr/sbin/invoke-rc.d ]; then + invoke-rc.d $webserver restart + else + /etc/init.d/$webserver restart + fi + done + . + rm -f /etc/phpmyadmin/apache.conf.dpkg-md5sum + fi +Prerm: sh + if [ "$1" = "remove" ] || [ "$1" = "purge" ]; then + db_get phpmyadmin/reconfigure-webserver + webservers="$RET" + restart="" + . + for webserver in $webservers; do + webserver=${webserver%,} + . + case "$webserver" in + apache|apache-perl|apache-ssl|apache2) + rm -f /etc/$webserver/conf.d/phpmyadmin.conf + test -x /usr/sbin/$webserver || continue + db_reset phpmyadmin/restart-webserver + db_subst phpmyadmin/restart-webserver webserver "$webserver" + db_input phpmyadmin/restart-webserver high || true + db_go + db_get phpmyadmin/restart-webserver + if [ "$RET" = "true" ]; then + restart="$restart $webserver" + fi + ;; + esac + done + . + for webserver in $restart; do + webserver=${webserver%,} + if [ -x /usr/sbin/invoke-rc.d ]; then + invoke-rc.d $webserver restart + else + /etc/init.d/$webserver restart + fi + done + fi +Postrm: bash + if [ "$1" = "purge" ]; then + rm -f /etc/phpmyadmin/apache.conf.dpkg-md5sum + for webserver in apache apache-perl apache-ssl apache2; do + if [ -h /etc/$webserver/conf.d/phpmyadmin ]; then + rm -f /etc/$webserver/conf.d/phpmyadmin + fi + rm -f /etc/$webserver/*.old.phpmyadmin + done + rm -f /etc/phpmyadmin/blowfish_secret.inc.php + rm -f /etc/phpmyadmin/htpasswd.setup + . + if [ -h /var/www/phpmyadmin ]; then + rm -f /var/www/phpmyadmin || true + fi + . + rm -f /var/lib/phpmyadmin/config.inc.php + rmdir --ignore-fail-on-non-empty /var/lib/phpmyadmin || true + . + for ext in '~' '%' .bak .dpkg-tmp .dpkg-new .dpkg-old .dpkg-dist; do + rm -f "/etc/apache-perl/conf.d/phpmyadmin.conf$ext" + rm -f "/etc/apache-ssl/conf.d/phpmyadmin.conf$ext" + rm -f "/etc/apache/conf.d/phpmyadmin.conf$ext" + rm -f "/etc/apache2/conf.d/phpmyadmin.conf$ext" + rm -f "/etc/phpmyadmin/apache.conf$ext" + rm -f "/etc/phpmyadmin/config.footer.inc.php$ext" + rm -f "/etc/phpmyadmin/config.header.inc.php$ext" + rm -f "/etc/phpmyadmin/config.inc.php$ext" + rm -f "/etc/phpmyadmin/blowfish_secret.inc.php$ext" + rm -f "/etc/phpmyadmin/footer.inc.php$ext" + rm -f "/etc/phpmyadmin/header.inc.php$ext" + rm -f "/etc/phpmyadmin/htaccess$ext" + rm -f "/etc/phpmyadmin/htpasswd.setup$ext" + done + . + rmdir --ignore-fail-on-non-empty /etc/phpmyadmin || true + fi +Overrides: + postinst-uses-db-input --- phpmyadmin-2.9.1.1.orig/debian/rules +++ phpmyadmin-2.9.1.1/debian/rules @@ -0,0 +1,245 @@ +#!/usr/bin/make -f +# Generated automatically from debian/packages +# by yada v0.48, of Wed, 28 Sep 2005 + +DEB_HOST_ARCH := $(shell dpkg-architecture -qDEB_HOST_ARCH 2>/dev/null) +DEB_HOST_ARCH_OS := $(shell dpkg-architecture -qDEB_HOST_ARCH_OS 2>/dev/null) +DEB_HOST_ARCH_CPU := $(shell dpkg-architecture -qDEB_HOST_ARCH_CPU 2>/dev/null) +DEB_HOST_GNU_CPU := $(shell dpkg-architecture -qDEB_HOST_GNU_CPU 2>/dev/null) +DEB_HOST_GNU_TYPE := $(shell dpkg-architecture -qDEB_HOST_GNU_TYPE 2>/dev/null) +DEB_HOST_GNU_SYSTEM := $(shell dpkg-architecture -qDEB_HOST_GNU_SYSTEM 2>/dev/null) + +DEB_BUILD_ARCH := $(shell dpkg-architecture -qDEB_BUILD_ARCH 2>/dev/null) +DEB_BUILD_ARCH_OS := $(shell dpkg-architecture -qDEB_BUILD_ARCH_OS 2>/dev/null) +DEB_BUILD_ARCH_CPU := $(shell dpkg-architecture -qDEB_BUILD_ARCH_CPU 2>/dev/null) +DEB_BUILD_GNU_CPU := $(shell dpkg-architecture -qDEB_BUILD_GNU_CPU 2>/dev/null) +DEB_BUILD_GNU_TYPE := $(shell dpkg-architecture -qDEB_BUILD_GNU_TYPE 2>/dev/null) +DEB_BUILD_GNU_SYSTEM := $(shell dpkg-architecture -qDEB_BUILD_GNU_SYSTEM 2>/dev/null) + +# Take account of old dpkg-architecture output. +ifeq ($(DEB_HOST_ARCH_CPU),) + DEB_HOST_ARCH_CPU := $(DEB_HOST_GNU_CPU)) + ifeq ($(DEB_HOST_ARCH_CPU),i486) + DEB_HOST_ARCH_OS := i386 + else + ifeq ($(DEB_HOST_ARCH_CPU),x86_64) + DEB_HOST_ARCH_OS := amd64 + endif + endif +endif +ifeq ($(DEB_HOST_ARCH_OS),) + DEB_HOST_ARCH_OS := $(subst -gnu,,$(DEB_HOST_GNU_SYSTEM)) + ifeq ($(DEB_HOST_ARCH_OS),gnu) + DEB_HOST_ARCH_OS := hurd + endif +endif +ifeq ($(DEB_BUILD_ARCH_CPU),) + DEB_BUILD_ARCH_CPU := $(DEB_BUILD_GNU_CPU)) + ifeq ($(DEB_BUILD_ARCH_CPU),i486) + DEB_BUILD_ARCH_OS := i386 + else + ifeq ($(DEB_BUILD_ARCH_CPU),x86_64) + DEB_BUILD_ARCH_OS := amd64 + endif + endif +endif +ifeq ($(DEB_BUILD_ARCH_OS),) + DEB_BUILD_ARCH_OS := $(subst -gnu,,$(DEB_BUILD_GNU_SYSTEM)) + ifeq ($(DEB_BUILD_ARCH_OS),gnu) + DEB_BUILD_ARCH_OS := hurd + endif +endif + +LEFT_PARENTHESIS:=( +VERSION:=$(shell head -n1 debian/changelog | sed -e "s/^[0-9a-zA-Z.-]* $(LEFT_PARENTHESIS)//" -e "s/[^0-9a-zA-Z.:+~-].*//") + +SHELL=/bin/bash + +.PHONY: default +default: + @echo "Specify a target:"; \ + echo " build compile the package"; \ + echo " build-arch compile the architecture-dependent package"; \ + echo " build-indep compile the architecture-independent package"; \ + echo " binary make all binary packages"; \ + echo " binary-arch make all architecture-dependent binary packages"; \ + echo " binary-indep make all architecture-independent binary packages"; \ + echo " clean clean up the source package"; \ + echo; \ + echo " clean-install-tree clean up only under debian/"; \ + echo + +# Build the package and prepare the install tree + +.PHONY: build-only build +build-only: debian/build-stamp +build: build-only + +.PHONY: build-arch-only build-arch +build-arch-only: debian/build-arch-stamp +build-arch: build-arch-only + +.PHONY: build-indep-only build-indep +build-indep-only: debian/build-indep-stamp +build-indep: build-indep-only + +# Make sure these rules and the control file are up-to-date + +.PHONY: rules control templates +rules: debian/rules +debian/rules: $(shell which yada) debian/packages-tmp + yada rebuild rules + +control: debian/control +debian/control: $(shell which yada) debian/packages-tmp + yada rebuild control + +templates: debian/templates debian/po/POTFILES.in +debian/templates: $(shell which yada) debian/packages-tmp + yada rebuild templates +debian/po/POTFILES.in: $(shell which yada) debian/packages-tmp + yada rebuild templates + +debian/build-stamp: debian/build-arch-stamp debian/build-indep-stamp + @[ -f $(shell which yada) -a -f debian/rules ] + yada patch "debian/patches/*.patch" + touch debian/build-stamp + +debian/build-arch-stamp: + @[ -f $(shell which yada) -a -f debian/rules ] + yada patch "debian/patches/*.patch" + touch debian/build-arch-stamp + +debian/build-indep-stamp: + @[ -f $(shell which yada) -a -f debian/rules ] + yada patch "debian/patches/*.patch" + touch debian/build-indep-stamp + +.PHONY: install-tree +install-tree: install-tree-any +install-tree-any: \ + debian/tmp-phpmyadmin/DEBIAN/control + +debian/tmp-phpmyadmin/DEBIAN/control: debian/build-indep-stamp debian/control + rm -rf debian/tmp-phpmyadmin + umask 022 && install -d debian/tmp-phpmyadmin/DEBIAN + install -d debian/tmp-phpmyadmin/usr/share/doc/phpmyadmin + umask 022; yada generate copyright \ + > debian/tmp-phpmyadmin/usr/share/doc/phpmyadmin/copyright + install -m 644 -p debian/changelog \ + debian/tmp-phpmyadmin/usr/share/doc/phpmyadmin/changelog.Debian + @umask 022 \ + && export pwd="$$(pwd)" \ + && export ROOT="$$(pwd)/debian/tmp-phpmyadmin" \ + && export TMPROOT="$$(pwd)/debian/tmp" \ + && export CONTROL="$$(pwd)/debian/tmp-phpmyadmin/DEBIAN" \ + && export PACKAGE="phpmyadmin" \ + && export SOURCE="phpmyadmin" \ + && export VERSION="$(VERSION)" \ + && export DEB_HOST_GNU_CPU="$(DEB_HOST_GNU_CPU)" \ + && export DEB_HOST_GNU_TYPE="$(DEB_HOST_GNU_TYPE)" \ + && export DEB_HOST_GNU_SYSTEM="$(DEB_HOST_GNU_SYSTEM)" \ + && export DEB_BUILD_GNU_CPU="$(DEB_BUILD_GNU_CPU)" \ + && export DEB_BUILD_GNU_TYPE="$(DEB_BUILD_GNU_TYPE)" \ + && export DEB_BUILD_GNU_SYSTEM="$(DEB_BUILD_GNU_SYSTEM)" && (\ + echo -E 'eval "yada () { perl $$(which yada) \"\$$@\"; }"; set -e; set -v';\ + echo -E 'yada install -data -into /usr/share/phpmyadmin *.php *.css';\ + echo -E 'yada install -data -into /usr/share/phpmyadmin/scripts scripts/setup.php';\ + echo -E 'yada copy -data -into /usr/share/phpmyadmin css js lang libraries themes';\ + echo -E 'yada remove -data -into /usr/share/phpmyadmin/lang *.sh';\ + echo -E 'yada remove -data -into /usr/share/phpmyadmin/libraries/fpdf README';\ + echo -E 'yada remove -data -into /usr/share/phpmyadmin/libraries/transformations *.sh README TEMPLATE*';\ + echo -E 'yada install -data -into /usr/share/phpmyadmin Documentation.html translators.html';\ + echo -E 'yada install -data -into /usr/share/phpmyadmin ChangeLog INSTALL README';\ + echo -E 'yada install -dir /var/lib/phpmyadmin';\ + echo -E 'yada symlink -data -into /usr/share/phpmyadmin/config /var/lib/phpmyadmin/config.inc.php';\ + echo -E 'yada install -dir /etc/phpmyadmin';\ + echo -E 'yada install -conf -ucf -subdir phpmyadmin debian/conf/config.inc.php';\ + echo -E 'yada install -conf -ucf -subdir phpmyadmin debian/conf/config.header.inc.php';\ + echo -E 'yada install -conf -ucf -subdir phpmyadmin debian/conf/config.footer.inc.php';\ + echo -E 'yada install -conf -ucf -subdir phpmyadmin debian/conf/htaccess';\ + echo -E 'yada install -conf -ucf -subdir phpmyadmin debian/conf/apache.conf';\ + echo -E 'yada symlink -into /usr/share/phpmyadmin -as .htaccess /etc/phpmyadmin/htaccess';\ + echo -E 'yada install -into /usr/share/phpmyadmin debian/src/config.inc.php';\ + echo -E 'yada install -into /usr/share/phpmyadmin debian/src/config.header.inc.php';\ + echo -E 'yada install -into /usr/share/phpmyadmin debian/src/config.footer.inc.php';\ + echo -E 'yada install -dir /var/www';\ + echo -E '';\ + echo -E 'perl -pi -e "s/'\''([0-9a-z.]+)'\''/'\''\$$1-Debian-$${VERSION##*-}'\''/ if /set..PMA_VERSION/" $$ROOT/usr/share/phpmyadmin/libraries/Config.class.php';\ + echo -E '';\ + echo -E 'yada install -doc README TODO CREDITS';\ + echo -E 'yada install -doc Documentation.html translators.html';\ + echo -E 'yada install -doc -as changelog ChangeLog';\ + echo -E 'yada install -doc -as README.Debian debian/README';\ + echo -E 'yada install -doc -as NEWS.Debian -gzip debian/NEWS';\ + echo -E 'yada install -doc -as NEWS debian/NEWS.upstream';\ + echo -E 'yada install -doc -subdir scripts scripts/*';\ + echo -E 'yada remove -doc -subdir scripts setup.php') | /bin/sh + @umask 022 \ + && export pwd="$$(pwd)" \ + && export ROOT="$$(pwd)/debian/tmp-phpmyadmin" \ + && export TMPROOT="$$(pwd)/debian/tmp" \ + && export CONTROL="$$(pwd)/debian/tmp-phpmyadmin/DEBIAN" \ + && export PACKAGE="phpmyadmin" \ + && export SOURCE="phpmyadmin" \ + && export VERSION="$(VERSION)" && (\ + echo -E 'eval "yada () { perl $$(which yada) \"\$$@\"; }"; set -e; set -v';\ + echo -E 'yada perl';\ + echo -E 'yada python';\ + echo -E 'yada strip';\ + echo -E 'yada shlibdeps') | /bin/sh + yada compress phpmyadmin + yada generate maintscripts phpmyadmin + find debian/tmp-phpmyadmin -type f -print \ + | sed -n 's/^debian\/tmp-phpmyadmin\(\/etc\/.*\)$$/\1/p' \ + > debian/tmp-phpmyadmin/DEBIAN/conffiles + test -s debian/tmp-phpmyadmin/DEBIAN/conffiles || rm -f debian/tmp-phpmyadmin/DEBIAN/conffiles + yada rebuild control + yada generate substvars phpmyadmin + umask 022 && dpkg-gencontrol -isp -pphpmyadmin -Pdebian/tmp-phpmyadmin + +# Build package files + +.PHONY: binary binary-arch binary-indep +binary: binary-arch binary-indep +binary-arch: binary-arch-any + +.PHONY: binary-arch-any +binary-arch-any: +binary-indep: \ + binary-package-phpmyadmin + +.PHONY: binary-package-phpmyadmin +binary-package-phpmyadmin: check-root debian/tmp-phpmyadmin/DEBIAN/control + @[ -f $(shell which yada) -a -f debian/rules ] + chown -R 0.0 debian/tmp-phpmyadmin + chmod -R u=rwX,go=rX debian/tmp-phpmyadmin + @if [ -d debian/tmp-phpmyadmin/usr/doc/phpmyadmin ]; then \ + echo "*** Yada warning: /usr/doc/phpmyadmin should be /usr/share/doc/phpmyadmin";\ + fi + dpkg-deb --build debian/tmp-phpmyadmin .. + +.PHONY: check-root +check-root: + @[ `id -u` = 0 ] || (echo "You must be root to do this!"; false) + +debian/packages-tmp: debian/packages + yada rebuild packages + +## Clean up afterwards + +.PHONY: clean clean-install-tree clean-build + +clean: clean-install-tree clean-build debian/control debian/rules + rm -f debian/packages-tmp debian/packages-tmp-new debian/packages-tmp-include + +clean-build: + @[ -f $(shell which yada) -a -f debian/rules ] + rm -f debian/build-stamp debian/build-arch-stamp debian/build-indep-stamp + yada unpatch + rm -rf debian/tmp + +clean-install-tree: debian/rules + @[ -f $(shell which yada) -a -f debian/rules ] + rm -f debian/install-tree-stamp + rm -rf debian/tmp-* debian/files* debian/substvars debian/shlibs.local debian/ucf --- phpmyadmin-2.9.1.1.orig/debian/README +++ phpmyadmin-2.9.1.1/debian/README @@ -0,0 +1,45 @@ +phpmyadmin for Debian +--------------------- + + +USAGE + + The application will be available at http://localhost/phpmyadmin/ + after install. + + +PROBLEM WITH COOKIES + + After upgrading the phpMyAdmin with cookie based authentication you might + notice the problem with logging in. Remove the cookies from your browser + if there is no error message and you are returned to the login prompt. + + +CONFIGURATION + + The package installs symlink into /var/www directory. You can also add + + Alias /phpmyadmin /usr/share/phpmyadmin + + to the /etc/phpmyadmin/apache.conf file. + + Since 2.8.0 phpMyAdmin provides web-based setup script available at + http://localhost/phpmyadmin/scripts/setup.php + + This setup script requires authorization by default. You can manage usernames + and passwords with htpasswd command on /etc/phpmyadmin/htpasswd.setup file. + + +SECURITY + + The default configuration for Debian has enabled cookie based authentication. + You *shouldn't* put your passwords into /etc/phpmyadmin/config.inc.php file. + This file has to be readable by www-data user, so it can be readable + by anyone who can run his own CGI script! + + Register Globals: Debian does not provide security support for installations + with the PHP register_globals setting turned On. It's also not required for + phpMyAdmin to operate. Make sure it's off. It's trivial to turn it on just for + specific legacy sites that may need it. + + -- Thijs Kinkhorst Mon, 13 Nov 2006 16:40:38 +0100 --- phpmyadmin-2.9.1.1.orig/debian/watch +++ phpmyadmin-2.9.1.1/debian/watch @@ -0,0 +1,5 @@ +# format version number, currently 2; this line is compulsory! +version=2 + +# Automatically generated by cvsdebuscan at Fri, 17 Mar 2006 13:23:14 +0100 +http://sf.net/phpmyadmin/phpMyAdmin-([0-9.]*(?:-pl[0-9]*)?)\.tar\.gz --- phpmyadmin-2.9.1.1.orig/debian/templates +++ phpmyadmin-2.9.1.1/debian/templates @@ -0,0 +1,39 @@ +Template: phpmyadmin/reconfigure-webserver +Type: multiselect +Choices: apache, apache-ssl, apache-perl, apache2 +Default: +_Description: Which web server would you like to reconfigure automatically? + phpMyAdmin supports any web server that PHP does, but this automatic + configuration process only supports Apache. + +Template: phpmyadmin/restart-webserver +Type: boolean +Default: false +_Description: Do you want me to restart ${webserver} now? + Remember that in order to activate the new configuration + ${webserver} has to be restarted. You can also restart ${webserver} + by manually executing /etc/init.d/${webserver} restart + +Template: phpmyadmin/setup-username +Type: string +Default: admin +_Description: User name for web-based setup system: + phpMyAdmin comes with a setup script that can help you with creating + configuration. The script is located at http://localhost/phpmyadmin/scripts/setup.php . + For security reason it requires authorization. + . + Leave empty if you want to use the default user name 'admin'. + +Template: phpmyadmin/setup-password +Type: password +Default: +_Description: Password for web-based setup system: + phpMyAdmin comes with a setup script that can help you with creating + configuration. The script is located at http://localhost/phpmyadmin/scripts/setup.php . + For security reason it requires authorization. + . + You can manage the usernames and passwords with `htpasswd' command. + They are stored in /etc/phpmyadmin/htpasswd.setup file. + . + Leave empty if you want to disable access to web-based setup. + --- phpmyadmin-2.9.1.1.orig/debian/patches/020-setup.php_without_notice_about_copying.patch +++ phpmyadmin-2.9.1.1/debian/patches/020-setup.php_without_notice_about_copying.patch @@ -0,0 +1,12 @@ +diff -Nru phpMyAdmin-2.8.0.1.orig/scripts/setup.php phpMyAdmin-2.8.0.1/scripts/setup.php +--- phpMyAdmin-2.8.0.1.orig/scripts/setup.php 2006-02-06 12:01:48.000000000 +0100 ++++ phpMyAdmin-2.8.0.1/scripts/setup.php 2006-03-16 16:53:32.000000000 +0100 +@@ -1195,7 +1195,7 @@ + message('error', 'Could not write to config file! Not enough space?'); + break; + } else { +- message('notice', 'Configuration saved to file config/config.inc.php in phpMyAdmin top level directory, copy it to top level one and delete directory config to use it.', 'File saved'); ++ message('notice', 'Configuration saved to file config/config.inc.php in phpMyAdmin top level directory.', 'File saved'); + } + unset($r, $s); + fclose($config); --- phpmyadmin-2.9.1.1.orig/debian/patches/021-config.inc.php_no_check_mtime.patch +++ phpmyadmin-2.9.1.1/debian/patches/021-config.inc.php_no_check_mtime.patch @@ -0,0 +1,25 @@ +diff -ur phpMyAdmin-2.9.0.3-all-languages.orig/libraries/Config.class.php phpMyAdmin-2.9.0.3-all-languages/libraries/Config.class.php +--- phpMyAdmin-2.9.0.3-all-languages.orig/libraries/Config.class.php 2006-11-01 14:34:05.000000000 +0100 ++++ phpMyAdmin-2.9.0.3-all-languages/libraries/Config.class.php 2006-11-02 15:42:38.000000000 +0100 +@@ -293,15 +293,20 @@ + */ + function __wakeup() + { ++ /* Disable in Debian: we're including a couple of other files ++ * in config.inc.php, and their changes will never be picked up ++ * if we leave this check in. + if (! $this->checkConfigSource() + || $this->source_mtime !== filemtime($this->getSource()) + || $this->default_source_mtime !== filemtime($this->default_source) + || $this->error_config_file + || $this->error_config_default_file) { ++ */ + $this->settings = array(); + $this->load(); + $this->checkSystem(); +- } ++ /* ++ } */ + + // check for https needs to be done everytime, + // as https and http uses same session so this info can not be stored --- phpmyadmin-2.9.1.1.orig/debian/patches/030_CVE-2007-0203.patch +++ phpmyadmin-2.9.1.1/debian/patches/030_CVE-2007-0203.patch @@ -0,0 +1,52 @@ +diff -Nur phpMyAdmin-2.9.1.1-all-languages-utf-8-only.orig/index.php phpMyAdmin-2.9.1.1-all-languages-utf-8-only/index.php +--- phpMyAdmin-2.9.1.1-all-languages-utf-8-only.orig/index.php 2006-11-19 01:28:34.000000000 +0100 ++++ phpMyAdmin-2.9.1.1-all-languages-utf-8-only/index.php 2007-01-12 15:24:26.000000000 +0100 +@@ -116,18 +116,18 @@ + +