bugzilla-daemon | 26 May 15:25 2016

[Bug 9514] smeserver-coova-chilli update

Please DO NOT REPLY to this mail or send email to the developers about this bug.

Please follow-up to Bugzilla via Bug 9514.

Have you checked the Frequently Asked Questions (FAQ)?

Please also take the time to read "How to Report Bugs Effectively"

Comment # 20 on bug 9514 from (In reply to Unnilennium from comment #19) > > > but this is more like the ini script has been designed for debian as > start-stop-daemon is part of debian / ubuntu > > we should maybe revert it to the version of previous sme7 rpm, as maybe > opensuse has integrated some debian specifics... ok.. I think it's just negligible noise, but.. > > we might need to investigate this. > > did you configure the dns on the client ? no, client receives IP and dns from chilli.. config setprop chilli dns1 8.8.8.8 dns2 8.8.4.4 signal-event chilli-update > > > > I would rather say this is a bug, but is it upstream or ours ... > > it is maybe configured to give a limited time of connection ? maybe that is > why ? yes, I think you're right.. unfortunately now I have no time to change the timeout value via db, restart the service and wait for the timeout to.. timeout :-D will do
You are receiving this mail because:
  • You are the QA Contact for the bug.
<div>
Please DO NOT REPLY to this mail or send email to the developers about this bug.<br><br>
Please follow-up to Bugzilla via <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514">Bug 9514</a>.<br><br>
Have you checked the <a href="http://wiki.contribs.org/SME_Server:Documentation:FAQ">Frequently Asked Questions (FAQ)</a>?<br><br>
Please also take the time to read "<a href="http://www.chiark.greenend.org.uk/~sgtatham/bugs.html">How to Report Bugs Effectively</a>"<br><p>
        </p>
<div>
            <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514#c20">Comment # 20</a>
              on <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514">bug 9514</a>
              from <span class="vcard"><a class="email" href="mailto:zamboni <at> mind-at-work.it" title="Stefano Zamboni &lt;zamboni <at> mind-at-work.it&gt;"> <span class="fn">Stefano Zamboni</span></a>
</span>
        (In reply to Unnilennium from <a href="show_bug.cgi?id=9514#c19">comment #19</a>)
<span class="quote">&gt; 
&gt; 
&gt; but this is more like the ini script has been designed for debian  as
&gt; start-stop-daemon is part of debian / ubuntu
&gt; 
&gt; we should maybe revert it to the version of previous sme7 rpm, as maybe
&gt; opensuse has integrated some debian specifics...</span>

ok.. I think it's just negligible noise, but..

<span class="quote">&gt; </span>

<span class="quote">&gt; we might need to investigate this.
&gt; 
&gt; did you configure the dns on the client ?</span>

no, client receives IP and dns from chilli..

config setprop chilli dns1 8.8.8.8 dns2 8.8.4.4 
signal-event chilli-update

<span class="quote">&gt; 
&gt; </span>

<span class="quote">&gt; 
&gt; I would rather say this is a bug, but is it upstream or ours ...
&gt; 
&gt; it is maybe configured to give a limited time of connection ? maybe that is
&gt; why ?</span>

yes, I think you're right.. unfortunately now I have no time to change the
timeout value via db, restart the service and wait for the timeout to.. timeout
:-D

will do
        </div>

      <span>You are receiving this mail because:</span>

      <ul>
<li>You are the QA Contact for the bug.</li>
      </ul>
</div>
bugzilla-daemon | 26 May 15:20 2016

[Bug 9514] smeserver-coova-chilli update

Please DO NOT REPLY to this mail or send email to the developers about this bug.

Please follow-up to Bugzilla via Bug 9514.

Have you checked the Frequently Asked Questions (FAQ)?

Please also take the time to read "How to Report Bugs Effectively"

Comment # 19 on bug 9514 from (In reply to Stefano Zamboni from comment #17) > during boot I see a message like > > "starting chilli: which: no start-stop-daemon in.." > > I see it comes from /etc/rc.d/init.d/chilli I have seen the following too : Sarting chilli: which: no start-stop-deamon in (/sbin:/usr/sbin:/bin:/usr/sbin) but this is more like the ini script has been designed for debian as start-stop-daemon is part of debian / ubuntu we should maybe revert it to the version of previous sme7 rpm, as maybe opensuse has integrated some debian specifics... > > anyway, chilli is up & running > > the defalut dns doesn't work for me, but once changed them with google's > ones and logged in as a valid user, it works we might need to investigate this. did you configure the dns on the client ? (In reply to Stefano Zamboni from comment #18) > something strange.. > > closing the logout popup (and even clicking on the "logout" link) seems to > have no effect.. if I reopen my browser I'm still able to surf.. if I reboot > the client, I'm still able to surf.. > > is it a feature or so "by design" or is it a bug? I would rather say this is a bug, but is it upstream or ours ... it is maybe configured to give a limited time of connection ? maybe that is why ?
You are receiving this mail because:
  • You are the QA Contact for the bug.
<div>
Please DO NOT REPLY to this mail or send email to the developers about this bug.<br><br>
Please follow-up to Bugzilla via <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514">Bug 9514</a>.<br><br>
Have you checked the <a href="http://wiki.contribs.org/SME_Server:Documentation:FAQ">Frequently Asked Questions (FAQ)</a>?<br><br>
Please also take the time to read "<a href="http://www.chiark.greenend.org.uk/~sgtatham/bugs.html">How to Report Bugs Effectively</a>"<br><p>
        </p>
<div>
            <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514#c19">Comment # 19</a>
              on <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514">bug 9514</a>
              from <span class="vcard"><a class="email" href="mailto:tests <at> pialasse.com" title="Unnilennium &lt;tests <at> pialasse.com&gt;"> <span class="fn">Unnilennium</span></a>
</span>
        (In reply to Stefano Zamboni from <a href="show_bug.cgi?id=9514#c17">comment #17</a>)
<span class="quote">&gt; during boot I see a message like
&gt; 
&gt; "starting chilli: which: no start-stop-daemon in.."
&gt; 
&gt; I see it comes from /etc/rc.d/init.d/chilli</span>
I have seen the following too :

Sarting chilli: which: no start-stop-deamon in (/sbin:/usr/sbin:/bin:/usr/sbin)

but this is more like the ini script has been designed for debian  as
start-stop-daemon is part of debian / ubuntu

we should maybe revert it to the version of previous sme7 rpm, as maybe
opensuse has integrated some debian specifics...

<span class="quote">&gt; 
&gt; anyway, chilli is up &amp; running
&gt; 
&gt; the defalut dns doesn't work for me, but once changed them with google's
&gt; ones and logged in as a valid user, it works</span>

we might need to investigate this.

did you configure the dns on the client ?

(In reply to Stefano Zamboni from <a href="show_bug.cgi?id=9514#c18">comment #18</a>)
<span class="quote">&gt; something strange..
&gt; 
&gt; closing the logout popup (and even clicking on the "logout" link) seems to
&gt; have no effect.. if I reopen my browser I'm still able to surf.. if I reboot
&gt; the client, I'm still able to surf..
&gt; 
&gt; is it a feature or so "by design" or is it a bug?</span>

I would rather say this is a bug, but is it upstream or ours ...

it is maybe configured to give a limited time of connection ? maybe that is why
?
        </div>

      <span>You are receiving this mail because:</span>

      <ul>
<li>You are the QA Contact for the bug.</li>
      </ul>
</div>
bugzilla-daemon | 26 May 14:58 2016

[Bug 9514] smeserver-coova-chilli update

Please DO NOT REPLY to this mail or send email to the developers about this bug.

Please follow-up to Bugzilla via Bug 9514.

Have you checked the Frequently Asked Questions (FAQ)?

Please also take the time to read "How to Report Bugs Effectively"

Comment # 18 on bug 9514 from something strange.. closing the logout popup (and even clicking on the "logout" link) seems to have no effect.. if I reopen my browser I'm still able to surf.. if I reboot the client, I'm still able to surf.. is it a feature or so "by design" or is it a bug?
You are receiving this mail because:
  • You are the QA Contact for the bug.
<div>
Please DO NOT REPLY to this mail or send email to the developers about this bug.<br><br>
Please follow-up to Bugzilla via <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514">Bug 9514</a>.<br><br>
Have you checked the <a href="http://wiki.contribs.org/SME_Server:Documentation:FAQ">Frequently Asked Questions (FAQ)</a>?<br><br>
Please also take the time to read "<a href="http://www.chiark.greenend.org.uk/~sgtatham/bugs.html">How to Report Bugs Effectively</a>"<br><p>
        </p>
<div>
            <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514#c18">Comment # 18</a>
              on <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514">bug 9514</a>
              from <span class="vcard"><a class="email" href="mailto:zamboni <at> mind-at-work.it" title="Stefano Zamboni &lt;zamboni <at> mind-at-work.it&gt;"> <span class="fn">Stefano Zamboni</span></a>
</span>
        something strange..

closing the logout popup (and even clicking on the "logout" link) seems to have
no effect.. if I reopen my browser I'm still able to surf.. if I reboot the
client, I'm still able to surf..

is it a feature or so "by design" or is it a bug?
        </div>

      <span>You are receiving this mail because:</span>

      <ul>
<li>You are the QA Contact for the bug.</li>
      </ul>
</div>
bugzilla-daemon | 26 May 14:45 2016

[Bug 9514] smeserver-coova-chilli update

Please DO NOT REPLY to this mail or send email to the developers about this bug.

Please follow-up to Bugzilla via Bug 9514.

Have you checked the Frequently Asked Questions (FAQ)?

Please also take the time to read "How to Report Bugs Effectively"

Comment # 17 on bug 9514 from during boot I see a message like "starting chilli: which: no start-stop-daemon in.." I see it comes from /etc/rc.d/init.d/chilli anyway, chilli is up & running the defalut dns doesn't work for me, but once changed them with google's ones and logged in as a valid user, it works
You are receiving this mail because:
  • You are the QA Contact for the bug.
<div>
Please DO NOT REPLY to this mail or send email to the developers about this bug.<br><br>
Please follow-up to Bugzilla via <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514">Bug 9514</a>.<br><br>
Have you checked the <a href="http://wiki.contribs.org/SME_Server:Documentation:FAQ">Frequently Asked Questions (FAQ)</a>?<br><br>
Please also take the time to read "<a href="http://www.chiark.greenend.org.uk/~sgtatham/bugs.html">How to Report Bugs Effectively</a>"<br><p>
        </p>
<div>
            <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514#c17">Comment # 17</a>
              on <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514">bug 9514</a>
              from <span class="vcard"><a class="email" href="mailto:zamboni <at> mind-at-work.it" title="Stefano Zamboni &lt;zamboni <at> mind-at-work.it&gt;"> <span class="fn">Stefano Zamboni</span></a>
</span>
        during boot I see a message like

"starting chilli: which: no start-stop-daemon in.."

I see it comes from /etc/rc.d/init.d/chilli

anyway, chilli is up &amp; running

the defalut dns doesn't work for me, but once changed them with google's ones
and logged in as a valid user, it works
        </div>

      <span>You are receiving this mail because:</span>

      <ul>
<li>You are the QA Contact for the bug.</li>
      </ul>
</div>
bugzilla-daemon | 26 May 11:43 2016

[Bug 7974] should change phpwebftp to alternate upstream project

Please DO NOT REPLY to this mail or send email to the developers about this bug.

Please follow-up to Bugzilla via Bug 7974.

Have you checked the Frequently Asked Questions (FAQ)?

Please also take the time to read "How to Report Bugs Effectively"
changed bug 7974
What Removed Added
Blocks   8679

You are receiving this mail because:
  • You are the QA Contact for the bug.
<div>
Please DO NOT REPLY to this mail or send email to the developers about this bug.<br><br>
Please follow-up to Bugzilla via <a class="bz_bug_link 
          bz_status_CONFIRMED " title="CONFIRMED - should change phpwebftp to alternate upstream project" href="https://bugs.contribs.org/show_bug.cgi?id=7974">Bug 7974</a>.<br><br>
Have you checked the <a href="http://wiki.contribs.org/SME_Server:Documentation:FAQ">Frequently Asked Questions (FAQ)</a>?<br><br>
Please also take the time to read "<a href="http://www.chiark.greenend.org.uk/~sgtatham/bugs.html">How to Report Bugs Effectively</a>"<br><span class="vcard"><a class="email" href="mailto:tests <at> pialasse.com" title="Unnilennium &lt;tests <at> pialasse.com&gt;"> <span class="fn">Unnilennium</span></a>
</span> changed
              <a class="bz_bug_link 
          bz_status_CONFIRMED " title="CONFIRMED - should change phpwebftp to alternate upstream project" href="https://bugs.contribs.org/show_bug.cgi?id=7974">bug 7974</a>
          <br><table border="1" cellspacing="0" cellpadding="8">
<tr>What
            Removed
            Added
          </tr>
<tr>
<td>Blocks</td>
           <td>
               &nbsp;
           </td>
           <td>8679
           </td>
         </tr>
</table>
<p>
      </p>
      <span>You are receiving this mail because:</span>

      <ul>
<li>You are the QA Contact for the bug.</li>
      </ul>
</div>
bugzilla-daemon | 26 May 11:43 2016

[Bug 8679] first import to sme9 tree [smeserver-phpwebftp]

Please DO NOT REPLY to this mail or send email to the developers about this bug.

Please follow-up to Bugzilla via Bug 8679.

Have you checked the Frequently Asked Questions (FAQ)?

Please also take the time to read "How to Report Bugs Effectively"
changed bug 8679
What Removed Added
CC   tests <at> pialasse.com
Depends on   9528, 7974

You are receiving this mail because:
  • You are the QA Contact for the bug.
<div>
Please DO NOT REPLY to this mail or send email to the developers about this bug.<br><br>
Please follow-up to Bugzilla via <a class="bz_bug_link 
          bz_status_UNCONFIRMED " title="UNCONFIRMED - first import to sme9 tree [smeserver-phpwebftp]" href="https://bugs.contribs.org/show_bug.cgi?id=8679">Bug 8679</a>.<br><br>
Have you checked the <a href="http://wiki.contribs.org/SME_Server:Documentation:FAQ">Frequently Asked Questions (FAQ)</a>?<br><br>
Please also take the time to read "<a href="http://www.chiark.greenend.org.uk/~sgtatham/bugs.html">How to Report Bugs Effectively</a>"<br><span class="vcard"><a class="email" href="mailto:tests <at> pialasse.com" title="Unnilennium &lt;tests <at> pialasse.com&gt;"> <span class="fn">Unnilennium</span></a>
</span> changed
              <a class="bz_bug_link 
          bz_status_UNCONFIRMED " title="UNCONFIRMED - first import to sme9 tree [smeserver-phpwebftp]" href="https://bugs.contribs.org/show_bug.cgi?id=8679">bug 8679</a>
          <br><table border="1" cellspacing="0" cellpadding="8">
<tr>What
            Removed
            Added
          </tr>
<tr>
<td>CC</td>
           <td>
               &nbsp;
           </td>
           <td>tests <at> pialasse.com
           </td>
         </tr>
<tr>
<td>Depends on</td>
           <td>
               &nbsp;
           </td>
           <td>9528, 7974
           </td>
         </tr>
</table>
<p>
      </p>
      <span>You are receiving this mail because:</span>

      <ul>
<li>You are the QA Contact for the bug.</li>
      </ul>
</div>
bugzilla-daemon | 26 May 11:36 2016

[Bug 9528] XSS security issue in phpwebftp 3.3b

Please DO NOT REPLY to this mail or send email to the developers about this bug.

Please follow-up to Bugzilla via Bug 9528.

Have you checked the Frequently Asked Questions (FAQ)?

Please also take the time to read "How to Report Bugs Effectively"
Bug ID Summary Classification Product Version Hardware OS Status Severity Priority Component Assignee Reporter QA Contact
9528
XSS security issue in phpwebftp 3.3b
Contribs
SME Contribs
8.2
---
---
CONFIRMED
normal
P3
smeserver-phpwebftp
jean-paul <at> leclere.org
tests <at> pialasse.com
contribteam <at> lists.contribs.org

https://packetstormsecurity.com/files/137001/phpwebftp-xss.txt from what i know we use 3.3a, so it might be present too PHPWebFTP ver 3.3b - xss vulnerability , by N_A. N_A [at] tutanota.com Vendor has notified Description ---------------- phpWebFTP enables connections to FTP servers, even behind a firewall not allowing traffic. phpWebFTP bypasses the firewall by making a FTP connection from your web server to the FTP server and transferring the files to your web client over the http protocol Vulnerability ------------- PHPWebFTP ver 3.3b allows malicious code injection due to some variables we can control. This allows an attacker to inject malicious code to carry out XSS attacks upon the program. ----snip , index.php---- $server=$_SESSION['server']; $user=$_SESSION['user']; $password=$_SESSION['password']; $language=$_SESSION['language']; $port=$_SESSION['port']; $passive=$_SESSION['passive']; ----snip , index.php---- further down in the code, the variables are passed without any security/filtering checks: ----snip, index.php---- $ftp = new ftp($server, $port, $user, $password, $passive); $ftp->setMode($mode); $ftp->setCurrentDir($currentDir); ----snip, index.php---- Code injected into the [server] field: <script>alert('executed');</script> This is also possible for the [username],[port] and [field] options. N_A [at] tutanota.com -- Securely sent with Tutanota. Claim your encrypted mailbox today! https://tutanota.com
You are receiving this mail because:
  • You are the QA Contact for the bug.
<div>
Please DO NOT REPLY to this mail or send email to the developers about this bug.<br><br>
Please follow-up to Bugzilla via <a class="bz_bug_link 
          bz_status_CONFIRMED " title="CONFIRMED - XSS security issue in phpwebftp 3.3b" href="https://bugs.contribs.org/show_bug.cgi?id=9528">Bug 9528</a>.<br><br>
Have you checked the <a href="http://wiki.contribs.org/SME_Server:Documentation:FAQ">Frequently Asked Questions (FAQ)</a>?<br><br>
Please also take the time to read "<a href="http://www.chiark.greenend.org.uk/~sgtatham/bugs.html">How to Report Bugs Effectively</a>"<br><table border="1" cellspacing="0" cellpadding="8">
<tr>Bug ID
          <td>
<a class="bz_bug_link 
          bz_status_CONFIRMED " title="CONFIRMED - XSS security issue in phpwebftp 3.3b" href="https://bugs.contribs.org/show_bug.cgi?id=9528">9528</a>
          </td>
        </tr>
<tr>Summary
          <td>XSS security issue in phpwebftp 3.3b
          </td>
        </tr>
<tr>Classification
          <td>Contribs
          </td>
        </tr>
<tr>Product
          <td>SME Contribs
          </td>
        </tr>
<tr>Version
          <td>8.2
          </td>
        </tr>
<tr>Hardware
          <td>---
          </td>
        </tr>
<tr>OS
          <td>---
          </td>
        </tr>
<tr>Status
          <td>CONFIRMED
          </td>
        </tr>
<tr>Severity
          <td>normal
          </td>
        </tr>
<tr>Priority
          <td>P3
          </td>
        </tr>
<tr>Component
          <td>smeserver-phpwebftp
          </td>
        </tr>
<tr>Assignee
          <td>jean-paul <at> leclere.org
          </td>
        </tr>
<tr>Reporter
          <td>tests <at> pialasse.com
          </td>
        </tr>
<tr>QA Contact
          <td>contribteam <at> lists.contribs.org
          </td>
        </tr>
</table>
<p>
        </p>
<div>
        <a href="https://packetstormsecurity.com/files/137001/phpwebftp-xss.txt">https://packetstormsecurity.com/files/137001/phpwebftp-xss.txt</a>

from what i know we use 3.3a, so it might be present too

PHPWebFTP ver 3.3b - xss vulnerability , by N_A.
N_A [at] tutanota.com

Vendor has notified

Description
----------------

phpWebFTP enables connections to FTP servers, even behind a firewall not 
allowing traffic. phpWebFTP bypasses the firewall by making a FTP connection 
from your web server to the FTP server and transferring the files to your web 
client over the http protocol

Vulnerability
-------------

PHPWebFTP ver 3.3b allows malicious code injection due to some variables we 
can control. This allows an attacker to inject malicious code to carry out 
XSS attacks upon the program.

----snip , index.php----

    $server=$_SESSION['server'];
    $user=$_SESSION['user'];
    $password=$_SESSION['password'];
    $language=$_SESSION['language'];
    $port=$_SESSION['port'];
    $passive=$_SESSION['passive'];

----snip , index.php----

further down in the code, the variables are passed without any 
security/filtering checks:

----snip, index.php----

    $ftp = new ftp($server, $port, $user, $password, $passive);
    $ftp-&gt;setMode($mode);
    $ftp-&gt;setCurrentDir($currentDir);

----snip, index.php----

Code injected into the [server] field: &lt;script&gt;alert('executed');&lt;/script&gt;
This is also possible for the [username],[port] and [field] options.

N_A [at] tutanota.com

--
Securely sent with Tutanota. Claim your encrypted mailbox today!
<a href="https://tutanota.com">https://tutanota.com</a>
        </div>

      <span>You are receiving this mail because:</span>

      <ul>
<li>You are the QA Contact for the bug.</li>
      </ul>
</div>
bugzilla-daemon | 26 May 10:55 2016

[Bug 9514] smeserver-coova-chilli update

Please DO NOT REPLY to this mail or send email to the developers about this bug.

Please follow-up to Bugzilla via Bug 9514.

Have you checked the Frequently Asked Questions (FAQ)?

Please also take the time to read "How to Report Bugs Effectively"
changed bug 9514
What Removed Added
Status IN_PROGRESS RESOLVED
Resolution --- FIXED

Comment # 16 on bug 9514 from (In reply to Unnilennium from comment #15) > Bad argument `denylog' > Try `iptables -h' or 'iptables --help' for more information. > done > > that is related to the line : > /sbin/iptables -A FORWARD_FROM_CHILLI ! -o \$OUTERIF -j denylog ok this one is related to the fact that my test machine is in server mode. patching the ! to move, Stefano can you try the new rpm ? /usr/bin/plague-client build smeserver-coova-chilli smeserver-coova-chilli-0_3-2_el6_sme contribs9 Package smeserver-coova-chilli enqueued. Job ID: 1179. %changelog * Thu May 26 2016 Jean-Philipe Pialasse <tests <at> pialasse.com> 0.3-2.sme - fix iptables syntax exclamation mark misplaced [SME: 9514] - smeserver-coova-chilli-0.3-MasqUpdate.patch
You are receiving this mail because:
  • You are the QA Contact for the bug.
<div>
Please DO NOT REPLY to this mail or send email to the developers about this bug.<br><br>
Please follow-up to Bugzilla via <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514">Bug 9514</a>.<br><br>
Have you checked the <a href="http://wiki.contribs.org/SME_Server:Documentation:FAQ">Frequently Asked Questions (FAQ)</a>?<br><br>
Please also take the time to read "<a href="http://www.chiark.greenend.org.uk/~sgtatham/bugs.html">How to Report Bugs Effectively</a>"<br><span class="vcard"><a class="email" href="mailto:tests <at> pialasse.com" title="Unnilennium &lt;tests <at> pialasse.com&gt;"> <span class="fn">Unnilennium</span></a>
</span> changed
              <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514">bug 9514</a>
          <br><table border="1" cellspacing="0" cellpadding="8">
<tr>What
            Removed
            Added
          </tr>
<tr>
<td>Status</td>
           <td>IN_PROGRESS
           </td>
           <td>RESOLVED
           </td>
         </tr>
<tr>
<td>Resolution</td>
           <td>---
           </td>
           <td>FIXED
           </td>
         </tr>
</table>
<p>
        </p>
<div>
            <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514#c16">Comment # 16</a>
              on <a class="bz_bug_link 
          bz_status_RESOLVED  bz_closed" title="RESOLVED FIXED - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514">bug 9514</a>
              from <span class="vcard"><a class="email" href="mailto:tests <at> pialasse.com" title="Unnilennium &lt;tests <at> pialasse.com&gt;"> <span class="fn">Unnilennium</span></a>
</span>
        (In reply to Unnilennium from <a href="show_bug.cgi?id=9514#c15">comment #15</a>)

<span class="quote">&gt; Bad argument `denylog'
&gt; Try `iptables -h' or 'iptables --help' for more information.
&gt; done
&gt; 
&gt; that is related to the line :
&gt;     /sbin/iptables -A FORWARD_FROM_CHILLI ! -o \$OUTERIF -j denylog</span>
ok this one is related to the fact that my test machine is in server mode.

patching the ! to move,

Stefano can you try the new rpm ?

/usr/bin/plague-client build smeserver-coova-chilli
smeserver-coova-chilli-0_3-2_el6_sme contribs9
Package smeserver-coova-chilli enqueued.  Job ID: 1179.
%changelog
* Thu May 26 2016 Jean-Philipe Pialasse &lt;<a href="mailto:tests <at> pialasse.com">tests <at> pialasse.com</a>&gt; 0.3-2.sme
- fix iptables syntax exclamation mark misplaced [SME: 9514]
- smeserver-coova-chilli-0.3-MasqUpdate.patch
        </div>

      <span>You are receiving this mail because:</span>

      <ul>
<li>You are the QA Contact for the bug.</li>
      </ul>
</div>
bugzilla-daemon | 25 May 19:27 2016

[Bug 9526] These are the fragments requested for dansguardian

Please DO NOT REPLY to this mail or send email to the developers about this bug.

Please follow-up to Bugzilla via Bug 9526.

Have you checked the Frequently Asked Questions (FAQ)?

Please also take the time to read "How to Report Bugs Effectively"
Bug ID Summary Classification Product Version Hardware OS Status Severity Priority Component Assignee Reporter QA Contact
9526
These are the fragments requested for dansguardian
Contribs
SME Contribs
9.1
---
---
UNCONFIRMED
normal
P3
smeserver-dansguardian-panel
stephen <at> dungog.net
stevesemple <at> lycos.com
contribteam <at> lists.contribs.org

Created attachment 5513 [details] Fragments for Dansguardian and SME 9.1 As requested. Here are the fragments for SME Linux Dansguardian. The Dansguardian panel was not installing properly for 9.1 and it was requested that providing these files it would move the development of the panel along. I would like to put my best foot forward. BUT this is my first attempt at this. I hope It is correct. I have tried to go over it a couple of times to get it right. Its not as easy as it looks. Added to that making fragments for things your not sure what they do. Thank you.
You are receiving this mail because:
  • You are the QA Contact for the bug.
<div>
Please DO NOT REPLY to this mail or send email to the developers about this bug.<br><br>
Please follow-up to Bugzilla via <a class="bz_bug_link 
          bz_status_UNCONFIRMED " title="UNCONFIRMED - These are the fragments requested for dansguardian" href="https://bugs.contribs.org/show_bug.cgi?id=9526">Bug 9526</a>.<br><br>
Have you checked the <a href="http://wiki.contribs.org/SME_Server:Documentation:FAQ">Frequently Asked Questions (FAQ)</a>?<br><br>
Please also take the time to read "<a href="http://www.chiark.greenend.org.uk/~sgtatham/bugs.html">How to Report Bugs Effectively</a>"<br><table border="1" cellspacing="0" cellpadding="8">
<tr>Bug ID
          <td>
<a class="bz_bug_link 
          bz_status_UNCONFIRMED " title="UNCONFIRMED - These are the fragments requested for dansguardian" href="https://bugs.contribs.org/show_bug.cgi?id=9526">9526</a>
          </td>
        </tr>
<tr>Summary
          <td>These are the fragments requested for dansguardian
          </td>
        </tr>
<tr>Classification
          <td>Contribs
          </td>
        </tr>
<tr>Product
          <td>SME Contribs
          </td>
        </tr>
<tr>Version
          <td>9.1
          </td>
        </tr>
<tr>Hardware
          <td>---
          </td>
        </tr>
<tr>OS
          <td>---
          </td>
        </tr>
<tr>Status
          <td>UNCONFIRMED
          </td>
        </tr>
<tr>Severity
          <td>normal
          </td>
        </tr>
<tr>Priority
          <td>P3
          </td>
        </tr>
<tr>Component
          <td>smeserver-dansguardian-panel
          </td>
        </tr>
<tr>Assignee
          <td>stephen <at> dungog.net
          </td>
        </tr>
<tr>Reporter
          <td>stevesemple <at> lycos.com
          </td>
        </tr>
<tr>QA Contact
          <td>contribteam <at> lists.contribs.org
          </td>
        </tr>
</table>
<p>
        </p>
<div>
        Created <span class=""><a href="attachment.cgi?id=5513" name="attach_5513" title="Fragments for Dansguardian and SME 9.1">attachment 5513</a> <a href="attachment.cgi?id=5513&amp;action=edit" title="Fragments for Dansguardian and SME 9.1">[details]</a></span>
Fragments for Dansguardian and SME 9.1

As requested. Here are the fragments for SME Linux Dansguardian.

The Dansguardian panel was not installing properly for 9.1 and it was requested
that providing these files it would move the development of the panel along. 
I would like to put my best foot forward. BUT this is my first attempt at this.
I hope It is correct. I have tried to go over it a couple of times to get it
right. Its not as easy as it looks. Added to that making fragments for things
your not sure what they do.  
Thank you.
        </div>

      <span>You are receiving this mail because:</span>

      <ul>
<li>You are the QA Contact for the bug.</li>
      </ul>
</div>
bugzilla-daemon | 24 May 12:54 2016

[Bug 9524] learn is not able to create links when folder already in place

Please DO NOT REPLY to this mail or send email to the developers about this bug.

Please follow-up to Bugzilla via Bug 9524.

Have you checked the Frequently Asked Questions (FAQ)?

Please also take the time to read "How to Report Bugs Effectively"
Bug ID Summary Classification Product Version Hardware OS Status Severity Priority Component Assignee Reporter QA Contact
9524
learn is not able to create links when folder already in place
Contribs
SME Contribs
9.1
---
---
CONFIRMED
normal
P3
smeserver-learn
tests <at> pialasse.com
tests <at> pialasse.com
contribteam <at> lists.contribs.org

the functionality to link other folter to the junkmail one, is limited by the aspect hat if the folder actually exists before learn runs, it is not able to link the two. a way would be to check if the location exsits and is a not a link but a folder, then to : 1- move its subcontent ( ie in cur and new) to junkmail 2- delete it and its remaining content ( cur, tmp new) 3- finally create the link
You are receiving this mail because:
  • You are the QA Contact for the bug.
<div>
Please DO NOT REPLY to this mail or send email to the developers about this bug.<br><br>
Please follow-up to Bugzilla via <a class="bz_bug_link 
          bz_status_CONFIRMED " title="CONFIRMED - learn is not able to create links when folder already in place" href="https://bugs.contribs.org/show_bug.cgi?id=9524">Bug 9524</a>.<br><br>
Have you checked the <a href="http://wiki.contribs.org/SME_Server:Documentation:FAQ">Frequently Asked Questions (FAQ)</a>?<br><br>
Please also take the time to read "<a href="http://www.chiark.greenend.org.uk/~sgtatham/bugs.html">How to Report Bugs Effectively</a>"<br><table border="1" cellspacing="0" cellpadding="8">
<tr>Bug ID
          <td>
<a class="bz_bug_link 
          bz_status_CONFIRMED " title="CONFIRMED - learn is not able to create links when folder already in place" href="https://bugs.contribs.org/show_bug.cgi?id=9524">9524</a>
          </td>
        </tr>
<tr>Summary
          <td>learn is not able to create links when folder already in place
          </td>
        </tr>
<tr>Classification
          <td>Contribs
          </td>
        </tr>
<tr>Product
          <td>SME Contribs
          </td>
        </tr>
<tr>Version
          <td>9.1
          </td>
        </tr>
<tr>Hardware
          <td>---
          </td>
        </tr>
<tr>OS
          <td>---
          </td>
        </tr>
<tr>Status
          <td>CONFIRMED
          </td>
        </tr>
<tr>Severity
          <td>normal
          </td>
        </tr>
<tr>Priority
          <td>P3
          </td>
        </tr>
<tr>Component
          <td>smeserver-learn
          </td>
        </tr>
<tr>Assignee
          <td>tests <at> pialasse.com
          </td>
        </tr>
<tr>Reporter
          <td>tests <at> pialasse.com
          </td>
        </tr>
<tr>QA Contact
          <td>contribteam <at> lists.contribs.org
          </td>
        </tr>
</table>
<p>
        </p>
<div>
        the functionality to link other folter to the junkmail one, is limited by the
aspect hat if the folder actually exists before learn runs, it is not able to
link the two.

a way would be to check if the location exsits and is a not a link but a
folder, then to :
1- move its subcontent ( ie  in cur and new) to junkmail
2- delete it and its remaining content ( cur, tmp new)
3- finally create the link
        </div>

      <span>You are receiving this mail because:</span>

      <ul>
<li>You are the QA Contact for the bug.</li>
      </ul>
</div>
bugzilla-daemon | 23 May 15:58 2016

[Bug 9514] smeserver-coova-chilli update

Please DO NOT REPLY to this mail or send email to the developers about this bug.

Please follow-up to Bugzilla via Bug 9514.

Have you checked the Frequently Asked Questions (FAQ)?

Please also take the time to read "How to Report Bugs Effectively"

Comment # 15 on bug 9514 from changing to /etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli20input /sbin/iptables -A IN_FROM_CHILLI ! -s $net -j denylog and to /etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli40forwardFrom /sbin/iptables -A FORWARD_FROM_CHILLI ! -s $net -j denylog /sbin/iptables -A FORWARD_FROM_CHILLI ! -o \$OUTERIF -j denylog remove three errors leaving only Bad argument `denylog' Try `iptables -h' or 'iptables --help' for more information. done that is related to the line : /sbin/iptables -A FORWARD_FROM_CHILLI ! -o \$OUTERIF -j denylog
You are receiving this mail because:
  • You are the QA Contact for the bug.
<div>
Please DO NOT REPLY to this mail or send email to the developers about this bug.<br><br>
Please follow-up to Bugzilla via <a class="bz_bug_link 
          bz_status_IN_PROGRESS " title="IN_PROGRESS - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514">Bug 9514</a>.<br><br>
Have you checked the <a href="http://wiki.contribs.org/SME_Server:Documentation:FAQ">Frequently Asked Questions (FAQ)</a>?<br><br>
Please also take the time to read "<a href="http://www.chiark.greenend.org.uk/~sgtatham/bugs.html">How to Report Bugs Effectively</a>"<br><p>
        </p>
<div>
            <a class="bz_bug_link 
          bz_status_IN_PROGRESS " title="IN_PROGRESS - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514#c15">Comment # 15</a>
              on <a class="bz_bug_link 
          bz_status_IN_PROGRESS " title="IN_PROGRESS - smeserver-coova-chilli update" href="https://bugs.contribs.org/show_bug.cgi?id=9514">bug 9514</a>
              from <span class="vcard"><a class="email" href="mailto:tests <at> pialasse.com" title="Unnilennium &lt;tests <at> pialasse.com&gt;"> <span class="fn">Unnilennium</span></a>
</span>
        changing to 
/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli20input

    /sbin/iptables -A IN_FROM_CHILLI ! -s $net -j denylog

and to
/etc/e-smith/templates/etc/rc.d/init.d/masq/00Functions01Chilli40forwardFrom

    /sbin/iptables -A FORWARD_FROM_CHILLI ! -s $net -j denylog
    /sbin/iptables -A FORWARD_FROM_CHILLI ! -o \$OUTERIF -j denylog

remove three errors leaving only 

Bad argument `denylog'
Try `iptables -h' or 'iptables --help' for more information.
done

that is related to the line :
    /sbin/iptables -A FORWARD_FROM_CHILLI ! -o \$OUTERIF -j denylog
        </div>

      <span>You are receiving this mail because:</span>

      <ul>
<li>You are the QA Contact for the bug.</li>
      </ul>
</div>

Gmane