[Fusionforge-commits] r16199 - in branches: Branch_5_1/src/common/include Branch_5_1/src/db Branch_5_1/src/deb-specific Branch_5_1/src/debian Branch_5_2/src/common/include Branch_5_2/src/db Branch_5_2/src/debian wheezy/common/include wheezy/db wheezy/debian

Thorsten Glaser mirabilos at fusionforge.org
Mon Sep 3 13:17:58 CEST 2012


Author: mirabilos
Date: 2012-09-03 13:17:58 +0200 (Mon, 03 Sep 2012)
New Revision: 16199

Added:
   branches/Branch_5_1/src/db/20120903-no-unix-account-for-deleted-users.sql
   branches/Branch_5_2/src/db/20120903-no-unix-account-for-deleted-users.sql
   branches/wheezy/db/20120903-no-unix-account-for-deleted-users.sql
Modified:
   branches/Branch_5_1/src/common/include/User.class.php
   branches/Branch_5_1/src/deb-specific/db-upgrade.pl
   branches/Branch_5_1/src/debian/changelog
   branches/Branch_5_2/src/common/include/User.class.php
   branches/Branch_5_2/src/debian/changelog
   branches/wheezy/common/include/User.class.php
   branches/wheezy/debian/changelog
Log:
SECURITY: Upon user deletion, remove their Unix shell account as well


Modified: branches/Branch_5_1/src/common/include/User.class.php
===================================================================
--- branches/Branch_5_1/src/common/include/User.class.php	2012-09-02 16:28:35 UTC (rev 16198)
+++ branches/Branch_5_1/src/common/include/User.class.php	2012-09-03 11:17:58 UTC (rev 16199)
@@ -492,6 +492,7 @@
 			plugin_hook ("user_delete", $hook_params);
 			
 			$this->setStatus('D');
+			$this->setUnixStatus('D');
 			db_commit();
 		}
 		return true;

Added: branches/Branch_5_1/src/db/20120903-no-unix-account-for-deleted-users.sql
===================================================================
--- branches/Branch_5_1/src/db/20120903-no-unix-account-for-deleted-users.sql	                        (rev 0)
+++ branches/Branch_5_1/src/db/20120903-no-unix-account-for-deleted-users.sql	2012-09-03 11:17:58 UTC (rev 16199)
@@ -0,0 +1 @@
+UPDATE users SET unix_status='D' WHERE status!='A';

Modified: branches/Branch_5_1/src/deb-specific/db-upgrade.pl
===================================================================
--- branches/Branch_5_1/src/deb-specific/db-upgrade.pl	2012-09-02 16:28:35 UTC (rev 16198)
+++ branches/Branch_5_1/src/deb-specific/db-upgrade.pl	2012-09-03 11:17:58 UTC (rev 16199)
@@ -1955,6 +1955,7 @@
     &update_with_sql("20111007-add-fti-for-task-messages","5.1-10");
     &update_with_sql("20111009-string-aggregate-function","5.1-11");
     &update_with_sql("20120321-add-news-in-activity_vw","5.1-12");
+    &update_with_sql("20120903-no-unix-account-for-deleted-users", "5.1-13");
 
     ########################### INSERT HERE #################################
 

Modified: branches/Branch_5_1/src/debian/changelog
===================================================================
--- branches/Branch_5_1/src/debian/changelog	2012-09-02 16:28:35 UTC (rev 16198)
+++ branches/Branch_5_1/src/debian/changelog	2012-09-03 11:17:58 UTC (rev 16199)
@@ -1,10 +1,14 @@
 fusionforge (5.1.1-9) UNRELEASED; urgency=low
 
+  [ Roland Mas ]
   * Reinstate code running the Mediawiki SQL initialisation code from the
     package's postinst.
 
- -- Roland Mas <lolando at debian.org>  Fri, 01 Jun 2012 11:04:11 +0200
+  [ Thorsten Glaser ]
+  * SECURITY: Upon user deletion, remove their Unix account as well
 
+ -- Thorsten Glaser <tg at mirbsd.de>  Mon, 03 Sep 2012 11:51:57 +0200
+
 fusionforge (5.1.1-8) unstable; urgency=low
 
   * Fixes from the 5.1 upstream branch.

Modified: branches/Branch_5_2/src/common/include/User.class.php
===================================================================
--- branches/Branch_5_2/src/common/include/User.class.php	2012-09-02 16:28:35 UTC (rev 16198)
+++ branches/Branch_5_2/src/common/include/User.class.php	2012-09-03 11:17:58 UTC (rev 16199)
@@ -502,6 +502,7 @@
 			plugin_hook("user_delete", $hook_params);
 
 			$this->setStatus('D');
+			$this->setUnixStatus('D');
 			db_commit();
 		}
 		return true;

Added: branches/Branch_5_2/src/db/20120903-no-unix-account-for-deleted-users.sql
===================================================================
--- branches/Branch_5_2/src/db/20120903-no-unix-account-for-deleted-users.sql	                        (rev 0)
+++ branches/Branch_5_2/src/db/20120903-no-unix-account-for-deleted-users.sql	2012-09-03 11:17:58 UTC (rev 16199)
@@ -0,0 +1 @@
+UPDATE users SET unix_status='D' WHERE status!='A';

Modified: branches/Branch_5_2/src/debian/changelog
===================================================================
--- branches/Branch_5_2/src/debian/changelog	2012-09-02 16:28:35 UTC (rev 16198)
+++ branches/Branch_5_2/src/debian/changelog	2012-09-03 11:17:58 UTC (rev 16199)
@@ -16,8 +16,9 @@
   * Move wikis to new (as of 2010-03-19, possibly by accident) data path
   * Check image upload is enabled before trying to do so (Closes: #679521)
   * Unbreak and silence the MediaWiki nightly dump cronjob (Closes: #680165)
+  * SECURITY: Upon user deletion, remove their Unix account as well
 
- -- Thorsten Glaser <tg at mirbsd.de>  Fri, 24 Aug 2012 10:53:50 +0200
+ -- Thorsten Glaser <tg at mirbsd.de>  Mon, 03 Sep 2012 11:55:51 +0200
 
 fusionforge (5.2~rc1wheezy1~exp1) experimental; urgency=low
 

Modified: branches/wheezy/common/include/User.class.php
===================================================================
--- branches/wheezy/common/include/User.class.php	2012-09-02 16:28:35 UTC (rev 16198)
+++ branches/wheezy/common/include/User.class.php	2012-09-03 11:17:58 UTC (rev 16199)
@@ -502,6 +502,7 @@
 			plugin_hook("user_delete", $hook_params);
 
 			$this->setStatus('D');
+			$this->setUnixStatus('D');
 			db_commit();
 		}
 		return true;

Added: branches/wheezy/db/20120903-no-unix-account-for-deleted-users.sql
===================================================================
--- branches/wheezy/db/20120903-no-unix-account-for-deleted-users.sql	                        (rev 0)
+++ branches/wheezy/db/20120903-no-unix-account-for-deleted-users.sql	2012-09-03 11:17:58 UTC (rev 16199)
@@ -0,0 +1 @@
+UPDATE users SET unix_status='D' WHERE status!='A';

Modified: branches/wheezy/debian/changelog
===================================================================
--- branches/wheezy/debian/changelog	2012-09-02 16:28:35 UTC (rev 16198)
+++ branches/wheezy/debian/changelog	2012-09-03 11:17:58 UTC (rev 16199)
@@ -11,8 +11,9 @@
   * Check image upload is enabled before trying to do so (Closes: #679521)
   * Unbreak and silence the MediaWiki nightly dump cronjob (Closes: #680165)
   * Remove minified ECMAscript and binary *.jar from the source
+  * SECURITY: Upon user deletion, remove their Unix account as well
 
- -- Thorsten Glaser <tg at mirbsd.de>  Thu, 30 Aug 2012 11:06:02 +0200
+ -- Thorsten Glaser <tg at mirbsd.de>  Mon, 03 Sep 2012 11:55:51 +0200
 
 fusionforge (5.2~rc1-5) unstable; urgency=low
 




More information about the Fusionforge-commits mailing list