Ubuntu
backuppc package

Merge lp:~allison/ubuntu/oneiric/backuppc/merge-debian-suidperl into lp:ubuntu/oneiric/backuppc

  1. Oneiric (11.10)
  2. merge-debian-suidperl
  3. Merge into oneiric
Proposed by Allison Randal
Status: Merged
Merged at revision: 33
Proposed branch: lp:~allison/ubuntu/oneiric/backuppc/merge-debian-suidperl
Merge into: lp:ubuntu/oneiric/backuppc
Diff against target: 148 lines (+66/-9)
7 files modified
debian/changelog (+25/-0)
debian/dirs (+1/-0)
debian/postinst (+2/-2)
debian/postrm (+1/-0)
debian/rules (+3/-3)
debian/setuidwrapper.c (+1/-4)
httpd/BackupPC.conf (+33/-0)
To merge this branch: bzr merge lp:~allison/ubuntu/oneiric/backuppc/merge-debian-suidperl
Reviewer Review Type Date Requested Status
Dave Walker (community) Approve
Review via email: mp+64770@code.launchpad.net

Description of the change

Merged Debian's implementation of the setuid wrapper replacement for perl-suid.

They chose to install the compiled wrapper in /usr/lib/backuppc/cgi-bin (not worth a distro diff). Also, dropped define check around REAL_PATH in the tiny wrapper (I was being pedantically correct, not worth a distro diff).

Kept the install mode of the install wrapper at 4750 instead of 755.

To post a comment you must log in.
Revision history for this message
Dave Walker (davewalker) wrote :

Looks great! Nice and clean.

Thanks!

builds fine, uploading and merging.

review: Approve

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1=== modified file 'debian/changelog'
2--- debian/changelog 2011-05-29 17:49:10 +0000
3+++ debian/changelog 2011-06-15 23:51:03 +0000
4@@ -1,3 +1,28 @@
5+backuppc (3.2.0-4ubuntu1) oneiric; urgency=low
6+
7+ * Merge from debian unstable. Remaining changes:
8+ - debian/backup.init, debian/rules, debian/postinst: Do not call init
9+ script on shutdown and reboot (TearDown) (Debian #488660)
10+ - debian/control: Add dependency for libsocket6-perl.
11+ - debian/control: Drop build dependency to 'par2', it's in universe.
12+ - configure.pl: Do not test for par2 being available at build time
13+ - debian/control: depend on default-mta | mail-transport-agent, instead of
14+ enumerating a long list of alternative MTAs.
15+ - debian/rules: installing setuid wrapper with setuid bit set, and no
16+ permissions granted to other (mode 4750)
17+
18+ -- Allison Randal <allison@canonical.com> Wed, 15 Jun 2011 16:28:41 -0700
19+
20+backuppc (3.2.0-4) unstable; urgency=low
21+
22+ * debian/setuidwrapper.c: New.
23+ * debian/rules: Build setuidwrapper as cgi-bin/index.cgi; install real
24+ index.cgi as lib/realindex.cgi. Closes: #581950.
25+ * control: Remove depends on perl-suid. Change to Architecture any, add
26+ ${shlibs:Depends}.
27+
28+ -- Ludovic Drolez <ldrolez@debian.org> Sat, 07 May 2011 10:11:56 -0500
29+
30 backuppc (3.2.0-3ubuntu5) oneiric; urgency=low
31
32 * Replace dependency on perl-suid with a small setuid wrapper, since the
33
34=== modified file 'debian/dirs'
35--- debian/dirs 2009-11-06 00:30:12 +0000
36+++ debian/dirs 2011-06-15 23:51:03 +0000
37@@ -2,3 +2,4 @@
38 etc/backuppc
39 usr/share/backuppc/image
40 usr/share/backuppc/conf
41+usr/lib/backuppc/cgi-bin
42
43=== modified file 'debian/postinst'
44--- debian/postinst 2011-01-14 11:02:06 +0000
45+++ debian/postinst 2011-06-15 23:51:03 +0000
46@@ -97,10 +97,10 @@
47 chmod 750 /var/lib/backuppc /var/lib/backuppc/* /var/lib/backuppc/pc/*
48 fi
49
50- OVERRIDDEN=`dpkg-statoverride --list /usr/share/backuppc/cgi-bin/index.cgi || true`
51+ OVERRIDDEN=`dpkg-statoverride --list /usr/lib/backuppc/cgi-bin/index.cgi || true`
52 # Force the perms to 4750 if 4755 was found
53 echo "$OVERRIDDEN" | grep -q 4755 && OVERRIDDEN=""
54- [ "${OVERRIDDEN}" = "" ] && dpkg-statoverride --force --update --add backuppc www-data 4750 /usr/share/backuppc/cgi-bin/index.cgi
55+ [ "${OVERRIDDEN}" = "" ] && dpkg-statoverride --force --update --add backuppc www-data 4750 /usr/lib/backuppc/cgi-bin/index.cgi
56
57 if [ ! -f /etc/backuppc/htpasswd ]; then
58 touch /etc/backuppc/htpasswd
59
60=== modified file 'debian/postrm'
61--- debian/postrm 2009-11-06 00:30:12 +0000
62+++ debian/postrm 2011-06-15 23:51:03 +0000
63@@ -56,6 +56,7 @@
64
65
66 dpkg-statoverride --remove --force /usr/share/backuppc/cgi-bin/index.cgi
67+ dpkg-statoverride --remove --force /usr/lib/backuppc/cgi-bin/index.cgi
68 rm -rf /etc/backuppc
69 if [ -x "/usr/bin/ucf" ]; then
70 ucf --purge /etc/backuppc/config.pl
71
72=== modified file 'debian/rules'
73--- debian/rules 2011-05-29 17:49:10 +0000
74+++ debian/rules 2011-06-15 23:51:03 +0000
75@@ -64,13 +64,13 @@
76
77 pod2man --section=8 --center="BackupPC manual" doc/BackupPC.pod backuppc.8
78 perl -e "s/.IX Title.*/.SH NAME\nbackuppc \\- BackupPC manual/g" -p -i.tmp backuppc.8
79- mv -f debian/backuppc/usr/share/backuppc/cgi-bin/BackupPC_Admin debian/backuppc/usr/share/backuppc/cgi-bin/BackupPC_Admin.pl
80- install --mode=4750 index.cgi debian/backuppc/usr/share/backuppc/cgi-bin
81+ mv -f debian/backuppc/usr/share/backuppc/cgi-bin/* debian/backuppc/usr/share/backuppc/lib/realindex.cgi
82+ install --mode=4750 index.cgi debian/backuppc/usr/lib/backuppc/cgi-bin
83 install --mode=644 conf/hosts debian/backuppc/etc/backuppc
84 install --mode=644 debian/localhost.pl debian/backuppc/etc/backuppc
85 install --mode=644 debian/apache.conf debian/backuppc/etc/backuppc
86 -rmdir debian/backuppc/var/lib/backuppc/conf/
87- (cd debian/backuppc/usr/share/backuppc/cgi-bin; ln -s ../image)
88+ (cd debian/backuppc/usr/share/backuppc/cgi-bin; ln -s ../image; ln -s /usr/lib/backuppc/cgi-bin/index.cgi )
89 patch --no-backup-if-mismatch -p0 < debian/patches/config.pl.diff
90 install --mode=644 debian/backuppc/etc/backuppc/config.pl debian/backuppc/usr/share/backuppc/conf
91
92
93=== modified file 'debian/setuidwrapper.c'
94--- debian/setuidwrapper.c 2011-05-29 17:49:10 +0000
95+++ debian/setuidwrapper.c 2011-06-15 23:51:03 +0000
96@@ -1,8 +1,6 @@
97 #include <unistd.h>
98
99-#ifndef REAL_PATH
100-#define REAL_PATH "/usr/share/backuppc/cgi-bin/BackupPC_Admin.pl"
101-#endif
102+#define REAL_PATH "/usr/share/backuppc/lib/realindex.cgi"
103
104 int main(ac, av)
105 char **av;
106@@ -10,4 +8,3 @@
107 execv(REAL_PATH, av);
108 return 0;
109 }
110-
111
112=== added file 'httpd/BackupPC.conf'
113--- httpd/BackupPC.conf 1970-01-01 00:00:00 +0000
114+++ httpd/BackupPC.conf 2011-06-15 23:51:03 +0000
115@@ -0,0 +1,33 @@
116+#
117+# DESCRIPTION
118+#
119+# This file controls access and configuration for the BackupPC CGI
120+# interface.
121+#
122+# Distributed with BackupPC version 3.1.1, released 22 Dec 2008.
123+
124+<Directory /usr/share/backuppc/cgi-bin >
125+
126+#
127+# This section tells apache which machines can access the interface.
128+# You can change the allow line to allow access from your local
129+# network, or comment out this region to allow access from all
130+# machines.
131+#
132+order deny,allow
133+deny from all
134+allow from 127.0.0.1
135+
136+#
137+# You can change the authorization method to LDAP or another method
138+# besides htaccess here if you are so inclined.
139+#
140+AuthType Basic
141+AuthUserFile /etc/backuppc/BackupPC.users
142+AuthName "BackupPC Community Edition Administrative Interface"
143+require valid-user
144+
145+</Directory>
146+
147+Alias /backuppc/image /usr/share/backuppc/image
148+ScriptAlias /BackupPC_Admin /usr/share/backuppc/cgi-bin/BackupPC_Admin

Subscribers

People subscribed via source and target branches