Overview
Request 531548 accepted
- Merge SLE changes into Factory
- default_config_pathfixes.patch:
reference only existing filter lists in default installed config
(bnc#961499)
- add xss_fix_02_2015.patch:
o fix XSS possibility in blocked error page by escaping all
< and > in the printed url (CVE-2015-8936, bnc#985612)
- fix URL in README so it doesn't point at non-existent page
- fix squid 3.4 error witch patch squidGuard-1.4_upgrade.patch
see http://bugs.squid-cache.org/show_bug.cgi?id=3978 (bnc#1040757)
- fix permissions for blacklist, conf, dbhome and logdir,
so other tools like squidguardmanager can access
- SuSE -> SUSE [bnc#889003]
- fix squidGuard-CVE-2009-3826.patch patch
- add squidGuard-CVE-2009-3700.patch,
squidGuard-CVE-2009-3826.patch (bnc#550930)
- add "missingok" to logrotate configuration
(no logfile if never used causing error from cron when
running logrotate)
- fixed deps for SLES_9
o Unknown tag: Recommends:
- fix deps
o PreReq: http_proxy
o osc meta -e prjconf Prefer: squid3
- fixed lost mods from kssingvo 20070702
o "Requires: http_proxy" now, as squid3 is an alternative
- spec
o sorted TAGS
- rpmlint
o non-utf8-spec-file
- update to 1.4:
+ some fixes
+ Added MySQL support for authentication. The database is
assumed to be configured on localhost.
+ Fixed configure.in to comply with the autoconf standard
+ Fixed broken "make test"
+ Added new runtime parameter "-P". This parameter changes
the default behaviour from stop (emergency mode) to pass
when an error in building the database files occurs. So
this parameter only works in connection with the runtime
paramter "-C". Before using "-P" in your environment
make sure that nothing breakes when the building of the
db files fail.
+ Added Spanish translation to squidGuard.cgi
- enabled --nolog option
- enabled mysql auth
- removed squidGuard-1.3-bl_less_noise.patch (upstream)
- adapted squidGuard-1.3-config.patch
- split up doc package
- package the cgi scripts (and babel files) in /srv/www/cgi-bin
- package blocked.gif in /srv/www/htdocs/images
- added squidGuard.logrotate script
- added latest upstream patch (20080714) as two individual patches:
* fix for squid complaining about progress bar
* fix if URL was requested which ends with "://"
- added latest upstream patch (20080613) as trailing_dot.patch
- "Requires: http_proxy" now, as squid3 is an alternative
- update to version 1.3:
* Included configurable logging. New configure option --nolog
suppress all runtime logmessages. Start and stop is still
logged. Default behaviour is now to log the non debug
messages except when the runtime option -d is supplied to
squidGuard. May need some more finetuning in later versions.
(bug 11) Made some slight changes to the outdated FAQ file.
* Modified auth code to work with and without ldap (choosing
subroutine rfc1738_unescape or sgFindUser in sg.y.in)
* Corrected include statement in sg.h.in.
* Added patch by Marc Clayton to include a progressbar to the
build of the database files (bug 6).
* Added patch by Eric Harrison to enable full sed compliance to
rewrite statements (bug 7).
* Corrected missing evaluation of configure parameters for
logdir, dbhome and config file (bug 11).
* Added patch from satish to block urls entries that include
hostnames (bug 4).
* Fixed broken regex evaluation (bug 12)
* Fixed a compile problem on some systems (bug 10).
* Corrected an issue with the fix for the double slash
vulnerability (incorrectly found double slashes) (bug 1).
- fixed build/config issues
- fixes from upstream:
* double slash bug fix extracted from Patch-20070513 tarball
* regexp bug fix extracted from Patch-20070520 tarball
* compiler bug fix extracted from Patch-20070520 tarball
- upgrade to version 1.2.1:
* Fixed multiple slash bypass vulnerabilty.
* Fixed some bugs in squidGuard-simple.cgi and added a
German version of it.
* Fixed encoding bypass vulnerabilty.
* Updated y.tab.c.bison and y.tab.h.bison to the recent version.
* Fixed bug in user authentication.
* Fixed some typos which broke compilation on Sun Solaris
when using the Sun CC compiler.
* Corrected unproper evaluated if-clause, which broke the
BerkeleyDB 2 compatibility.
* Fixed minor typo in samples/Makefile.in.
* Replaced the sleepycat links from the configure program with
the oracle links.
* Corrected typo in Makefile.in.
* Removed a stupid bug from the Makefile in the docs directory.
* Removed references to squidguard.org in Makefile.in in the
Doc directory (squidguard.org is down).
* Added ISSUES.txt file about known problem with the current
code (any information that is missing and should go in there
is gladly welcomed).
* Release now supports LDAP queries for authentication:
* Added Chris Frey's ldap patches and fixes (03, 05, 06,
07 and 10; Patches from:
http://www.netdirect.ca/software/category.php?cat=SquidGuard).
* The LDAP feature can be included during the configure run
by setting --with-ldap.
* Added a fix provided by Francesco Ranieri to solve an issue
with the (un)escaping of the authentication "domain%5cusername".
- adapted configuration related patches
- add bison and flex BuildRequires
- converted neededforbuild to BuildRequires
- don't build as root
- added -fno-strict-aliasing
- fixed db->open() call, like Thorsten suggested
- made pathes FHS 2.2 clean
- added README.SuSE (as suggest in bugzilla #16670)
- Fix to build without existing squid user
- Add squid to PreRequires.
- fix directory permissions
- use db package (update to 1.2.0 to make it compile)
- use buildroot
- correct permissions in /var/squidGuard
- rename squigrd -> squidGuard
- added group tag
- installing a useable test configuration
- initial package of squidGuard Version 1.1.4
Request History
adamm created request
- Merge SLE changes into Factory
- default_config_pathfixes.patch:
reference only existing filter lists in default installed config
(bnc#961499)
- add xss_fix_02_2015.patch:
o fix XSS possibility in blocked error page by escaping all
< and > in the printed url (CVE-2015-8936, bnc#985612)
- fix URL in README so it doesn't point at non-existent page
- fix squid 3.4 error witch patch squidGuard-1.4_upgrade.patch
see http://bugs.squid-cache.org/show_bug.cgi?id=3978 (bnc#1040757)
- fix permissions for blacklist, conf, dbhome and logdir,
so other tools like squidguardmanager can access
- SuSE -> SUSE [bnc#889003]
- fix squidGuard-CVE-2009-3826.patch patch
- add squidGuard-CVE-2009-3700.patch,
squidGuard-CVE-2009-3826.patch (bnc#550930)
- add "missingok" to logrotate configuration
(no logfile if never used causing error from cron when
running logrotate)
- fixed deps for SLES_9
o Unknown tag: Recommends:
- fix deps
o PreReq: http_proxy
o osc meta -e prjconf Prefer: squid3
- fixed lost mods from kssingvo 20070702
o "Requires: http_proxy" now, as squid3 is an alternative
- spec
o sorted TAGS
- rpmlint
o non-utf8-spec-file
- update to 1.4:
+ some fixes
+ Added MySQL support for authentication. The database is
assumed to be configured on localhost.
+ Fixed configure.in to comply with the autoconf standard
+ Fixed broken "make test"
+ Added new runtime parameter "-P". This parameter changes
the default behaviour from stop (emergency mode) to pass
when an error in building the database files occurs. So
this parameter only works in connection with the runtime
paramter "-C". Before using "-P" in your environment
make sure that nothing breakes when the building of the
db files fail.
+ Added Spanish translation to squidGuard.cgi
- enabled --nolog option
- enabled mysql auth
- removed squidGuard-1.3-bl_less_noise.patch (upstream)
- adapted squidGuard-1.3-config.patch
- split up doc package
- package the cgi scripts (and babel files) in /srv/www/cgi-bin
- package blocked.gif in /srv/www/htdocs/images
- added squidGuard.logrotate script
- added latest upstream patch (20080714) as two individual patches:
* fix for squid complaining about progress bar
* fix if URL was requested which ends with "://"
- added latest upstream patch (20080613) as trailing_dot.patch
- "Requires: http_proxy" now, as squid3 is an alternative
- update to version 1.3:
* Included configurable logging. New configure option --nolog
suppress all runtime logmessages. Start and stop is still
logged. Default behaviour is now to log the non debug
messages except when the runtime option -d is supplied to
squidGuard. May need some more finetuning in later versions.
(bug 11) Made some slight changes to the outdated FAQ file.
* Modified auth code to work with and without ldap (choosing
subroutine rfc1738_unescape or sgFindUser in sg.y.in)
* Corrected include statement in sg.h.in.
* Added patch by Marc Clayton to include a progressbar to the
build of the database files (bug 6).
* Added patch by Eric Harrison to enable full sed compliance to
rewrite statements (bug 7).
* Corrected missing evaluation of configure parameters for
logdir, dbhome and config file (bug 11).
* Added patch from satish to block urls entries that include
hostnames (bug 4).
* Fixed broken regex evaluation (bug 12)
* Fixed a compile problem on some systems (bug 10).
* Corrected an issue with the fix for the double slash
vulnerability (incorrectly found double slashes) (bug 1).
- fixed build/config issues
- fixes from upstream:
* double slash bug fix extracted from Patch-20070513 tarball
* regexp bug fix extracted from Patch-20070520 tarball
* compiler bug fix extracted from Patch-20070520 tarball
- upgrade to version 1.2.1:
* Fixed multiple slash bypass vulnerabilty.
* Fixed some bugs in squidGuard-simple.cgi and added a
German version of it.
* Fixed encoding bypass vulnerabilty.
* Updated y.tab.c.bison and y.tab.h.bison to the recent version.
* Fixed bug in user authentication.
* Fixed some typos which broke compilation on Sun Solaris
when using the Sun CC compiler.
* Corrected unproper evaluated if-clause, which broke the
BerkeleyDB 2 compatibility.
* Fixed minor typo in samples/Makefile.in.
* Replaced the sleepycat links from the configure program with
the oracle links.
* Corrected typo in Makefile.in.
* Removed a stupid bug from the Makefile in the docs directory.
* Removed references to squidguard.org in Makefile.in in the
Doc directory (squidguard.org is down).
* Added ISSUES.txt file about known problem with the current
code (any information that is missing and should go in there
is gladly welcomed).
* Release now supports LDAP queries for authentication:
* Added Chris Frey's ldap patches and fixes (03, 05, 06,
07 and 10; Patches from:
http://www.netdirect.ca/software/category.php?cat=SquidGuard).
* The LDAP feature can be included during the configure run
by setting --with-ldap.
* Added a fix provided by Francesco Ranieri to solve an issue
with the (un)escaping of the authentication "domain%5cusername".
- adapted configuration related patches
- add bison and flex BuildRequires
- converted neededforbuild to BuildRequires
- don't build as root
- added -fno-strict-aliasing
- fixed db->open() call, like Thorsten suggested
- made pathes FHS 2.2 clean
- added README.SuSE (as suggest in bugzilla #16670)
- Fix to build without existing squid user
- Add squid to PreRequires.
- fix directory permissions
- use db package (update to 1.2.0 to make it compile)
- use buildroot
- correct permissions in /var/squidGuard
- rename squigrd -> squidGuard
- added group tag
- installing a useable test configuration
- initial package of squidGuard Version 1.1.4
factory-auto added opensuse-review-team as a reviewer
Please review sources
factory-auto added repo-checker as a reviewer
Please review build success
factory-auto accepted review
Check script succeeded
licensedigger accepted review
ok
dimstar_suse added openSUSE:Factory:Staging:adi:38 as a reviewer
Being evaluated by staging project "openSUSE:Factory:Staging:adi:38"
dimstar_suse accepted review
Picked openSUSE:Factory:Staging:adi:38
repo-checker accepted review
cycle and install check passed
dimstar accepted review
staging-bot accepted review
ready to accept
staging-bot approved review
ready to accept
dimstar_suse accepted request
Accept to openSUSE:Factory
