Your message dated Tue, 3 Jun 2008 10:00:17 +0200
with message-id <[EMAIL PROTECTED]>
and subject line Current version in testing/unstable fixes the bug
has caused the Debian Bug report #475263,
regarding phpldapadmin stopped supporting sambaUnixIdPool, really uncleanly
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)
--
475263: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=475263
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: phpldapadmin
Version: 0.9.8.3-8
Severity: serious
Hi,
The other day I was unpleasantly surprised that the setting:
$ldapservers->SetValue($i,'auto_number','mechanism','uidpool');
the equivalent of which worked normally in sarge, doesn't actually work
on etch, but is still part of the configuration file.
/usr/share/phpldapadmin/lib/functions.php still describes the mechanism,
but the code was apparently ripped out, uncleanly - the switch($mechanism)
default case still references 'uidpool', but the case for it simply
isn't there.
I found this out after a routine check of home directories showed
inconsistencies - old, deleted users' home directories started being
owned by new users, which were created by phpldapadmin with the old UIDs.
This is a privilege escalation (users being given access to data which
doesn't belong to them), and never should have happened if phpldapadmin
was still honoring my sambaUnixIdPool settings.
A Google search shows that the feature may have been intentionally removed
upstream. The package should have *at least* warned about this on upgrade.
Please fix this. TIA.
--
2. That which causes joy or happiness.
--- End Message ---
--- Begin Message ---
Version: 1.1.0.5-1
Current version in testing/unstable implements uidpool, so this bug report
doesn't apply to it; I don't have time right now to track down when this
feature was cut and when it was added back again, so I'm closing the bug
with the current version (1.1.0.5-1).
Thanks,
--
Fabio Tranchitella http://www.kobold.it
Free Software Developer and Consultant http://www.tranchitella.it
_____________________________________________________________________
1024D/7F961564, fpr 5465 6E69 E559 6466 BF3D 9F01 2BF8 EE2B 7F96 1564
--- End Message ---
