Bug#626820: busybox httpd is crippled: no cgi, no auth-md5, no encode url string
Am 16.05.2011 14:07, schrieb Otavio Salvador: > Is it something going to be put onto Debian itself? If not, it would > be better to it to be done while customizing Debian for the project > specially because it won't be the only change most probably. I do not know whether this will go into Debian someday. I'm currently building this for my own needs. But if it is for interest for inclusion into Debian, I'm happy to support this. -- Schönen Gruß - Regards Hartmut Goebel Dipl.-Informatiker (univ.), CISSP, CSSLP Goebel Consult Spezialist für IT-Sicherheit in komplexen Umgebungen http://www.goebel-consult.de Monatliche Kolumne: http://www.cissp-gefluester.de/ Goebel Consult mit Mitglied bei http://www.7-it.de smime.p7s Description: S/MIME Cryptographic Signature
Bug#626820: busybox httpd is crippled: no cgi, no auth-md5, no encode url string
Am 15.05.2011 22:57, schrieb Otavio Salvador: What is the usage of those features? As Debian being a generic distribution we try to keep busybox features as minimal as possible but supporting general usage needs inside of the distribution itself. Could you elaborate a bit what is your planned usage of it For asking the crypto password from within linuxrc, I need a minimal web server which is able to run cgi scripts. The cgi script will "unlock" the crypted root partition (using cryptsetup luksOpen) and the system can continue booting. Since the initrd should be kept small and busybox is already in initrc (for running the linuxrc script), using the busybox http is obvious. But that for it needs to support cgi and encoding/decoding. -- Schönen Gruß - Regards Hartmut Goebel Dipl.-Informatiker (univ.), CISSP, CSSLP Goebel Consult Spezialist für IT-Sicherheit in komplexen Umgebungen http://www.goebel-consult.de Monatliche Kolumne: http://www.cissp-gefluester.de/ Goebel Consult mit Mitglied bei http://www.7-it.de smime.p7s Description: S/MIME Cryptographic Signature
Bug#626820: busybox httpd is crippled: no cgi, no auth-md5, no encode url string
Package: busybox Version: 1:1.17.1-8 Severity: normal Tags: squeeze patch busybox httpd lacks quite a lot of features. Some may not be necessary for a small-footprint binary, e.g. reverse-proxy and support for sendfile. But the following features may be considered elemantary: - support for CGI - support for MD5 digest uthentication - encoding/decoding strings from/to url Activating these is is quite easy: in debian/config/pkg/deb just set CONFIG_FEATURE_HTTPD_AUTH_MD5=y CONFIG_FEATURE_HTTPD_CGI=y CONFIG_FEATURE_HTTPD_ENCODE_URL_STR=y (see patch). The size increase is negligible: Adding cgi-support increases the /bin/busybox binary by only 4 Kb. -- System Information: Debian Release: 6.0.1 APT prefers stable APT policy: (500, 'stable') Architecture: armel (armv5tel) Kernel: Linux 2.6.31.8 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Versions of packages busybox depends on: ii libc6 2.11.2-10 Embedded GNU C Library: Shared lib busybox recommends no packages. busybox suggests no packages. -- no debconf information *** debian/config/pkg/deb.orig Sun May 15 15:53:15 2011 --- debian/config/pkg/deb Sun May 15 15:52:47 2011 *** *** 723,733 # CONFIG_FEATURE_HTTPD_USE_SENDFILE is not set # CONFIG_FEATURE_HTTPD_SETUID is not set CONFIG_FEATURE_HTTPD_BASIC_AUTH=y ! # CONFIG_FEATURE_HTTPD_AUTH_MD5 is not set ! # CONFIG_FEATURE_HTTPD_CGI is not set # CONFIG_FEATURE_HTTPD_CONFIG_WITH_SCRIPT_INTERPR is not set # CONFIG_FEATURE_HTTPD_SET_REMOTE_PORT_TO_ENV is not set ! # CONFIG_FEATURE_HTTPD_ENCODE_URL_STR is not set # CONFIG_FEATURE_HTTPD_ERROR_PAGES is not set # CONFIG_FEATURE_HTTPD_PROXY is not set CONFIG_IFCONFIG=y --- 723,733 # CONFIG_FEATURE_HTTPD_USE_SENDFILE is not set # CONFIG_FEATURE_HTTPD_SETUID is not set CONFIG_FEATURE_HTTPD_BASIC_AUTH=y ! CONFIG_FEATURE_HTTPD_AUTH_MD5=y ! CONFIG_FEATURE_HTTPD_CGI=y # CONFIG_FEATURE_HTTPD_CONFIG_WITH_SCRIPT_INTERPR is not set # CONFIG_FEATURE_HTTPD_SET_REMOTE_PORT_TO_ENV is not set ! CONFIG_FEATURE_HTTPD_ENCODE_URL_STR=y # CONFIG_FEATURE_HTTPD_ERROR_PAGES is not set # CONFIG_FEATURE_HTTPD_PROXY is not set CONFIG_IFCONFIG=y