i386/166506: prewikka bug using [auth cgi]
Efren Yevale
syavne at gmail.com
Thu Mar 29 23:50:09 UTC 2012
>Number: 166506
>Category: i386
>Synopsis: prewikka bug using [auth cgi]
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-i386
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Thu Mar 29 23:50:08 UTC 2012
>Closed-Date:
>Last-Modified:
>Originator: Efren Yevale
>Release: 9.0
>Organization:
Personal
>Environment:
FreeBSD dtimonitor 9.0-RELEASE FreeBSD 9.0-RELEASE #0: Tue Jan 3 07:15:25 UTC 2012 root at obrian.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC i386
>Description:
There is an exception with CGI Authentication and it is documented in the following link:
http://permalink.gmane.org/gmane.comp.security.ids.prelude.cvs/8883
>How-To-Repeat:
Just install prewikka:
cd /usr/ports/www/py-prewikka
make install clean
And edit the configuration file to rely on webserver for user authentication removing the comment from the following line:
# [auth cgi]
>Fix:
The patch is in the following link, it works:
http://permalink.gmane.org/gmane.comp.security.ids.prelude.cvs/8883
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-i386
mailing list