[gentoo-commits] gentoo-x86 commit in www-apache/anyterm/files: anyterm-1.1.15-postinst-en.txt anyterm-1.1.15-browser-gentoo.patch digest-anyterm-1.1.15 - gentoo-commits

From:	"Benedikt Boehm (hollow)" <hollow@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] gentoo-x86 commit in www-apache/anyterm/files: anyterm-1.1.15-postinst-en.txt anyterm-1.1.15-browser-gentoo.patch digest-anyterm-1.1.15
Date:	Sat, 08 Sep 2007 16:37:36
Message-Id:	`E1IU3Cm-0004BY-J4@stork.gentoo.org`

1

hollow      07/09/08 16:30:44

2

3

  Added:                anyterm-1.1.15-postinst-en.txt

4

                        anyterm-1.1.15-browser-gentoo.patch

5

                        digest-anyterm-1.1.15

6

  Log:

7

  version bump

8

  (Portage version: 2.1.3.7)

9

10

Revision  Changes    Path

11

1.1                  www-apache/anyterm/files/anyterm-1.1.15-postinst-en.txt

12

13

file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apache/anyterm/files/anyterm-1.1.15-postinst-en.txt?rev=1.1&view=markup

14

plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apache/anyterm/files/anyterm-1.1.15-postinst-en.txt?rev=1.1&content-type=text/plain

15

16

Index: anyterm-1.1.15-postinst-en.txt

17

===================================================================

18

DEFAULT GENTOO INSTALLATION

19

20

The default Gentoo installation is designed to work and be as secure as

21

possible out-of-the box as long as you have USE="ssl pam -opera".

22

23

24

USE FLAGS

25

26

+ssl    forces anyterm to only run over secure (HTTPS) connections.

27

-ssl    disables secure connections, all data will pass over the network in

28

        plain text, including passwords!

29

+pam    enables PAM authentication, so anyone with an account on your computer

30

        can use anyterm without any further configuration.

31

-pam    means that you will have to configure your own authentication

32

        mechanism.

33

+opera  Enables a workaround for a bug in the Opera browser, but you will have

34

        to modify apache's logging behaviour to prevent snooping by local

35

        users.

36

-opera  Disables the Opera bug workaround.

37

38

39

INSTALLATION INSTRUCTIONS

40

41

1. Add the following flags to APACHE2_OPTS in /etc/init.d/apache2:

42

    -D ANYTERM

43

    -D SSL -D SSL_DEFAULT_VHOST  # if USE=ssl

44

    -D AUTH_PAM                  # if USE=pam

45

46

2. If you have USE=vhosts then you need to add the following directives to

47

   each virtual host's configuration file:

48

    <Directory "${MY_INSTALLDIR}">

49

        AllowOverride All

50

    </Directory>

51

52

3. If you have USE=opera then you should disable logging of some requests. In

53

   each apache configuration file add env=!DONTLOG to each CustomLog

54

   directive. For example:

55

56

   USE="ssl -vhosts": edit /etc/apache2/modules.d/41_mod_ssl.default-vhost.conf:

57

58

   CustomLog logs/ssl_request_log \

59

       "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b" \

60

       env=!DONTLOG

61

62

   USE="-ssl -vhosts": edit /etc/apache2/modules.d/00_mod_log_config.conf:

63

       CustomLog logs/access_log common env=!DONTLOG

64

65

4. Restart apache2:

66

   /etc/init.d/apache2 restart

67

68

5. Browse to:

69

   https://${VHOST_HOSTNAME}${VHOST_APPDIR}/${PN}.html  # if USE=ssl

70

   http://${VHOST_HOSTNAME}${VHOST_APPDIR}/${PN}.html   # if USE=-ssl

71

72

73

MORE INFORMATION

74

75

http://anyterm.org/

76

http://anyterm.org/security.html

1.1                  www-apache/anyterm/files/anyterm-1.1.15-browser-gentoo.patch

81

82

file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apache/anyterm/files/anyterm-1.1.15-browser-gentoo.patch?rev=1.1&view=markup

83

plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apache/anyterm/files/anyterm-1.1.15-browser-gentoo.patch?rev=1.1&content-type=text/plain

84

85

Index: anyterm-1.1.15-browser-gentoo.patch

86

===================================================================

87

Index: anyterm-1.1.15/browser/anyterm.js

88

===================================================================

89

--- anyterm-1.1.15.orig/browser/anyterm.js

90

+++ anyterm-1.1.15/browser/anyterm.js

91

@@ -24,16 +24,21 @@ var term;

92

 var open=false;

93

 var session;

94

95

-var method="POST";

96

-//var method="GET";

97

+#USE=opera#//var method="POST";

98

+#USE=opera#var method="GET";

99

+#USE=-opera#var method="POST";

100

+#USE=-opera#//var method="GET";

101

102

 // Random sequence numbers are needed to prevent Opera from caching

103

 // replies

104

105

 var is_opera = navigator.userAgent.toLowerCase().indexOf("opera") != -1;

106

-if (is_opera) {

107

-  method="GET";

108

-}

109

+#USE=opera#if (is_opera) {

110

+#USE=opera#  method="GET";

111

+#USE=opera#}

112

+#USE=-opera#//if (is_opera) {

113

+#USE=-opera#//  method="GET";

114

+#USE=-opera#//}

115

116

 var seqnum_val=Math.round(Math.random()*100000);

117

 function cachebust() {

118

Index: anyterm-1.1.15/browser/.htaccess

119

===================================================================

120

--- anyterm-1.1.15.orig/browser/.htaccess

121

+++ anyterm-1.1.15/browser/.htaccess

122

@@ -6,6 +6,8 @@

123

 # will be ignored if the anyterm module has not been loaded.

124

125

 <IfModule anyterm>

126

+#USE=ssl#<IfModule mod_ssl.c>

127

+#USE=pam#<IfModule mod_auth_pam.c>

128

129

 # Use an anyterm_command directive to specify the command to run

130

 # inside the terminal:

131

@@ -24,6 +26,16 @@

132

 # Example:

133

 # anyterm_command '/path/to/anygetty --remotehost "Anyterm: %h" --autologin=%u'

134

135

+# twp: Use ssh to avoid problems with Gentoo's /bin/login.

136

+anyterm_command '/usr/bin/ssh %u@localhost'

137

+

138

+#USE=ssl#SSLRequireSSL

139

+#USE=ssl#

140

+#USE=pam#AuthPAM_Enabled on

141

+#USE=pam#AuthType Basic

142

+#USE=pam#AuthName "Anyterm"

143

+#USE=pam#Require valid-user

144

+#USE=pam#

145

 <Files anyterm-module>

146

   SetHandler anyterm

147

148

@@ -34,9 +46,12 @@

149

   # CustomLog /path/to/logfile combined env=!DONTLOG

150

   # See the Apache documentation for details.  Note "=!" not "!=" !

151

152

-  # SetEnv DONTLOG

153

+#USE=opera#  SetEnv DONTLOG

154

+#USE=-opera#  # SetEnv DONTLOG

155

 </Files>

156

157

+#USE=pam#</IfModule>

158

+#USE=ssl#</IfModule>

159

 # Additional Security Issues

160

161

 # If you're just testing Anyterm on a machine that's not connected to

1.1                  www-apache/anyterm/files/digest-anyterm-1.1.15

166

167

file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apache/anyterm/files/digest-anyterm-1.1.15?rev=1.1&view=markup

168

plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apache/anyterm/files/digest-anyterm-1.1.15?rev=1.1&content-type=text/plain

169

170

Index: digest-anyterm-1.1.15

171

===================================================================

172

MD5 12a3620e892cfbff89663a568b826911 anyterm-1.1.15.tbz2 192092

173

RMD160 b4ee6524a6fd4002b1e2c111382aeff392b3a554 anyterm-1.1.15.tbz2 192092

174

SHA256 f5c3fa8077f510ec0c17c8de107179c77bdf7f1b8328c124cb52846e9ee283e5 anyterm-1.1.15.tbz2 192092

--

179

gentoo-commits@g.o mailing list

1	hollow 07/09/08 16:30:44
2
3	Added: anyterm-1.1.15-postinst-en.txt
4	anyterm-1.1.15-browser-gentoo.patch
5	digest-anyterm-1.1.15
6	Log:
7	version bump
8	(Portage version: 2.1.3.7)
9
10	Revision Changes Path
11	1.1 www-apache/anyterm/files/anyterm-1.1.15-postinst-en.txt
12
13	file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apache/anyterm/files/anyterm-1.1.15-postinst-en.txt?rev=1.1&view=markup
14	plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apache/anyterm/files/anyterm-1.1.15-postinst-en.txt?rev=1.1&content-type=text/plain
15
16	Index: anyterm-1.1.15-postinst-en.txt
17	===================================================================
18	DEFAULT GENTOO INSTALLATION
19
20	The default Gentoo installation is designed to work and be as secure as
21	possible out-of-the box as long as you have USE="ssl pam -opera".
22
23
24	USE FLAGS
25
26	+ssl forces anyterm to only run over secure (HTTPS) connections.
27	-ssl disables secure connections, all data will pass over the network in
28	plain text, including passwords!
29	+pam enables PAM authentication, so anyone with an account on your computer
30	can use anyterm without any further configuration.
31	-pam means that you will have to configure your own authentication
32	mechanism.
33	+opera Enables a workaround for a bug in the Opera browser, but you will have
34	to modify apache's logging behaviour to prevent snooping by local
35	users.
36	-opera Disables the Opera bug workaround.
37
38
39	INSTALLATION INSTRUCTIONS
40
41	1. Add the following flags to APACHE2_OPTS in /etc/init.d/apache2:
42	-D ANYTERM
43	-D SSL -D SSL_DEFAULT_VHOST # if USE=ssl
44	-D AUTH_PAM # if USE=pam
45
46	2. If you have USE=vhosts then you need to add the following directives to
47	each virtual host's configuration file:
48	<Directory "${MY_INSTALLDIR}">
49	AllowOverride All
50	</Directory>
51
52	3. If you have USE=opera then you should disable logging of some requests. In
53	each apache configuration file add env=!DONTLOG to each CustomLog
54	directive. For example:
55
56	USE="ssl -vhosts": edit /etc/apache2/modules.d/41_mod_ssl.default-vhost.conf:
57
58	CustomLog logs/ssl_request_log \
59	"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b" \
60	env=!DONTLOG
61
62	USE="-ssl -vhosts": edit /etc/apache2/modules.d/00_mod_log_config.conf:
63	CustomLog logs/access_log common env=!DONTLOG
64
65	4. Restart apache2:
66	/etc/init.d/apache2 restart
67
68	5. Browse to:
69	https://${VHOST_HOSTNAME}${VHOST_APPDIR}/${PN}.html # if USE=ssl
70	http://${VHOST_HOSTNAME}${VHOST_APPDIR}/${PN}.html # if USE=-ssl
71
72
73	MORE INFORMATION
74
75	http://anyterm.org/
76	http://anyterm.org/security.html
77
78
79
80	1.1 www-apache/anyterm/files/anyterm-1.1.15-browser-gentoo.patch
81
82	file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apache/anyterm/files/anyterm-1.1.15-browser-gentoo.patch?rev=1.1&view=markup
83	plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apache/anyterm/files/anyterm-1.1.15-browser-gentoo.patch?rev=1.1&content-type=text/plain
84
85	Index: anyterm-1.1.15-browser-gentoo.patch
86	===================================================================
87	Index: anyterm-1.1.15/browser/anyterm.js
88	===================================================================
89	--- anyterm-1.1.15.orig/browser/anyterm.js
90	+++ anyterm-1.1.15/browser/anyterm.js
91	@@ -24,16 +24,21 @@ var term;
92	var open=false;
93	var session;
94
95	-var method="POST";
96	-//var method="GET";
97	+#USE=opera#//var method="POST";
98	+#USE=opera#var method="GET";
99	+#USE=-opera#var method="POST";
100	+#USE=-opera#//var method="GET";
101
102	// Random sequence numbers are needed to prevent Opera from caching
103	// replies
104
105	var is_opera = navigator.userAgent.toLowerCase().indexOf("opera") != -1;
106	-if (is_opera) {
107	- method="GET";
108	-}
109	+#USE=opera#if (is_opera) {
110	+#USE=opera# method="GET";
111	+#USE=opera#}
112	+#USE=-opera#//if (is_opera) {
113	+#USE=-opera#// method="GET";
114	+#USE=-opera#//}
115
116	var seqnum_val=Math.round(Math.random()*100000);
117	function cachebust() {
118	Index: anyterm-1.1.15/browser/.htaccess
119	===================================================================
120	--- anyterm-1.1.15.orig/browser/.htaccess
121	+++ anyterm-1.1.15/browser/.htaccess
122	@@ -6,6 +6,8 @@
123	# will be ignored if the anyterm module has not been loaded.
124
125	<IfModule anyterm>
126	+#USE=ssl#<IfModule mod_ssl.c>
127	+#USE=pam#<IfModule mod_auth_pam.c>
128
129	# Use an anyterm_command directive to specify the command to run
130	# inside the terminal:
131	@@ -24,6 +26,16 @@
132	# Example:
133	# anyterm_command '/path/to/anygetty --remotehost "Anyterm: %h" --autologin=%u'
134
135	+# twp: Use ssh to avoid problems with Gentoo's /bin/login.
136	+anyterm_command '/usr/bin/ssh %u@localhost'
137	+
138	+#USE=ssl#SSLRequireSSL
139	+#USE=ssl#
140	+#USE=pam#AuthPAM_Enabled on
141	+#USE=pam#AuthType Basic
142	+#USE=pam#AuthName "Anyterm"
143	+#USE=pam#Require valid-user
144	+#USE=pam#
145	<Files anyterm-module>
146	SetHandler anyterm
147
148	@@ -34,9 +46,12 @@
149	# CustomLog /path/to/logfile combined env=!DONTLOG
150	# See the Apache documentation for details. Note "=!" not "!=" !
151
152	- # SetEnv DONTLOG
153	+#USE=opera# SetEnv DONTLOG
154	+#USE=-opera# # SetEnv DONTLOG
155	</Files>
156
157	+#USE=pam#</IfModule>
158	+#USE=ssl#</IfModule>
159	# Additional Security Issues
160
161	# If you're just testing Anyterm on a machine that's not connected to
162
163
164
165	1.1 www-apache/anyterm/files/digest-anyterm-1.1.15
166
167	file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apache/anyterm/files/digest-anyterm-1.1.15?rev=1.1&view=markup
168	plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apache/anyterm/files/digest-anyterm-1.1.15?rev=1.1&content-type=text/plain
169
170	Index: digest-anyterm-1.1.15
171	===================================================================
172	MD5 12a3620e892cfbff89663a568b826911 anyterm-1.1.15.tbz2 192092
173	RMD160 b4ee6524a6fd4002b1e2c111382aeff392b3a554 anyterm-1.1.15.tbz2 192092
174	SHA256 f5c3fa8077f510ec0c17c8de107179c77bdf7f1b8328c124cb52846e9ee283e5 anyterm-1.1.15.tbz2 192092
175
176
177
178	--
179	gentoo-commits@g.o mailing list

Gentoo Archives: gentoo-commits