--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: semanticscuttle: Hardcodes minimal user name length to 5
- From: Axel Beckert <abe@debian.org>
- Date: Sat, 12 Jan 2013 00:32:19 +0100
- Message-id: <87pq1bcn3w.fsf@sym2.noone.org>
Package: semanticscuttle
Version: 0.98.4+dfsg-1
Severity: normal
>From /usr/share/php/SemanticScuttle/Service/User.php:
995 function isValidUsername($username) {
996 if (strlen($username) < 4) {
997 return false;
I don't see any reason for this arbitrary limit.
It should be up to the administrator setting up the installation to
decide about such a limit.
-- System Information:
Debian Release: 6.0.6
APT prefers stable
APT policy: (990, 'stable'), (500, 'stable-updates'), (101, 'testing')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.32-5-xen-amd64 (SMP w/6 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages semanticscuttle depends on:
ii apache2 2.2.16-6+squeeze10 Apache HTTP Server metapackage
ii apache2-mpm-prefork 2.2.16-6+squeeze10 Apache HTTP Server - traditional n
ii dbconfig-common 1.8.46+squeeze.0 common framework for packaging dat
ii debconf [debconf-2.0 1.5.36.1 Debian configuration management sy
ii libjs-jquery-ui 1.8.ooops.21+dfsg-2 JavaScript UI library for dynamic
ii mysql-client 5.1.66-0+squeeze1 MySQL database client (metapackage
ii mysql-client-5.1 [my 5.1.66-0+squeeze1 MySQL database client binaries
ii php-gettext 1.0.10-1 read gettext MO files directly, wi
ii php5 5.3.3-7+squeeze14 server-side, HTML-embedded scripti
ii php5-mysql 5.3.3-7+squeeze14 MySQL module for php5
ii wwwconfig-common 0.2.1 Debian web auto configuration
semanticscuttle recommends no packages.
Versions of packages semanticscuttle suggests:
ii mysql-server 5.1.66-0+squeeze1 MySQL database server (metapackage
ii mysql-server-5.1 [mysq 5.1.66-0+squeeze1 MySQL database server binaries and
-- Configuration Files:
/etc/semanticscuttle/apache.conf changed:
Alias /semanticscuttle/js/jquery-ui-1.8.11/themes/ /usr/share/javascript/jquery-ui/themes/
Alias /semanticscuttle /usr/share/semanticscuttle/www
<Directory /usr/share/semanticscuttle/www/>
Options Indexes FollowSymlinks
AllowOverride FileInfo
Order allow,deny
Allow from all
DirectoryIndex index.php
<IfModule mod_rewrite.c>
Options +FollowSymlinks
RewriteEngine On
RewriteCond %{REQUEST_FILENAME}.php -f
RewriteRule ^([^/.]+)/?(.*)$ /$1.php/$2 [QSA,L]
RewriteRule ^api/([a-z]+)/([a-z]+) /api/$1_$2.php
</IfModule>
<IfModule mod_expires.c>
ExpiresActive On
ExpiresByType image/ico "access plus 15 days"
ExpiresByType image/png "access plus 15 days"
ExpiresByType image/gif "access plus 15 days"
ExpiresByType text/js "access plus 15 days"
ExpiresByType text/css "access plus 15 days"
</IfModule>
<IfModule mod_deflate.c>
SetOutputFilter DEFLATE
</IfModule>
</Directory>
/etc/semanticscuttle/config.php changed:
<?php
/**
* Configuration for SemanticScuttle.
*
* Copy this file to config.inc.php and adjust it.
*
* See config.default.inc.php for more options.
*/
/**
* The name of this site.
*
* @var string
*/
$sitename = "Axel's own Del.icio.us";
/**
* The welcome message on the homepage.
*
* @var string
*/
$welcomeMessage = "I don't need no stinking Delicious.com anymore.";
/**
* Translation from locales/ folder.
*
* Examples: de_DE, en_GB, fr_FR
*
* @var string
*/
$locale = 'de_DE';
/**
* Use clean urls without .php filenames.
* Requires mod_rewrite (for Apache) to be active.
*
* @var boolean
*/
$cleanurls = false;
/**
* Show debug messages.
* This setting is recommended when setting up SemanticScuttle,
* and when hacking on it.
*
* @var boolean
*/
$debugMode = true;
/***************************************************
* Database configuration in dbconfig-common
*/
require_once("/etc/semanticscuttle/database.php");
/***************************************************
* Users
*/
/**
* Contact address for the site administrator.
* Used as the FROM address in password retrieval e-mails.
*
* @var string
*/
$adminemail = 'abe+semanticscuttle@noone.org';
/**
* Array of user names who have admin rights
*
* Example:
* <code>
* $admin_users = array('adminnickname', 'user1nick', 'user2nick');
* </code>
*
* @var array
*/
$admin_users = array();
/***************************************************
* Bookmarks
*/
/**
* Default privacy setting for bookmarks.
* 0 - Public
* 1 - Shared with Watchlist
* 2 - Private
*
* @var integer
*/
$defaults['privacy'] = 0;
/**
* You have completed the basic configuration!
* More options can be found in config.default.php.
*/
$root = "https://noone.org/semanticscuttle/";
?>
-- debconf information:
* semanticscuttle/mysql/method: unix socket
semanticscuttle/remote/port:
* semanticscuttle/db/dbname: semanticscuttle
semanticscuttle/upgrade-backup: true
* semanticscuttle/webserver: false
semanticscuttle/install-error: abort
semanticscuttle/internal/skip-preseed: true
semanticscuttle/passwords-do-not-match:
semanticscuttle/remote/newhost:
semanticscuttle/internal/reconfiguring: false
* semanticscuttle/dbconfig-install: true
semanticscuttle/dbconfig-remove:
semanticscuttle/dbconfig-reinstall: false
semanticscuttle/remote/host:
semanticscuttle/dbconfig-upgrade: true
semanticscuttle/database-type: mysql
* semanticscuttle/db/app-user: semanticscuttle
semanticscuttle/remove-error: abort
semanticscuttle/upgrade-error: abort
* semanticscuttle/mysql/admin-user: root
semanticscuttle/missing-db-package-error: abort
semanticscuttle/purge: false
--- End Message ---