Bug#440290: ITP: phamm -- Phamm (PHP LDAP Virtual Hosting Manager) is a front-end written in PHP to manage virtual service's using a LDAP directory backend.

To: Alessandro De Zorzi <lota@nonlontano.it>
Cc: 440290@bugs.debian.org
Subject: Bug#440290: ITP: phamm -- Phamm (PHP LDAP Virtual Hosting Manager) is a front-end written in PHP to manage virtual service's using a LDAP directory backend.
From: Steve Kemp <skx@debian.org>
Date: Fri, 31 Aug 2007 14:00:31 +0100
Message-id: <[🔎] 20070831130031.GA23959@steve.org.uk>
Reply-to: Steve Kemp <skx@debian.org>, 440290@bugs.debian.org
In-reply-to: <[🔎] 46D7FD12.8040309@nonlontano.it>
References: <[🔎] 20070831095854.11460.33452.reportbug@localhost> <[🔎] 20070831111425.GA19814@steve.org.uk> <[🔎] 46D7FD12.8040309@nonlontano.it>

On Fri Aug 31, 2007 at 13:35:46 +0200, Alessandro De Zorzi wrote:

> PHP frontend manage LDAP database only, login use a real LDAP DN
> so ACL permission set in /etc/ldap/phamm.acl set right write/read
> permission on the database so PHP bug is not real danger for database.

  If the logins sessions are stored in a cookie they could be
 stolen and the account compromised.

> This is a on-line demo (unstable version)
> http://demo.phamm.org/phamm05/www-data/main.php
> 
> (Login with manager:rhx)

  Sure.  Now take a look here:

    http://demo.phamm.org/phamm05/www-data/main.php?action=modify_account&mail=test@abakus.net

Steve
-- 
Debian GNU/Linux System Administration
http://www.debian-administration.org/

Reply to:

Follow-Ups:
- Bug#440290: ITP: phamm -- Phamm (PHP LDAP Virtual Hosting Manager) is a front-end written in PHP to manage virtual service's using a LDAP directory backend.
  - From: Alessandro De Zorzi <lota@nonlontano.it>

References:
- Bug#440290: ITP: phamm -- Phamm (PHP LDAP Virtual Hosting Manager) is a front-end written in PHP to manage virtual service's using a LDAP directory backend.
  - From: Alessandro De Zorzi <lota@nonlontano.it>
- Bug#440290: ITP: phamm -- Phamm (PHP LDAP Virtual Hosting Manager) is a front-end written in PHP to manage virtual service's using a LDAP directory backend.
  - From: Steve Kemp <skx@debian.org>
- Bug#440290: ITP: phamm -- Phamm (PHP LDAP Virtual Hosting Manager) is a front-end written in PHP to manage virtual service's using a LDAP directory backend.
  - From: Alessandro De Zorzi <lota@nonlontano.it>

Prev by Date: Bug#440290: ITP: phamm -- Phamm (PHP LDAP Virtual Hosting Manager) is a front-end written in PHP to manage virtual service's using a LDAP directory backend.
Next by Date: Bug#440111: Rockbox utility
Previous by thread: Bug#440290: ITP: phamm -- Phamm (PHP LDAP Virtual Hosting Manager) is a front-end written in PHP to manage virtual service's using a LDAP directory backend.
Next by thread: Bug#440290: ITP: phamm -- Phamm (PHP LDAP Virtual Hosting Manager) is a front-end written in PHP to manage virtual service's using a LDAP directory backend.
Index(es):
- Date
- Thread