1. 05 Aug, 2019 4 commits
  2. 04 Aug, 2019 4 commits
  3. 03 Aug, 2019 1 commit
  4. 02 Aug, 2019 5 commits
  5. 01 Aug, 2019 2 commits
  6. 31 Jul, 2019 3 commits
  7. 30 Jul, 2019 1 commit
  8. 29 Jul, 2019 3 commits
    • Hephaestus Builder's avatar
    • Hephaestus Builder's avatar
      NEW: add ImportDomain to bin path (migrations) · de3d3c78
      Hephaestus Builder authored
      FIX: dns,enabled=1 fails to provision addon domain DNS (Validators\Dns)
      FIX: exceptions throw within mute() or silence() lock state (Error Reporter)
      FIX: get_records_raw() consistency. get_zone_data(), a dependent method, returns null on failure. get_records_raw() documentation states return type false on failure. Previously behavior converted to polysemic empty array that could be either an empty zone or failed transfer. (dns)
      CHG: conditionally disable/terminate services (Validators\Mail)
      CHG: cleanup PAM handler instantiation (Provisioning\Pam)
      CHG: check if group exists prior to creation (GroupCreationTrait)
      CHG: record_exists()- cache unreachable resolvers to avoid repeated timeouts (dns)
      de3d3c78
    • Hephaestus Builder's avatar
      CHG: skip category display when empty (Template\Engine) · 326727fa
      Hephaestus Builder authored
      CHG: add()- squelch email disablement notice if email not enabled for account (user)
      CHG: always use null provider to test (apnscp/assert-account-works)
      REM: email from options when provider is null (Manage Users)
      326727fa
  9. 28 Jul, 2019 1 commit
    • Hephaestus Builder's avatar
      NEW: cPanel import facility (ImportSite) · e0ee0de7
      Hephaestus Builder authored
      FIX: import() TTL data type, return value (dns)
      CHG: gracefully handle exceptions generated within domain wrappers (Opcenter)
      CHG: rename createAuthContext() to getAuthContext() (Opcenter\SiteConfiguration)
      CHG: add()- downgrade service enablement to info (user)
      e0ee0de7
  10. 27 Jul, 2019 1 commit
    • Hephaestus Builder's avatar
      NEW: getspnam() syscall emulation (Opcenter\Auth) · 5136d917
      Hephaestus Builder authored
      FIX: get_public_ip6() pulls IPv4 (dns)
      CHG: resolve passwd at run-time (Opcenter\Role)
      CHG: domains attached via aliases,aliases may be attached to an account via aliases:add-domain bypassing conventional checks (aliases)
      REM: cp, chown sudo support
      REM: unnecessary service restarts that break mail service toggle (software/haproxy, mail/configure-postfix)
      5136d917
  11. 23 Jul, 2019 1 commit
    • Hephaestus Builder's avatar
      NEW: open callback. Occurs prior to proc_open() call. (Util_Process) · 515bea1c
      Hephaestus Builder authored
      NEW: suid, sgid options. Set group/user ID if process privileged (Util_Process)
      NEW: contextability support (Util_Process::Sudo)
      NEW: fuser support (Opcenter\Filesystem)
      NEW: AP-03 unit test (tests)
      FIX: symlink attack in database export (Transfer)
      FIX: AP-06 security fix. backup_dbs.php does not evaluate the state of file prior to processing backup. An attacker can use a symlink attack to gain ownership of sensitive files (backup_dbs.php)
      FIX: CSR generation, form check bound multiple times (SSL Certificates)
      FIX: shadow_buildup()- symlink bypass vulnerability. Unchecked referent allows user buildup of arbitrary directories within system-owned directory (file)
      FIX: find_quota_files()- symlink attack (user)
      FIX: AP-04, AP-05 security fixes. stat()- use referent permissions in stat calculations. Closes symlink attack loophole that always treated symlink itself as writeable requiring additional calculations to validate referent access (file)
      FIX: touch()- symlink directories ignored in permission calculation (file)
      FIX: copy()- symlink permission bypass. Parent stat must always be directory, ignore filetype in favor of can_* attributes (file)
      FIX: bypass deletion hooks if Majordomo disabled (majordomo)
      FIX: AP-04, AP-05 security fixes. stat()- use referent permissions in stat calculations. Closes symlink attack loophole that always treated symlink itself as writeable requiring additional calculations to validate referent access (file)
      FIX: touch()- symlink directories ignored in permission calculation (file)
      FIX: copy()- symlink permission bypass. Parent stat must always be directory, ignore filetype in favor of can_* attributes (file)
      FIX: import()- symlink redirection attack (mysql, pgsql)
      FIX: AP-03, chown/chmod on symlink ignores referent checks on v5+ platforms with optimized shadow assertion enabled. Add extra check if target file is symlink, falling back to non-OSA checks. (file)
      FIX: unmake_path()- disable cache usage. make_path() stores the cached result, symlinks resolved, of the specified path. Calling unmake_path() on a symlink file returns the target path discarding symlink state. Performance hit is minimal as algorithm simply strips leading fs path (file)
      FIX: restore_mailboxes()- permit underscore, dash in name (email)
      CHG: move _setArgs() callback usage to synthesizeCommand(), occurs after command is parsed. Prevents accidental escaping of poorly formatted arguments in which empty arguments are skipped in parameter list (Util_Process)
      CHG: rename method name, polly -> polyfill (afi)
      CHG: upgrade errors to exceptions (Dav)
      CHG: use null return type if domain not found (Auth::Redirect)
      CHG: export()- sgid/suid routines (mysql, pgsql)
      CHG: run()- support contextability (pman)
      CHG: domain_hosted()- add lookup check from cp-proxy (dns)
      515bea1c
  12. 17 Jul, 2019 3 commits
  13. 16 Jul, 2019 2 commits
  14. 15 Jul, 2019 1 commit
  15. 13 Jul, 2019 2 commits
  16. 12 Jul, 2019 4 commits
  17. 11 Jul, 2019 2 commits