Should a user...
- use su(1) or sudo to gain root privileges in such a way that his own
environment is maintained, and
- should that user have the variable USERNAME defined in his environment to
point to his own username (not entirely unlikely), and
- should the user install the Mailman port and immediately deinstall it,
... his own userid will be deleted by $PKGDEINSTALL.
The short-term fix implemented here is to munge the names of the variables
used by the port's Makefile.
- Correctly list image directory in $PLIST, even if the user changes it from
the default.
- Add a WITH_APACHE2 knob and document it.
- Bump PORTREVISION
Submitted by: Volker Stolz <vs@lambda.foldr.org> (security issue)
older, incompatable version of apr is installed into ${PREFIX}. I've sent
a mail about the problem to dev@apr.apache.org, so hopefully this will be
worked out before the next time I update this package, and I'll be able to
get rid of this hack.
Submitted by: Garrett Rooney <rooneg@electricjellyfish.net> (MAINTAINER)
were, so the change should not have been committed.
This port is now broken again. Bumped PORTREVISION and
marked it as BROKEN.
Pointed out by: Kris Kennaway <kris@obsecurity.org>
2. Port printed message to "pw userdel www" if port removed permanently.
However master.passwd 1.25.2.5 has user www by default, so this is no
longer correct advice. Removed pkg-deinstall to correct this.
PR: 37849 and 36907
Approved by: MAINTAINER: Hye-Shik Chang <perky@fallin.lv>
Remove the FTP listing for eu.dl.sourceforge.net, since it has not
allowing FTP connections at least since 22 hours ago. I left the
HTTP listing for the site.
and c't Browsercheck, I am no longer able to activate bug #141061
("XMLHttpRequest allows reading of local files").
In message <52D05AEFB0D95C4BAD179A054A54CDEB1BD37A@mailsrv1.jubii.dk>
on Bugtraq, Thor Larholm described a buffer overflow in Chatzilla.
I confirmed the bug with this version of Mozilla/Chatzilla. Therefore
the chatzilla component is now omitted from batch builds and defaults
to being omitted from interactive ones too (XFree86 did crash
once--perhaps taken down by Mozilla--when I was viewing Thor's
demonstration page for the bug, but a second visit was uneventful).
I added a warning in capitals for interactive users. I was unable
to reproduce the other bug reported by Thor in the same message.