Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Configuration of Webfilter produces invalid config file #15

Open
bmjakobsen opened this issue Mar 4, 2022 · 7 comments
Open

Configuration of Webfilter produces invalid config file #15

bmjakobsen opened this issue Mar 4, 2022 · 7 comments

Comments

@bmjakobsen
Copy link

I was testing the firewall, and configuring the Webfilter produced an invalid config file.

These lines where in the file /etc/e2guardian/lists/authplugins/ipgroups.

"utmfw = filter1
= filter2
bjt = filter5
all = filter1
bj = filter2"

I didnt edit the file manually, so i think this was produced by the interface.
@sonertari
Copy link
Owner

Hi, yes, you are right, it's a bug on the E2g Groups>General config page. The backend of the page is supposed to reject blank user names being added to groups, but it does accept them instead.

Apparently, you have clicked the Add button for the filter group 2 while the edit box for it was empty. I can replicate the issue here.

The following patch fixes the issue you have reported:

--- /var/www/htdocs/utmfw/Model/validate.php	Fri Mar  4 22:37:42 2022
+++ /var/www/htdocs/utmfw/Model/validate.php.orig	Fri Mar  4 22:37:38 2022
@@ -23,7 +23,7 @@
  */
 
 define('RE_BOOL', '^[01]$');
-define('RE_NAME', '^[\w_.-]{1,50}$');
+define('RE_NAME', '^[\w_.-]{0,50}$');
 define('RE_NUM', '^\d{1,20}$');
 define('RE_SHA1', '^[a-f\d]{40}$');
 define('RE_DGSUBCAT', '^[\w/]{1,50}$');

But I am not sure if it breaks the other parts of the code (the RE_NAME definition is used elsewhere too). I should check this patch carefully before committing it.

Thanks for reporting.

@sonertari
Copy link
Owner

The correct patch is the reverse:

--- /var/www/htdocs/utmfw/Model/validate.php.orig	Fri Mar  4 22:37:38 2022
+++ /var/www/htdocs/utmfw/Model/validate.php	Fri Mar  4 22:37:42 2022
@@ -23,7 +23,7 @@
  */
 
 define('RE_BOOL', '^[01]$');
-define('RE_NAME', '^[\w_.-]{0,50}$');
+define('RE_NAME', '^[\w_.-]{1,50}$');
 define('RE_NUM', '^\d{1,20}$');
 define('RE_SHA1', '^[a-f\d]{40}$');
 define('RE_DGSUBCAT', '^[\w/]{1,50}$');

@cypa
Copy link

cypa commented Feb 14, 2023

excuse me, why have you chosen php for this?
AFAIK it's not reliable enough

@sonertari
Copy link
Owner

No it's human developers who are not reliable (and in this case that's me myself), not PHP.

@cypa
Copy link

cypa commented Feb 15, 2023

yah, it's a popular argument, but is it really has reliable basis?
any theory behind it?

@cypa
Copy link

cypa commented Feb 15, 2023

as I understand dhall-lang developers have opposite opinion

@cypa
Copy link

cypa commented Feb 15, 2023

anyway, thank you for your work

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@cypa @sonertari @bmjakobsen