From Sean.Cole at sunywcc.edu Mon Aug 3 14:00:33 2020 From: Sean.Cole at sunywcc.edu (Cole, Sean) Date: Mon, 3 Aug 2020 13:00:33 +0000 Subject: [ZendTo] File Extension In-Reply-To: <1590175515919.90105@sunywcc.edu> References: <1590175515919.90105@sunywcc.edu> Message-ID: We want to limit the type of files that can be uploaded via ZendTo. Is it possible to restrict/limit file extensions with ZendTo? Thanks, Sean Cole -------------- next part -------------- An HTML attachment was scrubbed... URL: From Jules at Zend.To Mon Aug 3 14:17:23 2020 From: Jules at Zend.To (Jules) Date: Mon, 3 Aug 2020 14:17:23 +0100 Subject: [ZendTo] File Extension In-Reply-To: References: <1590175515919.90105@sunywcc.edu> Message-ID: <76347574-ff82-73e1-328c-3eefcd86613c@Zend.To> Sean, No, I'm afraid not. Most of the point of ZendTo was so that you could send files of all sorts, that you couldn't by email. And defeating a "file extension" filter is trivial to put it mildly. Most users can rename a file and stick ".jpg" on the end of the name, and add a note that tells the recipient to remove it again. They are truly pointless. Sorry, Jules. On 03/08/2020 14:00, Cole, Sean via ZendTo wrote: > We want to limit the type of files that can be uploaded via ZendTo. Is > it possible to restrict/limit file extensions with ZendTo? > > Thanks, > Sean Cole > > > > _______________________________________________ > ZendTo mailing list > ZendTo at zend.to > http://jul.es/mailman/listinfo/zendto Jules -- Julian Field MEng CEng CITP MBCS MIEEE MACM 'We face neither East nor West: we face forward.' - Kwame Nkrumah www.Zend.To Twitter: @JulesFM -------------- next part -------------- An HTML attachment was scrubbed... URL: From Jules at Zend.To Thu Aug 13 13:24:14 2020 From: Jules at Zend.To (Jules) Date: Thu, 13 Aug 2020 13:24:14 +0100 Subject: [ZendTo] New beta 6.04-2 and I'm in Edinburgh next week Message-ID: <9be2d99c-be3e-e95e-01c3-185fde85693c@Zend.To> Hi folks, I've just released a new beta 6.04-2 as it's been a while since the last one, and there are some logging improvements and fixes that some of you have been asking for. It's a fairly minor set of changes, but I would really like a few AD sites to check the logging is better, and the detail of logged information when a user creates a new drop-off. If you set your php.ini 'browscap' setting to '/opt/zendto/lib/browscap.ini' then you should even get an intelligible interpretation of the "USER_AGENT". More details and download instructions from ??? zend.to/beta as usual. I'm off to Edinburgh next week. I need a week out of Southampton. Going with a friend from work, and we're going north on the Caledonian Sleeper, then staying at the Balmoral for the week. So don't be at all surprised if I don't answer email while I'm away. If any of you out there happen to be in Edinburgh next week, do let me know. Especially if you know a particularly nice bar or restaurant that the tourists don't usually find! It's always good to put a face to a name. :-) Cheers, Jules -- Julian Field MEng CEng CITP MBCS MIEEE MACM The current UK shipping forecast: Rockall, Malin, Southeast Hebrides: Northerly or northeasterly 4 to 6, becoming variable 2 or 3 in north Rockall. Slight or moderate. Showers. Good, occasionally moderate. www.Zend.To Twitter: @JulesFM -------------- next part -------------- An HTML attachment was scrubbed... URL: From Jake.Sallee at umhb.edu Thu Aug 13 19:39:45 2020 From: Jake.Sallee at umhb.edu (Sallee, Jake) Date: Thu, 13 Aug 2020 18:39:45 +0000 Subject: [ZendTo] New beta 6.04-2 and I'm in Edinburgh next week In-Reply-To: References: <9be2d99c-be3e-e95e-01c3-185fde85693c@Zend.To>, Message-ID: Jules: Have some water of life (scotch) while in Edinburgh and I'll get the first round. I dropped you a fiver on paypal. Jake Sallee Godfather of Bandwidth System Engineer and Security Specialist University of Mary Hardin-Baylor WWW.UMHB.EDU 900 College St. Belton, Texas 76513 Fone: 254-295-4658 Phax: 254-295-4221 ________________________________________ From: ZendTo on behalf of Jules via ZendTo Sent: Thursday, August 13, 2020 7:24 AM To: ZendTo Users Cc: Jules Subject: [ZendTo] New beta 6.04-2 and I'm in Edinburgh next week EXTERNAL Exercise Caution Hi folks, I've just released a new beta 6.04-2 as it's been a while since the last one, and there are some logging improvements and fixes that some of you have been asking for. It's a fairly minor set of changes, but I would really like a few AD sites to check the logging is better, and the detail of logged information when a user creates a new drop-off. If you set your php.ini 'browscap' setting to '/opt/zendto/lib/browscap.ini' then you should even get an intelligible interpretation of the "USER_AGENT". More details and download instructions from zend.to/beta as usual. I'm off to Edinburgh next week. I need a week out of Southampton. Going with a friend from work, and we're going north on the Caledonian Sleeper, then staying at the Balmoral for the week. So don't be at all surprised if I don't answer email while I'm away. If any of you out there happen to be in Edinburgh next week, do let me know. Especially if you know a particularly nice bar or restaurant that the tourists don't usually find! It's always good to put a face to a name. :-) Cheers, Jules -- Julian Field MEng CEng CITP MBCS MIEEE MACM The current UK shipping forecast: Rockall, Malin, Southeast Hebrides: Northerly or northeasterly 4 to 6, becoming variable 2 or 3 in north Rockall. Slight or moderate. Showers. Good, occasionally moderate. www.Zend.To Twitter: @JulesFM From Jules at Zend.To Thu Aug 13 20:19:45 2020 From: Jules at Zend.To (Jules) Date: Thu, 13 Aug 2020 20:19:45 +0100 Subject: [ZendTo] New beta 6.04-2 and I'm in Edinburgh next week In-Reply-To: References: <9be2d99c-be3e-e95e-01c3-185fde85693c@Zend.To> Message-ID: <4492b4a9-fdea-8acb-2752-f94392405dc0@Zend.To> Jake, Thank you very much, I was wondering who is was! Much appreciated, as ever. Cheers, Jules. On 13/08/2020 19:39, Sallee, Jake via ZendTo wrote: > Jules: > > Have some water of life (scotch) while in Edinburgh and I'll get the first round. I dropped you a fiver on paypal. > > > Jake Sallee > Godfather of Bandwidth > System Engineer and Security Specialist > University of Mary Hardin-Baylor > WWW.UMHB.EDU > > 900 College St. > Belton, Texas > 76513 > > Fone: 254-295-4658 > Phax: 254-295-4221 > > ________________________________________ > From: ZendTo on behalf of Jules via ZendTo > Sent: Thursday, August 13, 2020 7:24 AM > To: ZendTo Users > Cc: Jules > Subject: [ZendTo] New beta 6.04-2 and I'm in Edinburgh next week > > EXTERNAL Exercise Caution > Hi folks, > > I've just released a new beta 6.04-2 as it's been a while since the last one, and there are some logging improvements and fixes that some of you have been asking for. > > It's a fairly minor set of changes, but I would really like a few AD sites to check the logging is better, and the detail of logged information when a user creates a new drop-off. If you set your php.ini 'browscap' setting to '/opt/zendto/lib/browscap.ini' then you should even get an intelligible interpretation of the "USER_AGENT". > > More details and download instructions from > zend.to/beta > as usual. > > I'm off to Edinburgh next week. I need a week out of Southampton. Going with a friend from work, and we're going north on the Caledonian Sleeper, then staying at the Balmoral for the week. So don't be at all surprised if I don't answer email while I'm away. > > If any of you out there happen to be in Edinburgh next week, do let me know. Especially if you know a particularly nice bar or restaurant that the tourists don't usually find! It's always good to put a face to a name. :-) > > Cheers, > > Jules > > -- > Julian Field MEng CEng CITP MBCS MIEEE MACM > > The current UK shipping forecast: > Rockall, Malin, Southeast Hebrides: Northerly or northeasterly 4 to 6, > becoming variable 2 or 3 in north Rockall. Slight or moderate. Showers. Good, > occasionally moderate. > > www.Zend.To > Twitter: @JulesFM > > > > _______________________________________________ > ZendTo mailing list > ZendTo at zend.to > http://jul.es/mailman/listinfo/zendto Jules -- Julian Field MEng CEng CITP MBCS MIEEE MACM 'Ensanguining the skies How heavily it dies Into the west away; Past touch and sight and sound Not further to be found, How hopeless under ground Falls the remorseful day.' - A.E.Houseman www.Zend.To Twitter: @JulesFM -------------- next part -------------- An HTML attachment was scrubbed... URL: From manty at manty.net Fri Aug 14 12:41:58 2020 From: manty at manty.net (Santiago Garcia Mantinan) Date: Fri, 14 Aug 2020 13:41:58 +0200 Subject: [ZendTo] Updating translations for the last beta and couple of bugs References: Message-ID: Hi! I've been away for some time, luckily you've been keeping up the good work. Thanks! I'm sending updated translations for spanish and galician. Also... I'm pretty sure that most of this are probably known and maybe fixed, but just in case... When the .deb package tries to add languages it says for a Debian 10... /opt/zendto/bin/addlanguage: line 107: [: Release: 10: integer expression expected There is a problem that blocks the Drop-off button: PHP Fatal error: Uncaught --> Smarty: Unable to load template 'file:new_dropoff.js.tpl' <-- \n thrown in /opt/zendto/lib/smarty/sysplugins/smarty_template_compiled.php on line 96 This is a problem with the include line of the new_dropoff.js, I corrected it so that it reads: and works ok. Regards. -- Manty/BestiaTester -> http://manty.net -------------- next part -------------- A non-text attachment was scrubbed... Name: gl_ES.po.gz Type: application/gzip Size: 21358 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: es_ES.po.gz Type: application/gzip Size: 21470 bytes Desc: not available URL: From manty at manty.net Tue Aug 18 11:14:21 2020 From: manty at manty.net (Santiago Garcia Mantinan) Date: Tue, 18 Aug 2020 12:14:21 +0200 Subject: [ZendTo] Patch for recaptcha and tne new_dropoff.js problem (for the beta) References: Message-ID: Hi! While testing the Beta version 6.04-2 I found out some problems, one I have commented already, was with the new_dropoff.js script as a template and the other was with recaptcha not working. I'm attaching a patch to fix this problems. Regards. -- Manty/BestiaTester -> http://manty.net -------------- next part -------------- A non-text attachment was scrubbed... Name: zendto.diff Type: text/x-patch Size: 2336 bytes Desc: not available URL: From Massimo.Forni at turboden.it Thu Aug 20 15:47:28 2020 From: Massimo.Forni at turboden.it (Massimo Forni) Date: Thu, 20 Aug 2020 14:47:28 +0000 Subject: [ZendTo] Library of Files References: <7ff6b49713d84546adda82116ed16a4a@Mailbox13.turboden.local> Message-ID: Hello everyone, I am trying the "Library of Files" features but I think something must be off with my configuration as I am not seeing any changes in the UI. I set the preferences 'usingLibrary' => TRUE, 'libraryDirectory' => NSSDROPBOX_DATA_DIR."library", I also tried to give 777 as a permission to that library and the test file inside but nothing works I also tried creating a folder with the name equal to my username and again no changes in the UI Has anyone been successful using this feature? Thank you! -- Massimo Forni ICT Infrastructure Manager Mobile: +393474110278 ________________________________ Turboden S.p.A. I via Cernaia 10 I 25124 Brescia I Italy t. +39 030 3552001 I f. +39 030 3552011 www.turboden.com Confidentiality notice: this message, together with its attachments, may contain strictly confidential and/or legally privileged information and it is destined solely to the intended addressee(s), who only may use it under his/their responsibility. Opinions, conclusions and other information contained in this message, that do not relate to the official business of this firm, shall be considered as not given or endorsed by it. If you have received this communication in error, please notify us immediately by responding to this email and then delete it from your system. Any use, disclosure, copying or distribution of the contents of this communication by a not-intended recipient or in violation of the purposes of this communication is strictly prohibited and may be unlawful. -------------- next part -------------- An HTML attachment was scrubbed... URL: From TZimmerman at fsu.edu Thu Aug 20 16:22:11 2020 From: TZimmerman at fsu.edu (Travis Zimmerman) Date: Thu, 20 Aug 2020 15:22:11 +0000 Subject: [ZendTo] Library of Files In-Reply-To: References: <7ff6b49713d84546adda82116ed16a4a@Mailbox13.turboden.local> Message-ID: Did you uncomment the lines in Apache confs for the Library feature? # Uncomment this to get the WebDAV support working, so users # can easily upload files for the "library of files" feature. # You also need to run these 3 commands as root: # a2enmod dav_fs # a2enmod dav # service httpd restart #Alias /library /var/zendto/library # # DAV on # AuthUserFile /var/zendto/library.passwd # AuthName "ZendTo Library" # AuthType Basic # Require valid-user # ------------------------------------------------------ Travis Zimmerman tzimmerman at fsu.edu 850-645-8030 Linux Enterprise Applications & Systems its-linuxadmins at fsu.edu Information Technology Services, Florida State University On Aug 20, 2020, at 10:47 AM, Massimo Forni via ZendTo > wrote: Hello everyone, I am trying the ?Library of Files? features but I think something must be off with my configuration as I am not seeing any changes in the UI. I set the preferences 'usingLibrary' => TRUE, 'libraryDirectory' => NSSDROPBOX_DATA_DIR."library", I also tried to give 777 as a permission to that library and the test file inside but nothing works I also tried creating a folder with the name equal to my username and again no changes in the UI Has anyone been successful using this feature? Thank you! -- Massimo Forni ICT Infrastructure Manager Mobile: +393474110278 ________________________________ Turboden S.p.A. I via Cernaia 10 I 25124 Brescia I Italy t. +39 030 3552001 I f. +39 030 3552011 www.turboden.com Confidentiality notice: this message, together with its attachments, may contain strictly confidential and/or legally privileged information and it is destined solely to the intended addressee(s), who only may use it under his/their responsibility. Opinions, conclusions and other information contained in this message, that do not relate to the official business of this firm, shall be considered as not given or endorsed by it. If you have received this communication in error, please notify us immediately by responding to this email and then delete it from your system. Any use, disclosure, copying or distribution of the contents of this communication by a not-intended recipient or in violation of the purposes of this communication is strictly prohibited and may be unlawful. _______________________________________________ ZendTo mailing list ZendTo at zend.to https://urldefense.com/v3/__http://jul.es/mailman/listinfo/zendto__;!!PhOWcWs!j53uPyXwMrdUJKgIhK6NZNun_z1mXL0ebiG9DoGVCqe6gYmDDZudzQRrh8ebiGcjFg$ -------------- next part -------------- An HTML attachment was scrubbed... URL: From Massimo.Forni at turboden.it Thu Aug 20 16:25:25 2020 From: Massimo.Forni at turboden.it (Massimo Forni) Date: Thu, 20 Aug 2020 15:25:25 +0000 Subject: [ZendTo] Library of Files In-Reply-To: References: <7ff6b49713d84546adda82116ed16a4a@Mailbox13.turboden.local> Message-ID: No, sorry my bad, I was looking at the wrong directory? In addition what you are referring is the webdav access to the filesystem directory for users to upload files Thank you anyway From: Travis Zimmerman Sent: gioved? 20 agosto 2020 17:22 To: ZendTo Users Cc: Massimo Forni Subject: Re: [ZendTo] Library of Files Did you uncomment the lines in Apache confs for the Library feature? # Uncomment this to get the WebDAV support working, so users # can easily upload files for the "library of files" feature. # You also need to run these 3 commands as root: # a2enmod dav_fs # a2enmod dav # service httpd restart #Alias /library /var/zendto/library # # DAV on # AuthUserFile /var/zendto/library.passwd # AuthName "ZendTo Library" # AuthType Basic # Require valid-user # ------------------------------------------------------ Travis Zimmerman tzimmerman at fsu.edu 850-645-8030 Linux Enterprise Applications & Systems its-linuxadmins at fsu.edu Information Technology Services, Florida State University On Aug 20, 2020, at 10:47 AM, Massimo Forni via ZendTo > wrote: Hello everyone, I am trying the ?Library of Files? features but I think something must be off with my configuration as I am not seeing any changes in the UI. I set the preferences 'usingLibrary' => TRUE, 'libraryDirectory' => NSSDROPBOX_DATA_DIR."library", I also tried to give 777 as a permission to that library and the test file inside but nothing works I also tried creating a folder with the name equal to my username and again no changes in the UI Has anyone been successful using this feature? Thank you! -- Massimo Forni ICT Infrastructure Manager Mobile: +393474110278 ________________________________ Turboden S.p.A. I via Cernaia 10 I 25124 Brescia I Italy t. +39 030 3552001 I f. +39 030 3552011 www.turboden.com Confidentiality notice: this message, together with its attachments, may contain strictly confidential and/or legally privileged information and it is destined solely to the intended addressee(s), who only may use it under his/their responsibility. Opinions, conclusions and other information contained in this message, that do not relate to the official business of this firm, shall be considered as not given or endorsed by it. If you have received this communication in error, please notify us immediately by responding to this email and then delete it from your system. Any use, disclosure, copying or distribution of the contents of this communication by a not-intended recipient or in violation of the purposes of this communication is strictly prohibited and may be unlawful. _______________________________________________ ZendTo mailing list ZendTo at zend.to https://urldefense.com/v3/__http://jul.es/mailman/listinfo/zendto__;!!PhOWcWs!j53uPyXwMrdUJKgIhK6NZNun_z1mXL0ebiG9DoGVCqe6gYmDDZudzQRrh8ebiGcjFg$ -------------- next part -------------- An HTML attachment was scrubbed... URL: From Jules at Zend.To Tue Aug 25 18:19:51 2020 From: Jules at Zend.To (Jules) Date: Tue, 25 Aug 2020 18:19:51 +0100 Subject: [ZendTo] Library of Files In-Reply-To: References: <7ff6b49713d84546adda82116ed16a4a@Mailbox13.turboden.local> Message-ID: And also, make sure that the dirs and files in /var/zendto/library are all read-write by Apache and NOT globally writable. You make each directory the username who owns those files, and then put the files in their dir. If you're using SAML authentication, then the dir name needs to be the user's email address (i.e. whatever they log in with). If you are running on CentOS/RedHat and might be using SELinux, then you'll probably need to tell SELinux the files in there are okay too: ??? restorecon -FRv /var/zendto/library Giving the files 777 *may* stop it working, as they are then globally writable (which a lot of things don't like!). Create the username dirs and files as shown like this: ??? chmod -R ug=rwX,o=rX /var/zendto/library ??? chown -R apache:apache /var/zendto/library If you are on Ubuntu/Debian, use "www-data" instead of "apache" in the 2 lines above. If you upload to there via webdav (as intended), then SELinux won't get in the way, as the web server creates the files in the first place, and all the permissions will be correct. You will need to use htpasswd to write and update the contents of the /var/zendto/library.passwd file. But that's all standard Apache / WebDAV stuff, not specific to ZendTo at all. Hope that helps, Jules. On 20/08/2020 16:25, Massimo Forni via ZendTo wrote: > > No, sorry my bad, I was looking at the wrong directory? > > In addition what you are referring is the webdav access to the > filesystem directory for users to upload files > > Thank you anyway > > *From:*Travis Zimmerman > *Sent:* gioved? 20 agosto 2020 17:22 > *To:* ZendTo Users > *Cc:* Massimo Forni > *Subject:* Re: [ZendTo] Library of Files > > Did you uncomment the lines in Apache confs for the Library feature? > > ? # Uncomment this to get the WebDAV support working, so users > > ? # can easily upload files for the "library of files" feature. > > ? # You also need to run these 3 commands as root: > > ? # ? ? a2enmod dav_fs > > ? # ? ? a2enmod dav > > ? # ? ? service httpd restart > > ? #Alias /library /var/zendto/library > > ? # > > ? #? ? ? ? DAV on > > ? #? ? ? ? AuthUserFile /var/zendto/library.passwd > > ? #? ? ? ? AuthName "ZendTo Library" > > ? #? ? ? ? AuthType Basic > > ? #? ? ? ? Require valid-user > > ? # > > ------------------------------------------------------ > > Travis Zimmerman > > tzimmerman at fsu.edu > > 850-645-8030 > > Linux Enterprise Applications & Systems > > its-linuxadmins at fsu.edu > > Information Technology Services, Florida State University > > > > On Aug 20, 2020, at 10:47 AM, Massimo Forni via ZendTo > > wrote: > > Hello everyone, > > I am trying the ?Library of Files? features but I think something > must be off with my configuration as I am not seeing any changes > in the UI. > > I set the preferences > > 'usingLibrary' => TRUE, > > 'libraryDirectory' =>NSSDROPBOX_DATA_DIR."library", > > I also tried to give 777 as a permission to that library and the > test file inside but nothing works > > I also tried creating a folder with the name equal to my username > and again no changes in the UI > > Has anyone been successful using this feature? > > Thank you! > > -- > > *Massimo Forni* > ICT Infrastructure Manager > > Mobile: +393474110278 > > ------------------------------------------------------------------------ > > *Turboden S.p.A.**I*via Cernaia 10*I*25124 Brescia*I*Italy > t. +39 030 3552001*I*f. +39 030 3552011 > www.turboden.com > > > > *Confidentiality notice*: this message, together with its > attachments, may contain strictly confidential and/or legally > privileged information and it is destined solely to the intended > addressee(s), who only may use it under his/their responsibility. > Opinions, conclusions and other information contained in this > message, that do not relate to the official business of this firm, > shall be considered as not given or endorsed by it. If you have > received this communication in error, please notify us immediately > by responding to this email and then delete it from your system. > Any use, disclosure, copying or distribution of the contents of > this communication by a not-intended recipient or in violation of > the purposes of this communication is strictly prohibited and may > be unlawful. > > _______________________________________________ > ZendTo mailing list > ZendTo at zend.to > https://urldefense.com/v3/__http://jul.es/mailman/listinfo/zendto__;!!PhOWcWs!j53uPyXwMrdUJKgIhK6NZNun_z1mXL0ebiG9DoGVCqe6gYmDDZudzQRrh8ebiGcjFg$ > > > > _______________________________________________ > ZendTo mailing list > ZendTo at zend.to > http://jul.es/mailman/listinfo/zendto Jules -- Julian Field MEng CEng CITP MBCS MIEEE MACM 'Probability factor of one to one. We have normality. I repeat, we have normality. Anything you still can't cope with is therefore your own problem.' - Trillian, The Hitch Hikers Guide to the Galaxy www.Zend.To Twitter: @JulesFM -------------- next part -------------- An HTML attachment was scrubbed... URL: From Jules at Zend.To Fri Aug 28 17:52:03 2020 From: Jules at Zend.To (Jules) Date: Fri, 28 Aug 2020 17:52:03 +0100 Subject: [ZendTo] Patch for recaptcha and tne new_dropoff.js problem (for the beta) In-Reply-To: References: Message-ID: <070812e7-a298-e917-c2ba-97a7510f7c66@Zend.To> Manty, Sorry, but I don't agree with either of those changes. Using recaptcha.net instead of recaptcha.google.com is the change recommended by Google so that the reCAPTCHA service works for users in China, who cannot reach 99% of Google services. Because it's on a separate domain name, China allow that 1 Google service through their firewall. In the call to include the dropoff_js.tpl file, the {} brackets tell the Smarty template system to read and process the new_dropoff.js.tpl file, which you will find in /opt/zendto/templates. This allows me to substitute Smarty variables in the JS code, while keeping it all in a separate file. Cheers, Jules. On 18/08/2020 11:14, Santiago Garcia Mantinan via ZendTo wrote: > Hi! > > While testing the Beta version 6.04-2 I found out some problems, one I > have commented already, was with the new_dropoff.js script as a > template and the other was with recaptcha not working. > > I'm attaching a patch to fix this problems. > > Regards. > > _______________________________________________ > ZendTo mailing list > ZendTo at zend.to > http://jul.es/mailman/listinfo/zendto Jules -- Julian Field MEng CEng CITP MBCS MIEEE MACM 'Teach a man to reason, and he will think for a lifetime.' - Phil Plait www.Zend.To Twitter: @JulesFM -------------- next part -------------- An HTML attachment was scrubbed... URL: From Jules at Zend.To Fri Aug 28 18:21:14 2020 From: Jules at Zend.To (Jules) Date: Fri, 28 Aug 2020 18:21:14 +0100 Subject: [ZendTo] Updating translations for the last beta and couple of bugs In-Reply-To: References: Message-ID: <6e10ffbd-12f3-6bcf-8de2-fe5e7dbfd713@Zend.To> Manty, On 14/08/2020 12:41, Santiago Garcia Mantinan via ZendTo wrote: > Hi! > > I've been away for some time, luckily you've been keeping up the good > work. Thanks! > > I'm sending updated translations for spanish and galician. > > Also... I'm pretty sure that most of this are probably known and maybe > fixed, but just in case... > > When the .deb package tries to add languages it says for a Debian 10... > /opt/zendto/bin/addlanguage: line 107: [: Release: 10: integer > expression expected Have you got /usr/bin/lsb_release installed? If so, I've just found and fixed that one for you. I was mistakenly assuming the version number was "major.minor" and not just "major". > > There is a problem that blocks the Drop-off button: > PHP Fatal error: Uncaught --> Smarty: Unable to load template > 'file:new_dropoff.js.tpl' <-- \n thrown in > /opt/zendto/lib/smarty/sysplugins/smarty_template_compiled.php on line > 96 > This is a problem with the include line of the new_dropoff.js, I > corrected it so that it reads: > > and works ok. But there isn't a file in /opt/zendto/www/js/new_dropoff.js. The file new_dropoff.js.tpl should be in /opt/zendto/templates. Cheers, Jules. > > Regards. > > _______________________________________________ > ZendTo mailing list > ZendTo at zend.to > http://jul.es/mailman/listinfo/zendto Jules -- Julian Field MEng CEng CITP MBCS MIEEE MACM The current UK shipping forecast: Viking: North 4 to 6. Slight at first in far east, otherwise moderate or rough. Showers. Good. www.Zend.To Twitter: @JulesFM -------------- next part -------------- An HTML attachment was scrubbed... URL: From Jules at Zend.To Sat Aug 29 12:26:41 2020 From: Jules at Zend.To (Jules) Date: Sat, 29 Aug 2020 12:26:41 +0100 Subject: [ZendTo] ANNOUNCE: New production release 6.05-1 Message-ID: Hi folks! I have just released a new production release, version 6.05-1. The main improvement this time is an overhaul of the "request a drop-off" page, and now you can set the starting and ending times+dates limiting when someone can upload files. So if, for example, you are using it to accept bids for a contract from potential suppliers, you can set a firm closing time+date, after which they will not be able to submit their bid. It is also handy if you are using ZendTo to accept coursework or exam answers from students, by giving them a defined window during which they must submit their answers. There are various other fixes and more minor improvements as well, including improved logging of successful and failed creation of new drop-offs. The new version is in the repositories, so hopefully "yum update zendto" or "sudo apt update && sudo apt upgrade zendto" will upgrade you. Remember to run "/opt/zendto/bin/upgrade" after upgrading, so your preferences.php and zendto.conf files are kept up to date. Otherwise you can get it from https://zend.to/downloads. Any problems, questions or suggestions, please let me know straightaway! Here is the full Change Log since the last production release (6.03): Version 6.05-1 Production - Improve attempt to stop browsers auto-filling encryption passphrase when creating a new encrypted drop-off, and when creating a request for an encrypted drop-off. - Fixed bug in makelanguages (and the Installer) on Debian 10. Version 6.04-2 Beta - Fixed bug in LDAP authenticator where setting a value to '' gave a different result from leaving it unset. - Log web browser info when creating a drop-off. To get an additional summary, you will need to set your php.ini 'browscap' setting to '/opt/zendto/lib/browscap.ini'. - Added more logging of authentication failures to help logwatch users. - Fixed string formatting bugs in AD authentication logging. Version 6.04-1 Beta - Overhauled the "request a drop-off" page. - Added new feature to requests: you can now set a start and end date+time. Outside those times, the request won't work. - Fixed bug where admins logging in via SAML would not see statistics button in main menu. Alternative workaround is to list 'authAdmins' users in 'authStats' as well. - Changed 'Content-Security-Policy' header definition in Apache config. Exact change is to replace "img-src *" with "img-src data: *", then restart Apache. Otherwise the date/time picker in the "Request a Drop-off" form will not display correctly. - Subject in new drop-off form can now only be edited if you are logged in. - Fixed bug in unlock-user to get all the reporting correct, and fix and improve logging. Thanks Marlon! - Improved "upgrade" command so it warns you if you have *.rpmnew or *.dpkg-dist files in your templates dir that you need to move into place by hand, as you had modified the previous versions. - Improved "upgrade" command so it checks you have a 'Content-Security- Policy' header definition in your Apache config for the https ZendTo site. And if so, adds "data:" to the list of valid sources of images. Otherwise the date+time pickers in the "request a drop-off" page will look messed up. If it doesn't find the header definition at all, it suggests the change you need to make. Jules -- Julian Field MEng CEng CITP MBCS MIEEE MACM 'NOTE FOR YOUNG PEOPLE AND AMERICANS: One shilling = Five Pee. It helps to understand the antique finances of the Witchfinder Army if you know the original British monetary system: Two farthings = One Ha'penny. Two ha'pennies = One Penny. Three pennies = A Thrupenny Bit. Two Thrupences = A Sixpence. Two Sixpences = One Shilling, or Bob. Two Bob = A Florin. One Florin and one Sixpence = Half a Crown. Four Half Crowns = Ten Bob Note. Two Ten Bob Notes = One Pound (or 240 pennies). One Pound and One Shilling = One Guinea. The British resisted decimalized currency for a long time because they thought it was too complicated.' - Terry Pratchett www.Zend.To Twitter: @JulesFM -------------- next part -------------- An HTML attachment was scrubbed... URL: From Etienne.Vogt at obspm.fr Mon Aug 31 17:32:40 2020 From: Etienne.Vogt at obspm.fr (Etienne Vogt) Date: Mon, 31 Aug 2020 18:32:40 +0200 (CEST) Subject: [ZendTo] LDAP authentication broken after 6.05-2 upgrade References: Message-ID: Hello, I've just upgraded ZendTo to the last 6.05-2 and LDAP authentication no longer works. Our users get a blank page and we get the following PHP error message in /var/log/apache2/zendto_error.log (real login and password replaced with fake ones) : [Mon Aug 31 18:23:25.035288 2020] [php7:error] [pid 31732] [client 145.238.184.196:33360] PHP Fatal error: Uncaught ArgumentCountError: Too few arguments to function NSSAuthenticator::authenticate(), 3 passed in /opt/zendto/lib/NSSLDAPAuthenticator.php on line 392 and exactly 4 expected in /opt/zendto/lib/NSSAuthenticator.php:165\nStack trace:\n#0 /opt/zendto/lib/NSSLDAPAuthenticator.php(392): NSSAuthenticator->authenticate('login', 'password', Array)\n#1 /opt/zendto/lib/NSSMultiAuthenticator.php(154): NSSLDAPAuthenticator->authenticate('login', 'password', Array, '')\n#2 /opt/zendto/lib/NSSDropbox.php(2332): NSSMultiAuthenticator->authenticate('login', 'password', Array, '')\n#3 /opt/zendto/lib/NSSDropbox.php(620): NSSDropbox->userFromAuthentication()\n#4 /opt/zendto/www/index.php(35): NSSDropbox->__construct(Array)\n#5 {main}\n thrown in /opt/zendto/lib/NSSAuthenticator.php on line 165 We are running ZendTo on a Debian 10 LXC container. -- Etienne Vogt (Etienne.Vogt at obspm.fr) Observatoire de Paris-Meudon Service Informatique From Jules at Zend.To Mon Aug 31 17:45:26 2020 From: Jules at Zend.To (Jules) Date: Mon, 31 Aug 2020 17:45:26 +0100 Subject: [ZendTo] LDAP authentication broken after 6.05-2 upgrade In-Reply-To: References: Message-ID: Etienne, Please can you try this fix for me? Edit ??? /opt/zendto/lib/NSSLDAPAuthenticator.php and change line 392. It should currently say this: ??????????? parent::authenticate($uname,$password,$response); Please change it to this: parent::authenticate($uname,$password,$response,$errormsg); You should then just refresh your web browser. There should be no need to restart any services on your ZendTo server. Please let me know if this fixes it or not, and I'll push out a quick update. Thanks! Jules. On 31/08/2020 17:32, Etienne Vogt via ZendTo wrote: > Hello, > > ?I've just upgraded ZendTo to the last 6.05-2 and LDAP authentication > no longer works. Our users get a blank page and we get the following > PHP error message in /var/log/apache2/zendto_error.log (real login > and password replaced with fake ones) : > > [Mon Aug 31 18:23:25.035288 2020] [php7:error] [pid 31732] [client > 145.238.184.196:33360] PHP Fatal error:? Uncaught ArgumentCountError: > Too few arguments to function NSSAuthenticator::authenticate(), 3 > passed in /opt/zendto/lib/NSSLDAPAuthenticator.php on line 392 and > exactly 4 expected in /opt/zendto/lib/NSSAuthenticator.php:165\nStack > trace:\n#0 /opt/zendto/lib/NSSLDAPAuthenticator.php(392): > NSSAuthenticator->authenticate('login', 'password', Array)\n#1 > /opt/zendto/lib/NSSMultiAuthenticator.php(154): > NSSLDAPAuthenticator->authenticate('login', 'password', Array, '')\n#2 > /opt/zendto/lib/NSSDropbox.php(2332): > NSSMultiAuthenticator->authenticate('login', 'password', Array, > '')\n#3 /opt/zendto/lib/NSSDropbox.php(620): > NSSDropbox->userFromAuthentication()\n#4 > /opt/zendto/www/index.php(35): NSSDropbox->__construct(Array)\n#5 > {main}\n? thrown in /opt/zendto/lib/NSSAuthenticator.php on line 165 > > We are running ZendTo on a Debian 10 LXC container. > Jules -- Julian Field MEng CEng CITP MBCS MIEEE MACM 'The past is supposed to be a place of reference, not a place of residence! There is a reason why your car has a big windshield and a small rearview mirror. You are supposed to keep your eyes on where you are going, and just occasionally check out where you have been.' - Willie Jolley www.Zend.To Twitter: @JulesFM -------------- next part -------------- An HTML attachment was scrubbed... URL: From Etienne.Vogt at obspm.fr Mon Aug 31 17:48:58 2020 From: Etienne.Vogt at obspm.fr (Etienne Vogt) Date: Mon, 31 Aug 2020 18:48:58 +0200 (CEST) Subject: [ZendTo] LDAP authentication broken after 6.05-2 upgrade In-Reply-To: References: Message-ID: On Mon, 31 Aug 2020, Etienne Vogt via ZendTo wrote: > I've just upgraded ZendTo to the last 6.05-2 and LDAP authentication > no longer works. Our users get a blank page and we get the following > PHP error message in /var/log/apache2/zendto_error.log (real login > and password replaced with fake ones) : > > [Mon Aug 31 18:23:25.035288 2020] [php7:error] [pid 31732] [client > 145.238.184.196:33360] PHP Fatal error: Uncaught ArgumentCountError: Too few > arguments to function NSSAuthenticator::authenticate(), 3 passed in > /opt/zendto/lib/NSSLDAPAuthenticator.php on line 392 and exactly 4 expected > in /opt/zendto/lib/NSSAuthenticator.php:165\nStack trace:\n#0 > /opt/zendto/lib/NSSLDAPAuthenticator.php(392): > NSSAuthenticator->authenticate('login', 'password', Array)\n#1 > /opt/zendto/lib/NSSMultiAuthenticator.php(154): > NSSLDAPAuthenticator->authenticate('login', 'password', Array, '')\n#2 > /opt/zendto/lib/NSSDropbox.php(2332): > NSSMultiAuthenticator->authenticate('login', 'password', Array, '')\n#3 > /opt/zendto/lib/NSSDropbox.php(620): NSSDropbox->userFromAuthentication()\n#4 > /opt/zendto/www/index.php(35): NSSDropbox->__construct(Array)\n#5 {main}\n > thrown in /opt/zendto/lib/NSSAuthenticator.php on line 165 > > We are running ZendTo on a Debian 10 LXC container. Here's a quick and dirty patch that seems to correct the problem : --- /opt/zendto/lib/NSSLDAPAuthenticator.php~ 2020-08-13 13:49:42.000000000 +0200 +++ /opt/zendto/lib/NSSLDAPAuthenticator.php 2020-08-31 18:45:11.319698698 +0200 @@ -389,7 +389,7 @@ } // Chain to the super class for any further properties to be added // to the $response array: - parent::authenticate($uname,$password,$response); + parent::authenticate($uname,$password,$response,$errormsg); } } } -- Etienne Vogt (Etienne.Vogt at obspm.fr) Observatoire de Paris-Meudon Service Informatique From Jules at Zend.To Mon Aug 31 17:49:57 2020 From: Jules at Zend.To (Jules) Date: Mon, 31 Aug 2020 17:49:57 +0100 Subject: [ZendTo] LDAP authentication broken after 6.05-2 upgrade In-Reply-To: References: Message-ID: <830294cd-26cd-f570-e872-5acecf528fcf@Zend.To> Ah, good, that means that our emails have crossed in the post, and you agree with my fix. Please can you just confirm that for me? Thanks! Jules. On 31/08/2020 17:48, Etienne Vogt via ZendTo wrote: > On Mon, 31 Aug 2020, Etienne Vogt via ZendTo wrote: > >> I've just upgraded ZendTo to the last 6.05-2 and LDAP authentication >> no longer works. Our users get a blank page and we get the following >> PHP error message in /var/log/apache2/zendto_error.log (real login >> and password replaced with fake ones) : >> >> [Mon Aug 31 18:23:25.035288 2020] [php7:error] [pid 31732] [client >> 145.238.184.196:33360] PHP Fatal error:? Uncaught ArgumentCountError: >> Too few arguments to function NSSAuthenticator::authenticate(), 3 >> passed in /opt/zendto/lib/NSSLDAPAuthenticator.php on line 392 and >> exactly 4 expected in /opt/zendto/lib/NSSAuthenticator.php:165\nStack >> trace:\n#0 /opt/zendto/lib/NSSLDAPAuthenticator.php(392): >> NSSAuthenticator->authenticate('login', 'password', Array)\n#1 >> /opt/zendto/lib/NSSMultiAuthenticator.php(154): >> NSSLDAPAuthenticator->authenticate('login', 'password', Array, >> '')\n#2 /opt/zendto/lib/NSSDropbox.php(2332): >> NSSMultiAuthenticator->authenticate('login', 'password', Array, >> '')\n#3 /opt/zendto/lib/NSSDropbox.php(620): >> NSSDropbox->userFromAuthentication()\n#4 >> /opt/zendto/www/index.php(35): NSSDropbox->__construct(Array)\n#5 >> {main}\n thrown in /opt/zendto/lib/NSSAuthenticator.php on line 165 >> >> We are running ZendTo on a Debian 10 LXC container. > > Here's a quick and dirty patch that seems to correct the problem : > > --- /opt/zendto/lib/NSSLDAPAuthenticator.php~??? 2020-08-13 > 13:49:42.000000000 +0200 > +++ /opt/zendto/lib/NSSLDAPAuthenticator.php??? 2020-08-31 > 18:45:11.319698698 +0200 > @@ -389,7 +389,7 @@ > ???????????? } > ???????????? //? Chain to the super class for any further properties > to be added > ???????????? //? to the $response array: > -??????????? parent::authenticate($uname,$password,$response); > + parent::authenticate($uname,$password,$response,$errormsg); > ?????????? } > ???????? } > ?????? } > Jules -- Julian Field MEng CEng CITP MBCS MIEEE MACM 'Adversity is like a strong wind. I don't mean just that it holds us back from places we might otherwise go. It also tears away from us all but the things that cannot be torn, so that afterward we see ourselves as we really are, and not merely as we might like to be.' - Arthur Golden www.Zend.To Twitter: @JulesFM -------------- next part -------------- An HTML attachment was scrubbed... URL: From Etienne.Vogt at obspm.fr Mon Aug 31 17:53:13 2020 From: Etienne.Vogt at obspm.fr (Etienne Vogt) Date: Mon, 31 Aug 2020 18:53:13 +0200 (CEST) Subject: [ZendTo] LDAP authentication broken after 6.05-2 upgrade In-Reply-To: References: Message-ID: On Mon, 31 Aug 2020, Jules wrote: > Etienne, > > Please can you try this fix for me? > > Edit > ??? /opt/zendto/lib/NSSLDAPAuthenticator.php > and change line 392. > > It should currently say this: > ??????????? parent::authenticate($uname,$password,$response); > > Please change it to this: > parent::authenticate($uname,$password,$response,$errormsg); > > You should then just refresh your web browser. There should be no need to > restart any services on your ZendTo server. > > Please let me know if this fixes it or not, and I'll push out a quick update. It works, thanks. In fact, I just tried the exact same patch before I got your response. -- Etienne Vogt (Etienne.Vogt at obspm.fr) Observatoire de Paris-Meudon Service Informatique From Jules at Zend.To Mon Aug 31 18:07:19 2020 From: Jules at Zend.To (Jules) Date: Mon, 31 Aug 2020 18:07:19 +0100 Subject: [ZendTo] LDAP authentication broken after 6.05-2 upgrade In-Reply-To: References: Message-ID: <8421be91-35bf-9270-a580-b5825e3fd401@Zend.To> Just release 6.05-3 including this fix. Thanks! Jules. On 31/08/2020 17:53, Etienne Vogt wrote: > On Mon, 31 Aug 2020, Jules wrote: > >> Etienne, >> >> Please can you try this fix for me? >> >> Edit >> ??? /opt/zendto/lib/NSSLDAPAuthenticator.php >> and change line 392. >> >> It should currently say this: >> ??????????? parent::authenticate($uname,$password,$response); >> >> Please change it to this: >> parent::authenticate($uname,$password,$response,$errormsg); >> >> You should then just refresh your web browser. There should be no >> need to restart any services on your ZendTo server. >> >> Please let me know if this fixes it or not, and I'll push out a quick >> update. > > It works, thanks. In fact, I just tried the exact same patch before I got > your response. > Jules -- Julian Field MEng CEng CITP MBCS MIEEE MACM The current UK shipping forecast: West Lundy, Fastnet, Irish Sea: Southerly 3 to 5. Smooth or slight at first in east Irish Sea, otherwise slight or moderate. Occasional rain for a time. Good, occasionally moderate. www.Zend.To Twitter: @JulesFM -------------- next part -------------- An HTML attachment was scrubbed... URL: From Etienne.Vogt at obspm.fr Mon Aug 31 18:19:04 2020 From: Etienne.Vogt at obspm.fr (Etienne Vogt) Date: Mon, 31 Aug 2020 19:19:04 +0200 (CEST) Subject: [ZendTo] LDAP authentication broken after 6.05-2 upgrade In-Reply-To: References: <8421be91-35bf-9270-a580-b5825e3fd401@Zend.To> Message-ID: On Mon, 31 Aug 2020, Jules wrote: > Just release 6.05-3 including this fix. It seems there's also a missing argument on the call to validUsername() on line 264 (this time, it's already logged in users who get a blank page) : [Mon Aug 31 19:08:12.540959 2020] [php7:error] [pid 1894] [client 145.238.184.196:33830] PHP Fatal error: Uncaught ArgumentCountError: Too few arguments to function NSSAuthenticator::validUsername(), 2 passed in /opt/zendto/lib/NSSLDAPAuthenticator.php on line 264 and exactly 3 expected in /opt/zendto/lib/NSSAuthenticator.php:124\nStack trace:\n#0 /opt/zendto/lib/NSSLDAPAuthenticator.php(264): NSSAuthenticator->validUsername('vogt', Array)\n#1 /opt/zendto/lib/NSSMultiAuthenticator.php(130): NSSLDAPAuthenticator->validUsername('vogt', Array, '')\n#2 /opt/zendto/lib/NSSDropbox.php(2221): NSSMultiAuthenticator->validUsername('vogt', Array, '')\n#3 /opt/zendto/lib/NSSDropbox.php(635): NSSDropbox->userFromCookie()\n#4 /opt/zendto/www/index.php(35): NSSDropbox->__construct(Array)\n#5 {main}\n thrown in /opt/zendto/lib/NSSAuthenticator.php on line 124 So here's another fix : --- /opt/zendto/lib/NSSLDAPAuthenticator.php~ 2020-08-31 18:45:11.319698698 +0200 +++ /opt/zendto/lib/NSSLDAPAuthenticator.php 2020-08-31 19:10:59.681265140 +0200 @@ -261,7 +261,7 @@ // Chain to the super class for any further properties to be added // to the $response array: - parent::validUsername($uname,$response); + parent::validUsername($uname,$response,$errormsg); } } } else { Also, the previous patch to authenticate() gives a PHP warning in the logs : [Mon Aug 31 19:11:04.883020 2020] [php7:warn] [pid 31231] [client 145.238.184.196:33866] PHP Warning: Declaration of NSSMultiAuthenticator::authenticate(&$uname, $password, &$response, $errormsg) should be compatible with NSSAuthenticator::authenticate(&$uname, $password, &$response, &$errormessage) in /opt/zendto/lib/NSSMultiAuthenticator.php on line 0 -- Etienne Vogt (Etienne.Vogt at obspm.fr) Observatoire de Paris-Meudon Service Informatique From Jules at Zend.To Mon Aug 31 18:37:00 2020 From: Jules at Zend.To (Jules) Date: Mon, 31 Aug 2020 18:37:00 +0100 Subject: [ZendTo] LDAP authentication broken after 6.05-2 upgrade In-Reply-To: References: <8421be91-35bf-9270-a580-b5825e3fd401@Zend.To> Message-ID: Etienne, Boy, do I hate it when this happens! :-( Hopefully those 2 bugs are squashed in 6.05-4 which I have just released for you. Please can you do another quick update and see if it's actually working now? Thanks! Jules. On 31/08/2020 18:19, Etienne Vogt wrote: > On Mon, 31 Aug 2020, Jules wrote: > >> Just release 6.05-3 including this fix. > > It seems there's also a missing argument on the call to validUsername() > on line 264 (this time, it's already logged in users who get a blank > page) : > > [Mon Aug 31 19:08:12.540959 2020] [php7:error] [pid 1894] [client > 145.238.184.196:33830] PHP Fatal error:? Uncaught ArgumentCountError: > Too few arguments to function NSSAuthenticator::validUsername(), 2 > passed in /opt/zendto/lib/NSSLDAPAuthenticator.php on line 264 and > exactly 3 expected in /opt/zendto/lib/NSSAuthenticator.php:124\nStack > trace:\n#0 /opt/zendto/lib/NSSLDAPAuthenticator.php(264): > NSSAuthenticator->validUsername('vogt', Array)\n#1 > /opt/zendto/lib/NSSMultiAuthenticator.php(130): > NSSLDAPAuthenticator->validUsername('vogt', Array, '')\n#2 > /opt/zendto/lib/NSSDropbox.php(2221): > NSSMultiAuthenticator->validUsername('vogt', Array, '')\n#3 > /opt/zendto/lib/NSSDropbox.php(635): NSSDropbox->userFromCookie()\n#4 > /opt/zendto/www/index.php(35): NSSDropbox->__construct(Array)\n#5 > {main}\n thrown in /opt/zendto/lib/NSSAuthenticator.php on line 124 > > So here's another fix : > > --- /opt/zendto/lib/NSSLDAPAuthenticator.php~??? 2020-08-31 > 18:45:11.319698698 +0200 > +++ /opt/zendto/lib/NSSLDAPAuthenticator.php??? 2020-08-31 > 19:10:59.681265140 +0200 > @@ -261,7 +261,7 @@ > > ?????????? //? Chain to the super class for any further properties to > be added > ?????????? //? to the $response array: > -????????? parent::validUsername($uname,$response); > +????????? parent::validUsername($uname,$response,$errormsg); > ???????? } > ?????? } > ???? } else { > > > Also, the previous patch to authenticate() gives a PHP warning in the > logs : > > [Mon Aug 31 19:11:04.883020 2020] [php7:warn] [pid 31231] [client > 145.238.184.196:33866] PHP Warning:? Declaration of > NSSMultiAuthenticator::authenticate(&$uname, $password, &$response, > $errormsg) should be compatible with > NSSAuthenticator::authenticate(&$uname, $password, &$response, > &$errormessage) in /opt/zendto/lib/NSSMultiAuthenticator.php on line 0 > Jules -- Julian Field MEng CEng CITP MBCS MIEEE MACM The current UK shipping forecast: East Dogger, Fisher: Variable 3 or less, increasing 4 at times. Slight, occasionally smooth in east Fisher. Showers. Good. www.Zend.To Twitter: @JulesFM -------------- next part -------------- An HTML attachment was scrubbed... URL: