Merged revisions 3028-3045 from stable branch.

02bf9972 · tbrehm · ee260d72 · 02bf9972 · 02bf9972 · 02bf9972
Commit 02bf9972 authored Apr 12, 2012 by tbrehm
--- a/install/dist/conf/opensuse112.conf.php
+++ b/install/dist/conf/opensuse112.conf.php
@@ -97,7 +97,7 @@ $conf['web']['apps_vhost_user'] = 'ispapps';
 $conf['web']['apps_vhost_group'] = 'ispapps';

 //* Fastcgi
-$conf['fastcgi']['fastcgi_phpini_path'] = '/etc/php5/cgi/';
+$conf['fastcgi']['fastcgi_phpini_path'] = '/etc/php5/fastcgi/';
 $conf['fastcgi']['fastcgi_starter_path'] = '/srv/www/php-fcgi-scripts/[system_user]/';

 //* Postfix

--- a/install/lib/installer_base.lib.php
+++ b/install/lib/installer_base.lib.php
@@ -158,10 +158,10 @@ class installer_base {
 			$this->error('Stopped: Database already contains some tables.');
 		} else {
 			if($conf['mysql']['admin_password'] == '') {
-				caselog("mysql --default-character-set=".$conf['mysql']['charset']." -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' '".$conf['mysql']['database']."' < '".ISPC_INSTALL_ROOT."/install/sql/ispconfig3.sql' &> /dev/null",
+				caselog("mysql --default-character-set=".escapeshellarg($conf['mysql']['charset'])." -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." ".escapeshellarg($conf['mysql']['database'])." < '".ISPC_INSTALL_ROOT."/install/sql/ispconfig3.sql' &> /dev/null",
 						__FILE__, __LINE__, 'read in ispconfig3.sql', 'could not read in ispconfig3.sql');
 			} else {
-				caselog("mysql --default-character-set=".$conf['mysql']['charset']." -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' -p'".$conf['mysql']['admin_password']."' '".$conf['mysql']['database']."' < '".ISPC_INSTALL_ROOT."/install/sql/ispconfig3.sql' &> /dev/null",
+				caselog("mysql --default-character-set=".escapeshellarg($conf['mysql']['charset'])." -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." -p".escapeshellarg($conf['mysql']['admin_password'])." ".escapeshellarg($conf['mysql']['database'])." < '".ISPC_INSTALL_ROOT."/install/sql/ispconfig3.sql' &> /dev/null",
 						__FILE__, __LINE__, 'read in ispconfig3.sql', 'could not read in ispconfig3.sql');
 			}
 			$db_tables = $this->db->getTables();

--- a/install/lib/update.lib.php
+++ b/install/lib/update.lib.php
@@ -33,20 +33,20 @@ function prepareDBDump() {
 	//** load the pre update sql script do perform modifications on the database before the database is dumped
 	if(is_file(ISPC_INSTALL_ROOT."/install/sql/pre_update.sql")) {
 		if($conf['mysql']['admin_password'] == '') {
-			caselog("mysql --default-character-set=".$conf['mysql']['charset']." -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' '".$conf['mysql']['database']."' < '".ISPC_INSTALL_ROOT."/install/sql/pre_update.sql' &> /dev/null", __FILE__, __LINE__, 'read in ispconfig3.sql', 'could not read in ispconfig3.sql');
+			caselog("mysql --default-character-set=".escapeshellarg($conf['mysql']['charset'])." -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." ".escapeshellarg($conf['mysql']['database'])." < '".ISPC_INSTALL_ROOT."/install/sql/pre_update.sql' &> /dev/null", __FILE__, __LINE__, 'read in ispconfig3.sql', 'could not read in ispconfig3.sql');
 		} else {
-			caselog("mysql --default-character-set=".$conf['mysql']['charset']." -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' -p'".$conf['mysql']['admin_password']."' '".$conf['mysql']['database']."' < '".ISPC_INSTALL_ROOT."/install/sql/pre_update.sql' &> /dev/null", __FILE__, __LINE__, 'read in ispconfig3.sql', 'could not read in ispconfig3.sql');
+			caselog("mysql --default-character-set=".escapeshellarg($conf['mysql']['charset'])." -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." -p".escapeshellarg($conf['mysql']['admin_password'])." ".escapeshellarg($conf['mysql']['database'])." < '".ISPC_INSTALL_ROOT."/install/sql/pre_update.sql' &> /dev/null", __FILE__, __LINE__, 'read in ispconfig3.sql', 'could not read in ispconfig3.sql');
 		}
 	}

 	//** export the current database data
 	if( !empty($conf["mysql"]["admin_password"]) ) {

-		system("mysqldump -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' -p'".$conf['mysql']['admin_password']."' -c -t --add-drop-table --create-options --quick --result-file=existing_db.sql ".$conf['mysql']['database']);
+		system("mysqldump -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." -p".escapeshellarg($conf['mysql']['admin_password'])." -c -t --add-drop-table --create-options --quick --result-file=existing_db.sql ".$conf['mysql']['database']);
 	}
 	else {

-		system("mysqldump -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' -c -t --add-drop-table --create-options --quick --result-file=existing_db.sql ".$conf['mysql']['database']);
+		system("mysqldump -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." -c -t --add-drop-table --create-options --quick --result-file=existing_db.sql ".$conf['mysql']['database']);
 	}

 	/*
@@ -69,9 +69,9 @@ function prepareDBDump() {
 	if ($conf['powerdns']['installed']) {
 		//** export the current PowerDNS database data
        	if( !empty($conf["mysql"]["admin_password"]) ) {
-            		system("mysqldump -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' -p'".$conf['mysql']['admin_password']."' -c -t --add-drop-table --create-options --quick --result-file=existing_powerdns_db.sql ".$conf['powerdns']['database']);
+            		system("mysqldump -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." -p".escapeshellarg($conf['mysql']['admin_password'])." -c -t --add-drop-table --create-options --quick --result-file=existing_powerdns_db.sql ".$conf['powerdns']['database']);
        	} else {
-            		system("mysqldump -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' -c -t --add-drop-table --create-options --quick --result-file=existing_powerdns_db.sql ".$conf['powerdns']['database']);
+            		system("mysqldump -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." -c -t --add-drop-table --create-options --quick --result-file=existing_powerdns_db.sql ".$conf['powerdns']['database']);
        	}

 		// create a backup copy of the PowerDNS database in the root folder
@@ -90,7 +90,7 @@ function checkDbHealth() {
 	$notok = array();

 	echo "Checking ISPConfig database .. ";
-	exec("mysqlcheck -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' -p'".$conf['mysql']['admin_password']."' -r ".$conf["mysql"]["database"], $result);
+	exec("mysqlcheck -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." -p".escapeshellarg($conf['mysql']['admin_password'])." -r ".escapeshellarg($conf["mysql"]["database"]), $result);
 	for( $i=0; $i<sizeof($result);$i++) {
 		if ( substr($result[$i], -2) != "OK" ) {
 			$notok[] = $result[$i];
@@ -155,9 +155,9 @@ function updateDbAndIni() {
 			if(is_file($patch_filename)) {
 				//* Load patch file into database
 				if( !empty($conf["mysql"]["admin_password"]) ) {
-					system("mysql --default-character-set=".$conf['mysql']['charset']." --force -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' -p'".$conf['mysql']['admin_password']."' ".$conf['mysql']['database']." < ".$patch_filename);
+					system("mysql --default-character-set=".escapeshellarg($conf['mysql']['charset'])." --force -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." -p".escapeshellarg($conf['mysql']['admin_password'])." ".escapeshellarg($conf['mysql']['database'])." < ".$patch_filename);
 				} else {
-					system("mysql --default-character-set=".$conf['mysql']['charset']." --force -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' ".$conf['mysql']['database']." < ".$patch_filename);
+					system("mysql --default-character-set=".escapeshellarg($conf['mysql']['charset'])." --force -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." ".escapeshellarg($conf['mysql']['database'])." < ".$patch_filename);
 				}
 				swriteln($inst->lng('Loading SQL patch file').': '.$patch_filename);
 				$current_db_version = $next_db_version;
@@ -193,9 +193,9 @@ function updateDbAndIni() {

 		//** load old data back into database
 		if( !empty($conf["mysql"]["admin_password"]) ) {
-			system("mysql --default-character-set=".$conf['mysql']['charset']." --force -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' -p'".$conf['mysql']['admin_password']."' ".$conf['mysql']['database']." < existing_db.sql");
+			system("mysql --default-character-set=".escapeshellarg($conf['mysql']['charset'])." --force -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." -p".escapeshellarg($conf['mysql']['admin_password'])." ".escapeshellarg($conf['mysql']['database'])." < existing_db.sql");
 		} else {
-			system("mysql --default-character-set=".$conf['mysql']['charset']." --force -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' ".$conf['mysql']['database']." < existing_db.sql");
+			system("mysql --default-character-set=".escapeshellarg($conf['mysql']['charset'])." --force -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." ".escapeshellarg($conf['mysql']['database'])." < existing_db.sql");
 		}
 		
 		//** Get the database version number based on the patchfile
@@ -228,9 +228,9 @@ function updateDbAndIni() {

            //** load old data back into the PowerDNS database
            if( !empty($conf["mysql"]["admin_password"]) ) {
-            	system("mysql --default-character-set=".$conf['mysql']['charset']." --force -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' -p'".$conf['mysql']['admin_password']."' ".$conf['powerdns']['database']." < existing_powerdns_db.sql");
+            	system("mysql --default-character-set=".escapeshellarg($conf['mysql']['charset'])." --force -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." -p".escapeshellarg($conf['mysql']['admin_password'])." ".escapeshellarg($conf['powerdns']['database'])." < existing_powerdns_db.sql");
            } else {
-            	system("mysql --default-character-set=".$conf['mysql']['charset']." --force -h '".$conf['mysql']['host']."' -u '".$conf['mysql']['admin_user']."' ".$conf['powerdns']['database']." < existing_powerdns_db.sql");
+            	system("mysql --default-character-set=".escapeshellarg($conf['mysql']['charset'])." --force -h ".escapeshellarg($conf['mysql']['host'])." -u ".escapeshellarg($conf['mysql']['admin_user'])." ".escapeshellarg($conf['powerdns']['database'])." < existing_powerdns_db.sql");
            }
 		}
 	}

--- a/install/sql/ispconfig3.sql
+++ b/install/sql/ispconfig3.sql
 /*
-Copyright (c) 2007-2011, Till Brehm, projektfarm Gmbh
+Copyright (c) 2007-2012, Till Brehm, projektfarm Gmbh
 All rights reserved.

 Redistribution and use in source and binary forms, with or without modification,
@@ -1970,6 +1970,6 @@ INSERT INTO `sys_user` (`userid`, `sys_userid`, `sys_groupid`, `sys_perm_user`,
 -- Dumping data for table `sys_config`
 --

-INSERT INTO sys_config VALUES ('1','db','db_version','3.0.4.3');
+INSERT INTO sys_config VALUES ('1','db','db_version','3.0.4.4');

 SET FOREIGN_KEY_CHECKS = 1;
\ No newline at end of file
--- a/install/tpl/config.inc.php.master
+++ b/install/tpl/config.inc.php.master
 <?php
 /*
-Copyright (c) 2007 - 2010, Till Brehm, projektfarm Gmbh
+Copyright (c) 2007 - 2012, Till Brehm, projektfarm Gmbh
 All rights reserved.

 Redistribution and use in source and binary forms, with or without modification,
@@ -56,7 +56,7 @@ $revision = str_replace(array('Revision:','$',' '), '', $svn_revision);

 //** Application
 define('ISPC_APP_TITLE', 'ISPConfig');
-define('ISPC_APP_VERSION', '3.0.4.3');
+define('ISPC_APP_VERSION', '3.0.4.4');
 define('DEVSYSTEM', 0);


@@ -146,7 +146,7 @@ $conf['software_updates_enabled'] = false;
 //** Themes
 $conf['theme'] = 'default';
 $conf['html_content_encoding'] = 'utf-8'; // example: utf-8, iso-8859-1, ...
-$conf['logo'] = 'themes/default/images/ispc_logo.png';
+$conf['logo'] = 'themes/default/images/header_logo.png';

 //** Default Language and Timezone
 $conf['language'] = '{language}';

--- a/interface/lib/app.inc.php
+++ b/interface/lib/app.inc.php
@@ -216,11 +216,14 @@ class app {
 			$this->tpl->setVar('app_version', '');
 		}
 		$this->tpl->setVar('app_link', $this->_conf['app_link']);
+		/*
 		if(isset($this->_conf['app_logo']) && $this->_conf['app_logo'] != '' && @is_file($this->_conf['app_logo'])) {
 			$this->tpl->setVar('app_logo', '<img src="'.$this->_conf['app_logo'].'">');
 		} else {
 			$this->tpl->setVar('app_logo', '&nbsp;');
 		}
+		*/
+		$this->tpl->setVar('app_logo', $this->_conf['logo']);

 		$this->tpl->setVar('phpsessid', session_id());


--- a/interface/lib/classes/simplepie.inc.php
+++ b/interface/lib/classes/simplepie.inc.php
@@ -12151,7 +12151,7 @@ class SimplePie_IRI
 		}
 		else
 		{
-			$this->query = $this->replace_invalid_with_pct_encoding($query, 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-._~!$\'()*+,;:@/?');
+			$this->query = $this->replace_invalid_with_pct_encoding($query, 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-._~!$\'()*+,;:@/?&=');
 		}
 		$this->valid[__FUNCTION__] = true;
 		return true;

--- a/interface/lib/config.inc.php
+++ b/interface/lib/config.inc.php
@@ -131,7 +131,7 @@ $conf['software_updates_enabled'] = false;
 //** Themes
 $conf['theme'] = 'default';
 $conf['html_content_encoding'] = 'utf-8'; // example: utf-8, iso-8859-1, ...
-$conf['logo'] = 'themes/default/images/ispc_logo.png';
+$conf['logo'] = 'themes/default/images/header_logo.png';

 //** Templates
 $conf['templates'] = '/usr/local/ispconfig/server/conf';

--- a/interface/lib/lang/ar.lng
+++ b/interface/lib/lang/ar.lng
@@ -69,4 +69,5 @@ $wb['monthnamesshort_nov'] = 'Nov';
 $wb['monthnamesshort_dec'] = 'Dec';
 $wb['logout_txt'] = 'LOGOUT';
 $wb['conf_format_dateshort_human_readable'] = 'yyyy-mm-dd';
+$wb['submit_confirmation'] = 'Do you really want to perform this action?';
 ?>
--- a/interface/lib/lang/bg.lng
+++ b/interface/lib/lang/bg.lng
@@ -69,4 +69,5 @@ $wb['monthnamesshort_nov'] = 'Nov';
 $wb['monthnamesshort_dec'] = 'Dec';
 $wb['logout_txt'] = 'LOGOUT';
 $wb['conf_format_dateshort_human_readable'] = 'yyyy-mm-dd';
+$wb['submit_confirmation'] = 'Do you really want to perform this action?';
 ?>
--- a/interface/lib/lang/br.lng
+++ b/interface/lib/lang/br.lng
@@ -69,4 +69,5 @@ $wb['datepicker_nextText'] = 'Next';
 $wb['datepicker_prevText'] = 'Prev';
 $wb['logout_txt'] = 'LOGOUT';
 $wb['conf_format_dateshort_human_readable'] = 'yyyy-mm-dd';
+$wb['submit_confirmation'] = 'Do you really want to perform this action?';
 ?>
--- a/interface/lib/lang/cz.lng
+++ b/interface/lib/lang/cz.lng
@@ -69,4 +69,5 @@ $wb['datepicker_nextText'] = 'Next';
 $wb['datepicker_prevText'] = 'Prev';
 $wb['logout_txt'] = 'LOGOUT';
 $wb['conf_format_dateshort_human_readable'] = 'yyyy-mm-dd';
+$wb['submit_confirmation'] = 'Do you really want to perform this action?';
 ?>
--- a/interface/lib/lang/de.lng
+++ b/interface/lib/lang/de.lng
@@ -69,5 +69,5 @@ $wb['monthnamesshort_dec'] = 'Dez';
 $wb['datepicker_nextText'] = 'Vor';
 $wb['datepicker_prevText'] = 'Zur&uuml;ck';
 $wb['logout_txt'] = 'LOGOUT';
-$wb['submit_confirmation'] = "Wollen Sie diese Aktion wirlich ausführen?";
+$wb['submit_confirmation'] = 'Wollen Sie diese Aktion wirlich ausführen?';
 ?>
--- a/interface/lib/lang/el.lng
+++ b/interface/lib/lang/el.lng
@@ -69,4 +69,5 @@ $wb['monthnamesshort_nov'] = 'Νοε';
 $wb['monthnamesshort_dec'] = 'Δεκ';
 $wb['conf_format_dateshort_human_readable'] = 'yyyy-mm-dd';
 $wb['logout_txt'] = 'LOGOUT';
+$wb['submit_confirmation'] = 'Do you really want to perform this action?';
 ?>
--- a/interface/lib/lang/es.lng
+++ b/interface/lib/lang/es.lng
@@ -69,4 +69,5 @@ $wb['datepicker_nextText'] = 'Next';
 $wb['datepicker_prevText'] = 'Prev';
 $wb['logout_txt'] = 'LOGOUT';
 $wb['conf_format_dateshort_human_readable'] = 'yyyy-mm-dd';
+$wb['submit_confirmation'] = 'Do you really want to perform this action?';
 ?>
--- a/interface/lib/lang/fi.lng
+++ b/interface/lib/lang/fi.lng
@@ -69,4 +69,5 @@ $wb['datepicker_nextText'] = 'Next';
 $wb['datepicker_prevText'] = 'Prev';
 $wb['logout_txt'] = 'LOGOUT';
 $wb['conf_format_dateshort_human_readable'] = 'yyyy-mm-dd';
+$wb['submit_confirmation'] = 'Do you really want to perform this action?';
 ?>
--- a/interface/lib/lang/fr.lng
+++ b/interface/lib/lang/fr.lng
@@ -69,4 +69,5 @@ $wb['datepicker_nextText'] = 'Suivant';
 $wb['datepicker_prevText'] = 'Précédent';
 $wb['logout_txt'] = 'LOGOUT';
 $wb['conf_format_dateshort_human_readable'] = 'yyyy-mm-dd';
+$wb['submit_confirmation'] = 'Do you really want to perform this action?';
 ?>
--- a/interface/lib/lang/hr.lng
+++ b/interface/lib/lang/hr.lng
@@ -7,9 +7,9 @@ $wb['conf_format_datetime'] = 'd.m.Y. H:i';
 $wb['number_format_decimals'] = '2';
 $wb['number_format_dec_point'] = ',';
 $wb['number_format_thousands_sep'] = '.';
-$wb['delete_confirmation'] = 'Da li želite obrisati ovaj zapis?';
-$wb['error_no_view_permission'] = 'Nemate dozvolu za pregled zapisa ili zapis ne postoji!';
-$wb['error_no_delete_permission'] = 'Nemate dozvolu za brisanje zapisa!';
+$wb['delete_confirmation'] = 'Da li želite obrisati ovaj DNS zapis?';
+$wb['error_no_view_permission'] = 'Nemate dozvolu za pregled DNS zapisa ili zapis ne postoji!';
+$wb['error_no_delete_permission'] = 'Nemate dozvolu za brisanje DNS zapisa!';
 $wb['page_txt'] = 'Stranica';
 $wb['page_of_txt'] = 'od';
 $wb['page_and_txt'] = 'i';
@@ -21,7 +21,7 @@ $wb['add_new_record_txt'] = 'Dodaj';
 $wb['btn_save_txt'] = 'Spremi';
 $wb['btn_cancel_txt'] = 'Natrag';
 $wb['top_menu_system'] = 'Sistem';
-$wb['top_menu_client'] = 'Klijent';
+$wb['top_menu_client'] = 'Klijenti';
 $wb['top_menu_email'] = 'Email';
 $wb['top_menu_monitor'] = 'Monitoring';
 $wb['top_menu_sites'] = 'Stranice';
@@ -67,6 +67,7 @@ $wb['monthnamesshort_nov'] = 'Stu';
 $wb['monthnamesshort_dec'] = 'Pro';
 $wb['datepicker_nextText'] = 'Naprijed';
 $wb['datepicker_prevText'] = 'Natrag';
-$wb['logout_txt'] = 'LOGOUT';
+$wb['logout_txt'] = 'Odjavi';
 $wb['conf_format_dateshort_human_readable'] = 'yyyy-mm-dd';
+$wb['submit_confirmation'] = 'Do you really want to perform this action?';
 ?>
--- a/interface/lib/lang/hu.lng
+++ b/interface/lib/lang/hu.lng
@@ -69,4 +69,5 @@ $wb['datepicker_nextText'] = 'Next';
 $wb['datepicker_prevText'] = 'Prev';
 $wb['logout_txt'] = 'LOGOUT';
 $wb['conf_format_dateshort_human_readable'] = 'yyyy-mm-dd';
+$wb['submit_confirmation'] = 'Do you really want to perform this action?';
 ?>
--- a/interface/lib/lang/id.lng
+++ b/interface/lib/lang/id.lng
@@ -69,4 +69,5 @@ $wb['datepicker_nextText'] = 'Next';
 $wb['datepicker_prevText'] = 'Prev';
 $wb['logout_txt'] = 'LOGOUT';
 $wb['conf_format_dateshort_human_readable'] = 'yyyy-mm-dd';
+$wb['submit_confirmation'] = 'Do you really want to perform this action?';
 ?>