Bug#928958: scanbd: wrong permissions - stopped working in Buster
In Debian Stretch libsane adds an ACL for group scanner
via /lib/udev/rules.d/60-libsane.rule:
ENV{libsane_matched}=="yes",
RUN+="/bin/setfacl -m g:scanner:rw $env{DEVNAME}"
IIUC in Debian Buster this line is removed because local user access is
given via libpam-systemd.
scanbd stopped working in Buster because the group for daemon processes
is set to scanner in /etc/scanbd/scanbd.conf
and /lib/systemd/system/scanbm@.service.
Since the scanbd package also supplies an udev rule to set the group of
the device node to saned, the bug would be fixed by changing the group
in scanbd.conf and scanbm@.service to saned.
Bug#931827: lighttpd: server returnd 400, if %C0 is included in the URL
Package: lighttpd
Version: 1.4.53-4
Severity: normal
Dear Maintainer,
Hello!
lighttpd server is returnd ”400 Bad Request", if %C0 (or any other
char.) is included in the URL.
for example,
http://localhost/index.lighttpd.html : return OK (display index page)
http://localhost/index.lighttpd.html?%C0 : 400 Bad Request
http://localhost/index.lighttpd.html?%C1 : 400 Bad Request
http://localhost/index.lighttpd.html?%C2 : OK
I can't understand this behavior.
Thank you very much.
OHNO, Tetsuji
-- System Information:
Debian Release: 10.0
APT prefers stable
APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.19.0-5-amd64 (SMP w/4 CPU cores)
Locale: LANG=ja_JP.UTF-8, LC_CTYPE=ja_JP.UTF-8 (charmap=UTF-8),
LANGUAGE=ja_JP.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages lighttpd depends on:
ii libattr1 1:2.4.48-4
ii libbz2-1.01.0.6-9.1
ii libc6 2.28-10
ii libfam0 2.7.0-17.3
ii libpcre3 2:8.39-12
ii libssl1.1 1.1.1c-1
ii lsb-base 10.2019051400
ii mime-support 3.62
ii zlib1g1:1.2.11.dfsg-1
Versions of packages lighttpd recommends:
ii lighttpd-modules-ldap 1.4.53-4
ii lighttpd-modules-mysql 1.4.53-4
ii perl5.28.1-6
ii spawn-fcgi 1.6.4-2
Versions of packages lighttpd suggests:
pn apache2-utils
pn lighttpd-doc
ii openssl1.1.1c-1
pn php-cgi
pn rrdtool
-- Configuration Files:
/etc/lighttpd/lighttpd.conf changed:
$HTTP["host"] == "10.0.0.1" {
userdir.path = "public_html"
userdir.exclude-user = ( "root", "postmaster" )
}
server.modules = (
"mod_indexfile",
"mod_access",
"mod_alias",
"mod_redirect",
)
server.document-root= "/var/www/html"
server.upload-dirs = ( "/var/cache/lighttpd/uploads" )
server.errorlog = "/var/log/lighttpd/error.log"
server.pid-file = "/var/run/lighttpd.pid"
server.username = "www-data"
server.groupname= "www-data"
server.port = 6080
server.http-parseopts = (
"header-strict" => "enable",# default
"host-strict" => "enable",# default
"host-normalize" => "enable",# default
"url-normalize-unreserved"=> "enable",# recommended highly
"url-normalize-required" => "enable",# recommended
"url-ctrls-reject"=> "enable",# recommended
"url-path-2f-decode" => "enable",# recommended highly (unless breaks app)
#"url-path-2f-reject" => "enable",
"url-path-dotseg-remove" => "enable",# recommended highly (unless breaks app)
#"url-path-dotseg-reject" => "enable",
#"url-query-20-plus" => "enable",# consistency in query string
)
index-file.names= ( "index.php", "index.html" )
url.access-deny = ( "~", ".inc" )
static-file.exclude-extensions = ( ".php", ".pl", ".fcgi" )
compress.cache-dir = "/var/cache/lighttpd/compress/"
compress.filetype = ( "application/javascript", "text/css",
"text/html", "text/plain" )
include_shell "/usr/share/lighttpd/use-ipv6.pl " + server.port
include_shell "/usr/share/lighttpd/create-mime.conf.pl"
include "/etc/lighttpd/conf-enabled/*.conf"
server.modules += (
"mod_compress",
"mod_dirlisting",
"mod_staticfile",
)
-- no debconf information
Processed: raising severity of GCC 9 ftbfs issues (will be raised further in July/August)
Processing commands for cont...@bugs.debian.org: > severity 925626 important Bug #925626 [src:acpi-support] acpi-support: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925722 important Bug #925722 [src:jq] jq: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925746 important Bug #925746 [src:libidn] libidn: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925762 important Bug #925762 [src:libunistring] libunistring: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925768 important Bug #925768 [src:linux-ftpd-ssl] linux-ftpd-ssl: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925842 important Bug #925842 [src:tstools] tstools: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925846 important Bug #925846 [src:usbrelay] usbrelay: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925848 important Bug #925848 [src:vacation] vacation: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925859 important Bug #925859 [src:wmwave] wmwave: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925863 important Bug #925863 [src:xcalib] xcalib: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925866 important Bug #925866 [src:xteddy] xteddy: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925624 important Bug #925624 [src:abinit] abinit: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925625 important Bug #925625 [src:abr2gbr] abr2gbr: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925627 important Bug #925627 [src:adplug] adplug: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925628 important Bug #925628 [src:afnix] afnix: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925629 important Bug #925629 [src:aghermann] aghermann: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925630 important Bug #925630 [src:aide] aide: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925631 important Bug #925631 [src:alljoyn-thin-client-1509] alljoyn-thin-client-1509: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925632 important Bug #925632 [src:alljoyn-thin-client-1604] alljoyn-thin-client-1604: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925633 important Bug #925633 [src:aplus-fsf] aplus-fsf: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925634 important Bug #925634 [src:apophenia] apophenia: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925637 important Bug #925637 [src:bcal] bcal: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925638 important Bug #925638 [src:belle-sip] belle-sip: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925639 important Bug #925639 [src:bind-dyndb-ldap] bind-dyndb-ldap: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925641 important Bug #925641 [src:binutils-mingw-w64] binutils-mingw-w64: FTBFS with binutils-source 2.32 Severity set to 'important' from 'normal' > severity 925643 important Bug #925643 [src:biosig4c++] biosig4c++: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925644 important Bug #925644 [src:bladerf] bladerf: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925645 important Bug #925645 [src:blender] blender: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925646 important Bug #925646 [src:bombardier] bombardier: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925647 important Bug #925647 [src:casync] casync: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925649 important Bug #925649 [src:cdo] cdo: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925650 important Bug #925650 [src:chasen] chasen: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925651 important Bug #925651 [src:cheesecutter] cheesecutter: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925652 important Bug #925652 [src:chktex] chktex: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925653 important Bug #925653 [src:clamfs] clamfs: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925654 important Bug #925654 [src:code-saturne] code-saturne: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925655 important Bug #925655 [src:colmap] colmap: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925656 important Bug #925656 [src:colobot] colobot: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925657 important Bug #925657 [src:condor] condor: ftbfs with GCC-9 Severity set to 'important' from 'normal' > severity 925658 important Bug #925658
