s_title = _("Installation check"); $this->s_title_long = _("Basic installation checks"); $this->s_info = _("Some basic checks for PHP version, ldap extension..."); } /* Execute and display template */ function execute() { $this->run_checks(); $smarty = get_smarty(); $smarty->assign("basic" ,$this->basic_checks); $smarty->assign("config" ,$this->config_checks); $smarty->assign("is_writeable",$this->is_writeable); return($smarty->fetch(get_template_path("setup_step2.tpl",TRUE,dirname(__FILE__)))); } /* Execute all checks */ function run_checks() { $this->basic_checks = array(); $this->config_checks = array(); $this->is_writeable = array(); /* PHP version check */ $N = _("Checking PHP version"); $D = sprintf(_("PHP must be of version %s or %s or above for some functions."),"4.3.10","5.2.0"); $S = _("GOsa requires functions that may not be available in older PHP versions, just update to a supported PHP version."); $R = $this->check_php_version(); $M = TRUE; $this->basic_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Checking imap extension */ $N = _("Checking for ldap module"); $D = _("This is the main module used by GOsa and therefore really required."); $S = _("The ldap module (PHP4-ldap/PHP5-ldap) is required to communicate with your ldap server."); $R = is_callable("ldap_bind"); $M = TRUE; $this->basic_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Check for gettext support */ $N = _("Checking for gettext support"); $D = _("Gettext support is required for internationalized GOsa."); $S = _("This should be activated while compiling your PHP. (--with-gettext)"); $R = is_callable("bindtextdomain"); $M = TRUE; $this->basic_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Checing for iconv */ $N = _("Checking for iconv support"); $D = _("This module is used by GOsa to convert samba munged dial informations and is therefore required. "); $S = _("his should be activated while compiling your PHP. (--with-iconv)"); $R = is_callable("iconv"); $M = TRUE; $this->basic_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Check for installed mhash module */ $N = _("Checking for mhash module"); $D = _("To use SSHA encryption, you'll need this module. GOsa will run without it."); $S = _("The mhash module for PHP 4/5 is not available, please install it. (php4-mhash/php5-mhash)"); $R = is_callable("mhash"); $M = FALSE; $this->basic_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Is imap module available */ $N = _("Checking for imap module"); $D = _("The IMAP module is needed to communicate with the IMAP server. It gets status informations, creates and deletes mail users."); $S = _("This module is used to communicate with your mail server. Please install (PHP4-imap PHP5-imap)"); $R = is_callable("imap_open"); $M = TRUE; $this->basic_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Check getacl in imap module */ $N = _("Checking for getacl in imap"); $D = _("The getacl support is needed for shared folder permissions. The standard IMAP module is not capable of reading acl's. You need a recend PHP version for this feature."); $S = $D; $R = is_callable("imap_getacl"); $M = TRUE; $this->basic_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Mysql module loaded ? */ $N = _("Checking for mysql module"); $D = _("MySQL support is needed for reading GOfax reports from databases."); $S = _("This module is required to communicate with database servers, for example used in phone and fax addons. Please install (PHP4-mysql PHP5-mysql)"); $R = is_callable("mysql_query"); $M = TRUE; $this->basic_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Checking for kadm5 module */ $N = _("Checking for kadm5 module"); $D = _("Managing users in kerberos requires the kadm5 module which is downloadable via PEAR network."); $S = _("This module is required to manage user in kerberos, it is downloadable via PEAR network"); $R = is_callable("kadm5_init_with_password"); $M = FALSE; $this->basic_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Snmp module available ? */ $N = _("Checking for snmp Module"); $D = _("Simple Network Management Protocol (SNMP) is required for client monitoring."); $S = _("This module is required for client monitoring. (PHP4-snmp/PHP5-snmp)"); $R = is_callable("snmpget"); $M = FALSE; $this->basic_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Checking for Cups module */ $N = _("Checking for cups module"); $D = _("In order to read available printers from IPP protocol instead of printcap files, you've to install the CUPS module."); $S = $D; $R = is_callable("cups_get_dest_list"); $M = FALSE; $this->basic_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Checking for F ping utility */ $query= "LC_ALL=C LANG=C fping -v 2>&1"; $output= shell_exec ($query); $N = _("Checking for fping utility"); $D = _("The fping utility is only used if you've got a thin client based terminal environment running."); $S = _("The fping utility is only used in thin client based terminal environment."); $R = preg_match("/^fping:/", $output); $M = FALSE; $this->basic_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Checking generate LM/NT password hashes */ $query= "mkntpwd 2>&1"; $output= shell_exec ($query); $have_mkntpwd= preg_match("/^Usage: mkntpwd /", $output); if (!$have_mkntpwd){ $query= 'LC_ALL=C LANG=C perl -MCrypt::SmbHash -e "print join(q[:], ntlmgen $ARGV[0]), $/;" &>/dev/null'; system ($query, $ret); $have_mkntpwd |= ($ret == 0); } $N = _("Password hashes"); $D = _("In order to use SAMBA 2/3, you've to install some additional packages to generate password hashes."); $S = _("In order to use samba 2/3 you've to install some additional packages to generate password hashes. (e.g. libmhash2)"); $R = $have_mkntpwd; $M = TRUE; $this->basic_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* PHP Configuration checks */ /* Register_globals off */ $N = _("register_globals"." ".""._("Off").""); $D = _("register_globals is a PHP mechanism to register all global varibales to be accessible from scripts without changing the scope. This may be a security risk. GOsa will run in both modes."); $S = _("Search for 'register_globals' in your php.ini and switch it to 'Off'."); $R = ini_get("register_globals") == 0; $M = FALSE; $this->config_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* session lifetime set to >=86400 seconds ? */ $N = ("session.gc_maxlifetime"." "." >= 86400"); $D = _("PHP uses this value for the garbage collector to delete old sessions.")." ". _("Setting this value to one day will prevent loosing session and cookie before they really timeout."); $S = _("Serach for 'session.gc_maxlifetime' in your php.ini and set it to 86400 or higher."); $R = ini_get("session.gc_maxlifetime") >= 86400; $M = FALSE; $this->config_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Session auto start must be turned off */ $session_auto_start = ini_get('session.auto_start'); $N = _("session.auto_start"." ".""._("Off").""); $D = _("In Order to use GOsa without any trouble, the session.auto_register option in your php.ini must be set to 'Off'."); $S = _("Serach for 'session.auto_start' in your php.ini and set it to 'Off'."); $R = !$session_auto_start['local_value']; $M = TRUE; $this->config_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Check if memory limit is set to 32 or > */ $N = _("memory_limit")." "." >= 32"; $D = _("GOsa needs at least 32MB of memory, less will cause unpredictable errors! Increase it for larger setups."); $S = _("Search for 'memory_limit' in your php.ini and set it to '32M' or higher."); $R = ini_get('memory_limit') >= 32 ; $M = TRUE; $this->config_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Implicit Flush disabled can increase performance */ $N = _("implicit_flush")." ".""._("Off").""; $D = _("This option influences the Output handling. Turn this Option off, to increase performance."); $S = _("Search for 'implicit_flush' in your php.ini and set it to 'Off'."); $R = ini_get('implicit_flush'); $M = FALSE; $this->config_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Check if execution time is set to 30 */ $N = _("max_execution_time")." "." >= 30"; $D = _("The Execution time should be at least 30 seconds, because some actions may consume more time."); $S = _("Search for 'max_execution_time' in your php.ini and set it to '30' or higher."); $R = ini_get("max_execution_time") >= 30 ; $M = TRUE; $this->config_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Expose php should be set to off */ $N = _("expose_php")." "._("Off").""; $D = _("Increase the server security by setting expose_php to 'off'. PHP won't send any Information about the server you are running in this case."); $S = _("Search for 'expose_php' in your php.ini and set if to 'Off'."); $R = !ini_get("expose_php"); $M = FALSE; $this->config_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Automatic quoting must be turned on */ $N = _("magic_quotes_gpc")." "._("On").""; $D = _("Increase your server security by setting magic_quotes_gpc to 'on'. PHP will escape all quotes in strings in this case."); $S = _("Search for 'magic_quotes_gpc' in yout php.ini and set it to 'On'."); $R = ini_get('magic_quotes_gpc'); $M = TRUE; $this->config_checks[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* Configuration file */ /* Check if we can create a config file.*/ $N = _("Configuration file writeable."); $D = _("The Configuration file can't be written"); $S = _("The GOsa reads its configuration from a file located in (/etc/gosa/gosa.conf). The setup can write the configuration directly in this file, if it is writeable."); $R = ( file_exists("/etc/gosa/gosa.conf") && is_writeable("/etc/gosa/gosa.conf")) // is there a config file ? || (!file_exists("/etc/gosa/gosa.conf") && is_writeable("/etc/gosa")); // There is non, but can we create a file there ? $M = FALSE; $this->is_writeable[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); /* If we have writeaccess to the config dir, check if there is already a config file */ if($R){ /* check if there is already a config file. */ $N = _("No old configuration file."); $D = "";//_(""); $S = _("If there is already a configuration file, this file will be overwritten when GOsa setup finishes. Please move your old config file away."); $R = !file_exists("/etc/gosa/gosa.conf"); $M = FALSE; $this->is_writeable[] = array("NAME" => $N , "DESC" => $D , "RESULT" => $R , "SOLUTION" => $S , "MUST" => $M ); } } function save_object() { /* If everything is fine, set this step to completed * and allow switching to next setup step */ $failed = false; foreach(array("basic_checks","config_checks","is_writeable") as $type){ foreach($this->$type as $obj){ if($obj['MUST'] && !$obj['RESULT']){ $failed = true; break; } } } $this->is_completed = !$failed; } /* Check if current PHP version is compatible with the current version of GOsa */ function check_php_version() { if(preg_match("/^5/",phpversion())){ return(version_compare(phpversion(),"5.2.0",">=")); }else{ return(version_compare(phpversion(),"4.3.10",">=")); } } } // vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler: ?>