X-Git-Url: https://vcs.fsf.org/?p=squirrelmail.git;a=blobdiff_plain;f=src%2Fconfigtest.php;h=7b2049d0b5e27545cb65a539343d6a62485ea844;hp=2347ce2a5ab7d29643d0ce4efe871f55f8a3faf1;hb=2cbaf68d7c33d85dce89a5156704fcb664118e48;hpb=6c84ba1ec45ab854c37b6f65c5b4d84ab1c7aad4 diff --git a/src/configtest.php b/src/configtest.php index 2347ce2a..7b2049d0 100644 --- a/src/configtest.php +++ b/src/configtest.php @@ -3,9 +3,8 @@ /** * SquirrelMail configtest script * - * Copyright (c) 2003-2005 The SquirrelMail Project Team - * Licensed under the GNU GPL. For full terms see the file COPYING. - * + * @copyright © 2003-2007 The SquirrelMail Project Team + * @license http://opensource.org/licenses/gpl-license.php GNU Public License * @version $Id$ * @package squirrelmail * @subpackage config @@ -19,35 +18,125 @@ // This script could really use some restructuring as it has grown quite rapidly // but is not very 'clean'. Feel free to get some structure into this thing. -function do_err($str, $exit = TRUE) { - global $IND; - echo '

'.$IND.'ERROR: ' .$str. "

\n"; - if($exit) { - echo ''; - exit; +/** force verbose error reporting and turn on display of errors */ +error_reporting(E_ALL); +ini_set('display_errors',1); + +/** Blockcopy from init.php. Cleans globals. */ +if ((bool) ini_get('register_globals') && + strtolower(ini_get('register_globals'))!='off') { + /** + * Remove all globals that are not reserved by PHP + * 'value' and 'key' are used by foreach. Don't unset them inside foreach. + */ + foreach ($GLOBALS as $key => $value) { + switch($key) { + case 'HTTP_POST_VARS': + case '_POST': + case 'HTTP_GET_VARS': + case '_GET': + case 'HTTP_COOKIE_VARS': + case '_COOKIE': + case 'HTTP_SERVER_VARS': + case '_SERVER': + case 'HTTP_ENV_VARS': + case '_ENV': + case 'HTTP_POST_FILES': + case '_FILES': + case '_REQUEST': + case 'HTTP_SESSION_VARS': + case '_SESSION': + case 'GLOBALS': + case 'key': + case 'value': + break; + default: + unset($GLOBALS[$key]); + } } + // Unset variables used in foreach + unset($GLOBALS['key']); + unset($GLOBALS['value']); } -$IND = str_repeat(' ',4); + +/** + * Displays error messages and warnings + * @param string $str message + * @param boolean $fatal fatal error or only warning + */ +function do_err($str, $fatal = TRUE) { + global $IND, $warnings; + $level = $fatal ? 'FATAL ERROR:' : 'WARNING:'; + echo '

'.$IND.'' . $level . ' ' .$str. "

\n"; + if($fatal) { + echo ''; + exit; + } else { + $warnings++; + } +} ob_implicit_flush(); /** @ignore */ define('SM_PATH', '../'); - -/* - * Load config before output begins. functions/strings.php depends on - * functions/globals.php. functions/global.php needs to be run before - * any html output starts. If config.php is missing, error will be displayed - * later. - */ +/** load minimal function set */ +require(SM_PATH . 'include/constants.php'); +require(SM_PATH . 'functions/global.php'); +require(SM_PATH . 'functions/strings.php'); +$SQM_INTERNAL_VERSION = preg_split('/\./', SM_VERSION, 3); +$SQM_INTERNAL_VERSION[2] = intval($SQM_INTERNAL_VERSION[2]); + +/** set default value in order to block remote access */ +$allow_remote_configtest=false; + +/** Load all configuration files before output begins */ + +/* load default configuration */ +require(SM_PATH . 'config/config_default.php'); +/* reset arrays in default configuration */ +$ldap_server = array(); +$plugins = array(); +$fontsets = array(); +$theme = array(); +$theme[0]['PATH'] = SM_PATH . 'themes/default_theme.php'; +$theme[0]['NAME'] = 'Default'; +$aTemplateSet = array(); +$aTemplateSet[0]['ID'] = 'default'; +$aTemplateSet[0]['NAME'] = 'Default'; +/* load site configuration */ if (file_exists(SM_PATH . 'config/config.php')) { - include(SM_PATH . 'config/config.php'); - include(SM_PATH . 'functions/strings.php'); + require(SM_PATH . 'config/config.php'); +} +/* load local configuration overrides */ +if (file_exists(SM_PATH . 'config/config_local.php')) { + require(SM_PATH . 'config/config_local.php'); +} + +/** Load plugins */ +global $disable_plugins; +$squirrelmail_plugin_hooks = array(); +if (!$disable_plugins && file_exists(SM_PATH . 'config/plugin_hooks.php')) { + require(SM_PATH . 'config/plugin_hooks.php'); } -?> + +/** Warning counter */ +$warnings = 0; + +/** indent */ +$IND = str_repeat(' ',4); + +/** + * get_location starts session and must be run before output is started. + */ +$test_location = get_location(); + +?> - SquirrelMail configtest + + SquirrelMail configtest

SquirrelMail configtest

@@ -58,27 +147,41 @@ in the config/ directory first before you run this script.

'. - 'You need to run conf.pl first.'); + 'You need to run conf.pl first.'); } do_err('Could not read '.SM_PATH.'config/config.php! Check file permissions.'); } if(!in_array('strings.php', $included)) { do_err('Could not include '.SM_PATH.'functions/strings.php!
'. - 'Check permissions on that file.'); + 'Check permissions on that file.'); } +/* Block remote use of script */ +if (! $allow_remote_configtest) { + sqGetGlobalVar('REMOTE_ADDR',$client_ip,SQ_SERVER); + sqGetGlobalVar('SERVER_ADDR',$server_ip,SQ_SERVER); + + if ((! isset($client_ip) || $client_ip!='127.0.0.1') && + (! isset($client_ip) || ! isset($server_ip) || $client_ip!=$server_ip)) { + do_err('Enable "Allow remote configtest" option in squirrelmail configuration in order to use this script.'); + } +} /* checking PHP specs */ -echo "

\n\n" . - '\n" . - '\n
SquirrelMail version:" . $version . "
Config file version:' . $config_version . "
Config file last modified:' . - date ('d F Y H:i:s', filemtime(SM_PATH . 'config/config.php')) . - "
\n

\n\n"; +echo "

\n\n" . + '\n" . + '\n
SquirrelMail version:" . SM_VERSION . "
Config file version:' . $config_version . "
Config file last modified:' . + date ('d F Y H:i:s', filemtime(SM_PATH . 'config/config.php')) . + "
\n

\n\n"; + +/* check $config_version */ +if ($config_version!='1.5.0') { + do_err('Configuration file version does not match required version. Please update your configuration file.'); +} echo "Checking PHP configuration...
\n"; @@ -86,8 +189,12 @@ if(!check_php_version(4,1,0)) { do_err('Insufficient PHP version: '. PHP_VERSION . '! Minimum required: 4.1.0'); } -echo $IND . 'PHP version ' . PHP_VERSION . " OK.
\n"; - +echo $IND . 'PHP version ' . PHP_VERSION . ' OK. (You have: ' . phpversion() . ". Minimum: 4.1.0)
\n"; +/* test for boolean false and any string that is not equal to 'off' */ +if ((bool) ini_get('register_globals') && + strtolower(ini_get('register_globals'))!='off') { + do_err('You have register_globals turned on. This is not an error, but it CAN be a security hazard. Consider turning register_globals off.', false); +} $php_exts = array('session','pcre'); $diff = array_diff($php_exts, get_loaded_extensions()); if(count($diff)) { @@ -96,30 +203,81 @@ if(count($diff)) { echo $IND . "PHP extensions OK.
\n"; +/* dangerous php settings */ +/** + * mbstring.func_overload allows to replace original string and regexp functions + * with their equivalents from php mbstring extension. It causes problems when + * scripts analyze 8bit strings byte after byte or use 8bit strings in regexp tests. + * Setting can be controlled in php.ini (php 4.2.0), webserver config (php 4.2.0) + * and .htaccess files (php 4.3.5). + */ +if (function_exists('mb_internal_encoding') && + check_php_version(4,2,0) && + (int)ini_get('mbstring.func_overload')!=0) { + $mb_error='You have enabled mbstring overloading.' + .' It can cause problems with SquirrelMail scripts that rely on single byte string functions.'; + do_err($mb_error); +} + +/** + * Do not use SquirrelMail with magic_quotes_* on. + */ +if ( get_magic_quotes_runtime() || get_magic_quotes_gpc() || + ( (bool) ini_get('magic_quotes_sybase') && ini_get('magic_quotes_sybase') != 'off' ) + ) { + $magic_quotes_warning='You have enabled any one of magic_quotes_runtime, ' + .'magic_quotes_gpc or magic_quotes_sybase in your PHP ' + .'configuration. We recommend all those settings to be off. SquirrelMail ' + .'may work with them on, but when experiencing stray backslashes in your mail ' + .'or other strange behaviour, it may be advisable to turn them off.'; + do_err($magic_quotes_warning,false); +} + /* checking paths */ echo "Checking paths...
\n"; if(!file_exists($data_dir)) { - do_err("Data dir ($data_dir) does not exist!"); -} -if(!is_dir($data_dir)) { - do_err("Data dir ($data_dir) is not a directory!"); + // data_dir is not that important in db_setups. + if (isset($prefs_dsn) && ! empty($prefs_dsn)) { + $data_dir_error = "Data dir ($data_dir) does not exist!\n"; + echo $IND .'ERROR: ' . $data_dir_error; + } else { + do_err("Data dir ($data_dir) does not exist!"); + } } -if(!is_readable($data_dir)) { - do_err("I cannot read from data dir ($data_dir)!"); +// don't check if errors +if(!isset($data_dir_error) && !is_dir($data_dir)) { + if (isset($prefs_dsn) && ! empty($prefs_dsn)) { + $data_dir_error = "Data dir ($data_dir) is not a directory!\n"; + echo $IND . 'ERROR: ' . $data_dir_error; + } else { + do_err("Data dir ($data_dir) is not a directory!"); + } } -if(!is_writable($data_dir)) { - do_err("I cannot write to data dir ($data_dir)!"); +// datadir should be executable - but no clean way to test on that +if(!isset($data_dir_error) && !is_writable($data_dir)) { + if (isset($prefs_dsn) && ! empty($prefs_dsn)) { + $data_dir_error = "Data dir ($data_dir) is not writable!\n"; + echo $IND . 'ERROR: ' . $data_dir_error; + } else { + do_err("Data dir ($data_dir) is not writable!"); + } } -// todo_ornot: actually write something and read it back. -echo $IND . "Data dir OK.
\n"; - +if (isset($data_dir_error)) { + echo " Some plugins might need access to data directory.
\n"; +} else { + // todo_ornot: actually write something and read it back. + echo $IND . "Data dir OK.
\n"; +} if($data_dir == $attachment_dir) { echo $IND . "Attachment dir is the same as data dir.
\n"; + if (isset($data_dir_error)) { + do_err($data_dir_error); + } } else { if(!file_exists($attachment_dir)) { do_err("Attachment dir ($attachment_dir) does not exist!"); @@ -134,16 +292,99 @@ if($data_dir == $attachment_dir) { } +echo "Checking plugins...
\n"; + /* check plugins and themes */ +//FIXME: check requirements given in plugin _info() function, such +// as required PHP extensions, Pear packages, other plugins, SM version, etc +// see development docs for list of returned info from that function +$bad_plugins = array( + 'attachment_common', // Integrated into SquirrelMail 1.2 core + 'auto_prune_sent', // Obsolete: See Proon Automatic Folder Pruning plugin + 'compose_new_window', // Integrated into SquirrelMail 1.4 core + 'delete_move_next', // Integrated into SquirrelMail 1.5 core + 'disk_quota', // Obsolete: See Check Quota plugin + 'email_priority', // Integrated into SquirrelMail 1.2 core + 'emoticons', // Obsolete: See HTML Mail plugin + 'focus_change', // Integrated into SquirrelMail 1.2 core + 'folder_settings', // Integrated into SquirrelMail 1.5.1 core + 'global_sql_addressbook', // Integrated into SquirrelMail 1.4 core + 'hancock', // Not Working: See Random Signature Taglines plugin + 'msg_flags', // Integrated into SquirrelMail 1.5.1 core + 'message_source', // Added to SquirrelMail 1.4 Core Plugins (message_details) + 'motd', // Integrated into SquirrelMail 1.2 core + 'paginator', // Integrated into SquirrelMail 1.2 core + 'printer_friendly', // Integrated into SquirrelMail 1.2 core + 'procfilter', // Obsolete: See Server Side Filter plugin + 'redhat_php_cgi_fix', // Integrated into SquirrelMail 1.1.1 core + 'send_to_semicolon', // Integrated into SquirrelMail 1.4.1 core + 'spamassassin', // Not working beyond SquirrelMail 1.2.7: See Spamassassin SpamFilter (Frontend) v2 plugin + 'sqcalendar', // Added to SquirrelMail 1.2 Core Plugins (calendar) + 'sqclock', // Integrated into SquirrelMail 1.2 core + 'sql_squirrel_logger', // Obsolete: See Squirrel Logger plugin + 'tmda', // Obsolete: See TMDA Tools plugin + 'vacation', // Obsolete: See Vacation Local plugin + 'view_as_html', // Integrated into SquirrelMail 1.5.1 core + 'xmailer' // Integrated into SquirrelMail 1.2 core + ); + if (isset($plugins[0])) { foreach($plugins as $plugin) { if(!file_exists(SM_PATH .'plugins/'.$plugin)) { - do_err('You have enabled the '.$plugin.' plugin but I cannot find it.', FALSE); + do_err('You have enabled the '.$plugin.' plugin, but I cannot find it.', FALSE); } elseif (!is_readable(SM_PATH .'plugins/'.$plugin.'/setup.php')) { - do_err('You have enabled the '.$plugin.' plugin but I cannot read its setup.php file.', FALSE); + do_err('You have enabled the '.$plugin.' plugin, but I cannot read its setup.php file.', FALSE); + } elseif (in_array($plugin, $bad_plugins)) { + do_err('You have enabled the '.$plugin.' plugin, which causes problems with this version of SquirrelMail. Please check the ReleaseNotes or other documentation for more information.', false); } } - echo $IND . "Plugins OK.
\n"; + // load plugin functions + include_once(SM_PATH . 'functions/plugin.php'); + // turn on output buffering in order to prevent output of new lines + ob_start(); + foreach ($plugins as $name) { + use_plugin($name); + } + // get output and remove whitespace + $output = trim(ob_get_contents()); + ob_end_clean(); + // if plugins output more than newlines and spacing, stop script execution. + if (!empty($output)) { + $plugin_load_error = 'Some output is produced when plugins are loaded. Usually this means there is an error in one of the plugin setup or configuration files. The output was: '.htmlspecialchars($output); + do_err($plugin_load_error); + } + /** + * Print plugin versions + */ + echo $IND . "Plugin versions...
\n"; + foreach ($plugins as $name) { + $plugin_version = get_plugin_version($name); + if (!empty($plugin_version)) + echo $IND . $IND . $name . ' ' . $plugin_version . "
\n"; + + // check if this plugin has any other plugin + // dependencies and if they are satisfied + // + $failed_dependencies = check_plugin_dependencies($name); + if (is_array($failed_dependencies)) { + $missing_plugins = ''; + foreach ($failed_dependencies as $depend_name => $depend_version) { + $missing_plugins .= ', ' . $depend_name . ' (version ' . $depend_version . ')'; + } + do_err($name . ' is missing some dependencies: ' . trim($missing_plugins, ', '), FALSE); + } + + } + /** + * This hook was added in 1.5.2 and 1.4.10. Each plugins should print an error + * message and return TRUE if there are any errors in its setup/configuration. + */ + $plugin_err = boolean_hook_function('configtest', $null, 1); + if($plugin_err) { + do_err('Some plugin tests failed.'); + } else { + echo $IND . "Plugins OK.
\n"; + } } else { echo $IND . "Plugins are not enabled in config.
\n"; } @@ -157,10 +398,32 @@ foreach($theme as $thm) { echo $IND . "Themes OK.
\n"; +if ( $squirrelmail_default_language != 'en_US' ) { + $loc_path = SM_PATH .'locale/'.$squirrelmail_default_language.'/LC_MESSAGES/squirrelmail.mo'; + if( ! file_exists( $loc_path ) ) { + do_err('You have set ' . $squirrelmail_default_language . + ' as your default language, but I cannot find this translation (should be '. + 'in ' . $loc_path . '). Please note that you have to download translations '. + 'separately from the main SquirrelMail package.', FALSE); + } elseif ( ! is_readable( $loc_path ) ) { + do_err('You have set ' . $squirrelmail_default_language . + ' as your default language, but I cannot read this translation (file '. + 'in ' . $loc_path . ' unreadable).', FALSE); + } else { + echo $IND . "Default language OK.
\n"; + } +} else { + echo $IND . "Default language OK.
\n"; +} -/* check outgoing mail */ +echo $IND . "Base URL detected as: " . htmlspecialchars($test_location) . + " (location base " . (empty($config_location_base) ? 'autodetected' : 'set to ' . + htmlspecialchars($config_location_base)."") . ")
\n"; -if($use_smtp_tls || $use_imap_tls) { +/* check minimal requirements for other security options */ + +/* imaps or ssmtp */ +if($use_smtp_tls == 1 || $use_imap_tls == 1) { if(!check_php_version(4,3,0)) { do_err('You need at least PHP 4.3.0 for SMTP/IMAP TLS!'); } @@ -168,6 +431,20 @@ if($use_smtp_tls || $use_imap_tls) { do_err('You need the openssl PHP extension to use SMTP/IMAP TLS!'); } } +/* starttls extensions */ +if($use_smtp_tls === 2 || $use_imap_tls === 2) { + if (! function_exists('stream_socket_enable_crypto')) { + do_err('If you want to use STARTTLS extension, you need stream_socket_enable_crypto() function from PHP 5.1.0 and newer.'); + } +} +/* digest-md5 */ +if ($smtp_auth_mech=='digest-md5' || $imap_auth_mech =='digest-md5') { + if (!extension_loaded('xml')) { + do_err('You need the PHP XML extension to use Digest-MD5 authentication!'); + } +} + +/* check outgoing mail */ echo "Checking outgoing mail service....
\n"; @@ -182,37 +459,87 @@ if($useSendmail) { echo $IND . "sendmail OK
\n"; } else { - $stream = fsockopen( ($use_smtp_tls?'tls://':'').$smtpServerAddress, $smtpPort, - $errorNumber, $errorString); + $stream = fsockopen( ($use_smtp_tls==1?'tls://':'').$smtpServerAddress, $smtpPort, + $errorNumber, $errorString); if(!$stream) { do_err("Error connecting to SMTP server \"$smtpServerAddress:$smtpPort\".". - "Server error: ($errorNumber) ".htmlspecialchars($errorString)); + "Server error: ($errorNumber) ".htmlspecialchars($errorString)); } // check for SMTP code; should be 2xx to allow us access $smtpline = fgets($stream, 1024); if(((int) $smtpline{0}) > 3) { do_err("Error connecting to SMTP server. Server error: ". - htmlspecialchars($smtpline)); + htmlspecialchars($smtpline)); + } + + /* smtp starttls checks */ + if ($use_smtp_tls===2) { + // if something breaks, script should close smtp connection on exit. + + // say helo + fwrite($stream,"EHLO $client_ip\r\n"); + + $ehlo=array(); + $ehlo_error = false; + while ($line=fgets($stream, 1024)){ + if (preg_match("/^250(-|\s)(\S*)\s+(\S.*)/",$line,$match)|| + preg_match("/^250(-|\s)(\S*)\s+/",$line,$match)) { + if (!isset($match[3])) { + // simple one word extension + $ehlo[strtoupper($match[2])]=''; + } else { + // ehlo-keyword + ehlo-param + $ehlo[strtoupper($match[2])]=trim($match[3]); + } + if ($match[1]==' ') { + $ret = $line; + break; + } + } else { + // + $ehlo_error = true; + $ehlo[]=$line; + break; + } + } + if ($ehlo_error) { + do_err('SMTP EHLO failed. You need ESMTP support for SMTP STARTTLS'); + } elseif (!array_key_exists('STARTTLS',$ehlo)) { + do_err('STARTTLS support is not declared by SMTP server.'); + } + + fwrite($stream,"STARTTLS\r\n"); + $starttls_response=fgets($stream, 1024); + if ($starttls_response[0]!=2) { + $starttls_cmd_err = 'SMTP STARTTLS failed. Server replied: ' + .htmlspecialchars($starttls_response); + do_err($starttls_cmd_err); + } elseif(! stream_socket_enable_crypto($stream,true,STREAM_CRYPTO_METHOD_TLS_CLIENT)) { + do_err('Failed to enable encryption on SMTP STARTTLS connection.'); + } else { + echo $IND . "SMTP STARTTLS extension looks OK.
\n"; + } + // According to RFC we should second ehlo call here. } fputs($stream, 'QUIT'); fclose($stream); echo $IND . 'SMTP server OK ('. - trim(htmlspecialchars($smtpline)).")
\n"; + trim(htmlspecialchars($smtpline)).")
\n"; /* POP before SMTP */ if($pop_before_smtp) { $stream = fsockopen($smtpServerAddress, 110, $err_no, $err_str); if (!$stream) { do_err("Error connecting to POP Server ($smtpServerAddress:110) " - . $err_no . ' : ' . htmlspecialchars($err_str)); + . $err_no . ' : ' . htmlspecialchars($err_str)); } $tmp = fgets($stream, 1024); if (substr($tmp, 0, 3) != '+OK') { do_err("Error connecting to POP Server ($smtpServerAddress:110)" - . ' '.htmlspecialchars($tmp)); + . ' '.htmlspecialchars($tmp)); } fputs($stream, 'QUIT'); fclose($stream); @@ -226,19 +553,19 @@ if($useSendmail) { echo "Checking IMAP service....
\n"; /** Can we open a connection? */ -$stream = fsockopen( ($use_imap_tls?'tls://':'').$imapServerAddress, $imapPort, - $errorNumber, $errorString); +$stream = fsockopen( ($use_imap_tls==1?'tls://':'').$imapServerAddress, $imapPort, + $errorNumber, $errorString); if(!$stream) { do_err("Error connecting to IMAP server \"$imapServerAddress:$imapPort\".". - "Server error: ($errorNumber) ". - htmlspecialchars($errorString)); + "Server error: ($errorNumber) ". + htmlspecialchars($errorString)); } /** Is the first response 'OK'? */ $imapline = fgets($stream, 1024); if(substr($imapline, 0,4) != '* OK') { - do_err('Error connecting to IMAP server. Server error: '. - htmlspecialchars($imapline)); + do_err('Error connecting to IMAP server. Server error: '. + htmlspecialchars($imapline)); } echo $IND . 'IMAP server ready ('. @@ -246,41 +573,145 @@ echo $IND . 'IMAP server ready ('. /** Check capabilities */ fputs($stream, "A001 CAPABILITY\r\n"); -$capline = fgets($stream, 1024); +$capline = ''; +while ($line=fgets($stream, 1024)){ + if (preg_match("/A001.*/",$line)) { + break; + } else { + $capline.=$line; + } +} + +/* don't display capabilities before STARTTLS */ +if ($use_imap_tls===2 && stristr($capline, 'STARTTLS') === false) { + do_err('Your server doesn\'t support STARTTLS.'); +} elseif($use_imap_tls===2) { + /* try starting starttls */ + fwrite($stream,"A002 STARTTLS\r\n"); + $starttls_line=fgets($stream, 1024); + if (! preg_match("/^A002 OK.*/i",$starttls_line)) { + $imap_starttls_err = 'IMAP STARTTLS failed. Server replied: ' + .htmlspecialchars($starttls_line); + do_err($imap_starttls_err); + } elseif (! stream_socket_enable_crypto($stream,true,STREAM_CRYPTO_METHOD_TLS_CLIENT)) { + do_err('Failed to enable encryption on IMAP connection.'); + } else { + echo $IND . "IMAP STARTTLS extension looks OK.
\n"; + } + + // get new capability line + fwrite($stream,"A003 CAPABILITY\r\n"); + $capline=''; + while ($line=fgets($stream, 1024)){ + if (preg_match("/A003.*/",$line)) { + break; + } else { + $capline.=$line; + } + } +} echo $IND . 'Capabilities: '.htmlspecialchars($capline)."
\n"; if($imap_auth_mech == 'login' && stristr($capline, 'LOGINDISABLED') !== FALSE) { do_err('Your server doesn\'t allow plaintext logins. '. - 'Try enabling another authentication mechanism like CRAM-MD5, DIGEST-MD5 or TLS-encryption '. - 'in the SquirrelMail configuration.', FALSE); + 'Try enabling another authentication mechanism like CRAM-MD5, DIGEST-MD5 or TLS-encryption '. + 'in the SquirrelMail configuration.', FALSE); } -if($use_imap_tls && stristr($capline, 'STARTTLS') === FALSE) { - do_err('You have enabled TLS encryption in the config, but the server does not '. - 'report STARTTLS capability. TLS is probably not supported.', FALSE); + +if (stristr($capline, 'XMAGICTRASH') !== false) { + $magic_trash = 'It looks like IMAP_MOVE_EXPUNGE_TO_TRASH option is turned on ' + .'in your Courier IMAP configuration. Courier does not provide tools that ' + .'allow to detect folder used for Trash or commands are not documented. ' + .'SquirrelMail can\'t detect special trash folder. SquirrelMail manages ' + .'all message deletion or move operations internally and ' + .'IMAP_MOVE_EXPUNGE_TO_TRASH option can cause errors in message and ' + .'folder management operations. Please turn off IMAP_MOVE_EXPUNGE_TO_TRASH ' + .'option in Courier imapd configuration.'; + do_err($magic_trash,false); +} + +/* add warning about IMAP delivery */ +if (stristr($capline, 'XCOURIEROUTBOX') !== false) { + $courier_outbox = 'OUTBOX setting is enabled in your Courier imapd ' + .'configuration. SquirrelMail uses standard SMTP protocol or sendmail ' + .'binary to send emails. Courier IMAP delivery method is not supported' + .' and can create duplicate email messages.'; + do_err($courier_outbox,false); } /** OK, close connection */ -fputs($stream, "A002 LOGOUT\r\n"); +fputs($stream, "A004 LOGOUT\r\n"); fclose($stream); echo "Checking internationalization (i18n) settings...
\n"; echo "$IND gettext - "; if (function_exists('gettext')) { - echo "Gettext functions are available. You must have appropriate system locales compiled.
\n"; + echo 'Gettext functions are available.' + .' On some systems you must have appropriate system locales compiled.' + ."
\n"; + + /* optional setlocale() tests. Should work only on glibc systems. */ + if (sqgetGlobalVar('testlocales',$testlocales,SQ_GET)) { + include_once(SM_PATH . 'include/languages.php'); + echo $IND . $IND . 'Testing translations:
'; + foreach ($languages as $lang_code => $lang_data) { + /* don't test aliases */ + if (isset($lang_data['NAME'])) { + /* locale can be $lang_code or $lang_data['LOCALE'] */ + if (isset($lang_data['LOCALE'])) { + $setlocale = $lang_data['LOCALE']; + } else { + $setlocale = $lang_code; + } + /* prepare information about tested locales */ + if (is_array($setlocale)) { + $display_locale = implode(', ',$setlocale); + $locale_count = count($setlocale); + } else { + $display_locale = $setlocale; + $locale_count = 1; + } + $tested_locales_msg = 'Tested '.htmlspecialchars($display_locale).' ' + .($locale_count>1 ? 'locales':'locale'). '.'; + + echo $IND . $IND .$IND . $lang_data['NAME'].' (' .$lang_code. ') - '; + $retlocale = sq_setlocale(LC_ALL,$setlocale); + if (is_bool($retlocale)) { + echo 'unsupported. '; + echo $tested_locales_msg; + } else { + echo 'supported. ' + .$tested_locales_msg + .' setlocale() returned "'.htmlspecialchars($retlocale).'"'; + } + echo "
\n"; + } + } + echo $IND . $IND . 'Don\'t test translations'; + } else { + echo $IND . $IND . 'Test translations. ' + .'This test is not accurate and might work only on some systems.' + ."\n"; + } + echo "
\n"; + /* end of translation tests */ } else { - echo "Gettext functions are unavailable. SquirrelMail will use slower internal gettext functions.
\n"; + echo 'Gettext functions are unavailable.' + .' SquirrelMail will use slower internal gettext functions.' + ."
\n"; } echo "$IND mbstring - "; if (function_exists('mb_detect_encoding')) { echo "Mbstring functions are available.
\n"; } else { - echo "Mbstring functions are unavailable. Japanese translation won't work.
\n"; + echo 'Mbstring functions are unavailable.' + ." Japanese translation won't work.
\n"; } echo "$IND recode - "; if (function_exists('recode')) { echo "Recode functions are available.
\n"; -} elseif ($use_php_recode) { +} elseif (isset($use_php_recode) && $use_php_recode) { echo "Recode functions are unavailable.
\n"; do_err('Your configuration requires recode support, but recode support is missing.'); } else { @@ -289,22 +720,27 @@ if (function_exists('recode')) { echo "$IND iconv - "; if (function_exists('iconv')) { echo "Iconv functions are available.
\n"; -} elseif ($use_php_iconv) { +} elseif (isset($use_php_iconv) && $use_php_iconv) { echo "Iconv functions are unavailable.
\n"; do_err('Your configuration requires iconv support, but iconv support is missing.'); } else { echo "Iconv functions are unavailable.
\n"; } -// same test as in include/validate.php +// same test as in include/init.php + date_default_timezone_set check echo "$IND timezone - "; -if ( (!ini_get('safe_mode')) || - !strcmp(ini_get('safe_mode_allowed_env_vars'),'') || - preg_match('/^([\w_]+,)*TZ/', ini_get('safe_mode_allowed_env_vars')) ) { - echo "Webmail users can change their time zone settings.
\n"; +if ( (!ini_get('safe_mode')) || function_exists('date_default_timezone_set') || + !strcmp(ini_get('safe_mode_allowed_env_vars'),'') || + preg_match('/^([\w_]+,)*TZ/', ini_get('safe_mode_allowed_env_vars')) ) { + echo "Webmail users can change their time zone settings. \n"; } else { - echo "Webmail users can't change their time zone settings.
\n"; + echo "Webmail users can't change their time zone settings. \n"; } - +if (isset($_ENV['TZ'])) { + echo 'Default time zone is '.htmlspecialchars($_ENV['TZ']); +} else { + echo 'Current time zone is '.date('T'); +} +echo ".
\n"; // Pear DB tests echo "Checking database functions...
\n"; @@ -313,20 +749,20 @@ if($addrbook_dsn || $prefs_dsn || $addrbook_global_dsn) { if (class_exists('DB')) { echo "$IND PHP Pear DB support is present.
\n"; $db_functions=array( - 'dbase' => 'dbase_open', - 'fbsql' => 'fbsql_connect', - 'interbase' => 'ibase_connect', - 'informix' => 'ifx_connect', - 'msql' => 'msql_connect', - 'mssql' => 'mssql_connect', - 'mysql' => 'mysql_connect', - 'mysqli' => 'mysqli_connect', - 'oci8' => 'ocilogon', - 'odbc' => 'odbc_connect', - 'pgsql' => 'pgsql_connect', - 'sqlite' => 'sqlite_open', - 'sybase' => 'sybase_connect' - ); + 'dbase' => 'dbase_open', + 'fbsql' => 'fbsql_connect', + 'interbase' => 'ibase_connect', + 'informix' => 'ifx_connect', + 'msql' => 'msql_connect', + 'mssql' => 'mssql_connect', + 'mysql' => 'mysql_connect', + 'mysqli' => 'mysqli_connect', + 'oci8' => 'ocilogon', + 'odbc' => 'odbc_connect', + 'pgsql' => 'pg_connect', + 'sqlite' => 'sqlite_open', + 'sybase' => 'sybase_connect' + ); $dsns = array(); if($prefs_dsn) { @@ -340,7 +776,8 @@ if($addrbook_dsn || $prefs_dsn || $addrbook_global_dsn) { } foreach($dsns as $type => $dsn) { - $dbtype = array_shift(explode(':', $dsn)); + $aDsn = explode(':', $dsn); + $dbtype = array_shift($aDsn); if(isset($db_functions[$dbtype]) && function_exists($db_functions[$dbtype])) { echo "$IND$dbtype database support present.
\n"; @@ -349,19 +786,20 @@ if($addrbook_dsn || $prefs_dsn || $addrbook_global_dsn) { $dbh = DB::connect($dsn, true); if (DB::isError($dbh)) { do_err('Database error: '. htmlspecialchars(DB::errorMessage($dbh)) . - ' in ' .$type .' DSN.'); + ' in ' .$type .' DSN.'); } $dbh->disconnect(); echo "$IND$type database connect successful.
\n"; } else { - do_err($db.' database support not present!'); + do_err($dbtype.' database support not present!'); } } } else { - do_err('Required PHP PEAR DB support is not available. Is PEAR installed and is the - include path set correctly to find DB.php? The include path is now: - "' . ini_get('include_path') . '".'); + $db_error='Required PHP PEAR DB support is not available.' + .' Is PEAR installed and is the include path set correctly to find DB.php?' + .' The include path is now:' . ini_get('include_path') . '.'; + do_err($db_error); } } else { echo $IND."not using database functionality.
\n"; @@ -372,26 +810,26 @@ echo "Checking LDAP functions...
\n"; if( empty($ldap_server) ) { echo $IND."not using LDAP functionality.
\n"; } else { - if ( !function_exists(ldap_connect) ) { + if ( !function_exists('ldap_connect') ) { do_err('Required LDAP support is not available.'); } else { echo "$IND LDAP support present.
\n"; foreach ( $ldap_server as $param ) { - $linkid = ldap_connect($param['host'], (empty($param['port']) ? 389 : $param['port']) ); + $linkid = @ldap_connect($param['host'], (empty($param['port']) ? 389 : $param['port']) ); if ( $linkid ) { - echo "$IND LDAP connect to ".$param['host']." successful: ".$linkid."
\n"; + echo "$IND LDAP connect to ".$param['host']." successful: ".$linkid."
\n"; if ( !empty($param['protocol']) && - !ldap_set_option($linkid, LDAP_OPT_PROTOCOL_VERSION, $param['protocol']) ) { + !ldap_set_option($linkid, LDAP_OPT_PROTOCOL_VERSION, $param['protocol']) ) { do_err('Unable to set LDAP protocol'); } if ( empty($param['binddn']) ) { - $bind = ldap_bind($linkid); + $bind = @ldap_bind($linkid); } else { - $bind = ldap_bind($param['binddn'], $param['bindpw']); + $bind = @ldap_bind($param['binddn'], $param['bindpw']); } if ( $bind ) { @@ -400,21 +838,29 @@ if( empty($ldap_server) ) { do_err('Unable to Bind to LDAP Server'); } - ldap_close($linkid); + @ldap_close($linkid); } else { do_err('Connection to LDAP failed'); } } } } -?> +echo '
'; +echo '

Summary

'; +$footer = '
'; +if ($warnings) { + echo '

No fatal errors were found, but there was at least 1 warning. Please check the flagged issue(s) carefully, as correcting them may prevent erratic, undefined, or incorrect behavior (or flat out breakage).

'; + echo $footer; +} else { + print <<< EOF

Congratulations, your SquirrelMail setup looks fine to me!

Login now

- \ No newline at end of file +EOF; + echo $footer; +} +?>