Bug 37499 - Insufficient FQDN validation for various attributes
Insufficient FQDN validation for various attributes
Status: RESOLVED WORKSFORME
Product: UCS
Classification: Unclassified
Component: UMC - DNS
UCS 4.0
Other Linux
: P5 normal (vote)
: UCS 4.0-x
Assigned To: UMC maintainers
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2015-01-09 10:55 CET by Janis Meybohm
Modified: 2016-11-09 12:59 CET (History)
3 users (show)

See Also:
What kind of report is it?: Feature Request
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number: 2014121821000138,2014120921000262
Bug group (optional): Error handling, Usability
Max CVSS v3 score:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Janis Meybohm univentionstaff 2015-01-09 10:55:01 CET
Ticket#2014121821000138
Ticket#2014120921000262

Many attributes in DNS modules use univention.admin.syntax.dnsName to validate FQDN's with a preceding dot but univention.admin.syntax.dnsName is designed to validate "dns names", not FQDN's (so "master." is detected as valid FQDN which is wrong).

We should add a more complex syntax like IComputer_FQDN to validate real FQDNs with preceding dot.

Modules affected (at least):
dns/alias.py:                        syntax=univention.admin.syntax.dnsName,
dns/reverse_zone.py:                 syntax=univention.admin.syntax.dnsName,
dns/ptr_record.py:                   syntax=univention.admin.syntax.dnsName,
dns/forward_zone.py:                 syntax=univention.admin.syntax.dnsName,
Comment 1 Philipp Hahn univentionstaff 2016-11-09 12:59:40 CET
Lets make this generic request to extend UMC, as the names are valid.
The validation has been improved by Bug #25354.