Name: cacti Version: 1.1.38 Release: 2%{?dist} Summary: An rrd based graphing tool License: GPLv2+ URL: http://www.cacti.net/ Source0: http://www.cacti.net/downloads/%{name}-%{version}.tar.gz Source1: cacti-nginx.conf Source2: cacti.logrotate Source3: cacti.README.fedora Source4: %{name}.cron Patch0: cacti-cmd.patch # Requires PHP 5.4+ Requires: php(language) >= 5.4 # DB access is managed via pdo_mysql Requires: php-pdo_mysql # Core PHP libs/extensions required by Cacti Requires: php-pdo Requires: php-reflection Requires: php-simplexml Requires: php-ctype Requires: php-date Requires: php-dom Requires: php-filter Requires: php-gd Requires: php-iconv Requires: php-imap Requires: php-intl Requires: php-json Requires: php-ldap Requires: php-mbstring Requires: php-openssl Requires: php-pcntl Requires: php-posix Requires: php-session Requires: php-snmp Requires: php-sockets Requires: php-spl Requires: php-xml Requires: php-zlib # Cacti Requirements Requires: mysql Requires: nginx Requires: rrdtool Requires: net-snmp, net-snmp-utils Requires: crontabs Requires(pre): shadow-utils Requires(post): systemd Requires(preun): systemd Requires(postun): systemd Buildrequires: systemd Provides: bundled(js-jquery) = 3.1.0 BuildArch: noarch # This macro was added in Fedora 20. Use the old version if it's undefined # on older Fedoras and RHELs. # https://fedoraproject.org/wiki/Changes/UnversionedDocdirs %{!?_pkgdocdir: %global _pkgdocdir %{_docdir}/%{name}-%{version}} %description Cacti is a complete frontend to RRDTool. It stores all of the necessary information to create graphs and populate them with data in a MySQL database. The frontend is completely PHP driven. %prep %autosetup %build # cacti's build is a noop %install %{__mkdir} -p %{buildroot}/%{_sysconfdir}/%{name} %{__install} -d -m 0755 %{buildroot}/%{_pkgdocdir} %{__install} -d -m 0755 %{buildroot}/%{_datadir}/%{name}/ %{__install} -d -m 0755 cache/ %{buildroot}/%{_localstatedir}/lib/%{name}/cache %{__install} -d -m 0755 cli/ %{buildroot}/%{_localstatedir}/lib/%{name}/cli %{__install} -d -m 0775 log/ %{buildroot}/%{_localstatedir}/log/%{name}/ touch %{buildroot}/%{_localstatedir}/log/%{name}/%{name}.log %{__install} -d -m 0755 rra/ %{buildroot}/%{_localstatedir}/lib/%{name}/rra/ %{__install} -d -m 0755 scripts/ %{buildroot}/%{_localstatedir}/lib/%{name}/scripts/ %{__mv} *.php %{buildroot}/%{_datadir}/%{name}/ %{__mv} cache/ %{buildroot}/%{_localstatedir}/lib/%{name}/ %{__mv} cli/ %{buildroot}/%{_localstatedir}/lib/%{name}/ %{__mv} rra/ %{buildroot}/%{_localstatedir}/lib/%{name}/ %{__mv} scripts/ %{buildroot}/%{_localstatedir}/lib/%{name}/ %{__install} -p -D -m 0644 %{SOURCE4} %{buildroot}/%{_sysconfdir}/cron.d/%{name} %{__install} -D -m 0644 %{SOURCE1} %{buildroot}/%{_sysconfdir}/nginx/conf.d/cacti.conf %{__install} -D -m 0644 %{SOURCE2} %{buildroot}/%{_sysconfdir}/logrotate.d/cacti # The su parameter will trip up older logrotate versions. # Conditionally remove it here. %if 0%{?rhel} && 0%{?rhel} <= 6 sed -i %{buildroot}/%{_sysconfdir}/logrotate.d/cacti -e '/^[ \t]*su /d' %endif %{__cp} -ar formats/ images/ include/ install/ lib/ locales/ mibs/ plugins/ resource/ %{buildroot}%{_datadir}/%{name} %{__cp} %{SOURCE3} ./docs/README.fedora %{__cp} -a docs/ %{buildroot}/%{_pkgdocdir} %{__mv} %{buildroot}/%{_datadir}/%{name}/include/config.php %{buildroot}/%{_sysconfdir}/%{name}/db.php %{__chmod} +x %{buildroot}/%{_datadir}/%{name}/cmd.php %{buildroot}/%{_datadir}/%{name}/poller.php ln -s %{_localstatedir}/lib/%{name}/cache %{buildroot}/%{_datadir}/%{name}/ ln -s %{_localstatedir}/lib/%{name}/cli %{buildroot}/%{_datadir}/%{name}/ ln -s %{_sysconfdir}/%{name}/db.php %{buildroot}/%{_datadir}/%{name}/include/config.php ln -s %{_localstatedir}/lib/%{name}/rra %{buildroot}/%{_datadir}/%{name}/ ln -s %{_localstatedir}/lib/%{name}/scripts %{buildroot}/%{_datadir}/%{name}/ ln -s %{_localstatedir}/log/%{name}/ %{buildroot}/%{_datadir}/%{name}/log ln -s %{_datadir}/%{name}/lib %{buildroot}/%{_localstatedir}/lib/%{name}/ ln -s %{_datadir}/%{name}/include %{buildroot}/%{_localstatedir}/lib/%{name}/ %pre useradd -d %{_datadir}/%{name} -r -s /sbin/nologin cacti 2> /dev/null || : %post if [ $1 -eq 1 ] ; then %systemd_postun_with_restart nginx.service fi %postun %systemd_postun_with_restart nginx.service %files %doc docs/ README.md cacti.sql %license LICENSE %dir %{_sysconfdir}/%{name} %dir %{_datadir}/%{name} %dir %{_localstatedir}/lib/%{name} %dir %{_localstatedir}/lib/%{name}/cli %dir %attr(-,nginx,nginx) %{_localstatedir}/lib/%{name}/scripts %dir %attr(-,cacti,nginx) %{_localstatedir}/log/%{name}/ %config(noreplace) %attr(-,cacti,nginx) %{_localstatedir}/log/%{name}/%{name}.log %config(noreplace) %{_sysconfdir}/cron.d/cacti %config(noreplace) %{_sysconfdir}/nginx/conf.d/cacti.conf %config(noreplace) %{_sysconfdir}/logrotate.d/%{name} %attr(0640,cacti,nginx) %config(noreplace) %{_sysconfdir}/%{name}/db.php %{_datadir}/%{name}/*.php %{_datadir}/%{name}/cache %{_datadir}/%{name}/cli %{_datadir}/%{name}/formats/ %{_datadir}/%{name}/images/ %{_datadir}/%{name}/include/ %{_datadir}/%{name}/install/ %{_datadir}/%{name}/lib/ %{_datadir}/%{name}/locales/* %{_datadir}/%{name}/log %{_datadir}/%{name}/mibs %{_datadir}/%{name}/plugins/ %{_datadir}/%{name}/rra %{_datadir}/%{name}/scripts %{_localstatedir}/lib/%{name}/scripts/*[^p] %attr(-,root,root) %{_localstatedir}/lib/%{name}/scripts/*.php %attr(-,nginx,nginx) %{_datadir}/%{name}/resource/ %attr(-,cacti,root) %{_localstatedir}/lib/%{name}/rra/ %attr(-,nginx,nginx) %{_localstatedir}/lib/%{name}/cache/ %attr(-,root,root) %{_localstatedir}/lib/%{name}/cli/*php %attr(-,root,root) %{_localstatedir}/lib/%{name}/cli/.htaccess %attr(-,root,root) %{_localstatedir}/lib/%{name}/include %attr(-,root,root) %{_localstatedir}/lib/%{name}/lib %changelog * Wed Jul 25 2018 Morten Stevens - 1.1.38-2 - Fix for https://github.com/Cacti/cacti/issues/1634 * Wed May 16 2018 Morten Stevens - 1.1.38-1 - Update to 1.1.38 * Mon Mar 26 2018 Morten Stevens - 1.1.37-1 - Update to 1.1.37 * Mon Feb 26 2018 Morten Stevens - 1.1.36-1 - Update to 1.1.36 * Tue Feb 13 2018 Morten Stevens - 1.1.35-1 - Update to 1.1.35 * Tue Feb 06 2018 Morten Stevens - 1.1.34-1 - Update to 1.1.34 * Wed Jan 24 2018 Morten Stevens - 1.1.33-1 - Update to 1.1.33 * Sun Nov 19 2017 Morten Stevens - 1.1.28-1 - Update to 1.1.28 - CVE-2017-16641, CVE-2017-16660, CVE-2017-16661, CVE-2017-16785 * Mon Oct 23 2017 Morten Stevens - 1.1.27-1 - Update to 1.1.27 * Tue Oct 17 2017 Morten Stevens - 1.1.26-1 - Update to 1.1.26 - CVE-2017-15194 * Mon Sep 18 2017 Morten Stevens - 1.1.24-1 - Update to 1.1.24 * Tue Sep 05 2017 Morten Stevens - 1.1.21-1 - Update to 1.1.21 * Mon Aug 21 2017 Morten Stevens - 1.1.19-1 - Update to 1.1.19 * Sun Aug 13 2017 Morten Stevens - 1.1.17-1 - Update to 1.1.17 * Sun Jul 30 2017 Morten Stevens - 1.1.16-1 - Update to 1.1.16 * Tue Jul 25 2017 Morten Stevens - 1.1.15-1 - Update to 1.1.15 * Mon Jul 24 2017 Morten Stevens - 1.1.14-1 - Update to 1.1.14 * Fri Jul 14 2017 Morten Stevens - 1.1.13-1 - Update to 1.1.13 * Thu Jul 06 2017 Morten Stevens - 1.1.12-2 - Fix Cross-site Scripting (XSS) issue with link.php * Wed Jul 05 2017 Morten Stevens - 1.1.12-1 - Update to 1.1.12 * Tue Jul 04 2017 Morten Stevens - 1.1.11-1 - Update to 1.1.11 * Mon Jun 12 2017 Morten Stevens - 1.1.10-1 - Update to 1.1.10 * Mon May 22 2017 Morten Stevens - 1.1.7-1 - Update to 1.1.7 * Sat May 13 2017 Morten Stevens - 1.1.6-2 - Fix PHP requirements - Cacti db access not compatible with PHP 7 (#1450578) * Mon May 08 2017 Morten Stevens - 1.1.6-1 - Update to 1.1.6 * Wed Apr 26 2017 Morten Stevens - 1.1.5-1 - Update to 1.1.5 * Mon Apr 24 2017 Morten Stevens - 1.1.4-1 - Update to 1.1.4 * Sun Apr 16 2017 Morten Stevens - 1.1.3-1 - Update to 1.1.3 * Wed Apr 12 2017 Morten Stevens - 1.1.2-2 - Work with several MySQL variants (#1440755) * Mon Apr 03 2017 Morten Stevens - 1.1.2-1 - Update to 1.1.2 * Tue Mar 28 2017 Morten Stevens - 1.1.1-1 - Update to 1.1.1 * Mon Mar 20 2017 Morten Stevens - 1.1.0-1 - Update to 1.1.0 * Wed Mar 15 2017 Morten Stevens - 1.0.6-1 - Update to 1.0.6 * Mon Mar 13 2017 Morten Stevens - 1.0.5-1 - Update to 1.0.5 - Logfile improvements - Added php-gd and php-process as dependency (#1430893) * Mon Feb 27 2017 Morten Stevens - 1.0.4-1 - Update to 1.0.4 * Sat Feb 18 2017 Morten Stevens - 1.0.3-2 - Cacti 1.0.x spec file improvements * Thu Feb 16 2017 Morten Stevens - 1.0.3-1 - Update to 1.0.3 * Sun Feb 12 2017 Morten Stevens - 1.0.2-1 - Update to 1.0.2 * Fri Feb 10 2017 Fedora Release Engineering - 0.8.8h-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild * Wed Jan 18 2017 Morten Stevens - 0.8.8h-3 - Fixes for PHP7 backported from Arch Linux (#1390770) * Tue Jun 28 2016 Jon Ciesla - 0.8.8h-2 - php7 Requires fix. * Mon May 09 2016 Morten Stevens - 0.8.8h-1 - Update to 0.8.8h - CVE-2016-3659 * Fri Apr 15 2016 Morten Stevens - 0.8.8g-1 - Update to 0.8.8g - Improve spec file (#1302904) * Fri Jan 29 2016 Morten Stevens - 0.8.8f-2 - CVE-2015-8369: SQL Injection vulnerability in graph.php - CVE-2015-8377: Fix SQL Injection vulnerability in graphs_new.php - CVE-2015-8604: Fix SQL Injection vulnerability in graphs_new.php * Fri Jan 29 2016 Morten Stevens - 0.8.8f-1 - Update to 0.8.8f * Fri Jun 27 2014 Ken Dreyer - 0.8.8b-7 - Patches for CVE-2014-4002 Cross-site scripting vulnerability (RHBZ #1113035) * Sat Jun 07 2014 Fedora Release Engineering - 0.8.8b-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Mon Apr 07 2014 Ken Dreyer - 0.8.8b-5 - Patch for CVE-2014-2708 SQL injection issues in graph_xport.php (RHBZ #1084258) - Patch for CVE-2014-2709 shell escaping issues in lib/rrd.php (RHBZ #1084258) - Patch for CVE-2014-2326 stored XSS attack (RHBZ #1082122) - Patch for CVE-2014-2328 use of exec-like function calls without safety checks allow arbitrary command execution (RHBZ #1082122) * Fri Feb 07 2014 Ken Dreyer - 0.8.8b-4 - Move cron to a separate file and require crontabs (RHBZ #947047). Thanks Jóhann B. Guðmundsson. - Update for systemd (RHBZ #947047). Thanks Jóhann B. Guðmundsson. - Fix rpmlint warning about spaces-to-tabs * Wed Sep 04 2013 Ken Dreyer - 0.8.8b-3 - Fix comments in thumbnails (BZ #1004550) * Mon Aug 26 2013 Ken Dreyer - 0.8.8b-2 - Patch for CVE-2013-5588 and CVE-2013-5589 (BZ #1000860) * Wed Aug 07 2013 Ken Dreyer - 0.8.8b-1 - New upstream release (BZ #993042) * Mon Jul 29 2013 Ken Dreyer - 0.8.8a-9 - Use %%{_pkgdocdir}, per https://fedoraproject.org/wiki/Changes/UnversionedDocdirs * Sun Jul 14 2013 Ken Dreyer - 0.8.8a-8 - Improve security description in cacti's nginx conf (RHBZ #895823) - Use improved treeview replacement patch (RHBZ #888207) - rpmlint fixes - trim RPM changelog * Wed Feb 13 2013 Fedora Release Engineering - 0.8.8a-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Tue Jan 08 2013 Ken Dreyer - 0.8.8a-6 - Add note to README.fedora about the default MySQL password - Remove reference to "docs/INSTALL" in README.fedora (RHBZ #893122) - Add dependency on net-snmp-utils (RHBZ #893150) * Fri Jan 04 2013 Ken Dreyer - 0.8.8a-5 - Install our README file as README.fedora * Fri Jan 4 2013 Tom Callaway - 0.8.8a-4 - remove non-free treeview bits (replace with jquery future code from 0.8.9 trunk) * Wed Jul 18 2012 Fedora Release Engineering - 0.8.8a-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Thu Jun 28 2012 Ken Dreyer - 0.8.8a-2 - Add plugins directory (BZ #834355) - Drop Fedora 15 (EOL) from logrotate syntax adjustment * Mon Apr 30 2012 Ken Dreyer - 0.8.8a-1 - New upstream release (BZ #817506) - Drop upstreamed $url_path patch * Wed Apr 11 2012 Ken Dreyer - 0.8.8-3 - Patch $url_path to default to "/cacti/" (upstream bug 2217) * Fri Apr 06 2012 Ken Dreyer - 0.8.8-2 - Adjust nginx ACL conditionals to test the presence of mod_authz_core (as discussed on fedora-devel) * Wed Apr 04 2012 Ken Dreyer - 0.8.8-1 - New upstream release (BZ #809753). * Mon Mar 26 2012 Ken Dreyer - 0.8.7i-4 - Adjust ACLs to support nginx 2.4. * Thu Jan 12 2012 Fedora Release Engineering - 0.8.7i-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Tue Dec 13 2011 Ken Dreyer - 0.8.7i-2 - Only set "su" logrotate parameter for F16 and above. - Tweak mod_security rules. * Mon Dec 12 2011 Ken Dreyer - 0.8.7i-1 - New upstream release (BZ #766573). * Fri Nov 11 2011 Ken Dreyer - 0.8.7h-2 - block HTTP access to log and rra directories (#609856) - overrides for mod_security - set logrotate to su to cacti nginx when rotating (#753079) * Thu Oct 27 2011 Ken Dreyer - 0.8.7h-1 - New upstream release. - Remove upstream'd mysql patch. * Mon Aug 08 2011 Jon Ciesla - 0.8.7g-3 - Patch for MySQL 5.5, BZ 728513. * Tue Feb 08 2011 Fedora Release Engineering - 0.8.7g-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Mon Jul 12 2010 Mike McGrath 0.8.7g-1 - Upstream released new version * Mon May 24 2010 Mike McGrath - 0.8.7f-1 - Upstream released new version - Contains security updates #595289 * Fri Apr 23 2010 Mike McGrath - 0.8.7e-4 - Pulling in patches from upstream - SQL injection fix - BZ #541279 * Tue Dec 1 2009 Mike McGrath - 0.8.7e-3 - Pulling in some official patches - #541279 - #541962 * Sun Aug 16 2009 Mike McGrath - 0.8.7e-1 - Upstream released new version * Fri Jul 24 2009 Fedora Release Engineering - 0.8.7d-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Tue Mar 31 2009 Michael Schwendt - 0.8.7d-3 - Fix unowned cli directory (#473631) * Mon Feb 23 2009 Fedora Release Engineering - 0.8.7d-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Sat Feb 21 2009 Mike McGrath - 0.8.7d-1 - Upstream released new version * Mon Jul 28 2008 Mike McGrath - 0.8.7b-4 - Added cli directory * Fri Jul 18 2008 Tom "spot" Callaway - 0.8.7b-3 - fix my own mistake in the license tag * Tue Jul 15 2008 Tom "spot" Callaway - 0.8.7b-2 - fix license tag * Thu Feb 14 2008 Mike McGrath - 0.8.7b-1 - Upstream released new version * Fri Nov 23 2007 Mike McGrath - 0.8.7a-2 - db.php is now 640 instead of 660 - #396331 * Tue Nov 20 2007 Mike McGrath - 0.8.7a-1 - Upstream released new version - Fixes for bug #391691 - CVE-2007-6035