show active for additional php-versions (#5090)

Author: florian030

install/dist/lib/fedora.lib.php

@@ -53,6 +53,14 @@ function configure_postfix($options = '')
 		$cf = $conf['postfix'];
 		$config_dir = $cf['config_dir'];
 
+		exec('postconf mail_version', $ret);
+		$postfix_version=str_replace('mail_version = ', '', $ret[0]);
+		unset($ret);
+		exec('openssl version', $ret);
+		$openssl_version=$ret[0];
+		unset($ret);
+		$use_pfs=@(version_compare($openssl_version, 'OpenSSL 0.9', '>=') && version_compare($postfix_version, '2.6', '>='))?true:false;
+
 		if(!is_dir($config_dir)){
 			$this->error("The postfix configuration directory '$config_dir' does not exist.");
 		}
@@ -163,6 +171,19 @@ function configure_postfix($options = '')
 			'{greylisting}' => $greylisting,
 			'{reject_slm}' => $reject_sender_login_mismatch,
 		);
+
+		//* If PFS is possible, configure it
+		if($use_pfs && !file_exists($config_dir.'/dh_512.pem')) exec('openssl gendh -out '.$config_dir.'/dh_512.pem -2 512');
+		if($use_pfs && !file_exists($config_dir.'/dh_2048.pem')) exec('openssl gendh -out '.$config_dir.'/dh_2048.pem -2 2048');
+		if($use_pfs && file_exists($config_dir.'/dh_512.pem') && file_exists($config_dir.'/dh_2048.pem')) {
+			$postconf_placeholders = array_merge($postconf_placeholders, array(
+				'{smtpd_tls_dh512_param_file}' => $config_dir.'/dh_512.pem',
+				'{smtpd_tls_dh1024_param_file}' => $config_dir.'/dh_2048.pem' ));
+		} else {
+			$postconf_placeholders = array_merge($postconf_placeholders, array(
+				'{smtpd_tls_dh512_param_file}' => '',
+				'{smtpd_tls_dh1024_param_file}' => ''));
+		}
 
 		$postconf_tpl = rfsel($conf['ispconfig_install_dir'].'/server/conf-custom/install/fedora_postfix.conf.master', 'tpl/fedora_postfix.conf.master');
 		$postconf_tpl = strtr($postconf_tpl, $postconf_placeholders);

install/dist/lib/gentoo.lib.php

@@ -54,6 +54,14 @@ public function configure_postfix($options = '')
 		$cf = $conf['postfix'];
 		$config_dir = $cf['config_dir'];
 
+		exec('postconf mail_version', $ret);
+		$postfix_version=str_replace('mail_version = ', '', $ret[0]);
+		unset($ret);
+		exec('openssl version', $ret);
+		$openssl_version=$ret[0];
+		unset($ret);
+		$use_pfs=@(version_compare($openssl_version, 'OpenSSL 0.9', '>=') && version_compare($postfix_version, '2.6', '>='))?true:false;
+
 		if(!is_dir($config_dir)){
 			$this->error("The postfix configuration directory '$config_dir' does not exist.");
 		}
@@ -116,6 +124,19 @@ public function configure_postfix($options = '')
 			'{reject_slm}' => $reject_sender_login_mismatch,
 		);
 
+		//* If PFS is possible, configure it
+		if($use_pfs && !file_exists($config_dir.'/dh_512.pem')) exec('openssl gendh -out '.$config_dir.'/dh_512.pem -2 512');
+		if($use_pfs && !file_exists($config_dir.'/dh_2048.pem')) exec('openssl gendh -out '.$config_dir.'/dh_2048.pem -2 2048');
+		if($use_pfs && file_exists($config_dir.'/dh_512.pem') && file_exists($config_dir.'/dh_2048.pem')) {
+			$postconf_placeholders = array_merge($postconf_placeholders, array(
+				'{smtpd_tls_dh512_param_file}' => $config_dir.'/dh_512.pem',
+				'{smtpd_tls_dh1024_param_file}' => $config_dir.'/dh_2048.pem' ));
+		} else {
+			$postconf_placeholders = array_merge($postconf_placeholders, array(
+				'{smtpd_tls_dh512_param_file}' => '',
+				'{smtpd_tls_dh1024_param_file}' => ''));
+		}
+
 		$postconf_tpl = rfsel($conf['ispconfig_install_dir'].'/server/conf-custom/install/gentoo_postfix.conf.master', 'tpl/gentoo_postfix.conf.master');
 		$postconf_tpl = strtr($postconf_tpl, $postconf_placeholders);
 		$postconf_commands = array_filter(explode("\n", $postconf_tpl)); // read and remove empty lines

install/dist/lib/opensuse.lib.php

@@ -53,6 +53,14 @@ function configure_postfix($options = '')
 		$cf = $conf['postfix'];
 		$config_dir = $cf['config_dir'];
 
+		exec('postconf mail_version', $ret);
+		$postfix_version=str_replace('mail_version = ', '', $ret[0]);
+		unset($ret);
+		exec('openssl version', $ret);
+		$openssl_version=$ret[0];
+		unset($ret);
+		$use_pfs=@(version_compare($openssl_version, 'OpenSSL 0.9', '>=') && version_compare($postfix_version, '2.6', '>='))?true:false;
+
 		if(!is_dir($config_dir)){
 			$this->error("The postfix configuration directory '$config_dir' does not exist.");
 		}
@@ -174,6 +182,19 @@ function configure_postfix($options = '')
 			'{greylisting}' => $greylisting,
 			'{reject_slm}' => $reject_sender_login_mismatch,
 		);
+
+		//* If PFS is possible, configure it
+		if($use_pfs && !file_exists($config_dir.'/dh_512.pem')) exec('openssl gendh -out '.$config_dir.'/dh_512.pem -2 512');
+		if($use_pfs && !file_exists($config_dir.'/dh_2048.pem')) exec('openssl gendh -out '.$config_dir.'/dh_2048.pem -2 2048');
+		if($use_pfs && file_exists($config_dir.'/dh_512.pem') && file_exists($config_dir.'/dh_2048.pem')) {
+			$postconf_placeholders = array_merge($postconf_placeholders, array(
+				'{smtpd_tls_dh512_param_file}' => $config_dir.'/dh_512.pem',
+				'{smtpd_tls_dh1024_param_file}' => $config_dir.'/dh_2048.pem' ));
+		} else {
+			$postconf_placeholders = array_merge($postconf_placeholders, array(
+				'{smtpd_tls_dh512_param_file}' => '',
+				'{smtpd_tls_dh1024_param_file}' => ''));
+		}
 
 		$postconf_tpl = rfsel($conf['ispconfig_install_dir'].'/server/conf-custom/install/opensuse_postfix.conf.master', 'tpl/opensuse_postfix.conf.master');
 		$postconf_tpl = strtr($postconf_tpl, $postconf_placeholders);

install/tpl/debian_postfix.conf.master

@@ -44,3 +44,9 @@ smtpd_tls_protocols = !SSLv2,!SSLv3
 smtp_tls_protocols = !SSLv2,!SSLv3
 smtpd_tls_exclude_ciphers = RC4, aNULL
 smtp_tls_exclude_ciphers = RC4, aNULL
+smtpd_tls_dh512_param_file = {smtpd_tls_dh512_param_file}
+smtpd_tls_dh1024_param_file = {smtpd_tls_dh1024_param_file}
+smtpd_tls_eecdh_grade = strong
+tls_preempt_cipherlist = yes
+smtp_tls_loglevel = 1
+smtpd_tls_loglevel = 1

install/tpl/fedora_postfix.conf.master

@@ -40,3 +40,9 @@ smtpd_tls_protocols = !SSLv2,!SSLv3
 smtp_tls_protocols = !SSLv2,!SSLv3
 smtpd_tls_exclude_ciphers = RC4, aNULL
 smtp_tls_exclude_ciphers = RC4, aNULL
+smtpd_tls_dh512_param_file = {smtpd_tls_dh512_param_file}
+smtpd_tls_dh1024_param_file = {smtpd_tls_dh1024_param_file}
+smtpd_tls_eecdh_grade = strong
+tls_preempt_cipherlist = yes
+smtp_tls_loglevel = 1
+smtpd_tls_loglevel = 1

install/tpl/gentoo_postfix.conf.master

@@ -39,3 +39,9 @@ smtpd_tls_protocols = !SSLv2,!SSLv3
 smtp_tls_protocols = !SSLv2,!SSLv3
 smtpd_tls_exclude_ciphers = RC4, aNULL
 smtp_tls_exclude_ciphers = RC4, aNULL
+smtpd_tls_dh512_param_file = {smtpd_tls_dh512_param_file}
+smtpd_tls_dh1024_param_file = {smtpd_tls_dh1024_param_file}
+smtpd_tls_eecdh_grade = strong
+tls_preempt_cipherlist = yes
+smtp_tls_loglevel = 1
+smtpd_tls_loglevel = 1

install/tpl/opensuse_postfix.conf.master

@@ -42,3 +42,9 @@ smtpd_tls_protocols = !SSLv2,!SSLv3
 smtp_tls_protocols = !SSLv2,!SSLv3
 smtpd_tls_exclude_ciphers = RC4, aNULL
 smtp_tls_exclude_ciphers = RC4, aNULL
+smtpd_tls_dh512_param_file = {smtpd_tls_dh512_param_file}
+smtpd_tls_dh1024_param_file = {smtpd_tls_dh1024_param_file}
+smtpd_tls_eecdh_grade = strong
+tls_preempt_cipherlist = yes
+smtp_tls_loglevel = 1
+smtpd_tls_loglevel = 1

install/tpl/server.ini.master

@@ -102,7 +102,7 @@ php_fpm_ini_path=/etc/php5/fpm/php.ini
 php_fpm_pool_dir=/etc/php5/fpm/pool.d
 php_fpm_start_port=9010
 php_fpm_socket_dir=/var/lib/php5-fpm
-php_default_name=Default
+php_default_name=default
 set_folder_permissions_on_update=n
 add_web_users_to_sshusers_group=y
 connect_userid_to_webid=n

interface/web/admin/lib/lang/de_server_php_list.lng

@@ -4,4 +4,5 @@ $wb['server_id_txt'] = 'Server';
 $wb['add_new_record_txt'] = 'Neue PHP Version hinzufügen';
 $wb['client_id_txt'] = 'Kunde';
 $wb['name_txt'] = 'PHP Name';
+$wb['active_txt'] = 'Aktiv';
 ?>

interface/web/admin/lib/lang/en_server_php_list.lng

@@ -4,4 +4,5 @@ $wb['server_id_txt'] = 'Server';
 $wb['add_new_record_txt'] = 'Add new PHP version';
 $wb['client_id_txt'] = 'Client';
 $wb['name_txt'] = 'PHP Name';
+$wb['active_txt'] = 'Active';
 ?>