From frank@igpm.rwth-aachen.de Wed Oct 7 10:17:13 2015 Received: (at submit) by bugs.x2go.org; 7 Oct 2015 08:17:14 +0000 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on ymir.das-netzwerkteam.de X-Spam-Level: X-Spam-Status: No, score=0.8 required=5.0 tests=BAYES_50,URIBL_BLOCKED autolearn=ham version=3.3.2 Received: from mx-out-1.rwth-aachen.de (mx-out-1.rwth-aachen.de [134.130.5.186]) by ymir.das-netzwerkteam.de (Postfix) with ESMTPS id 6B0783BC4A for ; Wed, 7 Oct 2015 10:17:13 +0200 (CEST) X-IronPort-AV: E=Sophos;i="5.17,648,1437429600"; d="scan'208";a="487140197" Received: from igpm.igpm.rwth-aachen.de ([134.130.161.1]) by mx-1.rz.rwth-aachen.de with ESMTP; 07 Oct 2015 10:17:13 +0200 Received: from indy5.igpm.rwth-aachen.de ([134.130.161.44]) by igpm.igpm.rwth-aachen.de with esmtps (UNKNOWN:AES256-GCM-SHA384:256) (Exim 4.72) (envelope-from ) id 1ZjjuS-00066h-IC for submit@bugs.x2go.org; Wed, 07 Oct 2015 10:17:12 +0200 Received: from lecorbusier.igpm.rwth-aachen.de ([134.130.161.178]) by indy5.igpm.rwth-aachen.de with esmtpsa (TLSv1.2:AES128-SHA:128) (Exim 4.84) (envelope-from ) id 1ZjjuS-0008Bn-Tp for submit@bugs.x2go.org; Wed, 07 Oct 2015 10:17:13 +0200 To: submit@bugs.x2go.org From: Frank Knoben Subject: x2gosid sanitizer check in x2gosqlitewrapper.pl / x2goserver-4.0.1.19-1.1.x86_64 rpm for opensuse 13.2 Message-ID: <5614D503.4050500@igpm.rwth-aachen.de> Date: Wed, 7 Oct 2015 10:17:07 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.2.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Sender: frank@igpm.rwth-aachen.de Package: x2goserver Version: 4.0.1.19-1.1 File: x2gosqlitewrapper.pl Subroutine: sanitizer Operating System: openSuSE 13.2 64bit Hello, on my system, there are a lot of users, whose username consists of only numbers. In the latest x2goserver rpm for my opensuse 13.2 system (x2goserver-4.0.1.19-1.1.x86_64) there seem's to be something wrong with the sanitzer check function in x2gosqlitewrapper.pl. For the users, whose username contains only numbers, I get the error message of a malformed session id. When I don't do a sanitzer check on the x2gosid, everything is fine. Unfortunately, I have not learned the perl programming language and I'm not so good with regular expression, that I do know how to fix the problem correctly. For me, I just put a return $string; after the elsif ($type eq "x2gosid") { and everything works fine for me again. Sincerly Frank Knoben