cscope

Update of /cvsroot/cscope/cscope/src
In directory sc8-pr-cvs4.sourceforge.net:/tmp/cvs-serv5689

Modified Files:
	.cvsignore 
Log Message:
Ignore backup files from editors and CVS merges

Index: .cvsignore
===================================================================
RCS file: /cvsroot/cscope/cscope/src/.cvsignore,v
retrieving revision 1.1
retrieving revision 1.2
diff -C2 -r1.1 -r1.2
*** .cvsignore	23 Jul 2006 21:06:33 -0000	1.1
--- .cvsignore	7 Jan 2007 12:44:00 -0000	1.2
***************
*** 5,6 ****
--- 5,8 ----
  gscope.c
  .cvsignore
+ *~
+ .#*

Update of /cvsroot/cscope/cscope/src
In directory sc8-pr-cvs4.sourceforge.net:/tmp/cvs-serv4896

Modified Files:
	fscanner.l 
Log Message:
Avoid a -Wunused warning by disabling yy_topstate()

Index: fscanner.l
===================================================================
RCS file: /cvsroot/cscope/cscope/src/fscanner.l,v
retrieving revision 1.12
retrieving revision 1.13
diff -C2 -r1.12 -r1.13
*** fscanner.l	30 Sep 2006 20:29:14 -0000	1.12
--- fscanner.l	7 Jan 2007 12:41:23 -0000	1.13
***************
*** 51,54 ****
--- 51,55 ----
  
  #define	IFLEVELINC	5	/* #if nesting level size increment */
+ #define YY_NO_TOP_STATE 1
  
  static char const rcsid[] = "$Id$";
***************
*** 126,129 ****
--- 127,131 ----
  #endif /* !COMMENTS_BY_FLEX*/
  
+ 
  %}
  identifier	[a-zA-Z_$][a-zA-Z_0-9$]*

Update of /cvsroot/cscope/cscope/contrib/webcscope
In directory sc8-pr-cvs4.sourceforge.net:/tmp/cvs-serv1908

Modified Files:
	cscope 
Log Message:
Direct attention to security issues with webcscope.

Index: cscope
===================================================================
RCS file: /cvsroot/cscope/cscope/contrib/webcscope/cscope,v
retrieving revision 1.1
retrieving revision 1.2
diff -C2 -r1.1 -r1.2
*** cscope	29 Jun 2001 14:20:16 -0000	1.1
--- cscope	7 Jan 2007 12:34:01 -0000	1.2
***************
*** 1,3 ****
! #!/bin/perl
  
  # $Id$
--- 1,3 ----
! #!/usr/bin/perl
  
  # $Id$
***************
*** 23,26 ****
--- 23,29 ----
  # 
  # $Log$
+ # Revision 1.2  2007/01/07 12:34:01  broeker
+ # Direct attention to security issues with webcscope.
+ #
  # Revision 1.1  2001/06/29 14:20:16  petr
  # Added webcscope to contribs.
***************
*** 376,379 ****
--- 379,383 ----
  
  	print <<ENDOFTEXTA;
+ <p style="color:red">Be aware that this webfrontend is insecure and allows viewing ALL apache readable files, including your configuration!</p>   
  Select an operation below and enter a symbol, function or text to search in
  the database.  The active version is $version.  Input is case-sensitive,

Update of /cvsroot/cscope/cscope
In directory sc8-pr-cvs4.sourceforge.net:/tmp/cvs-serv1888

Modified Files:
	ChangeLog README 
Log Message:
Direct attention to security issues with webcscope.

Index: ChangeLog
===================================================================
RCS file: /cvsroot/cscope/cscope/ChangeLog,v
retrieving revision 1.167
retrieving revision 1.168
diff -C2 -r1.167 -r1.168
*** ChangeLog	23 Oct 2006 12:37:36 -0000	1.167
--- ChangeLog	7 Jan 2007 12:33:46 -0000	1.168
***************
*** 1,9 ****
  2006-10-23  Neil Horman		   <nhorman@...>
! 	* src/main.c: Update sigwinch_handler to only register if
! 	linemode is not specified (SF bug 1574354)
  
  2006-10-15  Hans-Bernhard Broeker  <broeker@...>
  
! 	* src/dir.c (accessible_file): New function to taste for file
  	readability more strictly than just access().
  	(inviewpath): Use it to avoid unreadable files (directories, in
--- 1,21 ----
+ 2007-01-07  Hans-Bernhard Broeker  <broeker@...>
+ 
+ 	* README: Add a warning about the intended user audience not
+ 	including superusers or anonymous ones.
+ 
+ 	* contrib/webcscope/cscope: Find perl in /usr/bin, which should be
+ 	more likely as its installation position these days.  Put a big
+ 	red reminder to the top of the generated HTML page warning about
+ 	the security issues involved with webcscope.  Thanks to V-Li and
+ 	the Gentoo folks for the patch.
+ 	
  2006-10-23  Neil Horman		   <nhorman@...>
! 
! 	* src/main.c: Update sigwinch_handler to only register if linemode
! 	is not specified (SF bug 1574354)
  
  2006-10-15  Hans-Bernhard Broeker  <broeker@...>
  
! 	* src/dir.c (accessible_file): New function to test for file
  	readability more strictly than just access().
  	(inviewpath): Use it to avoid unreadable files (directories, in
***************
*** 12,15 ****
--- 24,28 ----
  	
  2006-10-10  Neil Horman            <nhorman@...>
+ 
  	* src/main.c: Updated sigwinch_handler to not run in the event
  	that curses is not running to avoid crash (SF bug 1574354)

Index: README
===================================================================
RCS file: /cvsroot/cscope/cscope/README,v
retrieving revision 1.7
retrieving revision 1.8
diff -C2 -r1.7 -r1.8
*** README	29 Jun 2001 16:42:56 -0000	1.7
--- README	7 Jan 2007 12:33:46 -0000	1.8
***************
*** 22,24 ****
--- 22,31 ----
  "INSTALL".
  
+ One thing to be pointed out is that this is ancient Unix software
+ predating much of today's security concerns.  While we do try to
+ address safety issues as we learn about them, it must be said that
+ this is in no way hardened or secure software.  It's designed to be
+ used by developers, not administrators or anonymous users.
+ 
  Browse to http://cscope.sourceforge.net for more current information
+