--- phppgadmin-4.2.2.orig/debian/compat
+++ phppgadmin-4.2.2/debian/compat
@@ -0,0 +1 @@
+5
--- phppgadmin-4.2.2.orig/debian/apache.conf
+++ phppgadmin-4.2.2/debian/apache.conf
@@ -0,0 +1,21 @@
+Alias /phppgadmin /usr/share/phppgadmin/
+
+<Directory /usr/share/phppgadmin/>
+
+DirectoryIndex index.php
+
+Options +FollowSymLinks
+AllowOverride None
+
+order deny,allow
+deny from all
+allow from 127.0.0.0/255.0.0.0 ::1/128
+# allow from all
+
+<IfModule mod_php5.c>
+  php_flag magic_quotes_gpc Off
+  php_flag track_vars On
+  php_value include_path .
+</IfModule>
+
+</Directory>
--- phppgadmin-4.2.2.orig/debian/svn-deblayout
+++ phppgadmin-4.2.2/debian/svn-deblayout
@@ -0,0 +1 @@
+origDir=../../upstream
--- phppgadmin-4.2.2.orig/debian/control
+++ phppgadmin-4.2.2/debian/control
@@ -0,0 +1,41 @@
+Source: phppgadmin
+Maintainer: Isaac Clerencia <isaac@debian.org>
+Uploaders: Peter Eisentraut <petere@debian.org>
+Section: web
+Priority: extra
+Build-Depends: debhelper (>= 5), quilt
+Standards-Version: 3.8.0
+Homepage: http://phppgadmin.sourceforge.net/
+Vcs-Svn: svn://svn.debian.org/pkg-postgresql/trunk/phppgadmin/
+Vcs-Browser: http://svn.debian.org/wsvn/pkg-postgresql/trunk/phppgadmin/
+
+Package: phppgadmin
+Architecture: all
+Depends: ${misc:Depends}, libapache2-mod-php5 | php5-cgi, php5-pgsql, apache2 | httpd
+Recommends: postgresql-doc
+Suggests: postgresql, slony1-bin
+Description: web-based administration tool for PostgreSQL
+ Features:
+  * Administer multiple servers
+  * Support for PostgreSQL 7.0.x, 7.1.x, 7.2.x, 7.3.x, 7.4.x, 8.0.x, 8.1.x,
+    8.2.x, 8.3.x
+  * Manage all aspects of: 
+    * Users & groups
+    * Databases
+    * Schemas
+    * Tables, indexes, constraints, triggers, rules & privileges
+    * Views, sequences & functions
+    * Advanced objects
+    * Reports
+  * Easy data manipulation: 
+    * Browse tables, views & reports
+    * Execute arbitrary SQL
+    * Select, insert, update and delete
+  * Dump table data in a variety of formats: SQL, COPY, XML, XHTML, CSV, Tabbed,
+    pg_dump
+  * Import SQL scripts, COPY data, XML, CSV and Tabbed
+  * Supports the Slony master-slave replication engine
+  * Excellent language support: 
+    * Available in 27 languages
+    * No encoding conflicts. Edit Russian data using a Japanese interface!
+  * Easy to install and configure
--- phppgadmin-4.2.2.orig/debian/docs
+++ phppgadmin-4.2.2/debian/docs
@@ -0,0 +1,6 @@
+CREDITS
+DEVELOPERS
+FAQ
+HISTORY
+TODO
+TRANSLATORS
--- phppgadmin-4.2.2.orig/debian/rules
+++ phppgadmin-4.2.2/debian/rules
@@ -0,0 +1,46 @@
+#!/usr/bin/make -f
+
+include /usr/share/quilt/quilt.make
+
+clean:
+	dh_testdir
+	dh_testroot
+	dh_clean
+	$(MAKE) -f debian/rules unpatch
+
+build: patch
+
+install: build
+	dh_testdir
+	dh_testroot
+
+	dh_installchangelogs 
+	dh_installdirs
+	dh_installdocs
+	dh_install
+
+	rm debian/phppgadmin/usr/share/phppgadmin/libraries/adodb/*.txt
+	rm debian/phppgadmin/usr/share/phppgadmin/lang/convert.awk
+	rm debian/phppgadmin/usr/share/phppgadmin/lang/langcheck
+	rm debian/phppgadmin/usr/share/phppgadmin/lang/php2po
+	rm debian/phppgadmin/usr/share/phppgadmin/lang/po2php
+	rm debian/phppgadmin/usr/share/phppgadmin/lang/synch
+
+binary-arch:
+
+# Build architecture-independent files here.
+binary-indep: install
+	dh_testdir
+	dh_testroot
+
+	dh_link
+	dh_compress
+	dh_fixperms
+	dh_installdeb
+
+	dh_gencontrol
+	dh_md5sums
+	dh_builddeb
+
+binary: binary-indep
+.PHONY: build install clean binary-indep binary
--- phppgadmin-4.2.2.orig/debian/changelog
+++ phppgadmin-4.2.2/debian/changelog
@@ -0,0 +1,416 @@
+phppgadmin (4.2.2-1lenny1) oldstable-security; urgency=high
+
+  * Fix CVE-2011-3598 (XSS).
+
+ -- Christoph Berg <myon@debian.org>  Mon, 10 Oct 2011 10:25:50 +0200
+
+phppgadmin (4.2.2-1) unstable; urgency=low
+
+  * New upstream release
+    - Fixes local file inclusion vulnerability (CVE-2008-5587) (closes: #508026)
+  * Removed register_globals from debian/apache.conf (closes: #508026)
+
+ -- Peter Eisentraut <petere@debian.org>  Wed, 31 Dec 2008 19:32:22 +0200
+
+phppgadmin (4.2.1-1) unstable; urgency=low
+
+  * New upstream release
+
+ -- Peter Eisentraut <petere@debian.org>  Mon, 11 Aug 2008 12:16:00 +0300
+
+phppgadmin (4.2-1) unstable; urgency=low
+
+  * New upstream release
+  * Added myself as comaintainer
+  * Added to pkg-postgresql SVN (closes: #483606)
+  * Added Homepage control field
+  * Added watch file
+  * Fixed slony1 paths (closes: #414986)
+  * New config.inc.php version, patches managed with quilt
+  * Put postgresql and slony1-bin into Suggests
+  * Removed support for old web servers and PHP, dropped debconf use
+    (closes: #485861)
+  * Revised README.Debian
+  * Updated standards version
+  * Changed to Debhelper level 5
+
+ -- Peter Eisentraut <petere@debian.org>  Fri, 20 Jun 2008 15:52:34 +0200
+
+phppgadmin (4.1.3-0.3) unstable; urgency=low
+
+  * Non-maintainer upload to fix pending l10n issues
+  * Debconf translations:
+    - Italian. Closes: #460129
+    - Japanese. Closes: #463245
+    - Galician. Closes: #484095
+    - Turkish. Closes: #484518
+    - Basque. Closes: #484939
+  * [Lintian] Drop the (now?) useless build dependency on dpatch
+
+ -- Christian Perrier <bubulle@debian.org>  Thu, 22 May 2008 17:58:34 +0200
+
+phppgadmin (4.1.3-0.2) unstable; urgency=low
+
+  * Non-maintainer upload
+  * Added support for IPv6 in default Apache access configuration
+    (closes: #397928)
+
+ -- Peter Eisentraut <petere@debian.org>  Tue, 01 Apr 2008 13:45:53 +0200
+
+phppgadmin (4.1.3-0.1) unstable; urgency=low
+
+  * Non-maintainer upload from the Zurich BSP.
+  * Fixes cross-site scripting vulnerability (CVE 2007-5728), closes: #449103.
+    The only changes introduced upstream with this version were to fix this
+    bug.
+
+ -- Tobias Klauser <tklauser@access.unizh.ch>  Sun, 13 Jan 2008 17:52:27 +0100
+
+phppgadmin (4.1.2-1) unstable; urgency=low
+
+  * New upstream release
+    * Fixes security bug (CVE-2007-2865), closes: #427151 
+  * Update configuration files
+  * Prefer php5 over php4 on install
+  * NMU acknowledge, closes: #405849, #411057, #413772, #417007
+
+ -- Isaac Clerencia <isaac@debian.org>  Sat, 02 Jun 2007 14:25:23 +0200
+
+phppgadmin (4.0.1-3.2) unstable; urgency=high
+
+  * Non-maintainer upload during BSP.
+  * Fix unconditional use of debconf in postrm (Closes: #417007).
+  * Update Portuguese debconf translation (Closes: #413772).
+
+ -- Luk Claes <luk@debian.org>  Sat, 19 May 2007 18:45:10 +0200
+
+phppgadmin (4.0.1-3.1) unstable; urgency=low
+
+  * Non-maintainer upload to fix pending l10n issues.
+  * Debconf translations:
+    - Dutch. Closes: #405849
+    - German. Closes: #411057
+
+ -- Christian Perrier <bubulle@debian.org>  Tue, 27 Feb 2007 18:42:29 +0100
+
+phppgadmin (4.0.1-3) unstable; urgency=low
+
+  +++ Changes by Christian Perrier +++
+  * Debconf templates translations:
+    - Portuguese added. Closes: #381431
+    - Dutch added. Closes: #383338
+    - Spanish updated. Closes: #383086
+    - Swedish updated. Sent during the call for updates of the NMU campaign.
+    - Czech updated. Sent during the call for updates of the NMU campaign.
+    - Russian added. Sent during the call for updates of the NMU campaign.
+    - Brazilian Portuguese updated. Sent during the call for updates
+      of the NMU campaign.
+    - Vietnamese updated. Sent during the call for updates of the NMU campaign.
+  * Lintian fixes:
+    - Move debhelper and dpatch to Build-Depends
+    - Rewrite debconf templates to fix the Developers Reference suggested
+      write style
+
+ -- Isaac Clerencia <isaac@debian.org>  Thu,  7 Dec 2006 08:06:52 +0100
+
+phppgadmin (4.0.1-2) unstable; urgency=low
+
+  * Remove dangling links from conf.d dirs when removing the package,
+    closes: #355508
+
+ -- Isaac Clerencia <isaac@debian.org>  Mon,  6 Mar 2006 08:44:56 +0100
+
+phppgadmin (4.0.1-1) unstable; urgency=low
+
+  * New upstream release
+  * Added debconf translation for Portuguese, closes: #336846
+  * Adjust install file
+  * Bumped Standards-Version to 3.6.2, no changes required
+  * Update debian/config.inc.php from new upstream config file
+
+ -- Isaac Clerencia <isaac@debian.org>  Wed, 16 Nov 2005 21:39:30 +0100
+
+phppgadmin (3.5.6-1) unstable; urgency=low
+
+  * New upstream release
+  * Remove patches included upstream
+  * Added debconf translation for Swedish, closes: #330646
+  * Allow to install phppgadmin with php5, closes: #325888
+  * Prefer apache2 over apache
+
+ -- Isaac Clerencia <isaac@debian.org>  Tue, 18 Oct 2005 19:45:00 +0200
+
+phppgadmin (3.5.5-2) unstable; urgency=low
+
+  * Further fixes for "Only variable references should be returned by
+  reference", closes: #321921
+
+ -- Isaac Clerencia <isaac@debian.org>  Mon, 29 Aug 2005 00:07:51 +0200
+
+phppgadmin (3.5.5-1) unstable; urgency=low
+
+  * New upstream release,
+    closes: #321921, "Only variable references should be returned by reference"
+  * Added dpatch to build-depends
+  * Include a patch to fix a problem similar to #321921,
+    "Only variables should be assigned by reference"
+  * Provide alternative (and safer) auth schema in README.Debian,
+     closes: #322682, provided by Andreas Tille
+  * Added/updated debconf translations for Arabic, Czech and French,
+     closes: #322417, #320774, #320304
+
+ -- Isaac Clerencia <isaac@debian.org>  Fri, 19 Aug 2005 00:17:24 +0200
+
+phppgadmin (3.5.4-1) unstable; urgency=low
+
+  * New upstream release, fixes security bug CAN-2005-2256: #318284
+  * Updated Japanese po-debconf file, closes: #310087
+  * Added Vietnamese po-debconf file, closes: #316842
+
+ -- Isaac Clerencia <isaac@debian.org>  Mon, 18 Jul 2005 11:19:26 +0200
+
+phppgadmin (3.5.2-3) unstable; urgency=low
+
+  * Added Apache 2 as a choice for autoconfiguration, closes: #297696
+
+ -- Isaac Clerencia <isaac@debian.org>  Wed,  2 Mar 2005 16:12:44 +0100
+
+phppgadmin (3.5.2-2) unstable; urgency=low
+
+  * Configure apache via conf.d, closes: #296504
+
+ -- Isaac Clerencia <isaac@debian.org>  Wed, 23 Feb 2005 02:39:49 +0100
+
+phppgadmin (3.5.2-1) unstable; urgency=low
+
+  * New upstream release, closes: #290604, #288551
+  * Fixed PHP depends, closes: #293441
+  * Removed bashism from postrm, closes: #292187
+  * Include initial Czech translation of debconf messages, closes: #293616
+
+ -- Isaac Clerencia <isaac@debian.org>  Mon, 21 Feb 2005 13:42:20 +0100
+
+phppgadmin (3.5.1-1) unstable; urgency=low
+
+  * New upstream release
+  * Remove some i18n tools from lang/
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Tue, 14 Dec 2004 14:33:03 +0100
+
+phppgadmin (3.5-1) unstable; urgency=low
+
+  * New upstream release
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Mon, 15 Nov 2004 10:57:18 +0100
+
+phppgadmin (3.4.1-1) unstable; urgency=low
+
+  * New upstream release
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Tue,  6 Jul 2004 15:46:09 +0200
+
+phppgadmin (3.4-3) unstable; urgency=low
+
+  * Added show_comments option to the default config file, closes: #254299 
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Mon, 14 Jun 2004 20:53:46 +0200
+
+phppgadmin (3.4-2) unstable; urgency=low
+
+  * Moved db_stop after #DEBHELPER# in postrm since debhelper uses debconf
+    to purge, closes: #252882
+  * Renamed templates file to phppgadmin.templates
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Sat,  5 Jun 2004 20:54:31 +0200
+
+phppgadmin (3.4-1) unstable; urgency=low
+
+  * New upstream release
+  * Renamed some phppgadmin.foobar files to foobar
+  * Removed the disappeared BUGS file from debian/docs
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Fri,  4 Jun 2004 15:10:15 +0200
+
+phppgadmin (3.3.1-2) unstable; urgency=low
+
+  * Added libapache2-mod-php as an alternative for php4 in order to have
+    phppgadmin usable with apache2, closes: #248845
+  * Added #DEBHELPER# to all maintainer scripts
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Fri, 14 May 2004 16:27:13 +0200
+
+phppgadmin (3.3.1-1) unstable; urgency=low
+
+  * New upstream release
+  * Added Catalan (ca) debconf template translation, sent by Aleix Badia,
+    closes: #236637
+  * DH_COMPAT in rules moved to debian/compat
+  * conffile file removed, because files in /etc are automatically conffiles
+    with DH_COMPAT 4
+  * removing po-debconf Build-Depend, since debhelper >= 4.1.16 implies it
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Sat, 13 Mar 2004 10:17:22 +0100
+
+phppgadmin (3.3-2) unstable; urgency=low
+
+  * Added German (de) debconf template translation, sent by Peter Eisentraut
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Wed,  3 Mar 2004 11:58:10 +0100
+
+phppgadmin (3.3-1) unstable; urgency=low
+
+  * New upstream release
+  * Add Brazilian Portuguese (pt_BR) debconf template translation
+  	closes: #231715, translation sent by Andre Luis Lopes
+  * Upstream:
+     Checkbox to LIMIT output rows from SQL box added, closes: #217426 
+     SQL query from link (not box) can be edited after "Go", closes: #217430
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Wed, 25 Feb 2004 11:31:35 +0100
+
+phppgadmin (3.2.1-2) unstable; urgency=low
+
+  * Now the package doesn't overwrite the old configuration silently
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Sat, 10 Jan 2004 22:31:26 +0100
+
+phppgadmin (3.2.1-1) unstable; urgency=low
+
+  * New upstream release
+  * Added Japanese debconf translation, closes: #222285
+  * LIMIT conflict in reports fixed upstream, closes: #217433
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Sat, 29 Nov 2003 23:57:48 +0100
+
+phppgadmin (3.1+beta1-3) unstable; urgency=low
+
+  * Changed _Choices to __Choices in templates file, closes: #211058
+  * Added two missing files, indexes.js and robots.txt, closes: #211689
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Friday,  19 September 2003 17:30:15 +0100
+
+phppgadmin (3.1+beta1-2) unstable; urgency=low
+
+  * Added French debconf translation, closes: #210639
+  * Fixed debconf error in preconfigure and postinst, closes: #210723
+  * Added po-debconf to Build-Depends-Indep
+  * Changed Standards-Version from 3.5.9.0 to 3.6.1.0 (no changes needed)
+  * Removed php3 stuff from debian/apache.conf
+  * Added apache as real package that provides httpd
+  * Removed starting "A " from Description
+  * Transition from cp to install to avoid umask problems in debian/rules
+  * Added missing binary-arch and build targets in debian/rules
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Saturday,  13 September 2003 11:30:15 +0100
+
+phppgadmin (3.1+beta1-1) unstable; urgency=low
+
+  * New upstream release
+  * Changed dependency on apache to dependency on httpd, closes: #203742
+  * Switched to the gettext debconf format, closes: #210489
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Friday,  12 September 2003 00:18:15 +0100
+
+phppgadmin (3.0-1) unstable; urgency=low
+
+  * New upstream release, closes: #203329, #197806, #202099, #197281, #127837
+  * Created with debhelper
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Sunday,  22 June 2003 16:48:15 +0100
+
+phppgadmin (2.4.2-2) unstable; urgency=low
+
+  * Forgot to close "new upstream" and "spanish debconf" bugs, closes: #162075, #153072
+  * Build-depend to yada, closes: #152186
+  * Fixes error in documentation URL (cfgManualBase), closes: #147140
+   
+ -- Isaac Clerencia <isaac@sindominio.net>  Saturday,  26 October 2002 15:01:15 +0100
+
+phppgadmin (2.4.2-1) unstable; urgency=low
+
+  * New upstream release
+  * Spanish debconf template
+  * Adopted, closes: #162570
+
+ -- Isaac Clerencia <isaac@sindominio.net>  Friday,  25 October 2002 15:45:50 +0100
+
+phppgadmin (2.4.1-3) unstable; urgency=high
+
+  * left.js was missing from binary package, closes: #145458
+  * The default policy is now "allow from localhost", closes: #135411
+
+ -- Piotr Roszatycki <dexter@debian.org>  Tue,  7 May 2002 10:50:18 +0200
+
+phppgadmin (2.4.1-2) unstable; urgency=low
+
+  * Fixes typo in README, closes: #142519
+  * Fixes wwwconfig-common stuff.
+
+ -- Piotr Roszatycki <dexter@debian.org>  Thu, 18 Apr 2002 12:07:22 +0200
+
+phppgadmin (2.4.1-1) unstable; urgency=low
+
+  * New upstream release
+  * phppgadmin doesn't depend php3, closes: #142165
+  * Fixed postrm script if package is not configured yet, closes: #131658
+  * Russian debconf template, closes: #137673
+
+ -- Piotr Roszatycki <dexter@debian.org>  Fri, 12 Apr 2002 11:56:27 +0200
+
+phppgadmin (2.4-1) unstable; urgency=low
+
+  * New upstream release
+
+ -- Piotr Roszatycki <dexter@debian.org>  Tue, 29 Jan 2002 16:58:03 +0100
+
+phppgadmin (2.3.1-2.4-beta-1-1) unstable; urgency=low
+
+  * New upstream release, closes: #122589
+  * Fixed spelling error in description, closes: #125244
+
+ -- Piotr Roszatycki <dexter@debian.org>  Tue, 18 Dec 2001 14:45:27 +0100
+
+phppgadmin (2.3-5) unstable; urgency=low
+
+  * German template, closes: #114077
+
+ -- Piotr Roszatycki <dexter@debian.org>  Tue, 16 Oct 2001 15:52:45 +0200
+
+phppgadmin (2.3-4) unstable; urgency=low
+
+  * Fix documentation files suffix, closes: #113049
+  * Don't use file_exists and include "./$goto"
+  * DebConf and wwwconfig-common for automatic webserver reconfiguration.
+
+ -- Piotr Roszatycki <dexter@debian.org>  Mon, 24 Sep 2001 17:26:10 +0200
+
+phppgadmin (2.3-3) unstable; urgency=low
+
+  * left.php now display tables which has 'pg' substring, closes: #101593
+  * Depends: httpd
+
+ -- Piotr Roszatycki <dexter@debian.org>  Sat,  7 Jul 2001 17:11:04 +0200
+
+phppgadmin (2.3-2) unstable; urgency=medium
+
+  * Modified very unsecure method of advanced authentication. Now, the
+    stduser/stdpass pair is not required for enabled adv_auth.
+  * Slightly modified config.inc.php
+  * Updated README.Debian
+  * Clean up some old dh_clean in debian/packages
+  * FAQ in /usr/share/doc
+
+ -- Piotr Roszatycki <dexter@debian.org>  Mon, 21 May 2001 12:20:02 +0200
+
+phppgadmin (2.3-1) unstable; urgency=high
+
+  * New upstream release
+
+ -- Piotr Roszatycki <dexter@debian.org>  Wed,  9 May 2001 12:39:03 +0200
+
+phppgadmin (2.2.1.pl1-1) unstable; urgency=low
+
+  * Initial Debian version, closes: #89617
+
+ -- Piotr Roszatycki <dexter@debian.org>  Tue, 10 Apr 2001 13:58:05 +0200
+
--- phppgadmin-4.2.2.orig/debian/copyright
+++ phppgadmin-4.2.2/debian/copyright
@@ -0,0 +1,24 @@
+This package was debianized by Isaac Clerencia <isaac@sindominio.net> on
+Thu, 19 Jun 2003 10:27:23 +0200
+
+It was downloaded from http://sourceforge.net/projects/phppgadmin/
+Copyright (C) 2002, 2003, 2004, 2005 The PhpPgAdmin Project
+
+This program is free software; you can redistribute it and/or modify
+it under the terms of the GNU General Public License as published by
+the Free Software Foundation; either version 2 of the License, or
+(at your option) any later version.
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU General Public License <http://www.opensource.org/gpl-license.html>
+for more details.
+
+You can found the license on Debian systems in the file 
+/usr/share/common-licenses/GPL
+
+This package also includes the ADODB Library for PHP components 
+(in /usr/share/phppgadmin/libraries/adodb), released under the 
+terms of the BSD and GNU Lesser General Public License (on Debian
+systems see /usr/share/common-licenses/BSD and 
+/usr/share/common-licenses/LGPL)
--- phppgadmin-4.2.2.orig/debian/dirs
+++ phppgadmin-4.2.2/debian/dirs
@@ -0,0 +1,4 @@
+usr/share/phppgadmin
+usr/share/phppgadmin/conf
+etc/phppgadmin
+etc/apache2/conf.d
--- phppgadmin-4.2.2.orig/debian/README.Debian
+++ phppgadmin-4.2.2/debian/README.Debian
@@ -0,0 +1,58 @@
+phpPgAdmin for Debian
+=====================
+
+Usage
+-----
+
+The application is available at http://localhost/phppgadmin/ after
+installation.
+
+Edit /etc/phppgadmin/apache.conf if you want to change the default access
+policy or other Apache settings.
+
+Edit /etc/phppgadmin/config.inc.php to connect to databases on other hosts and 
+ports, and to change other configuration settings of phpPgAdmin.
+
+Access Control
+--------------
+
+By default phpPgAdmin connects to localhost port 5432.  PostgreSQL
+installations on Debian authenticate this access with passwords by default, so
+you should give your database users passwords.  You can do this by executing
+in a shell while being root:
+
+    # su - postgres
+    $ psql
+    (and inside the psql shell)
+    =# \password someuser
+    =# \q
+
+In particular, you want to give the postgres user itself a password this way,
+if you want to use phpPgAdmin for administration tasks requiring superuser
+access.
+
+For further information about PostgreSQL users and passwords refer to the
+documentation available in the postgresql-doc package.
+
+Alternative Approach
+--------------------
+
+In case you want to avoid password authentication for all users (for instance
+this might break some local applications which are designed to work with ident 
+authentication) the following approach is suggested:
+  
+Create a special phppgadmin user:
+  
+    su - postgres
+    createuser --adduser --createdb --encrypted --pwprompt phppgadmin
+  
+Insert the following line in your /etc/postgresql/x.y/zzz/pg_hba.conf file:
+  
+    local   all         phppgadmin                 md5
+
+(make sure that it is above "local  all  all  ident sameuser")
+  
+Then, reload the PostgreSQL server with /etc/init.d/postgresql-x.y reload.
+  
+You should be able to login with phppgadmin and the password chosen above into 
+the phpPgAdmin interface.
--- phppgadmin-4.2.2.orig/debian/watch
+++ phppgadmin-4.2.2/debian/watch
@@ -0,0 +1,2 @@
+version=3
+http://sf.net/phppgadmin/ phpPgAdmin-([0-9.]+)\.tar\.gz
--- phppgadmin-4.2.2.orig/debian/postinst
+++ phppgadmin-4.2.2/debian/postinst
@@ -0,0 +1,7 @@
+#! /bin/sh -e
+
+if [ "$1" = configure ]; then
+	test ! -e /etc/init.d/apache2 || invoke-rc.d apache2 reload
+fi
+
+#DEBHELPER#
--- phppgadmin-4.2.2.orig/debian/links
+++ phppgadmin-4.2.2/debian/links
@@ -0,0 +1,2 @@
+etc/phppgadmin/config.inc.php usr/share/phppgadmin/conf/config.inc.php
+etc/phppgadmin/apache.conf etc/apache2/conf.d/phppgadmin
--- phppgadmin-4.2.2.orig/debian/install
+++ phppgadmin-4.2.2/debian/install
@@ -0,0 +1,13 @@
+debian/apache.conf	etc/phppgadmin
+conf/config.inc.php	etc/phppgadmin
+*.php			usr/share/phppgadmin
+*.js			usr/share/phppgadmin
+robots.txt		usr/share/phppgadmin
+classes			usr/share/phppgadmin
+help			usr/share/phppgadmin
+images			usr/share/phppgadmin
+lang			usr/share/phppgadmin
+libraries		usr/share/phppgadmin
+sql			usr/share/phppgadmin
+themes			usr/share/phppgadmin
+xloadtree		usr/share/phppgadmin
--- phppgadmin-4.2.2.orig/debian/patches/CVE-2011-3598
+++ phppgadmin-4.2.2/debian/patches/CVE-2011-3598
@@ -0,0 +1,22 @@
+--- a/classes/Misc.php
++++ b/classes/Misc.php
+@@ -377,7 +377,7 @@
+ 				echo "<link rel=\"shortcut icon\" href=\"images/themes/{$conf['theme']}/Favicon.ico\" type=\"image/vnd.microsoft.icon\" />\n";
+ 				echo "<link rel=\"icon\" type=\"image/png\" href=\"images/themes/{$conf['theme']}/Introduction.png\" />\n";
+ 				echo "<title>", htmlspecialchars($appName);
+-				if ($title != '') echo " - {$title}";
++				if ($title != '') echo htmlspecialchars(" - {$title}");
+ 				echo "</title>\n";
+ 
+ 				if ($script) echo "{$script}\n";
+--- a/display.php
++++ b/display.php
+@@ -430,7 +430,7 @@
+ 		echo "<ul class=\"navlink\">\n";
+ 		// Return
+ 		if (isset($_REQUEST['return_url']) && isset($_REQUEST['return_desc']))
+-			echo "\t<li><a href=\"{$_REQUEST['return_url']}\">{$_REQUEST['return_desc']}</a></li>\n";
++			echo "\t<li><a href=\"". htmlspecialchars($_REQUEST['return_url']) ."\">". htmlspecialchars($_REQUEST['return_desc']) ."</a></li>\n";
+ 
+ 		// Edit SQL link
+ 		if (isset($_REQUEST['query']))
--- phppgadmin-4.2.2.orig/debian/patches/localhost.patch
+++ phppgadmin-4.2.2/debian/patches/localhost.patch
@@ -0,0 +1,15 @@
+Go through localhost instead of Unix-domain socket because localhost allows
+password access by default on Debian; Unix-domain socket uses ident, which
+doesn't work through the web server.
+
+--- a/conf/config.inc.php
++++ b/conf/config.inc.php
+@@ -15,7 +15,7 @@
+ 
+ 	// Hostname or IP address for server.  Use '' for UNIX domain socket.
+ 	// use 'localhost' for TCP/IP connection on this computer
+-	$conf['servers'][0]['host'] = '';
++	$conf['servers'][0]['host'] = 'localhost';
+ 
+ 	// Database port on server (5432 is the PostgreSQL default)
+ 	$conf['servers'][0]['port'] = 5432;
--- phppgadmin-4.2.2.orig/debian/patches/slony1-path.patch
+++ phppgadmin-4.2.2/debian/patches/slony1-path.patch
@@ -0,0 +1,13 @@
+bug #414986
+
+--- a/conf/config.inc.php	2008-04-06 03:53:28.000000000 +0200
++++ b/conf/config.inc.php	2008-06-20 13:16:28.000000000 +0200
+@@ -39,7 +39,7 @@
+ 	$conf['servers'][0]['slony_support'] = false;
+ 	// Specify the path to the Slony SQL scripts (where slony1_base.sql is located, etc.)
+ 	// No trailing slash.
+-	$conf['servers'][0]['slony_sql'] = '/usr/share/pgsql';
++	$conf['servers'][0]['slony_sql'] = '/usr/share/slony1';
+ 
+ 	// Example for a second server (PostgreSQL for Windows)
+ 	//$conf['servers'][1]['desc'] = 'Test Server';
--- phppgadmin-4.2.2.orig/debian/patches/series
+++ phppgadmin-4.2.2/debian/patches/series
@@ -0,0 +1,3 @@
+slony1-path.patch
+localhost.patch
+CVE-2011-3598