bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-19 23:43:00 +02:00

Author	SHA1	Message	Date
Arne Fitzenreiter	b5aca95b94	boost: disable parallel build this need more than 1GB ram on arm Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2017-11-28 07:01:33 +01:00
Arne Fitzenreiter	0476a6570d	samba: import security updates from redhead Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2017-11-27 18:20:59 +01:00
Michael Tremer	6c4cc7ea1b	Move toolchain from /tools to /tools_${arch} This will allow us to run multiple builds on the same system at the same time (or at least have them on disk). Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-23 15:57:28 +00:00
Michael Tremer	f1effdf758	make.sh: Drop option to generate a source ISO This is a very weird way to distribute sources in 2017. Let's save the environment and stop using CDs. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-23 15:55:05 +00:00
Peter Müller	2d735404b6	update ca-certificate CA bundle Update the CA certificate list to what Mozilla NSS ships currently. Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-13 23:14:59 +00:00
Peter Müller	eea4969dff	Tor: Use relay mode as default setting Set the default operating mode to "relay" in the Tor WebUI configuration page. Running a Tor exit relay may cause legal trouble in some countries and should not be the default setting to prevent users from accidentally running an exit router. Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 16:14:36 +00:00
Michael Tremer	770c2c5222	wget: Update file extension Upstream does not distribute XZ compressed tarballs any more Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-02 15:38:11 +00:00
Michael Tremer	4a510319ca	openssl: Update to 1.0.2m * bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736) * Malformed X.509 IPAddressFamily could cause OOB read (CVE-2017-3735) Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-02 15:31:04 +00:00
Michael Tremer	a016c0ce6a	wget: Update to 1.19.2 Fixes CVE-2017-13089 A stack-based buffer overflow when processing chunked, encoded HTTP responses was found in wget. By tricking an unsuspecting user into connecting to a malicious HTTP server, an attacker could exploit this flaw to potentially execute arbitrary code. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-29 18:33:03 +00:00
Wolfgang Apolinarski	bf24eeec20	Update to Apache 2.4.29 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-28 13:35:43 +01:00
Matthias Fischer	49f7ee5d72	snort: Update to 2.9.11 For details see: Release notes: https://snort.org/downloads/snort/release_notes_2.9.11.txt Changelog: https://snort.org/downloads/snort/changelog_2.9.11.txt Best, Matthias Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-23 16:24:46 +01:00
Matthias Fischer	a809d7fa68	xz: Update to 5.2.3 For details see: https://git.tukaani.org/?p=xz.git;a=blob;f=NEWS;hb=HEAD Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-23 13:22:01 +01:00
Michael Tremer	348ba8e2c5	Revert "Use best XZ compression for smaller images and packages" This reverts commit `5fd54721c2`. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-18 12:35:19 +01:00
Michael Tremer	9dcfcb0039	Revert "cdrom: Use -8 as compression parameter" This reverts commit `77ad762c43`. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-18 12:35:04 +01:00
Michael Tremer	77ad762c43	cdrom: Use -8 as compression parameter This is a better compromise on memory usage and file size Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-17 21:16:41 +01:00
Michael Tremer	5fd54721c2	Use best XZ compression for smaller images and packages Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-17 15:23:26 +01:00
Michael Tremer	c061d66fca	cdrom: Change format to XZ and compress in parallel This allows us to use all processor cores to compress the image faster. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-17 14:58:52 +01:00
Michael Tremer	bc9544929c	packages: Compress in parallel Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-17 14:58:28 +01:00
Matthias Fischer	5ed7bbd52f	logrotate: Update to 3.13.0 For details see: https://github.com/logrotate/logrotate/releases Best, Matthias Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-16 19:19:39 +01:00
Michael Tremer	b62c826fd8	PDF-API2: Add optional dependencies to read TrueType fonts Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-16 17:43:32 +01:00
Michael Tremer	e3c3625c34	Make perl-PDF-API2 part of the base system Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-16 17:31:51 +01:00
Michael Tremer	30b0e0ca1b	PDF-API2: Update to 2.033 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-16 17:28:51 +01:00
Michael Tremer	d7d5774529	KRACK attack: Patch wpa_supplicant & hostapd A vulnerability was found in how a number of implementations can be triggered to reconfigure WPA/WPA2/RSN keys (TK, GTK, or IGTK) by replaying a specific frame that is used to manage the keys. Such reinstallation of the encryption key can result in two different types of vulnerabilities: disabling replay protection and significantly reducing the security of encryption to the point of allowing frames to be decrypted or some parts of the keys to be determined by an attacker depending on which cipher is used. This fixes: CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13086, CVE-2017-13087, CVE-2017-13088 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-16 15:49:35 +01:00
Michael Tremer	c484679bb3	Download sources via HTTPS Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-12 15:56:34 +01:00
Michael Tremer	fb76fc5144	installer: Fix detection if we have the correct ISO image mounted Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-12 15:50:31 +01:00
Michael Tremer	7ef43add02	ipfire-netboot: Update to v2.0 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-11 21:03:09 +01:00
Matthias Fischer	e735d91f03	unbound: Update to 1.6.7 For details see: http://www.unbound.net/download.html Best, Matthias Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-11 20:06:48 +01:00
Matthias Fischer	5c6ae344fc	web-user-interface: Removed 'dial.cgi' from lfs-file 'dial.cgi' was removed in https://git.ipfire.org/?p=ipfire-2.x.git;a=commit;h=dc6ed83537e1bcc1347ad16bee095ef4d641bc69 Best, Matthias Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-11 20:01:48 +01:00
Michael Tremer	0b289b3af0	netboot: Update to 1.2 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-11 19:59:48 +01:00
Matthias Fischer	e3fc1d0a2b	apache: Update to 2.4.28 http://apache.mirror.digionline.de//httpd/CHANGES_2.4.28 Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-09 14:46:00 +01:00
Michael Tremer	027614d2dc	Merge branch 'captive-portal' into next	2017-10-04 16:10:07 +01:00
Michael Tremer	1f06098ba7	captive-portal: Serve Ubuntu font files locally Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-04 12:55:17 +01:00
Michael Tremer	70f6cba43e	Add Ubuntu font family package Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-10-04 12:47:28 +01:00
Matthias Fischer	67970637d0	openvpn: Update to 2.3.18 Fixes CVE-2017-12166: out of bounds write in key-method 1 For details see: https://community.openvpn.net/openvpn/wiki/CVE-2017-12166 Changelog: https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn23#OpenVPN2.3.18 Removed an unrecognized 'configure'-option. Best, Matthias Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-30 12:33:15 +01:00
Matthias Fischer	fc9a434cbc	tor: Update to 3.1.7 Fixes TROVE-2017-008 and CVE-2017-0380 and others.... For details see https://gitweb.torproject.org/tor.git/plain/ReleaseNotes?id=tor-0.3.1.7 "Tor 0.3.1.7 is the first stable release in the 0.3.1 series." Best, Matthias Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-30 12:33:11 +01:00
Arne Fitzenreiter	d62fd7553d	Merge branch 'master' into next	2017-09-24 15:45:04 +02:00
Matthias Fischer	1b0ff72dad	wpa_supplicant: Update to 2.6 For details see: https://w1.fi/cgit/hostap/plain/wpa_supplicant/ChangeLog Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-23 22:16:14 +01:00
Arne Fitzenreiter	3aa4579f8f	Merge remote-tracking branch 'origin/next'	2017-09-23 10:38:18 +02:00
Michael Tremer	445b43f877	captive: Fix directory permissions Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-22 19:00:04 +01:00
Michael Tremer	c91899797b	captive: Logo directory no longer exists Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-22 19:00:04 +01:00
Michael Tremer	22ce4c3ad6	apache2: Create captive portal logging directory Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-22 19:00:04 +01:00
Michael Tremer	6033b27103	Actually build bootstrap Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-22 19:00:04 +01:00
Michael Tremer	02de682e21	captive: Link .map files as well Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-22 18:56:04 +01:00
Michael Tremer	733de0e4a0	bootstrap: Install map files, too Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-22 18:56:04 +01:00
Michael Tremer	48fb1d3b69	captive: Import new design This is the new design of the access page of the captive portal. It is based on the Bootstrap 4 grid system and reboot but does not use anything else from it. It is responsive and customisable. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-22 18:54:45 +01:00
Michael Tremer	050ce75678	bootstrap: New package Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-22 18:54:45 +01:00
Michael Tremer	0a02d9bb0c	captive-portal: Move CGI files to CGI directory Previously the assets directory has ExecCGI privileges which is not at all required and potentially dangerous. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-22 18:54:45 +01:00
Michael Tremer	43834c4969	captive: Only make CGI script executable in document root Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-22 18:54:45 +01:00
Michael Tremer	a79b220c5a	captive: Log into default apache log files Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-09-22 18:54:45 +01:00
Alexander Marx	6820454e54	Captive-Portal: Fix folder permissions Signed-off-by: Alexander Marx <alexander.marx@ipfire.org>	2017-09-22 18:54:45 +01:00

1 2 3 4 5 ...

4905 Commits