bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-11 19:55:52 +02:00

Author	SHA1	Message	Date
Arne Fitzenreiter	28bee14ecc	core95: add ipset to updater. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-11-08 10:04:13 +01:00
Michael Tremer	9ce3b858a6	core95: Ship changed mail.cgi Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-11-05 15:35:46 +00:00
Erik Kapfer	63cbd2c1df	ipset: New package Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-11-05 11:47:14 +00:00
Michael Tremer	87fb870b5e	core95: Ship updated packages Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-11-04 21:20:14 +00:00
Erik Kapfer	6411f1baa6	lzo: Update to version 2.09 Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-11-04 21:11:07 +00:00
Michael Tremer	71af643cda	openvpn: Add option to download a client package with PEM files This patch adds the option to download a client package that comes with a regular PEM and key file instead of a PKCS12 file which is easier to use with clients that don't support PKCS12 (like iOS) opposed to converting the file manually. This requires that the connection is created without using a password for the certificate. Then the certificate is already stored in an insecure way. This patch also adds this to the Core Update 95 updater. Fixes: #10966 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> CC: Alexander Marx <alexander.marx@ipfire.org>	2015-11-04 21:10:41 +00:00
Arne Fitzenreiter	123205fdbf	core95: add upadated backup exclude list. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-11-01 21:49:22 +01:00
Michael Tremer	6feea5f778	credits.cgi: Update credits Promotes Alexander Marx to the group of Core Developers. Also lots of reformatting of old HTML code. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-31 21:41:58 +00:00
Arne Fitzenreiter	12b5c00d3e	core95: add kernel to updater. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-10-31 17:41:25 +01:00
Arne Fitzenreiter	ec72ebbfda	core95: add ntp, backup and geoip changes to updater. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-10-31 17:07:01 +01:00
Arne Fitzenreiter	b209d63dc0	backup: exclude lm_sensors config. this config is hardware dependend and will autodetected at boot. fixes #10865 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-10-31 17:04:47 +01:00
Matthias Fischer	6e11539dc2	ntp: Update to 4.2.8p4 ntp-Update to 4.2.8p4, regarding "13 low- and medium-severity vulnerabilities". For a complete list, see: http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-26 13:08:53 +00:00
Arne Fitzenreiter	a14e8d0256	Merge remote-tracking branch 'origin/master' into next	2015-10-25 09:21:12 +01:00
Arne Fitzenreiter	3a6784c065	ssh: preferre ecdsa cipher again. Previous we had not configured it so the ssh default order was used. Now we define it to disable dsa so we had to give the correct order but in the example cfg rsa is prefered. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-10-24 12:07:29 +02:00
Arne Fitzenreiter	b4dd976c20	core94: add system menu to update. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-10-23 19:49:17 +02:00
Arne Fitzenreiter	39ed5389fc	Merge remote-tracking branch 'origin/master' into next	2015-10-22 23:38:27 +02:00
Michael Tremer	374e636fee	Move email settings from services to system menu Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-22 21:21:34 +01:00
Arne Fitzenreiter	159c9eb9b1	Merge remote-tracking branch 'origin/master' into next	2015-10-22 13:11:17 +02:00
Arne Fitzenreiter	d7b82e7cce	openssh: disable dsa key usage. fixes #10934 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-10-22 13:08:27 +02:00
Michael Tremer	2b952557f4	core95: Ship DHCP RFC2136 changes Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-21 13:52:22 +01:00
Michael Tremer	4e8949e817	core95: Ship changed routing.cgi file Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-18 19:20:18 +01:00
Michael Tremer	307327a946	core95: Ship changed firewall.cgi file Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-18 19:19:31 +01:00
Michael Tremer	924f5d6f1a	core95: Ship changed firewalllogcountry.dat Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-18 18:54:25 +01:00
Michael Tremer	ea3eac2c50	core95: Ship changed pppsetup.cgi Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-18 18:52:07 +01:00
Michael Tremer	f439097499	core95: Ship ddns update Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-17 01:27:07 +01:00
Michael Tremer	075b6e10db	core95: Ship IPsec blocking changes Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-15 22:46:33 +01:00
Michael Tremer	80fbd89949	ipsec: Add block rules to avoid conntrack entries If an IPsec VPN connections is not established, there are rare cases when packets are supposed to be sent through that said tunnel and incorrectly handled. Those packets are sent to the default gateway an entry for this connection is created in the connection tracking table (usually only happens to UDP). All following packets are sent the same route even after the tunnel has been brought up. That leads to SIP phones not being able to register among other things. This patch adds firewall rules that these packets are rejected. That will sent a notification to the client that the tunnel is not up and avoid the connection to be added to the connection tracking table. Apart from a small performance penalty there should be no other side-effects. Fixes: #10908 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Cc: tomvend@rymes.com Cc: daniel.weismueller@ipfire.org Cc: morlix@morlix.de Reviewed-by: Timo Eissler <timo.eissler@ipfire.org>	2015-10-15 22:44:47 +01:00
Michael Tremer	38b7997ffd	core94: Adjust update.sh script if run multiple times Some changes cannot be executed again after the update was already installed. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-15 12:02:38 +01:00
Alexander Marx	ee97ade8e4	Core94: fix for dma when postfix is installed Signed-off-by: Alexander Marx <alexander.marx@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-15 12:00:56 +01:00
Alexander Marx	13adb7aea8	Core94: fix update.sh for dma Signed-off-by: Alexander Marx <alexander.marx@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-15 12:00:37 +01:00
Michael Tremer	4504c412af	procps: Ship pgrep Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-03 19:53:57 +01:00
Michael Tremer	8235f17df5	strongswan: Update to 5.3.3 ChaCha is disabled since our kernel does not support it yet Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-03 19:17:01 +01:00
Michael Tremer	26e91280ea	Rootfile update Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-28 20:14:42 +01:00
Arne Fitzenreiter	16016ff2b0	Merge branch 'next' of git.ipfire.org:/pub/git/ipfire-2.x into next	2015-09-28 18:42:57 +02:00
Arne Fitzenreiter	95b09c86d6	Merge remote-tracking branch 'origin/master' into next	2015-09-28 18:40:32 +02:00
Arne Fitzenreiter	c5a5e4abb0	core94: restart init after glibc update. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-28 16:58:58 +02:00
Michael Tremer	55eb745e65	core95: Ship changed files Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-28 14:35:54 +01:00
Michael Tremer	dfe630f77c	Merge remote-tracking branch 'ms/experimental-vlan-hotplugging' into next	2015-09-28 14:33:49 +01:00
Michael Tremer	c400bc2d7d	core95: Ship changed files Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-28 14:25:53 +01:00
Michael Tremer	b1881251d6	Merge remote-tracking branch 'ms/ipsec-subnets' into next	2015-09-28 14:21:18 +01:00
Michael Tremer	4b046d735d	Start Core Update 95 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-28 14:08:27 +01:00
Michael Tremer	d86694ad1f	Merge branch 'master' into next	2015-09-28 14:05:26 +01:00
Michael Tremer	9dd14089ce	core94: Fix dead symlinks in filelist The rootfiles have been renamed, but not the symlinks were not. Fixes #10931 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-28 11:59:20 +01:00
Arne Fitzenreiter	c9f0174979	kernel: update to 3.14.53 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-27 12:58:22 +02:00
Arne Fitzenreiter	8f1fe7c531	core94: fix chrontab modification check for dma. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-27 10:56:34 +02:00
Arne Fitzenreiter	ccb8e47d0e	core94: allow rootlogin only if the user has not blocked it before. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-27 10:42:38 +02:00
Arne Fitzenreiter	d82c564b23	core94: fix sed syntax. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-27 10:42:01 +02:00
Michael Tremer	7c8e022c4b	firewall: Support multiple subnets per IPsec tunnel Fixes #10929 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-22 00:26:37 +01:00
Michael Tremer	ed5fee308f	core94: Ship changed CGI files Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-21 16:46:21 +01:00
Michael Tremer	b1fb211827	Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next	2015-09-21 16:12:25 +01:00

1 2 3 4 5 ...

4854 Commits