bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-21 16:32:59 +02:00

Author	SHA1	Message	Date
Michael Tremer	318434affb	core120: Ship updated proxy.cgi Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-03-06 15:12:42 +00:00
Michael Tremer	01bec95655	core120: Ship updated unbound init script Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-03-05 15:21:56 +00:00
Michael Tremer	568a227bd3	vpnmain.cgi: Fix reading common names from certificates OpenSSL has changed the output of the subject lines of certificates. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-03-01 19:59:14 +00:00
Michael Tremer	e707599d2c	core120: Call openvpnctrl with full path Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-28 10:48:29 +00:00
Michael Tremer	d192815e83	core120: Ship everything that is linked against OpenSSL This will make sure that everything is using the new version of the library. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-26 16:22:32 +00:00
Michael Tremer	1c0cfaa594	Disable Path MTU discovery This seems to be a failed concept and causes issues with transferring large packets through an IPsec tunnel connection. This configures the kernel to still respond to PMTU ICMP discovery messages, but will not try this on its own. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-26 15:37:49 +00:00
Michael Tremer	f0e308ab2f	core120: Fix typo in initscript name Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-26 15:34:10 +00:00
Michael Tremer	61fcd32f15	Rootfile update Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-26 13:06:34 +00:00
Michael Tremer	0eccedd1c8	dhcp: Allow adding extra DHCP interfaces Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-26 11:12:20 +00:00
Erik Kapfer via Development	39d11d265e	OpenVPN: Ship missing OpenSSL configuration file for update Core 115 delivered a patch which prevents the '--ns-cert-type server is deprecated' message and introduced also '--remote-cert-tls server' --> https://patchwork.ipfire.org/patch/1441/ whereby the changed ovpn.cnf has not been delivered. Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-26 10:15:30 +00:00
Michael Tremer	8b080ef12b	core120: Remove deprecated sshd configuration option This just created a warning and is now dropped Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-21 13:06:22 +00:00
Michael Tremer	c8e4391ecc	core120: Remove forgotten PHP file Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-21 12:41:05 +00:00
Michael Tremer	53929f5ae8	core120: Ship updated OpenSSL 1.1.0 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-21 12:39:55 +00:00
Michael Tremer	9434bffaf2	Merge branch 'openssl-11' into next	2018-02-21 12:21:10 +00:00
Michael Tremer	cb8a6bf5a4	Start Core Update 120 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-21 12:20:57 +00:00
Michael Tremer	83d6101b9d	core119: Reload apache after configuration changes Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-21 12:06:02 +00:00
Michael Tremer	3f42cf5cb9	backup: Don't backup apache configuration, keys only In the past the apache configuration was part of the backup and may have been restored after Core Update 118 was installed with PHP being dropped amongst other things. This patch will make sure that only keys are being backuped. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-21 12:06:02 +00:00
Michael Tremer	bbe8e248fe	Rootfile update Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-20 20:10:30 +00:00
Michael Tremer	ea3b9a4f88	strongswan: Update to 5.6.2 Fixed a DoS vulnerability in the parser for PKCS#1 RSASSA-PSS signatures that was caused by insufficient input validation. One of the configurable parameters in algorithm identifier structures for RSASSA-PSS signatures is the mask generation function (MGF). Only MGF1 is currently specified for this purpose. However, this in turn takes itself a parameter that specifies the underlying hash function. strongSwan's parser did not correctly handle the case of this parameter being absent, causing an undefined data read. This vulnerability has been registered as CVE-2018-6459. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-19 23:46:17 +00:00
Michael Tremer	a261cb06c6	IPsec: Try to restart always-on tunnels immediately When a tunnel that is in always-on configuration closes unexpectedly, we can instruct strongSwan to restart it immediately which is precisely what we do now. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-19 23:46:17 +00:00
Michael Tremer	2ec7a53b3e	Rootfile update for armv5tel Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-17 18:55:38 +00:00
Michael Tremer	429af17883	i2c-tools: New package Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-16 20:01:55 +00:00
Michael Tremer	0f354672a2	flac: Update to 1.3.2 The previous version fails to build on i586 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-16 19:14:33 +00:00
Michael Tremer	a1a5dd5566	Rootfile update Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-15 19:34:50 +00:00
Michael Tremer	4ef4d82baa	core119: Ship changed proxy.cgi Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-14 22:23:20 +00:00
Michael Tremer	0642dc8923	Rootfile update Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-13 21:07:04 +00:00
Michael Tremer	1633e0146c	Rootfile update for glibc on i586 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-13 16:34:55 +00:00
Michael Tremer	909ba0ad4a	nagios-plugins: Update rootfiles Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-13 16:30:24 +00:00
Michael Tremer	e75dd42577	postfix: Update rootfile Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-13 16:20:55 +00:00
Michael Tremer	71196131be	PAM: Drop shipped configuration This is outdated, broken and has hardcoded passwords. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-12 12:09:22 +00:00
Michael Tremer	71cf8c8a6f	Drop perl-DBD-mysql This package is not used by anything and depends on MySQL which has been dropped, too. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-12 12:07:29 +00:00
Michael Tremer	2d5940daca	Drop MySQL This is outdated and still on 5.0.x and nobody volunteered to update this package. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-12 12:05:46 +00:00
Michael Tremer	c4713705d1	asterisk: Do not depend on MySQL any more Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-12 12:02:51 +00:00
Michael Tremer	abf2b05474	postfix: Don't ship our own configuration This is outdated and half of it is not maintained any more. Users should configure postfix themselves based on the default configuration. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-12 11:50:51 +00:00
Michael Tremer	3e8ce0dd86	Drop pammysql Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-12 11:44:28 +00:00
Michael Tremer	e3e17107ba	Drop tcpwrapper This library has been unused for quite a while Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-12 11:42:47 +00:00
Michael Tremer	a350ea6dea	Drop mISDN userspace tools This is unsupported for quite a while and nobody should be using this. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-12 11:41:50 +00:00
Michael Tremer	922ec43f99	Drop capi4k-utils Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-12 11:33:51 +00:00
Michael Tremer	690a8b9d89	core119: Remove dropped lcr package during update Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-12 11:31:14 +00:00
Michael Tremer	0d29afc2c1	core119: Import changed packages Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-12 11:29:53 +00:00
Michael Tremer	338087530c	Start Core Update 119 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-12 11:22:58 +00:00
Michael Tremer	77930de834	Rootfile update for bison Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-12 11:18:01 +00:00
Erik Kapfer	bd42f9f968	CRL updater: Update script for OpenVPNs CRL Update script for OpenVPNs CRL cause OpenVPN refactors the CRL handling since v.2.4.0 . Script checks the next update field from the CRL and executes an update before it expires. Script is placed under fcron.daily for daily checks. Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-11 22:20:28 +00:00
Michael Tremer	11e78f38b9	Package openssl-compat (1.0.2.n) This is provided for compatibility with binaries that have been compiled against this version of OpenSSL. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-11 22:19:45 +00:00
Michael Tremer	56f8478e4d	openssl: Rootfile update Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-11 22:19:45 +00:00
Erik Kapfer	3b83dffc19	OpenVPN: Update to version 2.4.4 Changed LFS and ROOTFILE for OpenVPN 2.4.4 update. Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-11 22:19:45 +00:00
Michael Tremer	1b7cb0484c	openssl: Enable engines Some tools that depend on openssl won't compile without it Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-11 22:19:45 +00:00
Michael Tremer	5c82a9f040	python-typing: Required for m2crypto Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-11 22:19:45 +00:00
Michael Tremer	5809552f2f	krb5: Update to 1.15.2 to build against OpenSSL 1.1 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-11 22:19:45 +00:00
Michael Tremer	f8ee1cfcfc	cyrus-sasl: Disable OTP to build against OpenSSL 1.1 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-02-11 22:19:45 +00:00

1 2 3 4 5 ...

4532 Commits