bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-12 12:15:52 +02:00

Author	SHA1	Message	Date
Stefan Schantl	c6bcdda1af	snort: Introduce ruleset-sources.list This file contains the ruleset vendors and download urls and will be used by the ids.cgi. If an url or filename changes, we easily can adjust this file. In most cases this will be needed when performing a snort update. Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>	2018-07-26 11:50:11 +02:00
Stefan Schantl	9f5247f60c	general-functions.pl: readhash() Add code to handle optional comments in files Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>	2018-07-26 11:49:56 +02:00
Stefan Schantl	ca745a2978	Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next	2018-07-21 14:14:53 +02:00
Stefan Schantl	b5ea63f85c	Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next	2018-07-19 18:10:23 +02:00
Arne Fitzenreiter	413149f80d	kernel: aarch64: enable virtio drivers Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-07-19 13:26:06 +01:00
Arne Fitzenreiter	0487a49fec	u-boot: boot aarch64 kernel without -multi extension Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-07-19 09:29:44 +01:00
Michael Tremer	0927eadc52	Rootfile update for aarch64 kernel Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-14 13:43:13 +01:00
Michael Tremer	68a36e26b1	aarch64: Remove -multi suffix from kernel This gets in the way for authoring the CD and we will never have any other kernels but the main one. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-12 14:03:03 +01:00
Michael Tremer	820e90db0f	iptables: Ship all modules These have been all disabled with the last update of the iptables package. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-12 10:04:37 +01:00
Michael Tremer	7471256910	Rootfile update Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-12 10:03:34 +01:00
Michael Tremer	1413006b5b	aws: Create "setup" user to run setup Amazon does not permit that a user logs in as root directly. Instead they insist on using sudo. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-10 18:40:06 +01:00
Stefan Schantl	fb22c9ffd9	Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next	2018-07-08 08:34:37 +02:00
Michael Tremer	9aefd1ed07	usbutils: Update rootfile Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-03 20:01:46 +01:00
Arne Fitzenreiter	716c4751e7	spice-protocol: rootfile update Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-07-03 16:03:37 +01:00
Arne Fitzenreiter	904ae7929a	libgcrypt: rootfile update Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-07-03 16:01:35 +01:00
Arne Fitzenreiter	37458540bf	collect: fix cpufreq graph on some machines. the file cpuinfo_cur_freq does not exist on all systems that support collect cpufreq data. fixes #11739	2018-07-03 15:09:40 +02:00
Arne Fitzenreiter	64252706ce	Merge branch 'next' of git.ipfire.org:/pub/git/ipfire-2.x into next	2018-07-03 11:52:18 +01:00
Arne Fitzenreiter	1ac0d5c598	Merge branch 'aarch64' into next Conflicts: config/rootfiles/core/121/filelists/acpid config/rootfiles/core/121/filelists/apache2 config/rootfiles/core/121/filelists/apr config/rootfiles/core/121/filelists/aprutil config/rootfiles/core/121/filelists/armv5tel/files config/rootfiles/core/121/filelists/armv5tel/linux-initrd-kirkwood config/rootfiles/core/121/filelists/armv5tel/linux-initrd-multi config/rootfiles/core/121/filelists/armv5tel/linux-kirkwood config/rootfiles/core/121/filelists/armv5tel/linux-multi config/rootfiles/core/121/filelists/armv5tel/rpi-firmware config/rootfiles/core/121/filelists/armv5tel/u-boot config/rootfiles/core/121/filelists/armv5tel/u-boot-kirkwood config/rootfiles/core/121/filelists/armv5tel/u-boot-mkimage config/rootfiles/core/121/filelists/beep config/rootfiles/core/121/filelists/cmake config/rootfiles/core/121/filelists/crda config/rootfiles/core/121/filelists/dhcp config/rootfiles/core/121/filelists/flex config/rootfiles/core/121/filelists/i586/grub config/rootfiles/core/121/filelists/i586/intel-microcode config/rootfiles/core/121/filelists/i586/linux config/rootfiles/core/121/filelists/i586/linux-initrd config/rootfiles/core/121/filelists/iw config/rootfiles/core/121/filelists/jwhois config/rootfiles/core/121/filelists/libidn config/rootfiles/core/121/filelists/multipath-tools config/rootfiles/core/121/filelists/pcre config/rootfiles/core/121/filelists/tar config/rootfiles/core/121/filelists/unbound config/rootfiles/core/121/filelists/wget config/rootfiles/core/121/filelists/x86_64/grub config/rootfiles/core/121/filelists/x86_64/intel-microcode config/rootfiles/core/121/filelists/x86_64/linux config/rootfiles/core/121/filelists/x86_64/linux-initrd config/rootfiles/core/122/filelists/aarch64/files config/rootfiles/core/122/filelists/acpid config/rootfiles/core/122/filelists/apache2 config/rootfiles/core/122/filelists/apr config/rootfiles/core/122/filelists/aprutil config/rootfiles/core/122/filelists/armv5tel/linux-initrd-kirkwood config/rootfiles/core/122/filelists/armv5tel/linux-initrd-multi config/rootfiles/core/122/filelists/armv5tel/linux-kirkwood config/rootfiles/core/122/filelists/armv5tel/linux-multi config/rootfiles/core/122/filelists/armv5tel/rpi-firmware config/rootfiles/core/122/filelists/armv5tel/u-boot config/rootfiles/core/122/filelists/armv5tel/u-boot-kirkwood config/rootfiles/core/122/filelists/armv5tel/u-boot-mkimage config/rootfiles/core/122/filelists/beep config/rootfiles/core/122/filelists/cmake config/rootfiles/core/122/filelists/crda config/rootfiles/core/122/filelists/dhcp config/rootfiles/core/122/filelists/flex config/rootfiles/core/122/filelists/i586/grub config/rootfiles/core/122/filelists/i586/intel-microcode config/rootfiles/core/122/filelists/i586/linux config/rootfiles/core/122/filelists/i586/linux-initrd config/rootfiles/core/122/filelists/iw config/rootfiles/core/122/filelists/jwhois config/rootfiles/core/122/filelists/libidn config/rootfiles/core/122/filelists/multipath-tools config/rootfiles/core/122/filelists/pcre config/rootfiles/core/122/filelists/tar config/rootfiles/core/122/filelists/unbound config/rootfiles/core/122/filelists/wget config/rootfiles/core/122/filelists/x86_64/grub config/rootfiles/core/122/filelists/x86_64/intel-microcode config/rootfiles/core/122/filelists/x86_64/linux config/rootfiles/core/122/filelists/x86_64/linux-initrd config/rootfiles/core/123/filelists/unbound config/rootfiles/oldcore/121/filelists/acpid config/rootfiles/oldcore/121/filelists/apache2 config/rootfiles/oldcore/121/filelists/apr config/rootfiles/oldcore/121/filelists/aprutil config/rootfiles/oldcore/121/filelists/armv5tel/files config/rootfiles/oldcore/121/filelists/armv5tel/linux-initrd-kirkwood config/rootfiles/oldcore/121/filelists/armv5tel/linux-initrd-multi config/rootfiles/oldcore/121/filelists/armv5tel/linux-initrd-rpi config/rootfiles/oldcore/121/filelists/armv5tel/linux-kirkwood config/rootfiles/oldcore/121/filelists/armv5tel/linux-multi config/rootfiles/oldcore/121/filelists/armv5tel/linux-rpi config/rootfiles/oldcore/121/filelists/armv5tel/rpi-firmware config/rootfiles/oldcore/121/filelists/armv5tel/u-boot config/rootfiles/oldcore/121/filelists/armv5tel/u-boot-kirkwood config/rootfiles/oldcore/121/filelists/armv5tel/u-boot-mkimage config/rootfiles/oldcore/121/filelists/beep config/rootfiles/oldcore/121/filelists/cmake config/rootfiles/oldcore/121/filelists/crda config/rootfiles/oldcore/121/filelists/dhcp config/rootfiles/oldcore/121/filelists/flex config/rootfiles/oldcore/121/filelists/i586/grub config/rootfiles/oldcore/121/filelists/i586/intel-microcode config/rootfiles/oldcore/121/filelists/i586/linux config/rootfiles/oldcore/121/filelists/i586/linux-initrd config/rootfiles/oldcore/121/filelists/iw config/rootfiles/oldcore/121/filelists/jwhois config/rootfiles/oldcore/121/filelists/libidn config/rootfiles/oldcore/121/filelists/multipath-tools config/rootfiles/oldcore/121/filelists/pcre config/rootfiles/oldcore/121/filelists/tar config/rootfiles/oldcore/121/filelists/wget config/rootfiles/oldcore/121/filelists/x86_64/grub config/rootfiles/oldcore/121/filelists/x86_64/intel-microcode config/rootfiles/oldcore/121/filelists/x86_64/linux config/rootfiles/oldcore/121/filelists/x86_64/linux-initrd make.sh	2018-07-03 11:52:05 +01:00
Erik Kapfer	461d78b412	hplip: Update to version 3.18.6 Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-03 10:34:08 +01:00
Michael Tremer	b4208f1845	core123: Ship updated sysctl.conf Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-03 10:33:23 +01:00
Peter Müller	373590b7c3	hide kernel addresses in /proc Make sure kernel address space is hidden from files somewhere in /proc . This reduces attack surface and partially addresses #11659. Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-03 10:32:56 +01:00
Michael Tremer	a65d07ec6d	core123: Ship updated usbutils Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-03 10:32:43 +01:00
Michael Tremer	b06e1f696d	core123: Ship updated GeoIP.dat Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-03 10:32:08 +01:00
Michael Tremer	571cfa9718	multipath-tools: Update to 0.7.7 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-02 19:10:36 +01:00
Arne Fitzenreiter	cf7a7a874f	Merge remote-tracking branch 'origin/master' into aarch64	2018-07-02 19:07:22 +01:00
Michael Tremer	4d2c384543	core123: Ship changed vpnmain.cgi Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-01 13:34:56 +01:00
Michael Tremer	54e3be22f2	core123: Ship updated packages and files Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-01 13:34:19 +01:00
Peter Müller	352796cad7	lynis: update to 2.6.4 Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-01 12:36:16 +01:00
Peter Müller	df5cc48dd6	update StrongSwan to 5.6.3 This also takes advantage of changed crypto plugins (see first patch) and updates the rootfile. Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-01 12:36:11 +01:00
Peter Müller	0779907e1b	libgcrypt: update to 1.8.3 Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-01 12:36:09 +01:00
Matthias Fischer	79d32988c5	unbound: Update to 1.7.3 For details see: http://www.unbound.net/download.html Best, Matthias Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-01 12:36:04 +01:00
Peter Müller	c6e5fcdf12	conntrack-tools: update to 1.4.5 Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-01 12:35:54 +01:00
Peter Müller	eeab80f8dc	libnetfilter_conntrack: update to 1.0.7 Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-01 12:35:53 +01:00
Peter Müller	733fae2abe	iptables: update to 1.6.2 Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-01 12:35:52 +01:00
Michael Tremer	080e79f149	Don't show proxy configuration pages when GREEN is not available Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-01 12:21:59 +01:00
Michael Tremer	dc845b6c81	AWS: Hide certain things on the web UI Those are practically unusable on AWS. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-01 12:15:00 +01:00
Michael Tremer	475ae4b3db	firewall: Suppress more warnings when initialising without GREEN Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-07-01 11:49:57 +01:00
Michael Tremer	a1c5ceeb34	nsswitch.conf: Use nss-myhostname to resolve local hostname Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-06-30 19:56:56 +01:00
Michael Tremer	4e9000b4d8	nss-myhostname: New package Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-06-30 19:51:38 +01:00
Arne Fitzenreiter	4838034131	random: update initskript for machines with low entropy the script wait until crng is correct initialized before restore the random seed and make some disc io to work around low entropy at boot on some machines. Not really a fix but it should be better than reverting CVE-2018-1108 fixes from kernel. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-06-28 20:48:58 +02:00
Stefan Schantl	74c193f266	Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next	2018-06-27 19:33:43 +02:00
Michael Tremer	0009de91e8	Ship default settings for language, theme, etc. in all images Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-06-27 09:59:47 +01:00
Michael Tremer	bd3bcb45d6	AWS: Import aws setup script Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-06-25 10:55:39 +01:00
Michael Tremer	563c502163	dhcp: Ship dhclient Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-06-25 10:54:36 +01:00
Michael Tremer	3483602929	ssh: Update default configuration This patch removes an old switch to enable SSH 1 and makes port 22 the default port. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-06-25 10:53:53 +01:00
Michael Tremer	1c21ebf8d5	Add initscript that automatically configures IPFire on AWS EC2 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-06-21 16:45:40 +01:00
Arne Fitzenreiter	5b17da41c1	kernel: add config for aarch64 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-06-21 06:20:35 +01:00
Arne Fitzenreiter	2bd9316d9d	rpi-firmware: build for aarch64 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-06-21 06:17:49 +01:00
Arne Fitzenreiter	963f6e973a	u-boot: add config for aarch64 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-06-21 06:12:59 +01:00
Michael Tremer	bc91a66281	core123: Ship updated iana-etc Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-06-19 11:34:38 +01:00

1 2 3 4 5 ...

5975 Commits