webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-10 02:55:55 +02:00
Code Issues Packages Projects Releases Wiki Activity
12,034 Commits 2 Branches 1 Tag
461d78b412ed4100113cdc08fefaae6a4be3eabe
Commit Graph

12034 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Erik Kapfer
461d78b412 hplip: Update to version 3.18.6 
Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-03 10:34:08 +01:00
Stefan Schantl
b9365dcc95 guardian: Update to 2.0.2 
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-03 10:33:58 +01:00
Stefan Schantl
a4a1f16c17 guardian.cgi: Remove support for owncloud 
Owncloud as an addon has been dropped for IPFire. As a result of this,
we do not need this code anymore.

Fixes #11572.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-03 10:33:43 +01:00
Michael Tremer
b4208f1845 core123: Ship updated sysctl.conf 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-03 10:33:23 +01:00
Peter Müller
373590b7c3 hide kernel addresses in /proc 
Make sure kernel address space is hidden from files somewhere
in /proc . This reduces attack surface and partially addresses #11659.

Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-03 10:32:56 +01:00
Michael Tremer
a65d07ec6d core123: Ship updated usbutils 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-03 10:32:43 +01:00
Peter Müller
b07b1bef22 usbutils: update to 010 
Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-03 10:32:21 +01:00
Michael Tremer
b06e1f696d core123: Ship updated GeoIP.dat 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-03 10:32:08 +01:00
Peter Müller
d30edb595e update GeoIP.dat database 
There are two GeoIP databases used in IPFire: One for firewall
rules, which is downloaded and installed automatically, and a
second one ("GeoIP.dat") for WebUI lookups via the Perl interface.

The latter one is not updated automatically and was outdated.
libloc will make things much easier here...

Fixes #11777.

Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-03 10:31:35 +01:00
Michael Tremer
571cfa9718 multipath-tools: Update to 0.7.7 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-02 19:10:36 +01:00
Michael Tremer
e6aa297eb3 nss-myhostname: FTBFS on aarch64 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-02 18:48:50 +01:00
Michael Tremer
4d2c384543 core123: Ship changed vpnmain.cgi 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 13:34:56 +01:00
Peter Müller
05375f1275 add ChaCha20/Poly1305 to IPsec WebUI 
The algorithm is selected by default since it is considered
to be both secure and state-of-the-art. This required Linux kernel
> 4.2, which is satisfied by Core Update 2.12 122.

Fixes #11549

Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 13:34:34 +01:00
Peter Müller
6cedc16d90 update cryptography settings in StrongSwan LFS file 
The RC2 plugin was never supported by the WebUI and is insecure,
so it became obsolete here. To support new ChaCha20/Poly1305, the
corresponding module needs to be enabled.

Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 13:34:32 +01:00
Michael Tremer
54e3be22f2 core123: Ship updated packages and files 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 13:34:19 +01:00
Michael Tremer
a44eed2536 proxy.cgi: The group name cannot be in quotes 
Squid interprets the quotes as part of the group name, too

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 12:38:48 +01:00
Peter Müller
9aeae88133 smartmontools: update to 6.6. 
Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 12:36:18 +01:00
Peter Müller
352796cad7 lynis: update to 2.6.4 
Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 12:36:16 +01:00
Peter Müller
df5cc48dd6 update StrongSwan to 5.6.3 
This also takes advantage of changed crypto plugins (see first
patch) and updates the rootfile.

Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 12:36:11 +01:00
Peter Müller
0779907e1b libgcrypt: update to 1.8.3 
Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 12:36:09 +01:00
Matthias Fischer
79d32988c5 unbound: Update to 1.7.3 
For details see:
http://www.unbound.net/download.html

Best,
Matthias

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 12:36:04 +01:00
Erik Kapfer
1ff69fca2a OpenVPN: Update to version 2.4.6 
Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 12:36:00 +01:00
Peter Müller
c6e5fcdf12 conntrack-tools: update to 1.4.5 
Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 12:35:54 +01:00
Peter Müller
eeab80f8dc libnetfilter_conntrack: update to 1.0.7 
Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 12:35:53 +01:00
Peter Müller
733fae2abe iptables: update to 1.6.2 
Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 12:35:52 +01:00
Michael Tremer
46a5bac6ed vpnmain.cgi: Remove unused code that prevented the page from loading without GREEN 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 12:24:25 +01:00
Michael Tremer
080e79f149 Don't show proxy configuration pages when GREEN is not available 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 12:21:59 +01:00
Michael Tremer
dc845b6c81 AWS: Hide certain things on the web UI 
Those are practically unusable on AWS.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 12:15:00 +01:00
Michael Tremer
eb7ccf87c5 AWS: Store instance id 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 11:54:51 +01:00
Michael Tremer
464c27554c aws: Re-enable check if we are actually running on EC2 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 11:52:54 +01:00
Michael Tremer
9a56118b61 aws: Suppress any output from ending dhclient 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 11:51:39 +01:00
Michael Tremer
787469ebd6 aws: No need to wake up udev again 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 11:51:18 +01:00
Michael Tremer
475ae4b3db firewall: Suppress more warnings when initialising without GREEN 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 11:49:57 +01:00
Michael Tremer
470e85c365 AWS: Rename network interfaces only when necessary 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 11:44:14 +01:00
Michael Tremer
2e42a9eaa1 AWS: Import SSH keys before meddling with the network 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 11:43:35 +01:00
Michael Tremer
48a7737fdd firewall: Allow starting without a green interface 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-07-01 10:32:31 +01:00
Michael Tremer
f487e37393 AWS: No need to restart udev any more 
The renames the network interfaces itself now

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-30 20:35:29 +01:00
Michael Tremer
4c0bd63ea4 localnet: Don't write local hostname to /etc/hosts 
This is now being provided by nss-myhostname

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-30 19:58:42 +01:00
Michael Tremer
a1c5ceeb34 nsswitch.conf: Use nss-myhostname to resolve local hostname 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-30 19:56:56 +01:00
Michael Tremer
4e9000b4d8 nss-myhostname: New package 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-30 19:51:38 +01:00
Michael Tremer
c7141f0479 AWS: Rename all interfaces when booting up 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-30 19:40:31 +01:00
Michael Tremer
8f2c3b49b6 aws: Apply SSH configuration changes 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-30 19:25:29 +01:00
Michael Tremer
16c31d1004 openssh: Write port 22 into the default configuration file 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-30 19:25:15 +01:00
Michael Tremer
7d06d0de7b AWS: Restart udev to rename network interfaces 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-28 11:15:29 +01:00
Michael Tremer
0f224ad770 AWS: Add support for ORANGE 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-28 11:01:33 +01:00
Michael Tremer
1a0d8b0573 AWS: Remove some debugging line 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-28 10:57:50 +01:00
Michael Tremer
c86fd963d2 AWS: Calculate gateway and DNS IP addresses only for RED 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-28 10:57:13 +01:00
Michael Tremer
607240e28c AWS: Use correct IP address for the internal DNS 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-28 10:56:06 +01:00
Michael Tremer
3273ff48f0 aws: Write HOSTNAME and DOMAINNAME when not set 
Previously we expected the entire settings file to be empty
but since we are now shipping some defaults for other settings.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-27 10:05:55 +01:00
Michael Tremer
0009de91e8 Ship default settings for language, theme, etc. in all images 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-27 09:59:47 +01:00