8795 Commits

Author	SHA1	Message	Date
Michael Tremer	ffc46751f2	unbound: Add path to TLS CA bundle ... Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2020-01-07 12:59:24 +00:00
Michael Tremer	372576e0ab	unbound: Set EDNS buffer size to 1232 bytes ... Fixes: #12240 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2020-01-07 11:12:33 +00:00
Michael Tremer	cdfc93cb7a	webif: Show menu entry for DNS all the time ... Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2020-01-07 10:48:01 +00:00
Michael Tremer	ecbf66761f	DNS: Add converter to migrate settings ... Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2020-01-07 10:43:19 +00:00
Stefan Schantl	0bb159bbfc	Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next	2020-01-05 12:15:00 +01:00
Arne Fitzenreiter	916859f5fa	core140: add gcc changes to updater ... Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-01-05 09:28:20 +00:00
Peter Müller	ae28d23d4d	libseccomp: update to 2.4.2 ... Please refer to https://github.com/seccomp/libseccomp/releases/tag/v2.4.2 for release notes. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-01-04 18:24:49 +00:00
Michael Tremer	ac7ada2a15	openvmtools: Update to 11.0.0 ... Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-01-04 18:24:29 +00:00
Michael Tremer	d04fb4ee34	efivar: Update to 37 ... This also fixes some build issues with GCC 9. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-01-04 18:23:54 +00:00
Michael Tremer	3e8dd2d3ed	mdadm: Update to 4.1 ... Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-01-04 18:23:52 +00:00
Michael Tremer	c63ba73e3a	mpc: Update to 1.1.0 ... Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-01-04 18:23:39 +00:00
Michael Tremer	d3e4320bed	mpfr: Update to 4.0.2 ... Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-01-04 18:23:28 +00:00
Michael Tremer	210b27e179	gcc: Update to 9.2.0 ... Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-01-04 18:23:09 +00:00
Arne Fitzenreiter	3a3f4c37f2	core140: add convert-snort to updater ... Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-01-03 21:17:05 +00:00
Stefan Schantl	cde7cab264	convert-snort: Check and convert snort user and group. ... Fixes #12102. Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-01-03 21:15:11 +00:00
Arne Fitzenreiter	592d3708fe	Revert "bind: Update to 9.11.14" ... build fails on armv5tel: https://nightly.ipfire.org/next/2020-01-02%2016:17:54%20+0000-c846ed16/armv5tel/ This reverts commit 7d9b0ab697.	2020-01-03 21:13:30 +00:00
Stefan Schantl	c5d20f9665	Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next	2020-01-03 11:06:47 +01:00
Arne Fitzenreiter	c846ed1616	pakfire: use HTTPS if no protocol is specified ... also use HTTPS on fallback to mainserver if no mirror was left Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-01-02 16:17:54 +00:00
Arne Fitzenreiter	f93238725f	Merge branch 'master' into next	2020-01-02 15:59:53 +00:00
Arne Fitzenreiter	4e04cc87e7	core140: add bind to updater ... Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 19:19:12 +00:00
Matthias Fischer	7d9b0ab697	bind: Update to 9.11.14 ... For details see: https://downloads.isc.org/isc/bind9/9.11.14/RELEASE-NOTES-bind-9.11.14.html "Bug Fixes Fixed a bug that caused named to leak memory on reconfiguration when any GeoIP2 database was in use. [GL #1445] Fixed several possible race conditions discovered by Thread Sanitizer." Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 19:17:45 +00:00
Arne Fitzenreiter	72c24beae2	core140: add file to updater ... Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 19:16:55 +00:00
Stefan Schantl	0db643ce38	rfkill: New package. ... Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Acked-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 19:14:30 +00:00
Arne Fitzenreiter	0ef5f4a091	core140: add ids.cgi and suricata initskript to updater ... Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 19:13:28 +00:00
Arne Fitzenreiter	a1cf33ca8f	core140: add suricata and libhtp to updater ... Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 19:10:55 +00:00
Matthias Fischer	907874c4be	libhtp: Update to 0.5.32 ... For details see: https://github.com/OISF/libhtp/releases Bundled with 'suricata 4.1.6' Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 19:09:27 +00:00
Arne Fitzenreiter	8867f9c5e8	core140: add knot to updater ... Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 18:03:34 +00:00
Matthias Fischer	68e83070e2	knot: Update to 2.9.2 ... For details see: https://www.knot-dns.cz/2019-12-12-version-292.html Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 18:01:05 +00:00
Arne Fitzenreiter	063a3a8bca	core140: add unbound to updater ... Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 17:59:50 +00:00
Matthias Fischer	726037c6ee	unbound: Update to 1.9.6 ... For details see: https://nlnetlabs.nl/pipermail/unbound-users/2019-December/011941.html Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Reviewed-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 17:58:21 +00:00
Erik Kapfer	fb7226d0a6	tshark: Update to version 3.0.7 ... Several bugfixes are included in this version, some protocol support has been added. For a complete overview of the changelog, take a look in here --> https://www.wireshark.org/docs/relnotes/wireshark-3.0.6.html https://www.wireshark.org/docs/relnotes/wireshark-3.0.7.html . Signed-off-by: Erik Kapfer <ummeegge@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 13:46:32 +00:00
Arne Fitzenreiter	424442d27d	core140: add unbound/saveserch changes to updater ... Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 13:44:20 +00:00
Michael Tremer	d7190078ce	unbound: Configure Safe Search dynamically ... The safe search code relied on working DNS resolution, but was executed before unbound was even started and no network was brought up. That resulted in no records being created and nothing being filtered. This will now set/reset safe search when the system connects to the Internet. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 08:51:21 +00:00
Stéphane Pautrel	1ec1e499d0	Update of French translations ... Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 08:50:52 +00:00
Stefan Schantl	5bc042df2f	rust: Update to 1.39 ... Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-29 08:50:31 +00:00
Stefan Schantl	1cb8ffe84d	Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next	2019-12-16 09:04:29 +01:00
Peter Müller	fd2dccaabb	Core Update 139: fix syntax of generated Suricata DNS server file ... The YAML syntax of /var/ipfire/suricata/suricata-dns-servers.yaml was invalid and caused Suricata to crash after upgrading to Core Update 139. Due to strange NFQUEUE behaviour, this caused IPsec traffic to be emitted to the internet directly. While this patch represents a quick solution for Core Update 139, another one is needed for changing the IPtables chain order to avoid similar information leaks in future. Thanks to Michael for his debugging effort. Fixes #12260 Partially fixes #12257 Cc: Michael Tremer <michael.tremer@ipfire.org> Cc: Stefan Schantl <stefan.schantl@ipfire.org> Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Stefan Schantl <stefan.schantl@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-14 07:26:05 +00:00
Peter Müller	a59cf47b9e	Core Update 139 needs a reboot ... Fixes #12258 Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-14 07:25:48 +00:00
Peter Müller	19ad0ddb2f	Core Update 139: apply SSH configuration and restart SSH daemon ... Fixes #12259 Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-14 07:25:35 +00:00
Stefan Schantl	ec1c52633e	geoip-functions.pl: Add get_continent_code() ... This function allows to recieve the continent code of a given country (code). Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>	2019-12-12 12:07:34 +01:00
Stefan Schantl	a3afe9058f	geoip-functions.pl: Adjust location_dir ... The data directory upstream has been moved to "/var/lib/location". Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>	2019-12-12 09:39:34 +01:00
Stefan Schantl	c3b612bb6c	libloc: Update to 0.9.0 (Git rev: cd022c) ... * Includes fix for database verification * The public gpg signing key * Datadir has been moved to /var/lib/location Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>	2019-12-12 09:14:30 +01:00
Arne Fitzenreiter	6a3acff934	core140: start ... Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-09 19:50:03 +01:00
Arne Fitzenreiter	a15dbe4497	Merge branch 'next' ... Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-09 18:37:16 +00:00
Stefan Schantl	693b8513df	firewall/rules.pl: Only try to export locations if needed. ... Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>	2019-12-09 18:36:54 +01:00
Stefan Schantl	c947959100	xtables-addons: Update to 3.7 ... Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>	2019-12-09 18:36:26 +01:00
Stefan Schantl	c48a64d6f8	initscripts: Rootfile update.	2019-12-09 15:03:26 +01:00
Stefan Schantl	d1ca2d1fd5	GeoIP: Drop package ... Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>	2019-12-09 14:50:51 +01:00
Arne Fitzenreiter	dd12d8c54c	leds: use new APUx ACPI Bios leds if exist. ... Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-12-09 14:50:44 +01:00
Stefan Schantl	9433a59690	geoip-generator: Drop package ... Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>	2019-12-09 14:47:18 +01:00