bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-10 11:05:54 +02:00

Author	SHA1	Message	Date
Matthias Fischer	98bd7ab1be	unbound: Update to 1.10.0 For details see: https://lists.nlnetlabs.nl/pipermail/unbound-users/2020-February/006711.html Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:16:40 +00:00
Arne Fitzenreiter	e7e89f4901	core143: add apr and pcre Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:15:00 +00:00
Wolfgang Apolinarski	ddda384a44	Update Apache Dependencies Update apache dependencies: APR: update to version 1.7.0 PCRE: update to version 8.44 Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:14:08 +00:00
Arne Fitzenreiter	e8810200aa	core143: add dhcp.cgi and fireinfo.cgi Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:12:54 +00:00
Peter Müller	99644abaf5	fireinfo.cgi: improve readability of command outputs Especially when it comes to the output of "uname -a", <code> tags greatly improve readability. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:11:37 +00:00
Peter Müller	2dfbb338e1	dhcp.cgi: avoid unnecessary line break Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:11:25 +00:00
Arne Fitzenreiter	46609450dc	core143: add ntp Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:06:21 +00:00
Matthias Fischer	9130b8b829	ntp: Update to 4.2.8p14 For details see: http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:05:49 +00:00
Arne Fitzenreiter	10e9b34392	core143: add libssh Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:04:58 +00:00
Erik Kapfer	f09135aa43	tshark: Update to version 3.2.2 . Update to 3.2.x includes, several bugfixes, updated protocols, new and updated features. For the complete changelog, take a look into here --> https://www.wireshark.org/docs/relnotes/ . Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:04:08 +00:00
Erik Kapfer	5b9e7d37c3	libssh: Update to version 0.9.3 . Fixes CVE-2019-14889 and several issues after an security audit. The complete changelog can be found in here --> https://www.libssh.org/category/release/ . This version is also needed for tshark-3.2.2 to prevent 'error while loading shared libraries: libssh.so.4' for sshdump and ciscodump. Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:03:54 +00:00
Michael Tremer	cb658c8c5c	make.sh: Umount /tmp when it is a ramdisk Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:03:30 +00:00
Michael Tremer	36065e4219	make.sh: Move ccache's temp directory into /tmp Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:03:20 +00:00
Michael Tremer	7c62b3a587	cdrom+flash-image: Move all temporary files to /tmp Since /tmp is now a ramdisk, we move all temporary files into it. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:03:09 +00:00
Michael Tremer	cd8ee3021c	cdrom: Do not write the temporary tarball to disk In order to remove any duplicate files in the tarball, we have to unpack it again. The whole filesystem is written to disk twice which is unnecessary. This patch removes that temporary step and reduces IO during the build. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:02:55 +00:00
Michael Tremer	ad853b560e	make.sh: Make /tmp a ramdisk if ramdisks are enabled The build system is writing a large amount of temporary file systems that might land on disk or at least in the journal. This change will speed up the build and remove a lot of I/O usage. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:02:44 +00:00
Erik Kapfer	d17ea38c3d	nginx: Update to version 1.17.8 . New mainlain version which includes hugh amount of changes. For a complete overview, please take alook in here --> http://nginx.org/en/CHANGES . Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:01:09 +00:00
Erik Kapfer	c1b2c0cc6d	xinetd: Delete symlinks with uninstallation . Fixes #12303 Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:00:48 +00:00
Peter Müller	9d436e214a	de.pl: update German translations This patch adds German translations for the new DNS CGI, some parts of the hardware vulnerability mitigation CGI, improves some existing translations and corrects some Deppenleerzeichen and Bildzeitungsbindestriche. The third version of this patch is correctly based against upstream 'next', honours Michaels opinion and contains updated language_issues.de and language_missings files. Since "./make lang" complains about missing translations marked as unused in first place, no changes have been made to them in order to avoid collateral damage. Cc: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Acked-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 16:00:08 +00:00
Erik Kapfer	a8c6cd6322	keepalived: Update to version 2.0.20 . Since this update is a mayor version update, it brings a lot of changes. The changelog can be found in here --> http://www.keepalived.com/changelog.html . Added /etc/sysconfig/keepalived in ROOTFILE and in backup/includes. Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 15:59:38 +00:00
Arne Fitzenreiter	78f4edc02b	core143: add openssl Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 15:58:31 +00:00
Michael Tremer	3a17ab3893	openssl: Update to 1.1.1e Fixed an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli (CVE-2019-1551). Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 15:56:05 +00:00
Peter Müller	c8870ddc01	Postfix: update to 3.5.0 Please refer to http://www.postfix.org/announcements/postfix-3.5.0.html for release announcements. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 15:55:30 +00:00
Peter Müller	0c92ef9ba5	Tor: update to 0.4.2.7 Please refer to https://blog.torproject.org/new-releases-03510-0419-0427 for release announcement. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 15:55:19 +00:00
Arne Fitzenreiter	a945138e4d	core142: add gcc, binutils and cairo to update Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 15:53:58 +00:00
Michael Tremer	50a04f785d	cairo: Update to 1.16.0 This updates the package and adds a patch so that it compiles with binutils 2.34. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Reviewed-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 15:44:08 +00:00
Peter Müller	cfd2f07cf0	binutils: update to 2.34 Cc: Arne Fitzenreiter <arne.fitzenreiter@ipfire.org> Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 15:44:06 +00:00
Michael Tremer	067a6fd040	gcc: Update to 9.3.0 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 15:43:41 +00:00
Arne Fitzenreiter	592be1d206	bluetooth: drop outdated bluetooth addon The cgi support only rfcomm modem dialup. This is not used by modern hardware. Also the used bluez stack version is outdated long time. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org> Acked-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 15:41:22 +00:00
Arne Fitzenreiter	e6c2265d82	core143: open core updater Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-21 15:38:22 +00:00
Arne Fitzenreiter	70af65df41	kernel: update to 4.14.173 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-11 22:59:38 +01:00
Arne Fitzenreiter	1c8e09379d	Revert "kernel: update to 4.14.172" This reverts commit `1773544d02`. with 4.14.172 klogd is not updated and the firewall log/graphs are not working Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-10 11:33:16 +00:00
Arne Fitzenreiter	57fda8c8ad	suricata: use KILL is suricata not shut down normal. sometimes suricata hung and lock the pidfile at suricata stop. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-09 06:41:32 +00:00
Arne Fitzenreiter	b3bc092dad	core142: start suricata before unbound after update Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-05 05:54:09 +00:00
Arne Fitzenreiter	233141c6c9	core142: add unbound.conf to updater Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-04 21:49:05 +00:00
Michael Tremer	9700617aeb	unbound: Disable using mixed case for DNS queries This seems to cause that some resolvers do not respond to queries any more until unbound falls back. To ensure better DNS performance, we disabled this. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-04 21:47:37 +00:00
Michael Tremer	0f0f3ae7dc	unbound: Only launch one process When unbound is running multiple threads, we have observed that queries where sent for each thread. Since no user should have so much DNS traffic that more than one processor core is being saturated, this is a safe change. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne.fitzenreiter@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-04 21:47:23 +00:00
Peter Müller	e737776db5	unbound.conf: Do not set defaults explicitly In order to keep configuration files small and easy to review/audit, omitting defaults makes more sense than configure them explicitly (have changed my mind here). Unbound comes with a good default confiuration, and we should only make changes when they are necessary. In addition, this patch updates the documentation's URL to the current one. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Cc: Michael Tremer <michael.tremer@ipfire.org> Reviewed-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-04 21:46:48 +00:00
Arne Fitzenreiter	80bed5817d	dns.cgi: restart suricata before unbound reload if unbound is reloaded it start a bunch of dns queries so suricata needs to now which servers should used. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-04 21:38:24 +00:00
Michael Tremer	0bdb63924b	backup: Fix saving DNS settings There was a typo in /var/ipfire/dns/servers and the settings file was not explicitely included in the backup. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-04 11:30:31 +00:00
Arne Fitzenreiter	a344d3c902	unbound/red.up: run unbound update-forwarders after suricata init. The old suricata instance blocks dns requests if the red ip has changed. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-04 08:52:56 +01:00
Arne Fitzenreiter	e53c38aea1	core142: fix typo's at remove/update dns forwareders changes Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-03 13:25:17 +01:00
Arne Fitzenreiter	1773544d02	kernel: update to 4.14.172 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-03 13:23:29 +01:00
Arne Fitzenreiter	b5afe1e8d5	backup: add /var/ipfire/dns/server to include Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-02 22:25:41 +00:00
Arne Fitzenreiter	3b5131c1a3	unbound: drop remove-dns-fowarders at red.down this functions has only reloaded unbound config which is useless at shutting down the red interface. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-02 17:54:48 +00:00
Arne Fitzenreiter	e1c6cd05e3	udev: build after kmod eudev depends on kmod to install all needed rules Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-02 08:15:00 +00:00
Arne Fitzenreiter	c8b574c307	core142: stop squid and suricata while update Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-01 21:54:28 +00:00
Arne Fitzenreiter	770a1507dd	unbound: speed-up remove forwarders Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-01 19:46:36 +00:00
Arne Fitzenreiter	b3ab7916e0	core142: ship unbound initskript Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-01 19:46:33 +00:00
Arne Fitzenreiter	47864e8f3d	unbound: fix typo at safesearch for googe Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2020-03-01 19:46:31 +00:00

1 2 3 4 5 ...

14359 Commits