bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-13 12:32:59 +02:00

Author	SHA1	Message	Date
Michael Tremer	4ed2162324	perl-Net-CIDR-Lite: Make rootfile work on other arches Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-07 00:34:30 +00:00
Stefan Schantl	985741db61	perl-Net-CIDR-Lite: New package. This is a runtime dependency of the xt_geoip_build perl script shipped by xtables-addons in version 3.2. Reference #11960. Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-07 00:30:49 +00:00
Michael Tremer	af2cc3be64	IPVS: Enable connection tracking by default Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-06 21:33:43 +00:00
Michael Tremer	5321fcbff3	Backup conntrackd's configuration file Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-06 09:01:38 +00:00
Michael Tremer	7d5caee6bd	Add initscript for conntrackd The daemon will be started by default when a configuration file exists. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-06 08:59:25 +00:00
Michael Tremer	e0c4ed1783	core127: Ship updated proxy.cgi and regenerate configuration Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-08 16:14:01 +01:00
Michael Tremer	d68e150e86	proxy: Drop web browser check This is neither reliable nor up to date and is therefore removed Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-08 15:54:56 +01:00
Daniel Weismüller	1a3323f2e6	BUG 11786 - squid: Remove setting for filter processes the number of Squid processes I added a function to determine the number of cores. Now the number of squid processes will be equal to the number of logical cores. Further I removed the possibility of changing the number of squid processes in the proxy.cgi Signed-off-by: Daniel Weismüller <daniel.weismueller@ipfire.org> Signed-off-by: root <root@ipfire.test>	2019-01-08 02:02:05 +01:00
Michael Tremer	79b89b90e4	Revert "core127: Ship updated tar" This reverts commit `9ab1c9302c`. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-05 21:12:24 +00:00
Michael Tremer	0cd3eab3ae	core127: Ship updated snort Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-05 21:11:14 +00:00
Arne Fitzenreiter	1338e08d0d	core127: ship framebuffer.conf blacklist the file is generated at kernel build and in core126 the module commpression was changed to xz so the list was empty. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-01-06 16:31:44 +01:00
Arne Fitzenreiter	0708b3b343	core127: remove double files from armv5tel filelist Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-01-06 15:53:27 +01:00
Arne Fitzenreiter	5e6f343b7d	python: update to 2.7.15 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-01-06 15:51:53 +01:00
Michael Tremer	9ab1c9302c	core127: Ship updated tar Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-04 02:43:06 +00:00
Matthias Fischer	6e1aa54da0	attr 2.4.47: Update for rootfile Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-03 14:57:00 +00:00
Michael Tremer	34ad12b165	core127: Ship updated VPN CGI files Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-03 14:53:34 +00:00
Erik Kapfer	e6f7f8e7ba	database_attribute: Deliver/create index.txt.attr Fixes #11904 Since OpenSSL-1.1.0x the database attribute file for IPSec and OpenVPN wasn´t created while initial PKI generation. OpenVPN delivered an error message but IPSec did crashed within the first attempt. This problem persists also after X509 deletion and new generation. index.txt.attr will now be delivered by the system but also deleted and recreated while setting up a new x509. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-03 14:52:53 +00:00
Matthias Fischer	4c83d9fbdc	mc: Update to 4.8.22 For details see: http://midnight-commander.org/wiki/NEWS-4.8.22 Best, Matthias Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-01-02 17:20:21 +00:00
Michael Tremer	13827014fc	core127: Ship updated wget Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-31 00:36:23 +00:00
Arne Fitzenreiter	f1f40274a0	u-boot: fix x86 builds Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-12-23 11:12:15 +01:00
Arne Fitzenreiter	ae84d3745d	u-boot: fix typo in boot.scr fix serial console output on RPi3 B+ at aarch64 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-12-20 08:04:22 +01:00
Michael Tremer	6f1f51ba1c	core127: Ship DNS forwarding settings Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-19 21:01:20 +01:00
Michael Tremer	4af8d6964b	pcre: Enable JIT This is now possible because we no longer run grsecurity-enabled kernels. The performance of PCRE increases dramatically and applications like the IDS benefit hugely: https://blog.inliniac.net/2011/10/12/suricata-and-pcre-performance/ Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-19 15:44:32 +00:00
Jonatan Schlag	909549b1d6	Update libvirt to version 4.10 This partially fixes #11941 as libvirt now states clearly that seccomp needs to be disabled Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-18 22:33:07 +00:00
Michael Tremer	452e537092	core127: Ship updated squid Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-18 22:32:07 +00:00
Matthias Fischer	a2bcb4135b	squid: Update to 4.4 (stable) For details see: http://www.squid-cache.org/Versions/v4/changesets/ In July 2018, 'squid 4' was "released for production use", see: https://wiki.squid-cache.org/Squid-4 "The features have been set and large code changes are reserved for later versions." I've tested almost all 4.x-versions and patch series before with good results. Right now, 4.4 is running here with no seen problems together with 'squidclamav', 'squidguard' and 'privoxy'. I too would declare this version stable. Best, Matthias Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-18 22:30:51 +00:00
Matthias Fischer	cab2314ac4	bind: Update to 9.11.5-P1 For details see: http://ftp.isc.org/isc/bind9/9.11.5-P1/RELEASE-NOTES-bind-9.11.5-P1.html Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-18 22:29:39 +00:00
Michael Tremer	a38eb040bf	sqlite: Update to 3.26.0 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-18 22:28:59 +00:00
Matthias Fischer	53ac9dd222	unbound: Update to 1.8.3 For details see: https://nlnetlabs.nl/svn/unbound/tags/release-1.8.3/doc/Changelog "Fix dns64 allocation in wrong region for returned internal queries." Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-13 13:14:35 +00:00
Michael Tremer	edff2bb851	core127: Ship updated grub It doesn't need to be re-installed because no system with that configuration should exist right now. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-13 13:11:01 +00:00
Michael Tremer	81e1e80e38	AWS: Prefer red* or eth* when importing configuration This change is necessary to make sure that the script prefers are link with internet access. That would usually be red (after the second boot) or eth* (on the first boot). That allows (and ensures) that we can install packages in the user-data script. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-12 11:36:44 +00:00
Michael Tremer	de4f303186	core127: Ship updated unbound Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-11 19:46:10 +00:00
Matthias Fischer	707846392e	unbound: Update to 1.8.2 For details see: https://nlnetlabs.nl/projects/unbound/download/ Best, Matthias Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-11 19:45:28 +00:00
Matthias Fischer	5df66de303	clamav: Update to 0.101.0 For details see: https://blog.clamav.net/ Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-11 19:42:22 +00:00
Michael Tremer	8b02a92fe7	core127: Ship updated fireinfo Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-11 19:41:31 +00:00
Michael Tremer	66f7b646cd	Start Core Update 127 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-11 19:41:09 +00:00
Arne Fitzenreiter	c030bfba2e	core126: fix "need reboot display" The display should displayed always except the linux-pae packages is planned to be installed after this update. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-12-07 21:16:43 +01:00
Michael Tremer	f354601bbe	initscripts: Import pakfire keys before importing AWS configuration This is useful when the user-data script is installing packages. For that it will need valid keys for course. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-07 11:38:55 +00:00
Arne Fitzenreiter	56726ed954	rngd: update initskript and add hwrngtty support Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-12-06 22:33:05 +01:00
Arne Fitzenreiter	8d638b63f8	core126: add kernel files to update Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-12-06 16:05:31 +01:00
Arne Fitzenreiter	19f37f2493	core126: add kernel to updater Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2018-12-06 11:27:46 +01:00
Michael Tremer	a4e3a76af9	bird: Add initscript Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-01 16:13:25 +00:00
Michael Tremer	b5b8920cf0	bird: Add forgotten file Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-01 16:13:25 +00:00
Michael Tremer	e122256d8f	core126: Ship recently updated packages Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-01 16:13:25 +00:00
Matthias Fischer	9a12784047	BUG 11929: Build 'bind'-binaries dynamically and install needed libraries (V2) Hi, To save space linking the 'bind 9.11.5'-binaries was changed from statically to dynamically. Changes to V2: Removed unnecessary '*.so'-links. Complete file sizes shrinked from ~4800K to ~1700K. Needs testing and confirmation! I'm running this version right now under Core 124 - no seen problems so far. Best, Matthias Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-01 16:13:25 +00:00
Michael Tremer	be7f989249	bird: Backup configuration file on update Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-12-01 16:13:25 +00:00
Michael Tremer	3eea5c6f3a	nfs: Add backup include file Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-11-28 19:08:17 +00:00
Michael Tremer	77729e5be8	nfs: Install configuration in package This was lost in the last update Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-11-28 19:02:53 +00:00
Michael Tremer	380350300f	openssl: Rootfile update Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-11-25 13:45:11 +00:00
Michael Tremer	928b3cbf66	openssl: Update to 1.1.0j ) Timing vulnerability in DSA signature generation The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. This issue was reported to OpenSSL on 16th October 2018 by Samuel Weiser. (CVE-2018-0734) [Paul Dale] ) Timing vulnerability in ECDSA signature generation The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. This issue was reported to OpenSSL on 25th October 2018 by Samuel Weiser. (CVE-2018-0735) [Paul Dale] *) Add coordinate blinding for EC_POINT and implement projective coordinate blinding for generic prime curves as a countermeasure to chosen point SCA attacks. [Sohaib ul Hassan, Nicola Tuveri, Billy Bob Brumley] Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2018-11-21 11:21:42 +00:00

1 2 3 4 5 ...

6225 Commits