bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-11 03:25:54 +02:00

Author	SHA1	Message	Date
Matthias Fischer	c1bf984e05	New IP-address of 'ping.ipfire.org' Telekom gateways (e.g.) don't answer 'pings', therefor '/etc/ppp/ip-up' uses 'ping.ipfire.org' for the 'gateway Graph' in 'Status / Network (other'. After moving the infrastructure, several IP addresses were changed. '178.63.73.246' doesn't work anymore for 'ping.ipfire.org', its now '81.3.27.38'. Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2016-02-08 01:51:26 +00:00
Michael Tremer	645378fbb9	firewall: Fix MAC filter Packets destined for the firewall coming in from the blue device where accepted too early to be processed by the firewall input chain rules. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2016-02-05 10:24:03 +00:00
Michael Tremer	ff43197b01	Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next	2016-02-04 14:35:55 +00:00
Michael Tremer	0aa71600ef	wirelessctrl: Remove some unused code Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2016-02-04 14:31:53 +00:00
Arne Fitzenreiter	552fb4b8b5	dhcpcd: rework mtu handling on buggy nic's some nic's loose the carrier after setting new mtu. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2016-02-01 07:31:46 +01:00
Arne Fitzenreiter	eb2f4a4d26	hwdate: update databases pci.ids: 2016.01.28 usb.ids: 2015.12.17 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2016-01-28 13:24:50 +01:00
Arne Fitzenreiter	235888599a	backports: update to 4.2.6 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2016-01-28 13:02:09 +01:00
Michael Tremer	02a60a9b9e	squid: Actually make --with-filedescriptors work Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2016-01-23 01:49:37 +00:00
Michael Tremer	8a1a3bf393	Merge remote-tracking branch 'ms/iptables-conntrack' into next	2016-01-22 00:54:14 +00:00
Michael Tremer	41410d197b	Merge branch 'hyper-v-fixes' into next	2016-01-22 00:49:15 +00:00
Matthias Fischer	db017b4b6e	ntp 4.2.8p5: removed obsolete patch file Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2016-01-10 21:18:22 +00:00
Michael Tremer	16260e2c69	timectrl: Stop ntp daemon when disabled Fixes #11000 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2016-01-07 23:47:39 +00:00
Arne Fitzenreiter	2eb67894ef	binutils: update to 2.24 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2016-01-07 17:41:16 +01:00
Michael Tremer	b0a014b7f8	QoS: Improve saving enabled/disable state It was reported that the QoS did not stop when the user clicked the "stop" button. This patch fixes that. Fixes #10664 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Acked-by: Arne Fitzenreiter <arne.fitzenreiter@ipfire.org>	2016-01-05 21:04:05 +00:00
Michael Tremer	9a09d94ee3	qosctrl: Cleanup code by replacing hardcoded paths Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2016-01-05 20:44:26 +00:00
Matthias Fischer	c3b4c861f5	dnsmasq 2.75: latest patches from upstream Same procedure as... :-) Best to all for xmas and 2016! Matthias Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-28 15:35:34 +01:00
Arne Fitzenreiter	aa66842358	kernel: apply arm-multi grsecurity fixes only at arm-multi build	2015-12-23 10:14:26 +01:00
Michael Tremer	98b8cabf4d	dnsdist: New package Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-22 22:27:58 +00:00
Michael Tremer	6138d53bdd	lua: New package Simple scripting language. Supposed to be fast. Needed for dnsdist. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-22 22:27:39 +00:00
Michael Tremer	a7b0967db4	linux: Backport Hyper-V network driver Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-22 14:47:43 +00:00
Michael Tremer	f295ca0cf7	kernel: Add grsecurity compile fix Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-22 13:58:46 +00:00
Michael Tremer	8675b78af9	gcc: Update to version 4.9.3 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-22 12:43:51 +00:00
Michael Tremer	9098b1e1c0	glibc: Fix headers to build with new GCC Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-22 12:40:38 +00:00
Michael Tremer	4d7f9a81ac	strongswan: Update to 5.3.5 Also ships a fix for #853 upstream. Fixes #10998 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-19 14:09:10 +00:00
Matthias Fischer	44fb4620ee	grub 2.00: Bugfix for CVE-2015-8370 See: http://hmarco.org/bugs/CVE-2015-8370-Grub2-authentication-bypass.html "A vulnerability in Grub2 has been found. Versions from 1.98 (December, 2009) to 2.02 (December, 2015) are affected. The vulnerability can be exploited under certain circumstances, allowing local attackers to bypass any kind of authentication (plain or hashed passwords). And so, the attacker may take control of the computer." Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-18 23:40:00 +00:00
Matthias Fischer	1e1b03d581	dnsmasq 2.75: latest upstream patches ;-) The neverending story continues... Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-18 15:02:30 +00:00
Matthias Fischer	fbcc3cb784	dnsmasq 2.75: latest upstream patches Since 'Makefile' was affected, I had to rewrite 'dnsmasq-Add-support-to-read-ISC-DHCP-lease-file.patch', too. Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-18 15:02:26 +00:00
Alexander Marx	78af2f67bb	Squid-Accounting: Bugfix & clean up data There was a Bug in the addon so that no data was displayed because of a typo. Additionally the computeraccounts are now filtered out of trafficdata collection. Only Proxy/AD/LDAP Accounts and IP adresses are collected. Signed-off-by: Alexander Marx <alexander.marx@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-17 11:35:53 +00:00
Michael Tremer	08729f79fb	ramdisk: Backup ramdisks once a night Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-15 13:47:52 +00:00
Michael Tremer	93d6eed9a4	ntp: Fix syncing with local clock This is a bug that was introduced with the latest release from upstream Fixes #10997 Upstream: http://bugs.ntp.org/show_bug.cgi?id=2965 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-15 12:39:19 +00:00
Michael Tremer	b5e1360eb9	ramdisk: Remove temporary directory recursively Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-12 12:46:02 +01:00
root	24f2144dd2	ramdisk: Fix copying files The shell expansion wasn't used because of the quotation marks. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-12 12:36:17 +01:00
Michael Tremer	b1372c3bef	dma: Import patch for better authentication Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-10 16:35:09 +00:00
Michael Tremer	2b163f4497	Drop tripwire This add-on is likely to be unused Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-04 22:18:27 +00:00
Michael Tremer	5b2155bfdd	Drop cryptodev This module isn't used by openssl any more and therefore quite unnecessary. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-04 22:18:19 +00:00
Michael Tremer	6146d1904a	ramdisk: Avoid copying data if no ramdisk is used Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-03 16:03:29 +00:00
Michael Tremer	84c5f0d66d	ramdisk: Move crontab back to disk Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-03 14:57:30 +00:00
Michael Tremer	ee3dec50a3	ramdisk: Make usage of ramdisk configurable Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-03 14:41:49 +00:00
Michael Tremer	5258a65dea	initscripts: functions: Fix indentation Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-03 14:27:33 +00:00
Alexander Marx	c4a451eead	Remove ramdisks for RRD databases Ramdisks are very limited in space and as new graphs are generated for OpenVPN N2N connections, etc. more space is necessary. This patch will enable ramdisks for all systems with more than 490M of memory and allows the user to force using a ramdisk on systems with less memory. Signed-off-by: Alexander Marx <alexander.marx@ipfire.org> Acked-by: Arne Fitzenreiter <arne.fitzenreiter@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-03 13:14:23 +00:00
Arne Fitzenreiter	74e5c32e19	Merge branch 'master' into next	2015-12-02 21:39:20 +01:00
Arne Fitzenreiter	1f182999bc	cpufreq: change initscript for intel pstate driver. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-12-02 14:17:34 +01:00
Matthias Fischer	40e1bbda54	dnsmasq 2.75: latest upstream patches Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-12-01 22:35:21 +00:00
Michael Tremer	aaf67a64c3	Update translations Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-11-23 13:42:08 +00:00
Michael Tremer	a74ade6d9a	installer+setup: Update translations Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-11-21 14:27:04 +00:00
Stefan Schantl	c77e962d56	snort: Also monitor assigned alias addresses on red. These changes will allow snort to also inspect the traffic for one or more configured alias addresses, which has not been done in the past. The current situation is, that snort if enabled on red, only inspects the traffic which is desired to the statically configured red address. If some alias addresses have been assigned to the red interface the traffic to these addresses will not be checked by snort and completely bypasses the IDS. There is no user interaction required, nor visible-effects or any backward-compatiblity required, only a restart of snort after the update process to protect all red addresses. To do this we will now check if, the RED interface has been set to STATIC (which is required to use the aliases function) and any aliases have been configured. In case of this, the modified code will add all enabled alias addresses to the HOMENET variable in which snort is storing all the monitored addresses. Fixes #10619. Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-11-18 17:30:59 +00:00
Arne Fitzenreiter	4e17785fc1	pakfire: remove wrong version of installed addons in the installed addon list pakfire has showed the latest version of the addon not the installed. Fixes: #10875 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-11-11 14:54:21 +01:00
Arne Fitzenreiter	c88002c48b	ipset: fix build om arm. Never hardcode KVER-ipfire in any patches because on arm there is no KVER-ipfire kernel. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-11-07 09:11:27 +01:00
Erik Kapfer	63cbd2c1df	ipset: New package Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-11-05 11:47:14 +00:00
Arne Fitzenreiter	60fcb2410e	firewall: fix disable MASQERADE in green only mode. using MASQERADE_GREEN="off" will not work because "NETWORK_GREEN" is not correctly defined in green only mode. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-11-01 11:20:56 +01:00

1 2 3 4 5 ...

2741 Commits