bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-11 11:35:54 +02:00

Author	SHA1	Message	Date
Michael Tremer	d409286074	apache: Ensure that not everyone can read the keys This would become a security risk if anyone gets shell access as any user to copy out the HTTPS keys. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-28 14:11:49 +00:00
Arne Fitzenreiter	b5aca95b94	boost: disable parallel build this need more than 1GB ram on arm Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2017-11-28 07:01:33 +01:00
Arne Fitzenreiter	0476a6570d	samba: import security updates from redhead Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2017-11-27 18:20:59 +01:00
Michael Tremer	66028310ce	make.sh: Don't try to dump a non-existing logfile Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-23 16:09:00 +00:00
Michael Tremer	f3b7cf47ca	make.sh: Show architecture we are building the toolchain for Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-23 16:08:03 +00:00
Michael Tremer	543286056e	make.sh: Fix typo Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-23 16:06:59 +00:00
Michael Tremer	f978327791	make.sh: Refactor build status code This replaces the old lines that make the build output pretty and replaces it by a version that showns progress as it is going on as well as providing useful output when the console is non-interactive. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-23 15:58:47 +00:00
Michael Tremer	f74072a24a	Compress toolchain using XZ Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-23 15:58:45 +00:00
Michael Tremer	658232a64c	make.sh: Refactor renice and root check Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-23 15:58:13 +00:00
Michael Tremer	aecbe1232b	make.sh: Cleanup prepareenv Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-23 15:58:03 +00:00
Michael Tremer	813659f268	make.sh: TARGET_ARCH has been replaced by BUILD_ARCH Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-23 15:57:58 +00:00
Michael Tremer	69a6ec55ad	make.sh: Merge make-functions into make.sh Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-23 15:57:50 +00:00
Michael Tremer	6c4cc7ea1b	Move toolchain from /tools to /tools_${arch} This will allow us to run multiple builds on the same system at the same time (or at least have them on disk). Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-23 15:57:28 +00:00
Michael Tremer	f1effdf758	make.sh: Drop option to generate a source ISO This is a very weird way to distribute sources in 2017. Let's save the environment and stop using CDs. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-23 15:55:05 +00:00
Michael Tremer	beb256e0a0	core117: Reload apache for change of configuration Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-20 15:46:53 +00:00
Peter Müller	a57f4a9f5d	disable SSL compression and session tickets in Apache Ensure that Apache never uses SSL compression, which is vulnerable, and turn off session tickets since the might cause impact to PFS. Based against next, supersedes first version. Reported-by: Wolfgang Apolinarski <wolfgang.apolinarski@ipfire.org> Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-20 15:45:52 +00:00
Michael Tremer	f574f9ea02	Retire the IPFire CA Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-13 23:18:55 +00:00
Michael Tremer	82e295c23e	core117: Ship updated CA bundle Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-13 23:18:00 +00:00
Peter Müller	2d735404b6	update ca-certificate CA bundle Update the CA certificate list to what Mozilla NSS ships currently. Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-13 23:14:59 +00:00
Michael Tremer	0a38f7938a	core117: Ship changes in pakfire Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-13 22:41:58 +00:00
Peter Müller	bb6481a820	validate GPG keys by fingerprint Validate GPG keys by fingerprint and not by 8-bit key-ID. This makes exploiting bug #11539 harder, but not impossible and does not affect existing installations. Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-13 22:41:21 +00:00
Michael Tremer	b7a5076ca0	core117: Ship latest GeoIP changes Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-13 22:39:36 +00:00
Michael Tremer	00793c27c9	GeoIP: Add lookup function for convenience Instead of opening the database again for each lookup, we will read it into memory on first use and every lookup after that will be coming from cache. Reviewed-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-13 22:37:19 +00:00
Michael Tremer	b1ad5b8b6c	geoip-functions.pl: Fix typos and formatting Reviewed-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-13 22:37:03 +00:00
Michael Tremer	5a4fb99e8a	make.sh: Default to armv5tel on armv7* build hosts We won't offer a native port to ARMv7 in the near future and to default to an architecture that is working on these machines, we select armv5tel as default Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-13 21:56:27 +00:00
Michael Tremer	32e6d3e320	Revert "make.sh: Use -pipe in CFLAGS when host has >1GB of memory" This reverts commit `7e1639a481`. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-13 21:49:15 +00:00
Michael Tremer	9bb4055367	captive portal: Require authorization before redirecting to proxy Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-11 12:48:54 +00:00
Michael Tremer	81f6550cfb	core117: Ship updated routing.cgi Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 16:20:53 +00:00
Alexander Marx	51141b150d	BUG11466: fix routing.cgi the function call in routing.cgi was fixed to call the new "exact" function. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 16:20:29 +00:00
Alexander Marx	3f3974b711	Network-functions: add check if variables are defined in function network_equal and network2bin a check for undefined variables were missing. added them. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 16:19:23 +00:00
Michael Tremer	d6b92a118e	core117: Ship updated network-functions.pl Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 16:16:50 +00:00
Alexander Marx	1047805dba	BUG11466: Fix network_equal function The network_equal function only tested the subnet addresses of two given networks which lead to errormessages saying "This is the green network" The fix tests netwok and subnet IP's to fix this Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 16:16:18 +00:00
Michael Tremer	b3d2f86b87	core117: Ship changed files of the webUI Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 16:14:36 +00:00
Peter Müller	725396af2c	link to HTTPS version of www.ipfire.org in WebUI Change links to www.ipfire.org in WebUI themes since the website now uses HTTPS. Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 16:14:36 +00:00
Peter Müller	eea4969dff	Tor: Use relay mode as default setting Set the default operating mode to "relay" in the Tor WebUI configuration page. Running a Tor exit relay may cause legal trouble in some countries and should not be the default setting to prevent users from accidentally running an exit router. Signed-off-by: Peter Müller <peter.mueller@link38.eu> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 16:14:36 +00:00
Michael Tremer	bb3272dad3	Start Core Update 117 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 16:14:36 +00:00
Michael Tremer	682a6b2dc8	unbound: Silence error when upstream name servers cannot be read Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 16:02:28 +01:00
Michael Tremer	a98ab1d7fd	make.sh: Calculate MAKETUNING depending on available memory Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 15:43:14 +01:00
Michael Tremer	4f1cce84fb	make.sh: Remove setting the EDITOR variable which we don't use Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 15:27:31 +01:00
Michael Tremer	1445a5ac43	make.sh: Add function to determine how many CPU cores the build host has Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 15:25:11 +01:00
Michael Tremer	7e1639a481	make.sh: Use -pipe in CFLAGS when host has >1GB of memory Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 15:27:00 +01:00
Michael Tremer	5190eea24f	make.sh: Determine how much memory the build host has Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-07 15:25:56 +01:00
Michael Tremer	ad1204e4eb	captive: One month is only 30 days instead of 210 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2017-11-06 19:07:10 +00:00
Arne Fitzenreiter	5c8acc789b	core116: stop apache before extracting updated files Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2017-11-03 16:40:23 +01:00
Arne Fitzenreiter	9843bb7b5a	core116: replace apache restart by stop and start restart seems not work after replace apache... Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2017-11-03 14:28:22 +01:00
Arne Fitzenreiter	ae8e242bc1	core116: ship updated wget Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2017-11-03 14:22:19 +01:00
Arne Fitzenreiter	4f248f7a70	finish core116 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2017-11-02 22:48:58 +01:00
Arne Fitzenreiter	578171927d	core116: set need_reboot flag Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2017-11-02 22:48:43 +01:00
Arne Fitzenreiter	ee328f16bf	core116: ship openssh Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2017-11-02 22:46:47 +01:00
Arne Fitzenreiter	6744cd4d68	core116: fix openssl symlink Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2017-11-02 22:45:25 +01:00

1 2 3 4 5 ...

11210 Commits