webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-10 02:55:55 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
eba8e481e1cc0a5bbd61d95f2022735d4e9efab0
bpfire/html/cgi-bin
History
Peter Müller 993724b4dd vpnmain.cgi: set SubjectAlternativeName default during root certificate generation 
Some IPsec implementations such as OpenIKED require SubjectAlternativeName
data on certificates and refuse to establish connections otherwise.

The StrongSwan project also recommends it (see:
https://wiki.strongswan.org/projects/strongswan/wiki/SimpleCA) although
it is currently not enforced by their IPsec software.

For convenience purposes and to raise awareness, this patch adds a default
SubjectAlternativeName based on the machines hostname or IP address. Existing
certificates remain unchanged for obvious reasons.

The third version of this patch fixes a duplicate DNS query reported by Michael.

Fixes #11594

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Cc: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2020-01-11 14:15:28 +00:00
..
asterisk
Made some nicer graphs and fixes
2008-02-05 19:22:05 +00:00
captive
captive: Show access page in browser language
2017-09-22 19:00:04 +01:00
logs.cgi
WUI log-section Mail: add support for postfix addon
2019-09-11 16:50:57 +00:00
aliases.cgi
aliases.cgi: Handle suricata related actions when dealing with aliases
2019-02-06 15:59:02 +01:00
atm-status.cgi
atm-status.cgi: display more values for solos-pci.
2014-02-15 16:41:40 +01:00
backup.cgi
backup: Fix deleting backup files
2018-09-20 14:21:41 +01:00
bluetooth.cgi
Add bluetooth.cgi only rfcomm/modem support yet
2008-08-16 17:44:44 +02:00
captive.cgi
BUG12245: captive portal - clients are not automatically removed
2019-11-30 09:53:04 +00:00
chpasswd.cgi
{proxy,chpasswd}.cgi: Fix a remote code execution vulnerability
2016-04-08 15:54:53 +01:00
connections.cgi
perl-scripts: suppress smartmatch experimental warning
2019-08-16 12:21:26 +02:00
connscheduler.cgi
Mark required input fields with a star
2015-09-21 16:40:41 +01:00
country.cgi
GeoIP: Add lookup function for convenience
2017-11-13 22:37:19 +00:00
credits.cgi
core139: finish
2019-12-09 18:48:07 +01:00
ddns.cgi
perl-scripts: suppress smartmatch experimental warning
2019-08-16 12:21:26 +02:00
dhcp.cgi
dhcp.cgi: fix typo
2019-08-18 17:59:49 +02:00
dns.cgi
fix link to public DNS server list in dns.cgi
2019-10-14 17:41:49 +00:00
dnsforward.cgi
dnsforward.cgi: Add DNSSEC option to legend
2019-03-18 17:26:16 +00:00
entropy.cgi
entropy: Don't show message for HWRNGs any more
2018-05-22 20:31:12 +01:00
extrahd.cgi
Apache 2.4.27 breaks ExtraHD-GUI
2017-10-02 19:27:52 +01:00
fireinfo.cgi
use HTTPS for links to fireinfo.ipfire.org
2018-01-07 19:18:33 +00:00
firewall.cgi
perl-scripts: suppress smartmatch experimental warning
2019-08-16 12:21:26 +02:00
fwhosts.cgi
BUG11825: firewall: Renaming a network/host group doesn't update rules
2018-08-24 11:44:45 +01:00
geoip-block.cgi
geoip-block.cgi: Finish column after last element and uneven amount of items.
2015-05-12 20:39:44 +02:00
gpl.cgi
gpl.cgi: Fix proper redirection so that the agreement has only to be accepted once.
2014-03-05 23:53:21 +01:00
guardian.cgi
guardian: Remove snort related options.
2019-05-08 19:20:08 +02:00
gui.cgi
up/down beep: move from ppp ip-up/down to general red.up/down
2019-12-01 15:29:59 +01:00
hardwaregraphs.cgi
graphs: add NVMe disks
2018-10-28 17:56:37 +01:00
hosts.cgi
add option for selective PTR generation on hosts.cgi
2019-04-11 22:58:03 +01:00
ids.cgi
IDS: Allow to inspect traffic from or to OpenVPN
2019-12-29 19:12:06 +00:00
index.cgi
ipsec: Drop VPN_IP setting
2019-02-04 18:20:36 +00:00
ipinfo.cgi
display GeoIP information on ipinfo.cgi
2017-12-02 12:24:19 +00:00
iptables.cgi
BUG 11318: Fix deletion of temporary files from IPTables-GUI
2017-04-18 11:22:18 +01:00
mac.cgi
Mark required input fields with a star
2015-09-21 16:40:41 +01:00
mail.cgi
mail.cgi: Do not print content of input fields
2019-11-13 18:41:02 +00:00
mdstat.cgi
cgi-bin: Use readonly="readonly" attribute on html input elements
2014-02-18 18:48:57 +01:00
media.cgi
graphs: add NVMe disks
2018-10-28 17:56:37 +01:00
memory.cgi
Some Fixes for the CGIs not spamming apache logfile.
2010-12-12 20:40:56 +01:00
modem-status.cgi
modem-status: add more ttyUSB and ttyACM ports.
2014-06-06 10:45:59 +02:00
modem.cgi
Mark required input fields with a star
2015-09-21 16:40:41 +01:00
mpfire.cgi
MPFire: Split page into three subpages.
2009-10-27 23:49:03 +01:00
netexternal.cgi
perl-scripts: suppress smartmatch experimental warning
2019-08-16 12:21:26 +02:00
netinternal.cgi
Multiple CGI files: Check if BLUE or ORANGE are actually configured.
2013-11-08 14:32:08 +01:00
netother.cgi
translate 'firewall hits' at netother.cgi
2017-11-29 11:59:49 +00:00
netovpnrw.cgi
vpn-statistic: add URI::escape for openvpn names with special chars
2015-04-14 14:00:47 +02:00
netovpnsrv.cgi
Add routed IPsec connections to traffic graphs section
2019-02-04 18:20:36 +00:00
optionsfw.cgi
optionsfw.cgi: Clean up code
2016-04-20 16:14:14 +01:00
ovpnmain.cgi
ovpn: Fix LZO checkbox restore
2019-12-06 16:39:55 +00:00
p2p-block.cgi
cgi-bin: HTML cleanup, add quotes for attribute values
2014-02-15 16:54:38 +01:00
pakfire.cgi
pakfire: Remove option to enable/disable checks for updates
2018-10-24 11:21:12 +01:00
pppsetup.cgi
BUG11177: pppoe password not required anymore
2016-09-08 12:58:47 +01:00
proxy.cgi
BUG 11696: VPN Subnets missing from wpad.dat
2019-05-20 10:38:17 +01:00
qos.cgi
QoS: Drop support for setting TOS bits per class
2019-10-21 18:58:31 +00:00
remote.cgi
remote.cgi: Move SSH Agent Forwarding to the top
2019-04-11 23:24:54 +01:00
routing.cgi
routing: Fix potential authenticated XSS in input processing
2019-05-10 09:04:54 +01:00
samba.cgi
samba: default enable SMBv2.
2016-09-27 19:38:38 +02:00
sambahlp.cgi
Ein Paar Dateien fuer die GPLv3 angepasst.
2007-08-29 13:25:32 +00:00
services.cgi
services.cgi: Show status of suricata instead of snort
2019-02-15 12:18:45 +01:00
shutdown.cgi
shutdown.cgi: fix missing image.
2014-02-04 16:13:57 +01:00
speed.cgi
speed.cgi: Suppress error messages if not connected to the internet.
2013-09-07 16:23:50 +02:00
system.cgi
Improve graphs
2017-03-15 13:45:05 +00:00
time.cgi
Mark required input fields with a star
2015-09-21 16:40:41 +01:00
tor.cgi
tor.cgi: Disable debugging output
2019-05-27 15:46:45 +01:00
traffic.cgi
Remove IPAC stuff
2016-10-02 15:13:55 +01:00
updatexlrator.cgi
Mark required input fields with a star
2015-09-21 16:40:41 +01:00
upnp.cgi
cgi-bin: Remove font tags with no effect, and style tags
2014-02-22 12:13:02 +01:00
urlfilter.cgi
URL Filter: Drop Safe Search feature
2019-05-11 04:16:39 +01:00
vpnmain.cgi
vpnmain.cgi: set SubjectAlternativeName default during root certificate generation
2020-01-11 14:15:28 +00:00
vulnerabilities.cgi
vulnearabilities.cgi: add tsx async abort and itlb_multihit
2019-11-14 22:10:04 +01:00
wakeonlan.cgi
Mark required input fields with a star
2015-09-21 16:40:41 +01:00
webaccess.cgi
webaccess.cgi: Fixed language settings.
2016-01-19 00:06:30 +00:00
wireless.cgi
Mark required input fields with a star
2015-09-21 16:40:41 +01:00
wirelessclient.cgi
WiFi: Show EAP status on wireless client page
2017-05-16 15:05:25 +02:00
wlanap.cgi
Merge branch 'master' into next
2019-04-26 19:39:55 +02:00
zoneconf.cgi
zoneconf: reduce the width of inputs for vlanid
2019-09-12 10:19:14 +00:00