summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Also consider 0.0.0.0/0 here since it fails both these tests but is still a ↵RELENG_2_0_2jim-p2012-12-071-1/+1
| | | | valid/special config.
* Safety belt checks to fix a PHP error that for whatever reason only appeared ↵jim-p2012-11-271-2/+2
| | | | in Chrome.
* remove non-applicable textChris Buechler2012-11-211-1/+0
|
* Fix special build_commit tag that was broken from previous change to how it ↵Erik Fonnesbeck2012-11-201-1/+1
| | | | | | read the file with the commit ID. Backport of c578fb0fc6e768739013df8d7aa19f2616272f18
* Fixup kernel detection during upgrade process to ensure someone can't end up ↵jim-p2012-11-203-51/+87
| | | | with a kernel that doesn't exist any more.
* Resolves #2294. Base64 encode the file when sending to the browser same way ↵Ermal2012-11-201-1/+3
| | | | it is encoded when sent to us. This prevents csrf from mangling things
* Only apply this port check for TCP and UDP.jim-p2012-11-201-1/+1
|
* No need to do this here - we have a System > Advanced option that already ↵jim-p2012-11-201-2/+2
| | | | | | controls this. Revert "Do not allow autocomplete of the password field to avoid security issues:" This reverts commit 6a68440b8a4fec4b6a5689553e27519e540f2643.
* Allow only post action and not get to avoid security problemsErmal2012-11-201-15/+12
|
* Remoev exec_raw.php since its a dangerous pageErmal2012-11-201-53/+0
|
* Do not process ip options by default this is 2012Ermal2012-11-201-1/+2
|
* Do not allow autocomplete of the password field to avoid security issues:Ermal2012-11-201-2/+2
|
* To allow limiters to work correctly on mutliwan for now enforce selecting a ↵Ermal2012-11-161-0/+2
| | | | gateway on outgoing
* Merge pull request #252 from ogunacik/RELENG_2_0Ermal Luçi2012-11-161-35/+36
|\ | | | | Control whether text and node variables are not null.
| * it was giving error at firebugogun acik2012-11-161-35/+36
|/
* Re-add WOL to the services menu, it apparently disappeared in an earlier commit.jim-p2012-11-141-0/+1
|
* Merge pull request #249 from thomasnoel/RELENG_2_0Jim P2012-11-122-2/+5
|\ | | | | cherry-pick last commits to RELENG_2_0
| * fix last commit (#2679)Thomas NOEL2012-11-121-1/+1
| |
| * Resolves #2679. Correct behaviour when port is null to avoid warnings on ↵Ermal2012-11-121-0/+2
| | | | | | | | error log
| * Resolves #2678. Merge patch suggedted to stop warnings on PHP_errors.logErmal2012-11-121-2/+3
|/
* Use a random exponent for the RSA generation of keys. Its is questionable if ↵Ermal2012-11-061-1/+17
| | | | its needed to be saved as a value? Ticket #2657
* Merge pull request #245 from ogunacik/RELENG_2_0Jim P2012-11-053-5/+5
|\ | | | | fixed paths
| * fixed pathsogun acik2012-11-053-5/+5
|/
* Make a function to get the current theme and use it everywhere rather than ↵jim-p2012-11-025-41/+28
| | | | | | | | | duplicating code or missing functions. (Fixes forced themes using the wrong theme for login screen) Conflicts: etc/inc/util.inc usr/local/www/head.inc
* Encode the interface parameter before using it in a redirectjim-p2012-10-311-1/+1
|
* Encode the if parameter before using it in redirects, too.jim-p2012-10-311-4/+4
|
* Encode the if parameter before using it in htmljim-p2012-10-311-3/+3
|
* Escape parameters better when managing tables. Fix test to allow deleting ↵jim-p2012-10-311-6/+6
| | | | subnet entries as well as IPs.
* Remove debug outputjim-p2012-10-311-1/+0
|
* Set the CSRF Magic timeout to the same as the session timeout, so that if a ↵jim-p2012-10-311-0/+3
| | | | user sets a lower session time, the CSRF magic tokens do not outlive the user's session.
* Update CSRF Magicjim-p2012-10-312-9/+12
|
* Eliminate system calls here, use PHP instead.jim-p2012-10-041-2/+2
|
* Sanitize some variablesjim-p2012-10-041-8/+9
| | | | Discovered-By: Yann CAM
* Verify posted kernel type against a defined list of good values.jim-p2012-10-041-5/+11
| | | | Discovered-By: Yann CAM
* Fix reference to limitrulesjim-p2012-10-041-1/+1
|
* Make sure that the limits are included in the normal ruleset, otherwise pf ↵smos2012-10-021-0/+1
| | | | will use the defaults.
* Don't die silently if the time is too far off. Fix from: dhatzjim-p2012-10-021-0/+1
|
* fix for: Output from CSRF magic mangles files in Diagnostics > Edit FileDarren Embry2012-09-171-0/+3
| | | | http://redmine.pfsense.org/issues/2294
* Use a better link here.jim-p2012-09-121-1/+1
|
* Don't skip over wrap_vga here.jim-p2012-09-121-0/+5
|
* Print a nice large warning on the PPTP page about it no longer being ↵jim-p2012-09-121-0/+1
| | | | considered secure.
* Simplify schedules code and some styly nitsErmal2012-08-301-33/+13
|
* Be consistent on formatting to easy readingErmal2012-08-291-18/+21
|
* Restructure these IP/subnet tests so they don't break transport modejim-p2012-08-271-5/+4
|
* It's time...jim-p2012-08-141-1/+1
|
* Remove extra curly to allow checking braces closure easily in vi[m]Ermal2012-08-141-1/+1
|
* Ensure this gets a set default value or things can breakjim-p2012-08-011-0/+3
|
* Protect against a potential infinite loop here.jim-p2012-08-011-1/+2
|
* Move to RC4... almost there.jim-p2012-08-011-1/+1
|
* Silence tar command to not garble consoleErmal2012-08-011-4/+4
|
OpenPOWER on IntegriCloud