| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Only include a scheduled rule if it is strictly before the end timeRELENG_2_1_4 | Phil Davis | 2014-06-20 | 1 | -1/+1 |
| | | | | | The exact moment of the end time is the end of the schedule. We do not want to include a rule when filter_configure_sync wakes up at 00:15:00 etc and is on a not-slow system that processes this code during the interval 00:15:00 to 00:15:01. This should help intermittent issues with schedules not finishing at the appropriate 15-minute boundary. Might help or fix #3558 | ||||
| * | Remove extra data after space and fix pf rule syntax. It should fix #3688 | Renato Botelho | 2014-06-20 | 1 | -1/+1 |
| | | |||||
| * | Merge pull request #1208 from razzfazz/nat_add_missing_protocols | Renato Botelho | 2014-06-20 | 1 | -1/+1 |
| |\ | |||||
| | * | bring protocols on NAT edit page more in line with rule edit page | Daniel Becker | 2014-05-22 | 1 | -1/+1 |
| | | | |||||
| * | | Remove also . and / from graph | Renato Botelho | 2014-06-19 | 1 | -1/+1 |
| | | | |||||
| * | | Fix status_rrd_graph_img.php and also improve it: | Renato Botelho | 2014-06-19 | 1 | -36/+37 |
| | | | | | | | | | | | | | | | | | - Remove escapeshellarg that broke command line - Only remove dangerous chars to avoid command injection - Replace all `hostname` calls by php_uname('n') - Replace all `date` calls by strftime() - Add $_gb to collect possibly garbage from exec return | ||||
| * | | Make sure single quotes are encoded and avoid javascript injection | Renato Botelho | 2014-06-19 | 1 | -2/+2 |
| | | | |||||
| * | | Use CDATA for javascript | Renato Botelho | 2014-06-19 | 1 | -3/+3 |
| | | | |||||
| * | | Fix indent and whitespaces | Renato Botelho | 2014-06-19 | 1 | -6/+7 |
| | | | |||||
| * | | Simplify logic, add some protection to user input parameters | Renato Botelho | 2014-06-18 | 1 | -27/+23 |
| | | | |||||
| * | | Fix whitespaces and indent | Renato Botelho | 2014-06-18 | 1 | -46/+45 |
| | | | |||||
| * | | We need to allow subdirectories under /usr/local/pkg, here is the proper fix | Renato Botelho | 2014-06-18 | 1 | -7/+5 |
| | | | |||||
| * | | Set 'Disable webConfigurator login autocomplete' as on by default | Renato Botelho | 2014-06-18 | 1 | -0/+1 |
| | | | |||||
| * | | Always set httponly attribute on cookies | Renato Botelho | 2014-06-18 | 1 | -10/+8 |
| | | | |||||
| * | | Protect servicestatusfilter parameter with htmlspecialchars() | Renato Botelho | 2014-06-17 | 1 | -1/+1 |
| | | | |||||
| * | | Protect rssfeed parameters with htmlspecialchars() | Renato Botelho | 2014-06-17 | 1 | -6/+6 |
| | | | |||||
| * | | Add comment I forgot on last commit | Renato Botelho | 2014-06-17 | 1 | -0/+1 |
| | | | |||||
| * | | Re-generate session ID on a successful login to avoid session fixation | Renato Botelho | 2014-06-17 | 1 | -0/+1 |
| | | | |||||
| * | | Avoid directory traversal on restorefullbackup | Renato Botelho | 2014-06-17 | 1 | -2/+2 |
| | | | |||||
| * | | Fix core dump on viewing invalid package log | Matt Smith | 2014-06-17 | 2 | -3/+7 |
| | | | |||||
| * | | Remove . and / from pkg name to avoid directory traversal | Renato Botelho | 2014-06-17 | 1 | -5/+5 |
| | | | |||||
| * | | Remove id=0 from miniupnpd menu and shortcut | Renato Botelho | 2014-06-17 | 2 | -3/+3 |
| | | | |||||
| * | | Avoid directory traversal when reading package xml files, also check if file ↵ | Renato Botelho | 2014-06-17 | 1 | -1/+6 |
| | | | | | | | | | exists before try to read it | ||||
| * | | Make sure variables are escaped, also replace exec calls to run rm by ↵ | Renato Botelho | 2014-06-17 | 1 | -4/+4 |
| | | | | | | | | | unlink_if_exists() | ||||
| * | | Remove useless code, variable is set again on next line | Renato Botelho | 2014-06-17 | 1 | -3/+0 |
| | | | |||||
| * | | Escape parameters passed to shell_exec() | Renato Botelho | 2014-06-17 | 2 | -2/+2 |
| | | | |||||
| * | | Be more careful with host parameter and make sure it's escaped when call ↵ | Renato Botelho | 2014-06-17 | 1 | -7/+6 |
| | | | | | | | | | shell functions | ||||
| * | | Validate starttime and stoptime format | Renato Botelho | 2014-06-17 | 1 | -0/+8 |
| | | | |||||
| * | | Do not expire already disabled users, it fixes #3644 | Renato Botelho | 2014-06-12 | 1 | -1/+1 |
| | | | |||||
| * | | Be more precise to match members of a bridge interface, it should fix #3637 | Renato Botelho | 2014-06-10 | 1 | -1/+3 |
| | | | |||||
| * | | Revert "Revert "Fix #3700 and other syntax issues:"" | Renato Botelho | 2014-06-10 | 2 | -16/+17 |
| | | | | | | | | | This reverts commit 4cc2ae78d3027c349969437f08a88b1fb88c9de8. | ||||
| * | | Revert "Fix sh syntax" | Renato Botelho | 2014-06-10 | 1 | -3/+3 |
| | | | | | | | | | This reverts commit cd49f9cd5d21a6592ba690cd315f19266092bee5. | ||||
| * | | Fix sh syntax | Renato Botelho | 2014-06-10 | 1 | -3/+3 |
| | | | |||||
| * | | Revert "Fix #3700 and other syntax issues:" | Renato Botelho | 2014-06-10 | 2 | -17/+16 |
| | | | | | | | | | This reverts commit e912bfae186b6b657daf52607f9d027f46be0478. | ||||
| * | | Fix #3700 and other syntax issues: | Renato Botelho | 2014-06-10 | 2 | -16/+17 |
| | | | | | | | | | | | | | | | | | | | - Remove -G parameter from pfctl since it doesn't exist anymore - Initialize $old_router - Fix sh syntax on variable assign, it couldn't have space before = - Simplify logic - Avoid flush states twice, if it was done on IP change, don't do it again if router also has changed | ||||
| * | | Do not allow interface group name to be bigger than 15 chars, helps ticket #3208 | Renato Botelho | 2014-06-09 | 1 | -1/+1 |
| | | | |||||
| * | | Escape argument on call to is_process_running too, also remove some ↵ | Renato Botelho | 2014-06-06 | 1 | -3/+3 |
| | | | | | | | | | unecessary mwexec() calls | ||||
| * | | Add some protection to parameters that come through _GET | Renato Botelho | 2014-06-06 | 2 | -13/+17 |
| | | | |||||
| * | | Escape this before running. | jim-p | 2014-06-06 | 1 | -1/+1 |
| | | | |||||
| * | | Bump version to 2.1.4 | Renato Botelho | 2014-06-05 | 1 | -1/+1 |
| | | | |||||
| * | | Fix #3691, use curl instead of fetch to download update files | Renato Botelho | 2014-06-05 | 1 | -17/+13 |
| | | | |||||
| * | | allow ipaliases to be configured on lo0 | Matt Smith | 2014-06-03 | 1 | -2/+2 |
| | | | |||||
| * | | remove openbgpd bits from system_gateways_edit and system.inc. The package | Chris Buechler | 2014-05-30 | 2 | -8/+2 |
| | | | | | | | | | | | | | match is case-sensitive and hasn't matched the openbgpd package's name in at least 5 years, so it doesn't do anything. It's far from functional in any useful manner even fixing that issue. | ||||
| * | | client-config-dir is also useful when using OpenVPN's internal DHCP while ↵ | jim-p | 2014-05-30 | 1 | -0/+1 |
| | | | | | | | | | bridging. | ||||
| * | | Unset iflist and iflist_disabled | Renato Botelho | 2014-05-29 | 2 | -1/+6 |
| | | | |||||
| * | | Show disabled interface when it was already part of interface group, it ↵ | Renato Botelho | 2014-05-29 | 2 | -6/+14 |
| | | | | | | | | | avoids to show a random interface instead and let user to add it by mistake. It should fix #3680 | ||||
| * | | Convert protocol ssl:// to https:// when creating http headers | Manuel Silvoso | 2014-05-28 | 1 | -1/+1 |
| |/ | |||||
| * | Properly handle this rename, and squelch errors if it fails. | jim-p | 2014-05-21 | 1 | -1/+1 |
| | | |||||
| * | Delete all ip aliases when interface is disabled, it should fix #3650 | Renato Botelho | 2014-05-21 | 1 | -7/+21 |
| | | |||||
| * | fix variable typo. ticket #3669 | Chris Buechler | 2014-05-20 | 1 | -1/+1 |
| | | |||||
 |
index : pfsense | |
| Raptor Engineering's fork of the main repository for pfSense | Raptor Engineering, LLC |
| summaryrefslogtreecommitdiffstats |
|