Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Encoding in vpn_ipsec_settings.php | jim-p | 2015-06-16 | 1 | -1/+1 |
| | |||||
* | More encoding | jim-p | 2015-06-16 | 1 | -2/+2 |
| | |||||
* | Fix some low-hanging potential security issues. | jim-p | 2015-06-16 | 3 | -8/+8 |
| | |||||
* | Be more careful with encoding on pages that use single quotes around HTML ↵ | jim-p | 2015-06-16 | 2 | -5/+5 |
| | | | | attributes | ||||
* | Additional encoding for system_advanced_misc.php | jim-p | 2015-06-16 | 1 | -7/+7 |
| | |||||
* | Protect single quotes as well to prevent JS injection, due to the way this ↵ | jim-p | 2015-06-16 | 1 | -10/+10 |
| | | | | page uses single quotes for attributes. | ||||
* | Encode parameters in system_advanced_firewall.php before displaying back to ↵ | jim-p | 2015-06-16 | 1 | -5/+5 |
| | | | | the user. | ||||
* | Keep a copy of old mtree binary during upgrade and use it to avoid crashing. ↵ | Renato Botelho | 2015-06-16 | 2 | -2/+8 |
| | | | | Fixes #4563 | ||||
* | Check also for old FreeBSD release versions | Renato Botelho | 2015-06-16 | 1 | -1/+1 |
| | |||||
* | Merge manullay pull/1722 | Ermal LUÇI | 2015-06-15 | 1 | -1/+1 |
| | |||||
* | Remove the GUI for the pc-sysinstaller as well and add it to obsoletee files | Ermal LUÇI | 2015-06-15 | 3 | -1218/+3 |
| | |||||
* | Remove pc-sysinstall since it was never finished and probably will be not ↵ | Ermal LUÇI | 2015-06-15 | 82 | -10305/+0 |
| | | | | the choice. If needed can be resurrected. It already is in obsoleted files | ||||
* | status_queues missing semi-colon | Phil Davis | 2015-06-15 | 1 | -1/+1 |
| | | | | This really looks like it should have a semi-colon. Somehow the PHP interpreter is not being fussy about it in this context, I guess being followed by the "endif;" keyword the interpreter guesses the previous statement must be done. | ||||
* | Ticket #4655 well manually merge pull/1715. Thanks: Phil | Ermal LUÇI | 2015-06-15 | 1 | -3/+9 |
| | |||||
* | add input validation for proxy URL, port, user. | Chris Buechler | 2015-06-14 | 1 | -1/+13 |
| | |||||
* | Ok another round of this which unbreaks input error validation messages | Ermal LUÇI | 2015-06-13 | 1 | -3/+6 |
| | |||||
* | Make this right finally :). Thanks-ti: Phil-davis | Ermal LUÇI | 2015-06-12 | 1 | -3/+2 |
| | |||||
* | Add hostid script in the source to solve the issue with platforms that do ↵ | Ermal LUÇI | 2015-06-12 | 1 | -0/+137 |
| | | | | not have proper uuid or duplicate uuid which breaks carp/pfsync and other things in HA setup. | ||||
* | Activate the redirection that for some reason got disabled | Ermal LUÇI | 2015-06-12 | 1 | -2/+2 |
| | |||||
* | Ticket #4655 Do not behave against the logic of checkbox and description. | Ermal LUÇI | 2015-06-11 | 1 | -2/+3 |
| | |||||
* | fix checking for overlaps of NAT destination port | bruno | 2015-06-11 | 1 | -2/+2 |
| | |||||
* | Make the host uuid opt-out | Ermal LUÇI | 2015-06-11 | 3 | -4/+28 |
| | |||||
* | Revert "Ticket #4442 Do not process URL aliases during bootup but trigger it ↵ | Chris Buechler | 2015-06-10 | 2 | -4/+3 |
| | | | | | | just after finished booting. This completely solves the bootup delays without lowering the timeout as before. Probably need to increase a bit the timeouts now to be friendly to other connections" This reverts commit 0d44aca64623da5a3eeef0619704a10b3cfda7a5. | ||||
* | Send the machine uuid with the headers requesting the version file | Ermal LUÇI | 2015-06-10 | 1 | -2/+2 |
| | |||||
* | Send the host uuid with the request for package | Ermal LUÇI | 2015-06-10 | 1 | -0/+1 |
| | |||||
* | Fixes #4537 On 32bit platform do not enable direct dispatch on IPsec since ↵ | Ermal LUÇI | 2015-06-10 | 1 | -0/+3 |
| | | | | it crashes the system | ||||
* | Activate sync for the root slice in fstab during upgrade. Ticket #4523 | jim-p | 2015-06-10 | 1 | -0/+6 |
| | |||||
* | No need to do the same exercise twice. | Ermal LUÇI | 2015-06-09 | 1 | -6/+0 |
| | |||||
* | Do not disable APc here | Ermal LUÇI | 2015-06-09 | 1 | -3/+0 |
| | |||||
* | Restore the file system in R/W mode during most of rc script seems required ↵ | Ermal LUÇI | 2015-06-09 | 1 | -0/+15 |
| | | | | on nano. Should unbreak nanobsd | ||||
* | Add a space to the script to avoid that appended parameters seem the same as ↵ | Ermal LUÇI | 2015-06-09 | 1 | -1/+1 |
| | | | | existing one | ||||
* | Use skel as the source of new user files rather than copying from root. | jim-p | 2015-06-08 | 5 | -1/+28 |
| | | | | Reported-By: https://twitter.com/fitchitis/status/607850849172373504 | ||||
* | Ticket #4442 Do not process URL aliases during bootup but trigger it just ↵ | Ermal LUÇI | 2015-06-07 | 2 | -3/+4 |
| | | | | after finished booting. This completely solves the bootup delays without lowering the timeout as before. Probably need to increase a bit the timeouts now to be friendly to other connections | ||||
* | Fixes #4651 use proper var name on global to have the correct id put on the rule | Ermal LUÇI | 2015-06-07 | 1 | -1/+1 |
| | |||||
* | Re-generate broken .mo files, it fixes #4705 | Renato Botelho | 2015-06-07 | 2 | -0/+0 |
| | |||||
* | Remove duplicate message | Renato Botelho | 2015-06-07 | 1 | -4/+0 |
| | |||||
* | Clean up, organize, and expand the info presented by status.php. Save the ↵ | jim-p | 2015-06-05 | 1 | -76/+94 |
| | | | | output to individual text files and compress them into a .tgz for later download. | ||||
* | Fix CARP plugin call for packages, interface was coming through as NULL ↵ | jim-p | 2015-06-05 | 2 | -2/+2 |
| | | | | during CARP events. | ||||
* | Add INIT event for CARP as an alternate for 'backup', otherwise scripts ↵ | jim-p | 2015-06-05 | 1 | -0/+6 |
| | | | | would not take down services during a MASTER->INIT transition. | ||||
* | Also sanitize OpenVPN static/tls keys in status.php | jim-p | 2015-06-05 | 1 | -0/+2 |
| | |||||
* | Setup Wizard can result in invalid LAN DHCP pool calculation | Phil Davis | 2015-06-04 | 2 | -15/+48 |
| | | | | | | | | | | | | 1) consider where the LAN IP is in the subnet range and then put the DHCP pool in the biggest remaining segment, either above or below. 2) Check the size of the available segment. If it is reasonably big then leave some space at either end of the segment, like the old code was doing. Otherwise give all the space to the pool. 3) Do not allow subnet mask 32 - I can't think of a use case for LAN to have a /32 subnet mask, it kind of breaks the whole concept of LAN. 4) Provide more detailed separate messages if the user tries to use the network address or broadcast address as the LAN IP. | ||||
* | Improve setup wizard host name check | Phil Davis | 2015-06-04 | 1 | -2/+2 |
| | | | | | | Redmine #4712 It seems good enough to make the regex strings here be "reasonable". The full checks are done after pressing Next and the correct routines are called that do an exhaustive check. There seems not much point in trying to re-engineer all that here also. Odd things like "-hostname" and "hostname-" would be allowed through here but are caught by the full validation check. "." and "|" were being allowed in this regex - no idea why! | ||||
* | A number of things block waiting for file download timeouts, sometimes ↵ | Chris Buechler | 2015-06-03 | 1 | -2/+2 |
| | | | | multiple times across multiple files (many URL Table aliases, for instance). The long timeout causes very long boot times (10-20+ minutes) on many configs with pfblocker if booted disconnected from the Internet. This is strictly the timeout for the HTTP/HTTPS connection attempt. Once connected, it can run past that. 5 seconds should be more than enough for any properly-functioning network. Part of Ticket #4442. | ||||
* | device_type isn't used here | Chris Buechler | 2015-06-02 | 1 | -2/+2 |
| | |||||
* | Don't call growl if the configured address isn't an IP or resolvable | Chris Buechler | 2015-06-02 | 1 | -1/+1 |
| | | | | | hostname. Avoids 1 minute timeout delay in fsockopen in growl.class. Cuts that down to about a 20 second timeout. Ticket #4739 | ||||
* | trigger a reboot after restoration of full backup. Ticket #4107 | Chris Buechler | 2015-06-02 | 1 | -1/+2 |
| | |||||
* | Deprecate /usr/local/bin/3gstat | Renato Botelho | 2015-06-02 | 1 | -0/+1 |
| | |||||
* | Minor wizard text fixups | Phil Davis | 2015-06-02 | 5 | -11/+11 |
| | |||||
* | Supply current WAN gateway name to wizard | Phil Davis | 2015-06-02 | 1 | -1/+6 |
| | | | | | As the name of the WAN gateway is not always WANGW. Should fix redmine #4713 | ||||
* | Clarify DNS Forwarder and Resolver both apply in these places. partially ↵ | Chris Buechler | 2015-06-02 | 10 | -8/+8 |
| | | | | Ticket #3730 |