summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Encoding in vpn_ipsec_settings.phpjim-p2015-06-161-1/+1
|
* More encodingjim-p2015-06-161-2/+2
|
* Fix some low-hanging potential security issues.jim-p2015-06-163-8/+8
|
* Be more careful with encoding on pages that use single quotes around HTML ↵jim-p2015-06-162-5/+5
| | | | attributes
* Additional encoding for system_advanced_misc.phpjim-p2015-06-161-7/+7
|
* Protect single quotes as well to prevent JS injection, due to the way this ↵jim-p2015-06-161-10/+10
| | | | page uses single quotes for attributes.
* Encode parameters in system_advanced_firewall.php before displaying back to ↵jim-p2015-06-161-5/+5
| | | | the user.
* Keep a copy of old mtree binary during upgrade and use it to avoid crashing. ↵Renato Botelho2015-06-162-2/+8
| | | | Fixes #4563
* Check also for old FreeBSD release versionsRenato Botelho2015-06-161-1/+1
|
* Merge manullay pull/1722Ermal LUÇI2015-06-151-1/+1
|
* Remove the GUI for the pc-sysinstaller as well and add it to obsoletee filesErmal LUÇI2015-06-153-1218/+3
|
* Remove pc-sysinstall since it was never finished and probably will be not ↵Ermal LUÇI2015-06-1582-10305/+0
| | | | the choice. If needed can be resurrected. It already is in obsoleted files
* status_queues missing semi-colonPhil Davis2015-06-151-1/+1
| | | | This really looks like it should have a semi-colon. Somehow the PHP interpreter is not being fussy about it in this context, I guess being followed by the "endif;" keyword the interpreter guesses the previous statement must be done.
* Ticket #4655 well manually merge pull/1715. Thanks: PhilErmal LUÇI2015-06-151-3/+9
|
* add input validation for proxy URL, port, user.Chris Buechler2015-06-141-1/+13
|
* Ok another round of this which unbreaks input error validation messagesErmal LUÇI2015-06-131-3/+6
|
* Make this right finally :). Thanks-ti: Phil-davisErmal LUÇI2015-06-121-3/+2
|
* Add hostid script in the source to solve the issue with platforms that do ↵Ermal LUÇI2015-06-121-0/+137
| | | | not have proper uuid or duplicate uuid which breaks carp/pfsync and other things in HA setup.
* Activate the redirection that for some reason got disabledErmal LUÇI2015-06-121-2/+2
|
* Ticket #4655 Do not behave against the logic of checkbox and description.Ermal LUÇI2015-06-111-2/+3
|
* fix checking for overlaps of NAT destination portbruno2015-06-111-2/+2
|
* Make the host uuid opt-outErmal LUÇI2015-06-113-4/+28
|
* Revert "Ticket #4442 Do not process URL aliases during bootup but trigger it ↵Chris Buechler2015-06-102-4/+3
| | | | | | just after finished booting. This completely solves the bootup delays without lowering the timeout as before. Probably need to increase a bit the timeouts now to be friendly to other connections" This reverts commit 0d44aca64623da5a3eeef0619704a10b3cfda7a5.
* Send the machine uuid with the headers requesting the version fileErmal LUÇI2015-06-101-2/+2
|
* Send the host uuid with the request for packageErmal LUÇI2015-06-101-0/+1
|
* Fixes #4537 On 32bit platform do not enable direct dispatch on IPsec since ↵Ermal LUÇI2015-06-101-0/+3
| | | | it crashes the system
* Activate sync for the root slice in fstab during upgrade. Ticket #4523jim-p2015-06-101-0/+6
|
* No need to do the same exercise twice.Ermal LUÇI2015-06-091-6/+0
|
* Do not disable APc hereErmal LUÇI2015-06-091-3/+0
|
* Restore the file system in R/W mode during most of rc script seems required ↵Ermal LUÇI2015-06-091-0/+15
| | | | on nano. Should unbreak nanobsd
* Add a space to the script to avoid that appended parameters seem the same as ↵Ermal LUÇI2015-06-091-1/+1
| | | | existing one
* Use skel as the source of new user files rather than copying from root.jim-p2015-06-085-1/+28
| | | | Reported-By: https://twitter.com/fitchitis/status/607850849172373504
* Ticket #4442 Do not process URL aliases during bootup but trigger it just ↵Ermal LUÇI2015-06-072-3/+4
| | | | after finished booting. This completely solves the bootup delays without lowering the timeout as before. Probably need to increase a bit the timeouts now to be friendly to other connections
* Fixes #4651 use proper var name on global to have the correct id put on the ruleErmal LUÇI2015-06-071-1/+1
|
* Re-generate broken .mo files, it fixes #4705Renato Botelho2015-06-072-0/+0
|
* Remove duplicate messageRenato Botelho2015-06-071-4/+0
|
* Clean up, organize, and expand the info presented by status.php. Save the ↵jim-p2015-06-051-76/+94
| | | | output to individual text files and compress them into a .tgz for later download.
* Fix CARP plugin call for packages, interface was coming through as NULL ↵jim-p2015-06-052-2/+2
| | | | during CARP events.
* Add INIT event for CARP as an alternate for 'backup', otherwise scripts ↵jim-p2015-06-051-0/+6
| | | | would not take down services during a MASTER->INIT transition.
* Also sanitize OpenVPN static/tls keys in status.phpjim-p2015-06-051-0/+2
|
* Setup Wizard can result in invalid LAN DHCP pool calculationPhil Davis2015-06-042-15/+48
| | | | | | | | | | | | 1) consider where the LAN IP is in the subnet range and then put the DHCP pool in the biggest remaining segment, either above or below. 2) Check the size of the available segment. If it is reasonably big then leave some space at either end of the segment, like the old code was doing. Otherwise give all the space to the pool. 3) Do not allow subnet mask 32 - I can't think of a use case for LAN to have a /32 subnet mask, it kind of breaks the whole concept of LAN. 4) Provide more detailed separate messages if the user tries to use the network address or broadcast address as the LAN IP.
* Improve setup wizard host name checkPhil Davis2015-06-041-2/+2
| | | | | | Redmine #4712 It seems good enough to make the regex strings here be "reasonable". The full checks are done after pressing Next and the correct routines are called that do an exhaustive check. There seems not much point in trying to re-engineer all that here also. Odd things like "-hostname" and "hostname-" would be allowed through here but are caught by the full validation check. "." and "|" were being allowed in this regex - no idea why!
* A number of things block waiting for file download timeouts, sometimes ↵Chris Buechler2015-06-031-2/+2
| | | | multiple times across multiple files (many URL Table aliases, for instance). The long timeout causes very long boot times (10-20+ minutes) on many configs with pfblocker if booted disconnected from the Internet. This is strictly the timeout for the HTTP/HTTPS connection attempt. Once connected, it can run past that. 5 seconds should be more than enough for any properly-functioning network. Part of Ticket #4442.
* device_type isn't used hereChris Buechler2015-06-021-2/+2
|
* Don't call growl if the configured address isn't an IP or resolvableChris Buechler2015-06-021-1/+1
| | | | | hostname. Avoids 1 minute timeout delay in fsockopen in growl.class. Cuts that down to about a 20 second timeout. Ticket #4739
* trigger a reboot after restoration of full backup. Ticket #4107Chris Buechler2015-06-021-1/+2
|
* Deprecate /usr/local/bin/3gstatRenato Botelho2015-06-021-0/+1
|
* Minor wizard text fixupsPhil Davis2015-06-025-11/+11
|
* Supply current WAN gateway name to wizardPhil Davis2015-06-021-1/+6
| | | | | As the name of the WAN gateway is not always WANGW. Should fix redmine #4713
* Clarify DNS Forwarder and Resolver both apply in these places. partially ↵Chris Buechler2015-06-0210-8/+8
| | | | Ticket #3730
OpenPOWER on IntegriCloud