summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* | | | | Merge pull request #3001 from NewEraCracker/patch-pppoe-mpdStephen Beaver2016-06-221-2/+3
|\ \ \ \ \
| * | | | | Fix bad escapeshellarg logic on mpd executionNewEraCracker2016-06-151-2/+3
| |/ / / / | | | | | | | | | | | | | | | With this change single-quotes are applied in correct places
* | | | | Merge pull request #2989 from phil-davis/patch-2Stephen Beaver2016-06-221-16/+43
|\ \ \ \ \
| * | | | | Do not allow deleting your own user namePhil Davis2016-06-051-16/+43
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently if you delete your own user name, then the config ends up with a blank user tag in it. Rather than fix that up, it seems dangerous to be able to delete yourself anyway, because if you are the last user with admin privs for which you know the password (i.e. if you have not recorded the password for "admin" somewhere), then you can lock yourself out. That would require console access to fix, which for some people is a pain. It seems reasonable to me to make the person login as some other user with admin privs to delete "themselves". Bit of boots and braces done here: 1) Don't show the trash bin icon for "yourself", and also disable the delete_check checkbox. So you can't opt to delete yourself from the ordinary front-end GUI. 2) Enhance the back-end validation to prevent deleting yourself, just in case someone mucks about in the front-end code. 3) Put error messages to tell people when something is not deleted, and why. 4) In the success message for multi-deletion, tell which user names have actually been deleted.
* | | | | | Merge pull request #2988 from stilez/patch-28Stephen Beaver2016-06-222-27/+18
|\ \ \ \ \ \
| * | | | | | missing "("stilez2016-05-311-1/+1
| | | | | | |
| * | | | | | optional arg for old behaviourstilez2016-05-311-3/+4
| | | | | | |
| * | | | | | function name hms -> dhms stilez2016-05-311-5/+5
| | | | | | | | | | | | | | | | | | | | | to match edit to util.inc
| * | | | | | Simplify convert_seconds_to_hms() and show days for large numbers of hoursstilez2016-05-311-22/+12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 1) Function can be simplified and all "if" statements removed, using intdiv (or casting result as int for PHP < 7) and % for calcs and sprintf for padding. 2) Input validity check before trying to convert format 3) If time represented is large (eg uptime might be several months) then hours becomes unhelpful, it's clearer to show "4921:02:06" as "205d 01:02:06". (Leading "days" value not shown unless >=1 for simplicity)
* | | | | | | Merge pull request #2987 from stilez/patch-27Stephen Beaver2016-06-221-0/+25
|\ \ \ \ \ \ \
| * | | | | | | Add "delete entry" for ARP tablestilez2016-05-311-0/+25
| |/ / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Useful function in some circumstances - seems no reason not to have it. Uses IP rather than hostname since not all ARP entries have hostnames. Probably should also have "delete all" but not done that.
* | | | | | | Merge pull request #2986 from NewEraCracker/patch-ntp-gpsStephen Beaver2016-06-222-2/+2
|\ \ \ \ \ \ \
| * | | | | | | Fix NTP PPS. It had 'None' option available on 2.2.x.NewEraCracker2016-06-151-1/+1
| | | | | | | |
| * | | | | | | Fix "Unable to remove NTP GPS from configuration"NewEraCracker2016-06-151-1/+1
| | |_|/ / / / | |/| | | | | | | | | | | | | | | | | | | https://forum.pfsense.org/index.php?topic=112771.msg627573
* | | | | | | Merge pull request #2982 from stilez/patch-26Stephen Beaver2016-06-223-17/+12
|\ \ \ \ \ \ \
| * | | | | | | redundant check - is_numericint() tests for >= 0stilez2016-05-241-1/+1
| | | | | | | |
| * | | | | | | Use global backup count instead of hardcoded value and remove redundant functionstilez2016-05-241-12/+1
| | | | | | | |
| * | | | | | | fix logic and replace hard coded value by globalstilez2016-05-241-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | backups should be a numeric int. text hint for number of backups can now refer to the global value for this platform (and explains how to get that default, by leaving blank)
| * | | | | | | set default_config_backup_count based on platformstilez2016-05-241-2/+8
| | | | | | | | | | | | | | | | | | | | | | | | At the same time the platform is being detected for PHP/GUI purposes, set the default number of backups. Also handle the case where (for any reason) detection fails, which it shouldn't, so the variables are still created
| * | | | | | | Give settings section a more helpful/standard title to match other GUI ↵stilez2016-05-241-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | settings tabs
* | | | | | | | Merge pull request #2942 from stilez/patch-22Stephen Beaver2016-06-222-2/+23
|\ \ \ \ \ \ \ \
| * | | | | | | | Self correcting - poor englishstilez2016-05-081-1/+1
| | | | | | | | |
| * | | | | | | | Accuracystilez2016-05-081-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | Large keys are not "slower to use" in many cases, since they are only used to validate or set up a session. An ongoing session usually transfers to a symmetric algorithm once established, and the user won't notice the short extra delay in session startup.
| * | | | | | | | missed a comment I added and shouldn't have - removedstilez2016-05-081-1/+1
| | | | | | | | |
| * | | | | | | | Update OpenVPN Wizard to include missing key sizesstilez2016-05-081-2/+22
| | | | | | | | | | | | | | | | | | | | | | | | | | | ...and add some useful info to guide the user.
| * | | | | | | | Add missing recommended key lengths to OpenVPN optionsstilez2016-05-081-1/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add key lengths to the OpenVPN options, for asymmetric keys of size 3072 (for current use), 7680, 15360 (for long term resistance), 8192 and 16384 (common binary exponents). These are both supported by OpenVPN anyhow, and for certain uses are currently recommended (eg long term resistance to replay/decryption). See keylength.com for citations. This PR would only affect OpenVPN, and OpenVPN supports these key sizes, so should not cause any issue.
* | | | | | | | | Merge pull request #2935 from cfazendin/hostname_menuStephen Beaver2016-06-222-10/+34
|\ \ \ \ \ \ \ \ \
| * | | | | | | | | Added option to System > General Setup > webConfigurator to change the title ↵Christopher Fazendin2016-05-052-10/+34
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | of the Help menu in the navbar to either the system hostname or fqdn.
* | | | | | | | | | Merge pull request #2906 from Chrisc-c-c/Fix-QinQ-InterfacesStephen Beaver2016-06-222-12/+12
|\ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | Make QinQ interfaces work againChris Rowe2016-04-242-12/+12
| | | | | | | | | | |
* | | | | | | | | | | Allow IGMP Proxy logging verbosity to be selected via system log settings ↵Stephen Beaver2016-06-222-1/+17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | (PR 2901)
* | | | | | | | | | | Merge pull request #2891 from gottaloveit/dns-overrides-privsStephen Beaver2016-06-225-3/+323
|\ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | adding privileges and separating DNS Resolver overrides from general settingsJoe2016-04-205-3/+323
| | | | | | | | | | | |
* | | | | | | | | | | | Merge pull request #2783 from jlduran/harden-sshd_configStephen Beaver2016-06-221-17/+20
|\ \ \ \ \ \ \ \ \ \ \ \
| * | | | | | | | | | | | Force 4096 RSA keysJose Luis Duran2016-04-161-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add option `-b 4096` to force the keys to 4096-bit. This parameter is ignored for Ed25519 keys.
| * | | | | | | | | | | | Harden sshd_configJose Luis Duran2016-04-161-16/+19
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The changes are better explained in the following article: https://stribika.github.io/2015/01/04/secure-secure-shell.html
* | | | | | | | | | | | | Fixed #6504 by making table sortableStephen Beaver2016-06-221-1/+1
| | | | | | | | | | | | |
* | | | | | | | | | | | | jQuery datepicker added to interfaces.php and interfaces_ppps_edit.php for ↵Stephen Beaver2016-06-222-1/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | setting custom expirey date
* | | | | | | | | | | | | Fixed #6516 by replacing HTML5 datepicker with jQuery widgetStephen Beaver2016-06-221-0/+1
| | | | | | | | | | | | |
* | | | | | | | | | | | | fix rowhelper select_source empty comboMarcello Coutinho2016-06-211-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | while using $config['installedpackage']{['...'] as source
* | | | | | | | | | | | | add htop to poudriere_bulkChris Buechler2016-06-211-0/+1
| | | | | | | | | | | | |
* | | | | | | | | | | | | Only call interfaces_vips_configure once if it's needed, rather than doing ↵Chris Buechler2016-06-211-1/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | the same thing over and over for every VIP on an interface. Ticket #6515
* | | | | | | | | | | | | update d3.jsJared Dillard2016-06-211-5/+5
| | | | | | | | | | | | |
* | | | | | | | | | | | | update nvd3 filesJared Dillard2016-06-212-556/+1141
| | | | | | | | | | | | |
* | | | | | | | | | | | | Fix styleChris Buechler2016-06-211-3/+5
| | | | | | | | | | | | |
* | | | | | | | | | | | | require_once auth.inc in vpn.inc since it uses functions from there, though ↵Chris Buechler2016-06-211-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | normal use of the system won't require that, those who run certain things manually/custom may require it
* | | | | | | | | | | | | Fixed #6514 by requiring string starts with letter ot underscoreStephen Beaver2016-06-211-1/+1
| | | | | | | | | | | | |
* | | | | | | | | | | | | Only omit aggressive line from ipsec.conf where IKEv2. Ticket #6513Chris Buechler2016-06-211-1/+1
| | | | | | | | | | | | |
* | | | | | | | | | | | | Fixed #6498 by providing new address type argument to Form_IpAddress(). In ↵Stephen Beaver2016-06-212-5/+19
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | this case it is specified as "V6". (cherry picked from commit 3e4adb7139b4cddbb06a2aba7e0727d1762b35ee)
* | | | | | | | | | | | | Create openssl.cnf symlink during bootRenato Botelho2016-06-212-1/+3
| | | | | | | | | | | | |
OpenPOWER on IntegriCloud