Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Enable tcpmssfix option to mpd on pppoe case which allows things like Msn ↵ | Ermal Luçi | 2008-08-14 | 1 | -0/+1 |
| | | | | Messenger or site like msn.com to behave correctly otherwise communication problems arise. | ||||
* | Bring the bridge checks up to date with the bridge changes. | Ermal Luçi | 2008-08-13 | 1 | -6/+8 |
| | |||||
* | Remove duplicate function portal_mac_fixed() | Scott Ullrich | 2008-08-12 | 1 | -18/+18 |
| | |||||
* | Simplify mod_expire statement | Scott Ullrich | 2008-08-12 | 1 | -6/+1 |
| | |||||
* | Do a better job of re-assigning admin privileges when the password reset | Matthew Grooms | 2008-08-11 | 1 | -2/+3 |
| | | | | menu option is used. Reported by Scott and Chris. | ||||
* | Implement a certificate authority and certificate webui that can be used | Matthew Grooms | 2008-08-09 | 3 | -5/+236 |
| | | | | | | | | | | | | | | | | | | | | | to centrally manage this data. There are no consumers at this time. This interface allow for the following ... Certificate Authority Manager: - List certificates authorities - Import existing certificate authority - Create internal certificate authority Certificate Manager: - List certificates - Import existing certificate - Create internal certificate using an internal CA - Generate certificate signing request for external CAs - Process certificate signing response from external CAs Certificate revocation is not currently implemented. The user system will also be extended to allow for user specific certificate management in a follow-up commit. | ||||
* | fix typo: http://forum.pfsense.org/index.php/topic,10847.0.html | Martin Fuchs | 2008-08-08 | 1 | -1/+1 |
| | |||||
* | Now that we have given the mhash extension a bit of time to settle into | Matthew Grooms | 2008-08-06 | 1 | -6/+5 |
| | | | | the tree, enable nthash password generation. | ||||
* | Adding php5-openssl | Scott Ullrich | 2008-08-06 | 1 | -0/+1 |
| | |||||
* | If anybody needs plip(4) notify me! | Ermal Luçi | 2008-08-05 | 1 | -1/+2 |
| | |||||
* | This check is needed to prevent php oddities with arrays and strange ↵ | Ermal Luçi | 2008-08-05 | 1 | -0/+2 |
| | | | | behaviour of count and empty! As commit fixes errors with not configured openvpn. | ||||
* | Try to do better sanity checks. | Ermal Luçi | 2008-08-05 | 1 | -5/+7 |
| | |||||
* | Rename the bridge knob to bridged so that the upgrade code works correctly ↵ | Ermal Luçi | 2008-08-05 | 3 | -5/+5 |
| | | | | and we play by the rules of the parser. | ||||
* | Silence warnings generated by pw during configuration update. Requested by | Matthew Grooms | 2008-08-05 | 2 | -10/+15 |
| | | | | Scott. | ||||
* | Update latest config! | Ermal Luçi | 2008-08-05 | 1 | -1/+1 |
| | |||||
* | Try to overcome php smartiness with floating point numbers. | Ermal Luçi | 2008-08-05 | 1 | -4/+4 |
| | |||||
* | Ooops, remove leftover debug code | Bill Marquette | 2008-08-05 | 1 | -1/+0 |
| | |||||
* | oh how I hate thee php array | Bill Marquette | 2008-08-05 | 1 | -1/+1 |
| | |||||
* | Record that we are on a new config format. | Ermal Luçi | 2008-08-05 | 1 | -0/+1 |
| | |||||
* | Try to convert old bridges config to the new format. | Ermal Luçi | 2008-08-05 | 1 | -3/+22 |
| | |||||
* | Remove code for creating old way bridges. Anything has to be done through ↵ | Ermal Luçi | 2008-08-05 | 1 | -163/+1 |
| | | | | the new bridging code. Sorry not upgradable! | ||||
* | Remove old way bridge knobs too on the config. Anything has to be done ↵ | Ermal Luçi | 2008-08-05 | 1 | -0/+6 |
| | | | | through the new bridging code. | ||||
* | Upgrade older configs to the new way of bridging. | Ermal Luçi | 2008-08-05 | 1 | -0/+15 |
| | |||||
* | No need for the 'filtering bridge' option with if_bridge(4). | Ermal Luçi | 2008-08-05 | 2 | -16/+0 |
| | |||||
* | Remove linking bridges with aliases this is dangerous and gives incorrect ↵ | Ermal Luçi | 2008-08-05 | 1 | -2/+0 |
| | | | | | | behaviour on filter rules. Spotted-by: cmb@ | ||||
* | Bring in new server load balancing code, this introduces: | Bill Marquette | 2008-08-05 | 2 | -8/+121 |
| | | | | | | * The ability to create your own monitors (tcp, http, https, send/expect) * A new way of displaying 'standard tables' - MainTable class * monitor_type array type | ||||
* | Add an interface to manage external authentication servers. The two types | Matthew Grooms | 2008-08-05 | 1 | -1/+1 |
| | | | | supported currently are LDAP and Radius. | ||||
* | Fix openvpn upgrade code. | Ermal Luçi | 2008-08-04 | 1 | -19/+24 |
| | |||||
* | Implement OpenDNS and fixup some indent. | Ermal Luçi | 2008-08-04 | 1 | -10/+51 |
| | |||||
* | Cleanup authentication code. The basic auth method, the passwd, htpasswd | Matthew Grooms | 2008-08-03 | 10 | -450/+290 |
| | | | | | | | | | | | | | and pam backing functions have been removed. The basic auth method was legacy code and the backing functions were redundant with no added value that I could see. A simplified replacement backing function named local_backed has been added that authenticates to the local configuration info which should be identical to system pwdb credentials. Since the htpassword file is no longer required, sync_webgui_passwords and its wrapper function system_password_configure have been removed. The local account management functions were renamed for consistency. A few minor bugs related to setting local passwords have also been corrected. | ||||
* | Remove the vpn_endpoint_determine function. It did not work properly when | Matthew Grooms | 2008-08-02 | 3 | -38/+9 |
| | | | | CARP devices were in use. Use the newer ipsec_get_phase1_src instead. | ||||
* | Add an option to set_local_group to clear the system user member list. | Matthew Grooms | 2008-08-01 | 1 | -3/+3 |
| | |||||
* | When performing a user configuration upgrade, make sure the all group gets | Matthew Grooms | 2008-08-01 | 1 | -0/+13 |
| | | | | created before syncing accounts to the system. | ||||
* | Do not generate antispoof for virtual interfaces. | Ermal Luçi | 2008-08-01 | 1 | -2/+3 |
| | |||||
* | Correct a regression that caused non NAT-T IPsec tunnel communications to | Matthew Grooms | 2008-08-01 | 1 | -22/+26 |
| | | | | fail. | ||||
* | Rewrite the pfsense privilege system with the following goals in mind ... | Matthew Grooms | 2008-08-01 | 8 | -201/+1637 |
| | | | | | | | | 1) Redefine page privileges to not use static urls 2) Accurate generation of privilege definitions from source 3) Merging the user and group privileges into a single set 4) Allow any privilege to be added to users or groups w/ inheritance 5) Cleaning up the related WebUI pages | ||||
* | Do not backup /var/empty | Scott Ullrich | 2008-07-31 | 1 | -1/+1 |
| | |||||
* | Unlink files when restoring. | Scott Ullrich | 2008-07-31 | 1 | -1/+1 |
| | |||||
* | Break out text to new line, pause for 5 seconds after showing backup size. | Scott Ullrich | 2008-07-31 | 1 | -3/+4 |
| | |||||
* | Report backup size after completion. | Scott Ullrich | 2008-07-31 | 1 | -2/+4 |
| | |||||
* | Add line break to make the text look tidy. | Scott Ullrich | 2008-07-31 | 1 | -1/+3 |
| | |||||
* | Alert user we are restarting lighty and friends in 5 seconds. | Scott Ullrich | 2008-07-31 | 1 | -3/+4 |
| | |||||
* | Launch helper script in background to relaunch lighty and friends. | Scott Ullrich | 2008-07-31 | 1 | -2/+7 |
| | |||||
* | Output echos in the correct order. | Scott Ullrich | 2008-07-31 | 1 | -8/+6 |
| | |||||
* | Output more details during restart operations | Scott Ullrich | 2008-07-31 | 1 | -2/+4 |
| | |||||
* | Spell exclude correctly | Scott Ullrich | 2008-07-31 | 1 | -1/+1 |
| | |||||
* | * Ignore /var/run during backups | Scott Ullrich | 2008-07-31 | 1 | -4/+2 |
| | | | | * Exec restart commands in background | ||||
* | Remove ermals testing branch. These changes have been merged. | Scott Ullrich | 2008-07-31 | 1 | -1/+1 |
| | |||||
* | * Backup prior configuration before syncing. Tired of blowing up my | Scott Ullrich | 2008-07-31 | 1 | -17/+41 |
| | | | | | | | | | firewall and having to spend hours to get back online. This is not exactly productive. * Add a RESTORE option as a branch if we detect a previous CVSSYNC. With these changes it should be easy as pie to revert to the last known good working state. | ||||
* | Update list of hardware that supports vlan natively. | Ermal Luçi | 2008-07-31 | 1 | -1/+1 |
| |