lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-16 09:34:39 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,789 Commits 1 Branch 0 Tags
Commit Graph

1596 Commits

Author SHA1 Message Date
Ad Schellevis
bd5f92be5b (ids) UI load grid on tab open 2015-07-01 13:59:59 +02:00
Ad Schellevis
14d1ccf1cb (ids) ruleset download definition, add ET open rules 2015-07-01 11:47:29 +02:00
Ad Schellevis
a0faa39abf (ids) add classification and reference configs to template 2015-07-01 11:46:38 +02:00
Franco Fichtner
7be9871fa6 widgets: ipsec warnings; fixes #154 2015-07-01 11:25:39 +02:00
Franco Fichtner
50613a4936 sysctl: lower the syncer(4) timeouts for data flushes 
o Retain the timeout priorities while cutting the timeouts to
  10% of what they were before (30s).
o Metadata is always flused by default, but change timeout to
  match the others anyway.
o Reorder the sysctl list for convenience white at it.
 2015-07-01 11:25:39 +02:00
Ad Schellevis
40619e407c (ids) ui bits and pieces for rule file selection and manual download 2015-07-01 11:13:51 +02:00
Ad Schellevis
15ea481665 (ids) add local modification time and correct sort order when listing installable rule files 2015-07-01 11:13:09 +02:00
Ad Schellevis
c9aba7a623 (ids) add update rules action to API 2015-07-01 11:12:39 +02:00
Ad Schellevis
303319e8e5 (ids) show local rule file modification time in listInstallableRulesets 2015-07-01 11:11:52 +02:00
Ad Schellevis
9f2d34e707 (ids) refactor static paths into single definition 2015-07-01 11:11:11 +02:00
Franco Fichtner
f45171e785 rc: add a safety sync after the recovery stage to avoid a vicious cycle 
The current fix now works as expected and always brings back the
console login after an unclean shutdown, which was previously not
happening.  A small quirk, however, is that while the base system
recovers, the OPNsense backend on top may not fully recover directly
after the unclean shutdown.  In those instances, a manual reboot
will bring back the fully operational system and its services.

The unclean shutdown dilemma is, however, an unavoidable occurrence
and any kernel panic or power failure can corrupt the file system
into an unrecoverable state.  Having snapshots or backups at hand is
a good habit to get into, which can also 'fix' the eventual breakdown
of a physical disk.

Discussed with: ad@ jos@
Tested by: jos@
 2015-07-01 11:04:39 +02:00
Ad Schellevis
9b5834541e (ids) make sure the update process can only run once 2015-07-01 10:11:23 +02:00
Ad Schellevis
9908a1588d (ids) add configd update action 2015-07-01 07:52:47 +00:00
Ad Schellevis
f61cb3079d (ids) whitespace 2015-07-01 09:45:42 +02:00
Ad Schellevis
c6a6cb88f9 (ids) enable live rule swap 2015-07-01 09:32:09 +02:00
Ad Schellevis
c773099182 (ids) extend configd template for fileid selection 2015-06-30 19:56:17 +00:00
Ad Schellevis
4caca4c05c (ids) add configd action list alertlogs 2015-06-30 19:52:14 +00:00
Ad Schellevis
e8d67e8ffd (ids) add configuration template for rule download tool 2015-06-30 21:47:06 +02:00
Ad Schellevis
834a23d086 (ids) add ruleset to model and ui 2015-06-30 21:35:45 +02:00
Ad Schellevis
410493eb4b (traffic shaper) toggle api to support direct enable/disable 2015-06-30 21:32:05 +02:00
Franco Fichtner
7baccb7c42 rc: pimp recovery stage 
o pwd_mkdb(8)'s `-p' likely only cares about /etc/passwd
o Regenerate for each phase, pkg(8) seems to like that
o Also restore a clobbered /etc/shells including our root shell
 2015-06-30 21:18:33 +02:00
Ad Schellevis
c506c9f31d (ids) rename action to list installable rulesets 2015-06-30 20:51:52 +02:00
Ad Schellevis
861955b6e1 (ids) add list installablerules configd action 2015-06-30 20:25:01 +02:00
Ad Schellevis
409dd5f10a (ids) work in progress rule file download 2015-06-30 20:21:20 +02:00
Ad Schellevis
67e2e3e2a5 (ids) rename configd query rules action 2015-06-30 17:52:47 +02:00
Ad Schellevis
e4f04663ee (ids) refactor query rules script 2015-06-30 17:21:28 +02:00
Jos Schellevis
ab6330f05f (proxy) update examples of regular expressions for black and whitelist 2015-06-30 16:54:33 +02:00
Ad Schellevis
88758895d1 (proxy) fix regexp check 2015-06-30 16:11:30 +02:00
Jos Schellevis
3df396e9b7 (proxy) fix typo 2015-06-30 16:01:53 +02:00
Jos Schellevis
731ae4cb3d (proxy) small changes to regex handling for black and whitelists 2015-06-30 15:46:12 +02:00
Franco Fichtner
bdef86913a system: move template generation to a place that allows... 
runtime regeneration.  Not pretty, but better than triggering it
only once on bootup.  More clog -> newsyslog migration to be done
soon.

Discussed with: ad@
 2015-06-30 15:05:21 +02:00
Franco Fichtner
cdb3fe97db src: whitespace police 2015-06-30 14:58:13 +02:00
Ad Schellevis
5b4185f234 (ids) implement log file selection 2015-06-30 14:45:56 +02:00
Jos Schellevis
3803c3de63 (proxy) disable squids logfile rotate by default to use system rotate 2015-06-30 14:31:50 +02:00
Ad Schellevis
8c7cdbe664 (proxy) fix log rotate 2015-06-30 12:26:33 +00:00
Ad Schellevis
dd873e4d60 (proxy) implement log rotate using standards 2015-06-30 14:17:17 +02:00
Jos Schellevis
70a0edbe42 (proxy) add logrote configctl option, usable in cron 2015-06-30 14:05:52 +02:00
Ad Schellevis
07b037754f (ids) add origin log file to query result for better traceability 2015-06-30 12:04:24 +02:00
Ad Schellevis
5e4d430d94 (ids) add list available alert logs to script base 2015-06-30 11:58:18 +02:00
Ad Schellevis
b1acd50e6a (ids) add logfile number selection to query script 2015-06-30 11:57:45 +02:00
Ad Schellevis
f4253772ec (base) add newsyslog config generation to bootup sequence 2015-06-30 09:26:12 +00:00
Ad Schellevis
d54ae08928 (ids) template additions 2015-06-30 09:25:17 +00:00
Ad Schellevis
79d01d712b (ids) add suricata base log to rotate 2015-06-30 11:14:51 +02:00
Ad Schellevis
128756bd1c (ids) add log rotate 2015-06-30 11:10:27 +02:00
Jos Schellevis
354b0f68de (proxy) Add default interface lan 2015-06-30 10:27:22 +02:00
Franco Fichtner
8cfd1e6508 system: tweak SSH behaviour and settings names 
o Sharpen the text for permitting root login and password.
o Migration kills the default of not permitting passwords.
 2015-06-30 10:27:18 +02:00
Franco Fichtner
38235b79b1 diagnostics: NDP table improvement for #225 2015-06-30 10:27:18 +02:00
Franco Fichtner
cc7180222d rc: hook up recover script on bootup 
Must move the git mount up to test this properly.
 2015-06-30 10:27:18 +02:00
Ad Schellevis
f4ddcaee44 (base) syslog place end of line marker 2015-06-30 08:22:32 +00:00
Ad Schellevis
4251869c1e (base) add newsyslogd base configuration 2015-06-30 10:09:36 +02:00