lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-13 16:14:40 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,891 Commits 1 Branch 0 Tags
Commit Graph

8891 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Franco Fichtner
e741b9e450 system: unify selectpicker width 2018-06-02 12:38:10 +00:00
Franco Fichtner
0124f1024e system: weekly/monthly settings for DH parameters #2431 
Also allow custom schedule.  Not sure if we should have a manual run
or delete.  Best way would be to use a file creation time magic between
our sample and maybe user file.
 2018-06-02 12:18:27 +00:00
Franco Fichtner
2092954409 pkg: fix plist 2018-06-02 12:09:28 +00:00
Franco Fichtner
0181d1ddd9 system: userid 0 has trouble with %s, loosely refs #2246 2018-06-02 11:24:57 +00:00
Franco Fichtner
118bedc5df system: disable root, but do not lock it; closes #2246 
Set password to unreachable "*" instead.  Our auth framework
already checks for disabled elsewhere.

While here inline two functions that are not used anywhere else.
 2018-06-02 11:24:58 +00:00
Ad Schellevis
01409ac623 work in progress for https://github.com/opnsense/core/issues/1858 add AliasContentField type which should eventually combine the different validations for the supported alias types. 2018-06-01 22:14:59 +02:00
Ad Schellevis
a72ea4616d Firewall/Util, missing static in isPort() 2018-06-01 22:05:51 +02:00
Franco Fichtner
ac1e8f17af system: move autocron item to plugin spots, loosely #2431 2018-06-01 17:06:01 +00:00
Franco Fichtner
115f30e8ef system: second part of #2431 2018-06-01 15:22:27 +00:00
Franco Fichtner
d840e9acad system: samplify dh-parameter files #2431 2018-06-01 16:58:34 +02:00
Ad Schellevis
2f247f2f85 pull https://github.com/jeromeetienne/jquery-qrcode/pull/43/files for jquery.qrcode.js 2018-05-31 08:31:29 +02:00
Franco Fichtner
aea5021912 system: style in gateway code 2018-05-30 07:32:39 +02:00
Ad Schellevis
0b6a41dc38 fix typo 2018-05-29 19:19:56 +02:00
Franco Fichtner
ef426e436e system: use uppercase gateway names for compat #2419 2018-05-29 17:03:45 +00:00
Ad Schellevis
230ac3fb4e rework previous, expand <a> to text 2018-05-29 14:42:03 +02:00
Ad Schellevis
d71abdf70b mvc, fix "clear all" for selectpicker types and moving it back to all multi selects 2018-05-29 14:13:31 +02:00
Ad Schellevis
90624a0810 replace some more tokenizers with selectpickers 2018-05-29 14:03:21 +02:00
Ad Schellevis
2282c3f24a MVC, add support for custom separators in select items in both the form fetch code and our standard templates, when specified in the form a data tag separator wil be added, which is used to render the results in getFormData(). 
In some cases it can be practical if something else then a comma can be used to split fields.

slightly related to https://github.com/opnsense/core/issues/1858.
 2018-05-29 11:47:38 +02:00
Franco Fichtner
635640ce4d rc: zfs tools are terrible for scripting 2018-05-28 09:10:20 +02:00
Franco Fichtner
3e94dd72e9 rc: zfs, zpool, confusion 2018-05-28 08:54:17 +02:00
Franco Fichtner
52d55ff5a3 rc: small tweaks 2018-05-28 08:40:57 +02:00
Franco Fichtner
426acedf52 rc: small tweak for clarity 2018-05-28 07:51:15 +02:00
Franco Fichtner
d893558687 rc: ZFS importer bits 
For now only trigger on an explicit "zpool" input, because
otherwise we have to load ZFS earlier to probe for a particular
pool.  There is no nice way to list all pools available for
input, at least not in a single, script friendly line per pool.

PR: https://github.com/opnsense/bsdinstaller/issues/12
 2018-05-28 07:47:22 +02:00
Franco Fichtner
8b73ce3072 system: HSTS option tweaks 2018-05-28 05:12:31 +00:00
Ad Schellevis
4e0ce9b193 webgui, opt-in for htst, for https://github.com/opnsense/core/issues/1722 2018-05-27 20:01:40 +02:00
Franco Fichtner
64c4a1fa19 openvpn: fix for fix #2422 2018-05-27 11:08:05 +00:00
Franco Fichtner
d210cbfb20 openvpn: improve validation #2422 
Since we now have TCP, UDP, TCP4, UDP4, TCP6 and UDP6 validation
is a bit more complicated than it used to.  The former assumptions
about TCP and UDP were wrong anyway, in OpenVPN this means IPv4
and IPv6, not just IPv4.
 2018-05-27 12:54:40 +02:00
Franco Fichtner
7d14f2d8ee rc: opnsense-recover is now known as opnsense-shell #1966 
Merge the purpose of these scripts now that we can execute other
commands using the shell menu trampoline.
 2018-05-27 12:14:04 +02:00
Ad Schellevis
26ee607a31 Traffic shaper, add enabled flag to rules, closes https://github.com/opnsense/core/issues/2426 2018-05-27 11:43:46 +02:00
Robin Schneider
3c73da4d46 Help debugging of Traffic Shaping by generating ipfw comments in rules (#2425) 
`ipfw show`:

```
60004  50573  69792852 queue 10000 ip from not 192.168.23.0/24 to any xmit lagg0_vlan2342 recv em0 // wan -> lan: down,75 weight
60005  29657   3088201 queue 10003 ip from any to not 192.168.23.0/24 recv lagg0_vlan2342 xmit em0 // lan -> wan: up,75 weight
```
 2018-05-27 11:12:46 +02:00
Franco Fichtner
ac50d3e203 rc: modify the shell even more 2018-05-26 22:28:09 +02:00
Franco Fichtner
15ec336b0f rc: parse '-c', it's passed to the shell by sudo 
The funny thing is su -m foobar -c "sh -c '$cmd'" could be as
short as su -m foobar -s /bin/sh -c "$cmd" but why bother selecting
a shell when you need to rely on a proper root shell to be set?
 2018-05-26 08:51:05 +00:00
Ad Schellevis
435859a418 missed a small spot for https://github.com/opnsense/core/issues/2348 , it doesn't make sense to remove a non existing file 2018-05-25 17:20:33 +02:00
Ad Schellevis
9d35f17198 openvpn, client specific overrides on --client-connect, it seems that OpenVPN passes the filename for the csc on client-connect in stead of using the default location, should fix https://github.com/opnsense/core/issues/2348 2018-05-25 17:17:16 +02:00
Ad Schellevis
66fb7d64b7 NetworkField add AddressFamily option (ipv4, ipv6 or empty) 2018-05-25 15:34:30 +02:00
Franco Fichtner
e35ba6aad8 auth: deconstruct password to pass it to checks; closes #2390 2018-05-25 12:52:00 +00:00
Franco Fichtner
fcd4ed3883 auth: typo and doc 2018-05-25 10:02:27 +02:00
Franco Fichtner
ecc15a7680 src: undo change to edge case in Local TOTP #2390 
TOTP modifies password, we can't use verbatim length checks.

Spotted by: @adschellevis
 2018-05-25 09:49:31 +02:00
Franco Fichtner
77ed8e6906 interfaces: yes, we need this for now 2018-05-25 09:48:54 +02:00
Ad Schellevis
961875d7cd lighttpd / harden ciphers, align to https://mozilla.github.io/server-side-tls/ssl-config-generator/?server=lighttpd-1.4.37&openssl=1.0.1e&hsts=yes&profile=modern closes https://github.com/opnsense/core/issues/1722 2018-05-25 09:40:39 +02:00
Franco Fichtner
de7e37aa17 interfaces: trust the GUI to do its job 
There is still a weird interaction between this code and
get_real_interface as they both react to dhcp6usev4iface,
but now this is more obvious and could help with refactors
later on.

The upside is that we do not have to adjust this for another
IPv6 type that will gain IPv4 latch capability in the future.
 2018-05-25 07:58:36 +02:00
Franco Fichtner
62631e9bf5 src: whitespace sweep 2018-05-25 07:19:48 +02:00
Franco Fichtner
64e2c610cc system: local security policy tweaks; closes #2390 2018-05-24 20:10:36 +00:00
Franco Fichtner
aa4da63f95 interfaces: add remote-safe reload; closes #1642 
Demote the current actions to non-primary actions as they
are local and selective.
 2018-05-24 19:50:21 +00:00
Franco Fichtner
af38260b84 interfaces: put these back for now 2018-05-24 21:29:59 +02:00
Franco Fichtner
727f521940 interfaces: since a while dhcp6usev4iface works on stativ6 and slaac 2018-05-24 19:03:37 +00:00
Max Orelus
d1f2ca8649 dynamic urls regardless if you have a trailing slash or not (#2420) 2018-05-24 07:59:44 +02:00
Franco Fichtner
076eb9ffe9 wizard: add element IDs for javascript; closes #2186 2018-05-23 20:16:46 +00:00
Max Orelus
7ec0841294 feature: Top level menu item link pivots + security improvements (#2417) 
* feature: Top level menu item link pivots + improved security posture for external links
* updated legacy code security posture for external links
* Added parent level menu item pivot feature enhancement to legacy code
 2018-05-22 17:49:43 +02:00
Franco Fichtner
e4370ef46a interfaces: partially revert rework, looking for regression 2018-05-22 09:57:36 +00:00