lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-20 11:26:13 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,684 Commits 1 Branch 0 Tags
Commit Graph

488 Commits

Author SHA1 Message Date
Ad Schellevis
f43a5c8c58 IDS/IPS rules, add support for version checks, closes https://github.com/opnsense/core/issues/2377 2018-05-01 20:07:27 +02:00
Franco Fichtner
628c12ed07 firmware: small follow-up to catch all errors 2018-04-29 12:30:00 +00:00
Franco Fichtner
8488bb3e24 firmware: last bits for #2066 and also #2370 2018-04-29 12:16:52 +00:00
Franco Fichtner
3505c231e7 firmware: speedup! #2066 2018-04-26 08:50:08 +00:00
Franco Fichtner
2400a6eff2 firmware: move all parsing into single for loop #2066 2018-04-25 17:06:06 +00:00
Franco Fichtner
6239acec5c firmware: progress on speedup and elaborate release type change #2066 2018-04-25 16:11:08 +00:00
Ad Schellevis
f9acc51bb7 CaptivePortal, fix typo, when calling stopAccounting() check if stopAccounting() exists and not startAccounting() (although both are true ;) ) 2018-04-22 18:59:17 +02:00
CJ
fb8b63f4c4 Add traffic data and IP address to Radius Accounting messages (#2364) 2018-04-22 18:56:22 +02:00
Franco Fichtner
394019e942 firmware: API-driven major upgrade; closes #2153 
While here, clean up the JSON output block in the script so
that it's easier to work with it in the future.
 2018-04-12 20:14:48 +00:00
Franco Fichtner
b266d2a5fe firmware: unicode whitespace #2278 2018-04-07 11:57:06 +02:00
Ad Schellevis
6a0ded3f42 IDS/IPS add abuse.ch URLhaus 2018-04-06 16:03:06 +02:00
Ad Schellevis
77ee15156c IDS, add app detect rules to definition xml. 2018-04-03 21:23:46 +02:00
Franco Fichtner
4728b06b45 firmware: only check once, adhere to locks from console #2283 
In the GUI it's marginally useful to say "your kernel / base needs
an update" but the update status says "it was locked".  In the GUI
we can undo these commands easily and read the log to spot this.

From the console we do not care and probably miss that info anyway
as the screen scrolls by.
 2018-04-02 00:25:59 +02:00
Franco Fichtner
68805e24be firmware: only decide if we have input #2283 2018-04-02 00:11:19 +02:00
Franco Fichtner
1c67fa1323 firmware: this is tricky #2283 2018-04-02 00:09:32 +02:00
Franco Fichtner
f47ad13d18 firmware: also remove error checking #2283 2018-04-02 00:07:24 +02:00
Franco Fichtner
952dad3398 firmware: don't leak stderr #2283 2018-04-02 00:02:59 +02:00
Franco Fichtner
261fbacf44 firmware: required for #2283 2018-04-01 18:46:44 +02:00
Franco Fichtner
b13ca18b37 firmware: reboot indicator for console #2283 2018-04-01 18:40:21 +02:00
Franco Fichtner
bfc71b121b firmware: fix for #2278 2018-04-01 18:15:11 +02:00
Franco Fichtner
ae056079fb firmware: pkg upgrades by itself; closes #2278 2018-04-01 17:53:22 +02:00
Ad Schellevis
2eb5ac913a move google drive backup to new framework for https://github.com/opnsense/core/pull/2251 
Still some work todo, integrate configuration into new interface and iterate through available options in remote_backup.php.
The current state is functionally unchanged, only some minor cleanups in the previous backup code.
 2018-03-20 20:58:02 +01:00
Franco Fichtner
1a22b8822a service: almost entirely migrate monit model 1.0.0 et al. 2018-03-11 11:08:14 +00:00
Franco Fichtner
79500101c6 services: import monit service 
Some things to work on:
* post-install should be a migration
* move to system?
* remove old notifications
 2018-03-11 11:07:51 +00:00
Ad Schellevis
81cb33fbfe IDS/IPS support request headers in ruleset metadata, to support additional authentication methods (besides oink codes in the url) 
<headers>
       <Token>%%myruleset.mytoken%%</Token>
    </headers>
 2018-03-01 21:43:47 +01:00
Ad Schellevis
35bb9097da IDS/et-open, start using suricata version 4 rules. closes https://github.com/opnsense/core/issues/2150 2018-02-26 20:39:19 +01:00
Ad Schellevis
c4a3c84eb3 System -> Activity, fix variable headers. closes https://github.com/opnsense/core/pull/2203 2018-02-24 15:49:44 +01:00
Franco Fichtner
a83c91dff0 firewall: show IPv6 ports in live log; closes #2190 2018-02-16 14:27:41 +00:00
Franco Fichtner
c142c5c17b firewall: fix typo 2018-02-13 20:24:21 +01:00
Ad Schellevis
cdae884ec9 Firewall/alias, if the name of the alias equals it's content, try to resolve. for https://github.com/opnsense/core/issues/2199 2018-02-13 20:12:04 +01:00
Franco Fichtner
26cda422bb firewall: magic 2018-02-13 18:58:07 +01:00
Franco Fichtner
5dd82c946a firewall: another tweak 2018-02-13 18:51:10 +01:00
Franco Fichtner
fb9029cb7e firewall: explicitly name flags as ipflags 2018-02-13 18:45:36 +01:00
Franco Fichtner
44d4fa90c4 firewall: log specs for tcp are wrong 2018-02-13 18:41:52 +01:00
Ad Schellevis
58350179a8 Firewall/aliases, move general settings to AliasParser and fix Alias constructor to receive the general settings 2018-02-04 18:52:16 +01:00
NOYB
0c19c7b08a Viewport User Scalable 2018-01-24 08:19:01 +01:00
NOYB
6ef9a127ff HTML Compliance - Attribute "type" on Element <script> 
Warning: The type attribute is unnecessary for JavaScript resources.

HTML5: Edition for Web Authors
http://www.w3.org/TR/2014/REC-html5-20141028/scripting-1.html
The default, which is used if the attribute is absent, is "text/javascript".

The Script element
https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script
HTML5 specification urges authors to omit the attribute rather than provide a redundant MIME type.
 2018-01-22 19:13:34 +01:00
NOYB
f509437f84 HTML Compliance - Attribute "content" value on Element <meta> 
Error: A meta element with an http-equiv attribute whose value is X-UA-Compatible must have a content attribute with the value IE=edge.

The "Chrome=1" value was used to spawn Chrome Frame in IE 6,7,8,9.  However, "Google Chrome Frame was discontinued in January 2014", and think all IE<11 is beyond EOL.
So is this even needed/useful?

If needed/useful it would probably be better to support deployment by HTTP headers method instead.

Google Chrome Frame
https://en.wikipedia.org/wiki/Google_Chrome_Frame
 2018-01-20 13:54:58 +01:00
Franco Fichtner
947718b44b firewall: fix booting alias resolve for #2102 
While here, also honour ssl_no_verify and plug in force
usage in the right spot (currently unused but still).
 2018-01-18 09:52:00 +01:00
Franco Fichtner
921b54d4fe intrusion detection: fix to backend scripts after refactor 
PR: https://forum.opnsense.org/index.php?topic=6846.0
 2018-01-13 10:10:57 +00:00
Ad Schellevis
60e4e8080c Firewall, aliasses. race condition in creating alias directory 2018-01-12 17:46:13 +01:00
Franco Fichtner
639bc741c7 dhcp: prefix delete is either a prerequisite, or... 
an opportunistic delete so mute the failure in the log.
 2018-01-10 19:00:40 +01:00
Franco Fichtner
018bea397a dhcp: second half of @marjohn56's changes; closes #2077 2018-01-10 18:48:57 +01:00
Franco Fichtner
c62f01f993 dhcp: address issue found by @marjohn56 
PR: https://github.com/opnsense/core/pull/2077
 2018-01-10 18:22:36 +01:00
Ad Schellevis
579d5f2510 firewall/alias, proper cleanup after kill, https://github.com/opnsense/core/issues/2051 2018-01-04 18:57:29 +01:00
Franco Fichtner
6b24c4ba57 system: fix openssl binary path #51 2017-12-29 12:35:16 +01:00
Franco Fichtner
65b7fb6453 firmware: remove the hotfix backend support, discontinued 2017-12-24 12:52:14 +01:00
Franco Fichtner
479908f1e4 firmware: patch in portable command usage #1992 2017-12-17 16:42:28 +00:00
Franco Fichtner
4d54029ec2 firmware: allow to reinstall kernel and base with reboot #1992 2017-12-16 20:11:18 +00:00
Franco Fichtner
a5d91a7e9b firmware: changes for kernel/base set visibility #1992 2017-12-16 18:26:01 +00:00