Ad Schellevis d8ddef45e8 Trust / Authorities - prevent expired certificates from being flushed to disk to avoid non valid paths being trusted. (ref https://github.com/opnsense/core/issues/5257) ...

ca-root-nss should be valid at all times, we shouldn't (ever) try to cleanse whats being shipped as part of the system, but user input can be unsafe leading to dangerous situations.

Eventually we could also consider preventing bundles being imported in the authorities section, but that wouldn't fix issues with already deployed certificates and user input can still lead to broken chains easily.

2021-10-05 11:40:54 +02:00

..

bin

pkg: variable links at build time

2020-04-13 22:19:37 +02:00

etc

Trust / Authorities - prevent expired certificates from being flushed to disk to avoid non valid paths being trusted. (ref https://github.com/opnsense/core/issues/5257)

2021-10-05 11:40:54 +02:00

libexec

…

man/man8

Correct the melody database directory in manpage

2021-09-12 08:20:48 +02:00

opnsense

interfaces: deprecate *up(v6) files, PPP is only user

2021-10-05 10:09:12 +02:00

root/boot

root: add lualoader brand and logo

2021-09-09 09:13:26 +02:00

sbin

firmware: return ALTABI using -x #5144

2021-08-17 08:56:59 +02:00

wizard

openvpn: remove OpenSSL engine support #4896

2021-04-08 16:43:12 +02:00

www

src: minor syntax issues here

2021-10-05 08:46:10 +02:00

Makefile

…