Fix issue where config file would be overwritten in some cases
Fix issue where local address of wan point-to-point links were unreachable from lan
Signed-off-by: Jeroen Louwes <jeroen.louwes@gmail.com>
new naming/wording - more generically mwan than mwan3
renamed cryptic variables/functions/etc everywhere
removed unused and unnecessary variables everywhere
cleaned up ugly and inefficient Lua and Javascript
Signed-off-by: Aedan Renner chipdankly@gmail.com
corrected name of last_resort option from "main" to "default"
added blackhole option to policy selection on rule configuration
Signed-off-by: Aedan Renner <chipdankly@gmail.com>
added support for new last_resort option for policy configuration
added dependencies for luci-mod-admin-full and luci-lib-nixio
shortened length of menuconfig description lines
reworded things on various pages
changed date formatting in custom hotplug script
default route checks now verify both destination/netmask are 0.0.0.0
condensed messy javascript lines and removed -F' ' from awk commands
Signed-off-by: Aedan Renner <chipdankly@gmail.com>
Merge upstream commit 5ae2a70a135062a025d8fabc104eeae3a2c53a7a to relax the
SSL library version check at runtime.
The objective is to avoid the need for rebuilding freeradius2 whenever we push
binary updates for libopenssl. See https://dev.openwrt.org/ticket/18169 for
reference.
Please backport this change to the for-14.07 branch as well.
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>
The update fixes CVE-2014-4877 which allows malicious FTP servers
to modify local filesystem contents through specificially crafted
symlinks.
Please backport to for-14.07 too.
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>
Fixed issue where an manual ifup-ed interface would immediatly go down again
Remove from init as mwan3 is not a service
Signed-off-by: Jeroen Louwes <jeroen.louwes@gmail.com>
Fixed issue where mwan3 would not immediately set interface down on link-loss event
Added feature to define last-resort action on policies with no members
Signed-off-by: Jeroen Louwes <jeroen.louwes@gmail.com>
horst 3.0 from oldpackages does not work well with the new mac80211 drivers
of 14.07, so please consider to merge this...
Signed-off-by: Bruno Randolf <br1@einfach.org>
To be consistent with other services only start via hotplug if enabled.
Now full functionality of /etc/init.d/ddns enable/disable start/stop
Optimization: Include script only if needed
shortened title so it fits on menuconfig screen
added newline in description so no menuconfig side scrolling required
Signed-off-by: Aedan Renner chipdankly@gmail.com
A minor point release.
* Don’t ask client for certificate when require_certificate is false.
* Fix incorrect handling of anonymous bridges on the local broker.
* backout incomplete functionality incorrectly added in 1.3.2
Signed-off-by: Karl Palsson <karlp@remake.is>
1.) No SysLog possible because keyword misspelled
In tinyproxy.conf and tinyproxy.config the parameter is correct spelled
with small "l"
2.) No logging as non root user
The default is that tinyproxy deamon run as nobody:nogroup, but they have no permission to /var/log/ or any other location.
So touch and change permission for logfile during startup
Signed-off-by: Christian Schoenebeck <christian.schoenebeck@gmail.com>
In the absense of an address entry bind to all interfaces which is also
iodined's default when -l isn't given.
Signed-off-by: Uwe Kleine-König <uwe+openwrt@kleine-koenig.org>
Fall back to the default DNS port (i.e. 53). If you configure something
different than 53 this results in a warning from iodined:
ALERT! Other dns servers expect you to run on port 53.
You must manually forward port 53 to port $port for things to work.
This is obviously true.
Signed-off-by: Uwe Kleine-König <uwe+openwrt@kleine-koenig.org>
if running as non root user (what's should be the default on web-servers) you get:
(log.c.118) opening errorlog '/var/log/lighttpd/server.log' failed: Permission denied
Fix: create log directory only if not exist and chmod 777 to allow anyone
to write and create files inside default log directory
Signed-off-by: Christian Schoenebeck <christian.schoenebeck@gmail.com>
This is compatible to 0.6.0-rc1 client and servers and fixes an
authentication bypass bug (CVE-2014-4168).
Signed-off-by: Uwe Kleine-König <uwe+openwrt@kleine-koenig.org>
update from v0.82 to v0.85
set myself as maintainer
drop out of date patches:
patches/520-libresolv_fix.patch
patches/521-gtk_fix.patch
backport 25a2456 from upstream to fix glib dependency issue:
patches/521-glib-dependency-fixes.patch
Signed-off-by: Jonathan McCrohan <jmccrohan@gmail.com>
[PATCH 4/5] BUG/MINOR: http: base32+src should use the big endian
[PATCH 5/5] BUG/MEDIUM: connection: fix memory corruption when
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
- [PATCH 22/25] DOC: minor fix on {sc,src}_kbytes_{in,out}
- [PATCH 23/25] DOC: fix alphabetical sort of converters
- [PATCH 24/25] BUG/MAJOR: http: correctly rewind the request body
- [PATCH 25/25] DOC: remove references to CPU=native in the README
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>
this patch series mainly fixes a lot of reported issues in conjuction with
abstract socktet handling, improved the docs about the stats
- [PATCH 13/21] BUILD: http: fix isdigit & isspace warnings on Solaris
- [PATCH 14/21] BUG/MINOR: listener: set the listener's fd to -1 after
- [PATCH 15/21] BUG/MEDIUM: unix: failed abstract socket binding is
- [PATCH 16/21] MEDIUM: listener: implement a per-protocol pause()
- [PATCH 17/21] MEDIUM: listener: support rebinding during resume()
- [PATCH 18/21] BUG/MEDIUM: unix: completely unbind abstract sockets
- [PATCH 19/21] DOC: explicitly mention the limits of abstract
- [PATCH 20/21] DOC: expand the docs for the provided stats.
- [PATCH 21/21] BUG/MEDIUM: backend: Update hash to use unsigned int
Signed-off-by: Thomas Heil <heil@terminal-consulting.de>