Jared Dillard
2a07df8528
Merge branch 'RELENG_2_1' of git.pfmechanics.com:pfsense/pfsense into RELENG_2_1
2014-08-20 18:41:10 -05:00
Jared Dillard
41312f7fec
fix top nav to fit gold in non-default themes
2014-08-20 18:39:24 -05:00
Matt Smith
fa8be5de0d
non-css parts of gold menu
2014-08-19 13:33:24 -05:00
Jared Dillard
bdde98fcbd
fix spacing in pfsense_ng topnav
2014-08-19 12:59:24 -05:00
jim-p
086e76dc9f
Ensure this is always an array to avoid a PHP error from foreach.
2014-08-15 08:40:21 -04:00
Renato Botelho
6d170e2ea7
Bump version to 2.1.5
2014-08-14 17:05:11 -03:00
Matt Smith
b107e187b5
Added filter.so to list of extensions loaded for filter_var() support.
2014-08-13 12:50:10 -05:00
Renato Botelho
e35ec76333
Do not reset source and destination port range values when it's an associated rule created by nat port forward. It fixes #3778
2014-08-11 16:04:29 -03:00
Renato Botelho
4a3495b3bd
Move dhcp6c log to dhcpd.log, it fixes #3799
2014-08-11 16:01:43 -03:00
Matt Smith
a3331d720c
Fix #3798 - 'IPsec phase 2 pinghost is not used if the source IP should be a virtual IP address'
2014-08-08 17:20:49 -05:00
jim-p
ffb8e02fc2
Avoid generating an invalid racoon config if the user specified a mobile pool that is too small.
2014-08-08 12:36:19 -04:00
jim-p
b21ad5d5fd
Avoid a "Cannot use string offset as an array" error if the packages section of the config is missing.
2014-08-08 12:22:53 -04:00
jim-p
889c83d7f1
Require click-through POST confirmation when restoring or deleting a configuation from the backup history page.
2014-08-08 11:22:40 -04:00
jim-p
8108b4235b
Remove javascript alert DNS resolution action from the firewall log view. It was already removed from 2.2, and it's better not to allow a GET action to perform that action.
2014-08-08 10:26:36 -04:00
jim-p
a9d6ac9aac
Do not execute on GET, only pre-fill Host box so the user can press the button to execute. Turn alias creation links into submit buttons for POST. While here, remove some backticks and simplify a little.
2014-08-08 10:21:14 -04:00
Chris Buechler
6f4a300bf8
Shorten the wait at "reload" in startup wizard to 5 seconds from 60. That's more than adequate for current systems, no need to make people sit there for 1 minute. Many likely click out via the logo and miss the last screen entirely.
2014-08-08 00:04:32 -05:00
Chris Buechler
8b8085cedb
Per the dhcpd.conf man page and other documentation from ISC, mclt must not be defined on the secondary.
2014-08-06 21:37:06 -05:00
jim-p
978c71d28f
Encode interface/VIP descriptions before displaying them on the GRE and GIF pages also;
...
While here, the GRE page was missing IP aliases from its list of bind IPs, add it in.
2014-08-06 15:53:29 -04:00
jim-p
bf2fb3db04
Encode interface/VIP descriptions before displaying them on the NTP daemon settings.
2014-08-06 15:52:36 -04:00
jim-p
2276d74319
Encode the detail field of an alias entry before displaying its contents back to the user.
2014-08-06 15:34:05 -04:00
jim-p
52c67bc2d2
Escape the individual dnsmasq advanced/custom options
2014-08-06 15:26:41 -04:00
jim-p
1de3a5dd51
Fix input validation logic on diag_testport.php, escape more shell arguments for good measure
2014-08-04 15:25:48 -04:00
jim-p
5a1450dc0c
Allow hostnames in bulk import since they are valid entries in a network type alias.
2014-07-14 10:56:50 -04:00
Chris Buechler
9edcc5faaf
no () around qlength here
2014-07-09 00:08:04 -05:00
Renato Botelho
1ee3a2955a
Change Cancel button to call history.back() as done in Firewall Rules, the current method has issues with IE 11, it should fix #3728
2014-07-08 12:44:24 -03:00
Chris Buechler
ca16c66aab
qlimit must be included here
2014-07-08 06:46:45 -05:00
Renato Botelho
7b15d22967
Avoid reseting firewall hostname by WAN DHCP. It should fix #3746
2014-07-07 20:13:03 -03:00
Chris Buechler
9b8c7295f0
use HTTPS for dyndns providers that support it
2014-07-05 16:00:09 -05:00
Renato Botelho
c69e813c84
Fix #3725 :
...
- Fix match_filter_field() and also simplify logic
- Fix $filterfieldsarray initialization
- Avoid to have double spaces on filterfieldsarray['act']
- Fix filter on Firewall Logs
2014-06-30 10:57:19 -03:00
Renato Botelho
6d74e3e97b
Merge pull request #1244 from phil-davis/patch-11
2014-06-27 16:21:23 -03:00
Renato Botelho
2bf2a1c4c9
Fix a regression introduced on 8d6c5f6621
that broke CARP+IP alias
2014-06-26 12:24:03 -03:00
Phil Davis
0ee6026764
Handle no dhcpd settings when upgrading
...
This minor fix was in master but not 2.1 branch. I noticed the warning message when doing a fresh install/test of 2.1.4-release. It prevents the warning message:
Warning: Invalid argument supplied for foreach() in /etc/inc/upgrade_config.inc on line 3153
Might as well fix it it 2.1-branch also, in case there is another 2.1.n release.
2014-06-26 15:17:40 +05:45
Phil Davis
efac3a1346
Only include a scheduled rule if it is strictly before the end time
...
The exact moment of the end time is the end of the schedule. We do not want to include a rule when filter_configure_sync wakes up at 00:15:00 etc and is on a not-slow system that processes this code during the interval 00:15:00 to 00:15:01. This should help intermittent issues with schedules not finishing at the appropriate 15-minute boundary. Might help or fix #3558
2014-06-20 10:25:59 -04:00
Renato Botelho
e792ac3632
Remove extra data after space and fix pf rule syntax. It should fix #3688
2014-06-20 10:35:43 -03:00
Renato Botelho
1c9a521b93
Merge pull request #1208 from razzfazz/nat_add_missing_protocols
2014-06-20 09:36:10 -03:00
Renato Botelho
4f380b62d5
Remove also . and / from graph
2014-06-19 13:05:06 -03:00
Renato Botelho
2d1e985d2b
Fix status_rrd_graph_img.php and also improve it:
...
- Remove escapeshellarg that broke command line
- Only remove dangerous chars to avoid command injection
- Replace all `hostname` calls by php_uname('n')
- Replace all `date` calls by strftime()
- Add $_gb to collect possibly garbage from exec return
2014-06-19 12:23:44 -03:00
Renato Botelho
8aca755afe
Make sure single quotes are encoded and avoid javascript injection
2014-06-19 11:29:18 -03:00
Renato Botelho
cedd070513
Use CDATA for javascript
2014-06-19 10:37:56 -03:00
Renato Botelho
559929c2da
Fix indent and whitespaces
2014-06-19 10:37:44 -03:00
Renato Botelho
d1dda49817
Simplify logic, add some protection to user input parameters
2014-06-18 16:39:11 -03:00
Renato Botelho
f1a13a7fce
Fix whitespaces and indent
2014-06-18 15:41:24 -03:00
Renato Botelho
811baa9bf5
We need to allow subdirectories under /usr/local/pkg, here is the proper fix
2014-06-18 13:46:08 -03:00
Renato Botelho
e8abc4a76a
Set 'Disable webConfigurator login autocomplete' as on by default
2014-06-18 07:52:26 -03:00
Renato Botelho
fa73c7cd8b
Always set httponly attribute on cookies
2014-06-18 07:38:12 -03:00
Renato Botelho
ce9d5d7255
Protect servicestatusfilter parameter with htmlspecialchars()
2014-06-17 15:13:42 -03:00
Renato Botelho
860b102acb
Protect rssfeed parameters with htmlspecialchars()
2014-06-17 14:53:50 -03:00
Renato Botelho
3034b37185
Add comment I forgot on last commit
2014-06-17 14:27:45 -03:00
Renato Botelho
ff9b30ec40
Re-generate session ID on a successful login to avoid session fixation
2014-06-17 14:26:50 -03:00
Renato Botelho
62480a449e
Avoid directory traversal on restorefullbackup
2014-06-17 13:47:46 -03:00