aboutsummaryrefslogtreecommitdiff
path: root/net
Commit message (Collapse)AuthorAge
* mwan3: use network_get_preferred_ipaddr6Jonas Lochmann2024-02-04
| | | | | | | | | | This updates mwan3 to use network_get_preferred_ipaddr6 instead of network_get_ipaddr6 if possible to determine a source ip for the connectivity checks. This avoids issues where the first ip address that is returned from network_get_ipaddr6 does not work anymore while the preferred one returned from network_get_preferred_ipaddr6 works. Signed-off-by: Jonas Lochmann <git@inkompetenz.org>
* mosquitto: reenable options wrongly turned offRosen Penev2024-02-04
| | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* p910nd: hotplug scriptPaul Donald2024-02-04
| | | | Signed-off-by: Paul Donald <newtwen@gmail.com>
* snort3: finish up several incomplete capabilitiesEric Fahlgren2024-02-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Reporting - Use json alert data for 10x speed improvement in report generation - Include both gid and sid, plus packet direction in report output - Add by-date incident filtering - Add verbose mode which displays actual rules triggered and their source - Attempt to look up host names from IPs in verbose mode - Clean up display of port number involved in incidents Rules - Complete downloader for subscription rules using oinkcode (only tested with snort.org's "free" tier subscription) - Auto-detect multiple rules files and include them in lua 'ips.rules' - Add '--backup' option to copy out current rules before installing new - Add '--persistent' option to 'snort-rules', storing in persistent location CLI interface - Completely rework command line option parsing in all user scripts - Allow options and commands to be in any order on command line - Add long-form names for all options ('--help' for '-h' and so on) - Detect errors properly in options, enhance help pages Bug fixes - Use 'mkdir -p' on all directory creation - Use proper tmp directory from 'snort.snort.temp_dir' everywhere Signed-off-by: Eric Fahlgren <ericfahlgren@gmail.com>
* iputils: bump to 20240117Jan Klos2024-02-04
| | | | Signed-off-by: Jan Klos <jan@klos.xyz>
* treewide: assign PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* nextdns: Update to version 1.42.0Olivier Poitrey2024-02-04
| | | | Signed-off-by: Olivier Poitrey <rs@nextdns.io>
* vnstat2: update to version 2.12Jan Hoffmann2024-02-04
| | | | | | | | | This version includes several new features that allow to simplify the package significantly: The noexit patch and hotplug script are no longer needed, and the init script doesn't have to check for legacy databases anymore. Signed-off-by: Jan Hoffmann <jan@3e8.eu>
* libcurl-gnutls: update to version 8.6.0Konstantin Demin2024-02-04
| | | | | | https://curl.se/changes.html#8_6_0 Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* net/nbd: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | There is not a single CVE linked to network_block_device:nbd so use network_block_device_project:network_block_device instead: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:network_block_device_project:network_block_device Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/miniupnpc: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | cpe:/a:miniupnp_project:miniupnpc is the correct CPE ID for miniupnpc: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:miniupnp_project:miniupnpc Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/ntpd: fix licenseFabrice Fontaine2024-02-04
| | | | | | | | | Replace "Unique" by the standard SPDX identifier for NTP license: https://spdx.org/licenses/NTP.html Fixes: 1aff45c6dd36f2a5875eadaeae2ed93da8ff6d45 (ntpd: add SPDX license information) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/boinc: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | boinc_project:boinc has never been a valid CPE ID so use rom_walton:boinc instead: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:rom_walton:boinc Fixes: 9c2bd865c715cad8646157d6bbfb669d9970c322 (boinc: new package for distributed computing/data acquisition) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/tinyproxy: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | | tinyproxy_project:tinyproxy is a better CPE ID than banu:tinyproxy as this CPE ID has the latest CVEs (whereas banu:tinyproxy only has CVEs up to 2012): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:tinyproxy_project:tinyproxy Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/tinc: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | tinc-vpn:tinc is a better CPE ID than tinc:tinc as this CPE ID has the latest CVEs (whereas tinc:tinc only has CVEs up to 2002): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:tinc-vpn:tinc Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/vsftpd: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | vsftpd_project:vsftpd is a better CPE ID than beasts:vsftpd as this CPE ID has the latest CVEs (whereas beasts:vsftpd only has CVEs up to 2015): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:vsftpd_project:vsftpd Fixes: 1371b7be878382b8b52cd73ff72a3a41d28013c4 (vsftpd: Fix compilation without ECC or deprecated APIs) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* crowdsec: new upstream release version 1.6.0S. Brusch2024-02-04
| | | | | | | | | | | Update crowdsec to latest upstream release version 1.6.0 Signed-off-by: S. Brusch <ne20002@gmx.ch> Maintainer: Kerma Gérald <gandalf@gk2.net> Package tested: not able to test run due to limited space (package is big) Description: update to latest version of upstream
* nmap: bump package versionKonstantin Demin2024-02-04
| | | | Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* nmap: unify SSL dependenciesKonstantin Demin2024-02-04
| | | | | | ssl/full variants now depend on "ca-certs" (provided by "ca-bundle" and "ca-certificates") Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* nmap: ncat: use default CA bundleKonstantin Demin2024-02-04
| | | | Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* cloudflared: refine config.ymlSergey Ponomarev2024-02-04
| | | | | | | | | | | | | | The config.yml is an example of a tunnel local configuration. But the cloudlfared treat it as a real config and fails to start. So to avoid problems let's comment all the statements. The `url: http://localhost:8000` is not a valid config option. Additionally add a smale of configuring ingres rules. The cloudflared.config has missing option token. Signed-off-by: Sergey Ponomarev <stokito@gmail.com>
* Merge pull request #23219 from rockdrilla/curl-8.6.0Stan Grishin2024-02-02
|\ | | | | curl: update to 8.6.0
| * curl: update to 8.6.0Konstantin Demin2024-02-01
| | | | | | | | | | | | * https://curl.se/changes.html#8_6_0 Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* | net/krb5: fix PKG_CPE_IDFabrice Fontaine2024-02-02
| | | | | | | | | | | | | | | | | | | | mit:kerberos_5 is a better CPE ID than mit:kerberos as this CPE ID has the latest CVEs (whereas mit:kerberos only has CVEs until 2018): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:mit:kerberos_5 Fix: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | dnsproxy: Update to 0.64.1Tianling Shen2024-02-01
| | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | nebula: update to 1.8.2-2Stan Grishin2024-02-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The following fixes have been applied to Makefile: * fix the nebula license type * add PKG_CPE_ID * remove unneeded call to Build/Compile * add leading spaces to descriptions * add Package/nebula/conffiles definition * remove unneeded /lib/upgrade/keep.d files * no longer install actual license file * add the README file Kudos to @BKPepe and @1715173329 for feedback which lead to these fixes Signed-off-by: Stan Grishin <stangri@melmac.ca>
* | net/tor: add licenseFabrice Fontaine2024-01-31
| | | | | | | | | | | | tor is licensed under BSD-3-Clause Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | treewide: fix licence typosFabrice Fontaine2024-01-31
|/ | | | | | | | | | | | | - PKG_LICENCE -> PKG_LICENSE - PKC_LICENSE_FILES -> PKG_LICENSE_FILES - BSD 3-Clause -> BSD-3-Clause - BSD-3-clause -> BSD-3-Clause - BSD-2-clause -> BSD-2-Clause - Public Domain -> Public-Domain - PublicDomain -> Public-Domain - Drop unneeded ',' in PKG_LICENSE or PKG_LICENSE_FILES Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* rclone: Update to 1.65.2Tianling Shen2024-01-30
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* cloudflared: Update to 2024.1.5Tianling Shen2024-01-30
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* openvpn: add missing script-securityErik Conijn2024-01-29
| | | | | | | | | | | | | | | | | | | Maintainer: @mkrkn @neheb Compile tested: armv7, cortexA15, OpenWRT 23.05 Run tested: Linksys EA8500 Compile tested: armv8, cortexA53, OpenWRT main Run tested: Dynalink DL-WRX36 Description: Script-security is always 2 and cannot be changed from the openvpn config file due to a missing rule in openvpn.init. This is discussed in issue #23014 This patch adds the missing rule in openvpn.init to parse script-security from the openvpn config file. Signed-off-by: Erik Conijn <egc112@msn.com>
* net/bwm-ng: assign PKG_CPE_IDFabrice Fontaine2024-01-29
| | | | | | https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:bwm-ng_project:bwm-ng Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/fastd: assign PKG_CPE_IDFabrice Fontaine2024-01-29
| | | | | | https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:fastd_project:fastd Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/fail2ban: assign PKG_CPE_IDFabrice Fontaine2024-01-29
| | | | | | https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:fail2ban:fail2ban Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/atftp: assign PKG_CPE_IDFabrice Fontaine2024-01-29
| | | | | | https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:atftp_project:atftp Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* knot: update to version 3.3.4Jan Hák2024-01-29
| | | | Signed-off-by: Jan Hák <jan.hak@nic.cz>
* sing-box: update to 1.8.4Van Waholtz2024-01-27
| | | | Signed-off-by: Van Waholtz <brvphoenix@gmail.com>
* natmap: update to 20240126Ray Wang2024-01-27
| | | | Signed-off-by: Ray Wang <r@hev.cc>
* banip: update 0.9.3-5Dirk Brenken2024-01-26
| | | | | | * fix the nft Set survey function Signed-off-by: Dirk Brenken <dev@brenken.org>
* v2ray-geodata: Update to latest versionTianling Shen2024-01-26
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* tailscale: Update to 1.58.2Zephyr Lykos2024-01-26
| | | | | | https://github.com/tailscale/tailscale/releases/tag/v1.58.2 Signed-off-by: Zephyr Lykos <git@mochaa.ws>
* net/tcpreplay: fix PKG_CPE_IDFabrice Fontaine2024-01-25
| | | | | | | | There is not a single CVE under cpe:/a:appneta:tcpreplay so use cpe:/a:broadcom:tcpreplay: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:broadcom:tcpreplay Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* Merge pull request #23138 from ffontaine/add-i2pd-cpeidFlorian Eckert2024-01-25
|\ | | | | net/i2pd: assign PKG_CPE_ID
| * net/i2pd: assign PKG_CPE_IDFabrice Fontaine2024-01-24
| | | | | | | | | | | | https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Ai2pd%3Ai2pd Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | v2raya: do not allow changing config/log directoryTianling Shen2024-01-25
| | | | | | | | | | | | We need stable path to persist configurations and read log from LuCI. Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | dnsproxy: Update to 0.63.1Tianling Shen2024-01-25
|/ | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* ocserv: updated source URL to httpsNikos Mavrogiannopoulos2024-01-24
| | | | Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
* ocserv: updated to 1.2.4Nikos Mavrogiannopoulos2024-01-24
| | | | Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
* pdns-recursor: Build rec-5.0.1, adding Rust dependenciesOtto Moerbeek2024-01-23
| | | | | | | | also fix license variable Co-authored-by: Tianling Shen <cnsztl@gmail.com> Signed-off-by: Otto Moerbeek <otto@drijf.net> Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
* Merge pull request #23128 from TDT-AG/pr/20240119-modemmanagerFlorian Eckert2024-01-23
|\ | | | | modemmanager: replace modem available check on start with the new monitore service
Powered by cgit, Themed by Ted Yin.