aboutsummaryrefslogtreecommitdiff
path: root/net
Commit message (Collapse)AuthorAge
* p910nd: hotplug scriptPaul Donald2024-02-04
| | | | Signed-off-by: Paul Donald <newtwen@gmail.com>
* snort3: finish up several incomplete capabilitiesEric Fahlgren2024-02-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Reporting - Use json alert data for 10x speed improvement in report generation - Include both gid and sid, plus packet direction in report output - Add by-date incident filtering - Add verbose mode which displays actual rules triggered and their source - Attempt to look up host names from IPs in verbose mode - Clean up display of port number involved in incidents Rules - Complete downloader for subscription rules using oinkcode (only tested with snort.org's "free" tier subscription) - Auto-detect multiple rules files and include them in lua 'ips.rules' - Add '--backup' option to copy out current rules before installing new - Add '--persistent' option to 'snort-rules', storing in persistent location CLI interface - Completely rework command line option parsing in all user scripts - Allow options and commands to be in any order on command line - Add long-form names for all options ('--help' for '-h' and so on) - Detect errors properly in options, enhance help pages Bug fixes - Use 'mkdir -p' on all directory creation - Use proper tmp directory from 'snort.snort.temp_dir' everywhere Signed-off-by: Eric Fahlgren <ericfahlgren@gmail.com>
* iputils: bump to 20240117Jan Klos2024-02-04
| | | | Signed-off-by: Jan Klos <jan@klos.xyz>
* treewide: assign PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* nextdns: Update to version 1.42.0Olivier Poitrey2024-02-04
| | | | Signed-off-by: Olivier Poitrey <rs@nextdns.io>
* vnstat2: update to version 2.12Jan Hoffmann2024-02-04
| | | | | | | | | This version includes several new features that allow to simplify the package significantly: The noexit patch and hotplug script are no longer needed, and the init script doesn't have to check for legacy databases anymore. Signed-off-by: Jan Hoffmann <jan@3e8.eu>
* libcurl-gnutls: update to version 8.6.0Konstantin Demin2024-02-04
| | | | | | https://curl.se/changes.html#8_6_0 Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* net/nbd: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | There is not a single CVE linked to network_block_device:nbd so use network_block_device_project:network_block_device instead: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:network_block_device_project:network_block_device Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/miniupnpc: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | cpe:/a:miniupnp_project:miniupnpc is the correct CPE ID for miniupnpc: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:miniupnp_project:miniupnpc Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/ntpd: fix licenseFabrice Fontaine2024-02-04
| | | | | | | | | Replace "Unique" by the standard SPDX identifier for NTP license: https://spdx.org/licenses/NTP.html Fixes: 1aff45c6dd36f2a5875eadaeae2ed93da8ff6d45 (ntpd: add SPDX license information) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/boinc: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | boinc_project:boinc has never been a valid CPE ID so use rom_walton:boinc instead: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:rom_walton:boinc Fixes: 9c2bd865c715cad8646157d6bbfb669d9970c322 (boinc: new package for distributed computing/data acquisition) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/tinyproxy: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | | tinyproxy_project:tinyproxy is a better CPE ID than banu:tinyproxy as this CPE ID has the latest CVEs (whereas banu:tinyproxy only has CVEs up to 2012): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:tinyproxy_project:tinyproxy Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/tinc: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | tinc-vpn:tinc is a better CPE ID than tinc:tinc as this CPE ID has the latest CVEs (whereas tinc:tinc only has CVEs up to 2002): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:tinc-vpn:tinc Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/vsftpd: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | vsftpd_project:vsftpd is a better CPE ID than beasts:vsftpd as this CPE ID has the latest CVEs (whereas beasts:vsftpd only has CVEs up to 2015): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:vsftpd_project:vsftpd Fixes: 1371b7be878382b8b52cd73ff72a3a41d28013c4 (vsftpd: Fix compilation without ECC or deprecated APIs) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* crowdsec: new upstream release version 1.6.0S. Brusch2024-02-04
| | | | | | | | | | | Update crowdsec to latest upstream release version 1.6.0 Signed-off-by: S. Brusch <ne20002@gmx.ch> Maintainer: Kerma Gérald <gandalf@gk2.net> Package tested: not able to test run due to limited space (package is big) Description: update to latest version of upstream
* nmap: bump package versionKonstantin Demin2024-02-04
| | | | Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* nmap: unify SSL dependenciesKonstantin Demin2024-02-04
| | | | | | ssl/full variants now depend on "ca-certs" (provided by "ca-bundle" and "ca-certificates") Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* nmap: ncat: use default CA bundleKonstantin Demin2024-02-04
| | | | Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* cloudflared: refine config.ymlSergey Ponomarev2024-02-04
| | | | | | | | | | | | | | The config.yml is an example of a tunnel local configuration. But the cloudlfared treat it as a real config and fails to start. So to avoid problems let's comment all the statements. The `url: http://localhost:8000` is not a valid config option. Additionally add a smale of configuring ingres rules. The cloudflared.config has missing option token. Signed-off-by: Sergey Ponomarev <stokito@gmail.com>
* Merge pull request #23219 from rockdrilla/curl-8.6.0Stan Grishin2024-02-02
|\ | | | | curl: update to 8.6.0
| * curl: update to 8.6.0Konstantin Demin2024-02-01
| | | | | | | | | | | | * https://curl.se/changes.html#8_6_0 Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* | net/krb5: fix PKG_CPE_IDFabrice Fontaine2024-02-02
| | | | | | | | | | | | | | | | | | | | mit:kerberos_5 is a better CPE ID than mit:kerberos as this CPE ID has the latest CVEs (whereas mit:kerberos only has CVEs until 2018): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:mit:kerberos_5 Fix: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | dnsproxy: Update to 0.64.1Tianling Shen2024-02-01
| | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | nebula: update to 1.8.2-2Stan Grishin2024-02-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The following fixes have been applied to Makefile: * fix the nebula license type * add PKG_CPE_ID * remove unneeded call to Build/Compile * add leading spaces to descriptions * add Package/nebula/conffiles definition * remove unneeded /lib/upgrade/keep.d files * no longer install actual license file * add the README file Kudos to @BKPepe and @1715173329 for feedback which lead to these fixes Signed-off-by: Stan Grishin <stangri@melmac.ca>
* | net/tor: add licenseFabrice Fontaine2024-01-31
| | | | | | | | | | | | tor is licensed under BSD-3-Clause Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | treewide: fix licence typosFabrice Fontaine2024-01-31
|/ | | | | | | | | | | | | - PKG_LICENCE -> PKG_LICENSE - PKC_LICENSE_FILES -> PKG_LICENSE_FILES - BSD 3-Clause -> BSD-3-Clause - BSD-3-clause -> BSD-3-Clause - BSD-2-clause -> BSD-2-Clause - Public Domain -> Public-Domain - PublicDomain -> Public-Domain - Drop unneeded ',' in PKG_LICENSE or PKG_LICENSE_FILES Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* rclone: Update to 1.65.2Tianling Shen2024-01-30
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* cloudflared: Update to 2024.1.5Tianling Shen2024-01-30
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* openvpn: add missing script-securityErik Conijn2024-01-29
| | | | | | | | | | | | | | | | | | | Maintainer: @mkrkn @neheb Compile tested: armv7, cortexA15, OpenWRT 23.05 Run tested: Linksys EA8500 Compile tested: armv8, cortexA53, OpenWRT main Run tested: Dynalink DL-WRX36 Description: Script-security is always 2 and cannot be changed from the openvpn config file due to a missing rule in openvpn.init. This is discussed in issue #23014 This patch adds the missing rule in openvpn.init to parse script-security from the openvpn config file. Signed-off-by: Erik Conijn <egc112@msn.com>
* net/bwm-ng: assign PKG_CPE_IDFabrice Fontaine2024-01-29
| | | | | | https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:bwm-ng_project:bwm-ng Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/fastd: assign PKG_CPE_IDFabrice Fontaine2024-01-29
| | | | | | https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:fastd_project:fastd Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/fail2ban: assign PKG_CPE_IDFabrice Fontaine2024-01-29
| | | | | | https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:fail2ban:fail2ban Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/atftp: assign PKG_CPE_IDFabrice Fontaine2024-01-29
| | | | | | https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:atftp_project:atftp Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* knot: update to version 3.3.4Jan Hák2024-01-29
| | | | Signed-off-by: Jan Hák <jan.hak@nic.cz>
* sing-box: update to 1.8.4Van Waholtz2024-01-27
| | | | Signed-off-by: Van Waholtz <brvphoenix@gmail.com>
* natmap: update to 20240126Ray Wang2024-01-27
| | | | Signed-off-by: Ray Wang <r@hev.cc>
* banip: update 0.9.3-5Dirk Brenken2024-01-26
| | | | | | * fix the nft Set survey function Signed-off-by: Dirk Brenken <dev@brenken.org>
* v2ray-geodata: Update to latest versionTianling Shen2024-01-26
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* tailscale: Update to 1.58.2Zephyr Lykos2024-01-26
| | | | | | https://github.com/tailscale/tailscale/releases/tag/v1.58.2 Signed-off-by: Zephyr Lykos <git@mochaa.ws>
* net/tcpreplay: fix PKG_CPE_IDFabrice Fontaine2024-01-25
| | | | | | | | There is not a single CVE under cpe:/a:appneta:tcpreplay so use cpe:/a:broadcom:tcpreplay: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:broadcom:tcpreplay Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* Merge pull request #23138 from ffontaine/add-i2pd-cpeidFlorian Eckert2024-01-25
|\ | | | | net/i2pd: assign PKG_CPE_ID
| * net/i2pd: assign PKG_CPE_IDFabrice Fontaine2024-01-24
| | | | | | | | | | | | https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Ai2pd%3Ai2pd Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | v2raya: do not allow changing config/log directoryTianling Shen2024-01-25
| | | | | | | | | | | | We need stable path to persist configurations and read log from LuCI. Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | dnsproxy: Update to 0.63.1Tianling Shen2024-01-25
|/ | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* ocserv: updated source URL to httpsNikos Mavrogiannopoulos2024-01-24
| | | | Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
* ocserv: updated to 1.2.4Nikos Mavrogiannopoulos2024-01-24
| | | | Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
* pdns-recursor: Build rec-5.0.1, adding Rust dependenciesOtto Moerbeek2024-01-23
| | | | | | | | also fix license variable Co-authored-by: Tianling Shen <cnsztl@gmail.com> Signed-off-by: Otto Moerbeek <otto@drijf.net> Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
* Merge pull request #23128 from TDT-AG/pr/20240119-modemmanagerFlorian Eckert2024-01-23
|\ | | | | modemmanager: replace modem available check on start with the new monitore service
| * modemmanger: bump PKG_RELEASEFlorian Eckert2024-01-19
| | | | | | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
| * modemmanager: suppress mm_log debug messages by defaultFlorian Eckert2024-01-19
| | | | | | | | | | | | | | | | | | The log is filled with 'debug' messages. This is not necessary and is only normaly needed during development. To suppress this message, check whether the level is 'debug' and if so, suppress it. If this message is required again, the message can be generated by commenting out this line. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
Powered by cgit, Themed by Ted Yin.