| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
|
|
|
|
| |
- New upstream major release with tons of new features and LTS (see: https://www.haproxy.com/blog/announcing-haproxy-2-4/)
- Update haproxy download URL and hash
- Activate promtheus exporter support the new way (using USE_PROMEX=1)
- Cleaned up haproxy-specific CFLAGS
- Changed the halog build to make use of the new Makefile target (admin/halog/halog)
Signed-off-by: Christian Lachner <gladiac@gmail.com>
|
| |\
| |
| | |
strongswan: make default bundle use swanctl
|
| | |
| |
| |
| | |
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Rrsync is a perl script that is supplied as an extra with the rsync program.
It must be used in conjunction with openssh-server or openssh-server-pam
as it requires ~/.ssh/authorized_keys which is not supported by dropbear.
Rrsync allows selective access to subdirectories in either read-only, write-only or read-write,
depending on settings in authorized_keys. This allows for safe, restrictive access.
It's particularly useful for automated backup purposes.
An example usage would be this entry:
command="/usr/bin/rrsync -ro /home" <public key here>
This would allow a system connecting with this public key to be able to rsync FROM the
/home directory tree only. It could not write to this directory, nor read from any other directory.
Signed-off-by: Matt Reeve <matt@mreeve.com>
|
| | |
| |
| |
| |
| |
| | |
Recreate symbolic link if it's missing after a sysupgrade with a private and public key present in /etc/atlas/
Signed-off-by: Ansuel Smith <ansuelsmth@gmail.com>
|
| | |
| |
| |
| | |
Signed-off-by: Miroslav Lichvar <mlichvar0@gmail.com>
|
| | |
| |
| |
| | |
Signed-off-by: Jan Hak <jan.hak@nic.cz>
|
| |\ \
| | |
| | | |
Update snort3 and libdaq3 packages
|
| | | |
| | |
| | |
| | | |
Signed-off-by: W. Michael Petullo <mike@flyn.org>
|
| |\ \ \
| | | |
| | | | |
adguardhome: bump to 0.106.2
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
* Full changelog available at:
* https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.106.2
Signed-off-by: Dobroslaw Kijowski <dobo90@gmail.com>
|
| |\ \ \ \
| |/ / /
|/| | | |
knot-resolver: update to version 5.3.2
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
|
| |\ \ \ \
| | | | |
| | | | | |
snort: update 2.9.17.1
|
| | | |/ /
| |/| |
| | | |
| | | | |
Signed-off-by: W. Michael Petullo <mike@flyn.org>
|
| |\ \ \ \
| | | | |
| | | | | |
krb5: update to 1.19.1
|
| | |/ / /
| | | |
| | | |
| | | | |
Signed-off-by: W. Michael Petullo <mike@flyn.org>
|
| |\ \ \ \
| | | | |
| | | | | |
scapy: update to 2.4.5
|
| | |/ / /
| | | |
| | | |
| | | | |
Signed-off-by: W. Michael Petullo <mike@flyn.org>
|
| |\ \ \ \
| | | | |
| | | | | |
nfdump: update to 1.6.23
|
| | |/ / /
| | | |
| | | |
| | | | |
Signed-off-by: W. Michael Petullo <mike@flyn.org>
|
| |\ \ \ \
| |/ / /
|/| | | |
tailscale: update to version 1.8.1
|
| | |/ /
| | |
| | |
| | |
| | |
| | | |
Add readme with simple tailscale howto.
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
|
| |\ \ \
| | | |
| | | |
| | | |
| | | | |
pprindeville/strongswan-always-generate-var-strongswan
strongswan: swanctl init script doesn't load connections
|
| | | |/
| |/|
| | |
| | |
| | |
| | | |
Fixes issue #15446
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| |\ \ \
| |_|/
|/| | |
unbound: add cache-max-negative-ttl config option
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
|
| |\ \ \
| | | |
| | | | |
samplicator: add samplicator
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Samplicator receives UDP datagrams on a given port and resends those
datagrams to a specified set of receivers.
Use Cases:
- replicate Flow Samples to multiple receivers
- use with conntrackd to synchronize via unicast to multiple targets
Signed-off-by: Nick Hainke <vincent@systemli.org>
|
| |\ \ \ \
| | | | |
| | | | | |
tailscale: add new package
|
| | | | | |
| | | | |
| | | | |
| | | | | |
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
|
| | | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
* update to 4.13.8
* remove faulty io_uring kernel detection
* fixes CVE's: CVE-2020-27840, CVE-2021-20277, CVE-2020-27840, CVE-2021-20277, CVE-2020-27840, CVE-2021-20277, CVE-2021-20254
* resolves #15512
Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
|
| |\ \ \ \ \
| | | | | |
| | | | | | |
mwan3: allow interfaces with no tracking IPs
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
In the procd refactor, support for interfaces with no tracking IPs was
inadvertentiy removed. This commit restores the previous behavior
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
|
| |\ \ \ \ \ \
| |_|_|_|_|/
|/| | | | | |
mwan3: update ubus status for no tracked interfaces
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
|
| |\ \ \ \ \ \
| | | | | | |
| | | | | | | |
isc-dhcpd: handle extra spaces in routes
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
* Create working directory when it is not present. Apparently
some recent change made adguardhome fail to start when working
directory is missing.
* Full changelog available at:
* https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.106.1
Signed-off-by: Dobroslaw Kijowski <dobo90@gmail.com>
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
* fix pid file processing of the background monitor plus child
processes (bug reported in the forum)
* made the enabled/disabled switch of the background monitor functional
Signed-off-by: Dirk Brenken <dev@brenken.org>
|
| |\ \ \ \ \ \ \
| |_|/ / / / /
|/| | | | | | |
a bunch of package updates
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
|
| | | |/ / / /
| |/| | | |
| | | | | |
| | | | | | |
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
|
| | |_|_|/ /
|/| | | |
| | | | |
| | | | |
| | | | |
| | | | | |
- Update haproxy download URL and hash
Signed-off-by: Christian Lachner <gladiac@gmail.com>
|
| | | | | |
| | | | |
| | | | |
| | | | | |
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
|
| | | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
* preserve DNS cache after adblock processing (unbound & bind)
* fix redirect issue with oisd basic url
* cosmetics
Signed-off-by: Dirk Brenken <dev@brenken.org>
|
| | | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
Fixes the following security issues:
* CVE-2021-25215 - named crashed when a DNAME record placed in the ANSWER
section during DNAME chasing turned out to be the final
answer to a client query.
* CVE-2021-25214 - Insufficient IXFR checks could result in named serving a
zone without an SOA record at the apex, leading to a
RUNTIME_CHECK assertion failure when the zone was
subsequently refreshed. This has been fixed by adding an
owner name check for all SOA records which are included
in a zone transfer.
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
|
| | |_|/ /
|/| | |
| | | |
| | | | |
Signed-off-by: Othmar Truniger <github@truniger.ch>
|