aboutsummaryrefslogtreecommitdiff
path: root/net
Commit message (Collapse)AuthorAge
...
* | tgt: update to 1.0.90Maxim Storchak2024-02-10
| | | | | | | | Signed-off-by: Maxim Storchak <m.storchak@gmail.com>
* | net-snmp: update to 5.9.4Ivan Pavlov2024-02-10
| | | | | | | | | | | | | | | | | | Adjust patches for current version changes Module "disk" renamed to "disk_hw" Internal type "unknown" changed to "u_int32_t" Add patch with removing macro syntax checking for successful build Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
* | jool: update to 4.1.11Tiago Gaspar2024-02-10
| | | | | | | | | | | | | | Update jool to 4.1.11 and remove unneeded patch. Changelog: https://github.com/NICMx/Jool/releases/tag/v4.1.11 Signed-off-by: Tiago Gaspar <tiagogaspar8@gmail.com>
* | squid: fix configure optionskrant2024-02-10
| | | | | | | | | | | | | | | | | | - Remove non-existing 'dlmalloc' option - Use 'with-cap' instead of 'with-libcap' - Use 'with-xml2' instead of 'with-libxml2' - Patch configure.ac to properly handle 'with-nettle' Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | croc: update to 9.6.9Jonas Jelonek2024-02-08
| | | | | | | | | | | | | | | | | | | | | | | | | | change overview: 9.6.6 -> 9.6.8: only CI + deployment changes 9.6.8 -> 9.6.9: crypto library version bump changelogs: 9.6.6 -> 9.6.7: https://github.com/schollz/croc/releases/tag/v9.6.7 9.6.7 -> 9.6.8: https://github.com/schollz/croc/releases/tag/v9.6.8 9.6.9 -> 9.6.9: https://github.com/schollz/croc/releases/tag/v9.6.9 Signed-off-by: Jonas Jelonek <jelonek.jonas@gmail.com>
* | nbd: update to 3.25krant2024-02-08
| | | | | | | | | | | | | | | | - Use up-to-date project URLs - Use up-to-date configure args - Drop obsolete std=gnu99 from CFLAGS Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | squid: update to 6.7krant2024-02-08
| | | | | | | | | | | | | | | | - Switch URL to HTTPS - Remove default/obsolete configure options - Fix and refresh the patch Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | lyncx: fix wrongful include of 'bsd/stdlib.h' is some environmentskrant2024-02-08
| | | | | | | | Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | autossh: make forwarding optionalkkubicki2024-02-07
| | | | | | | | | | | | | | | | - previously localport option was required, which broke older configs - now in-config forwarding is only optional - ssh option still can be used for forwarding as in sample config Signed-off-by: kkubicki <krzysiek.kubicki@gmail.com>
* | snort3: improve script reliabilityEric Fahlgren2024-02-07
| | | | | | | | | | | | | | - Enable missing variable checking by default - Explicitly check variables are defined in all 'rm' commands Signed-off-by: Eric Fahlgren <ericfahlgren@gmail.com>
* | openvpn: add OpenVPN option disable-dcoMartin Schiller2024-02-07
| | | | | | | | | | | | You maybe want to disable the DCO support, so let's add this option. Signed-off-by: Martin Schiller <ms@dev.tdt.de>
* | iptraf-ng: update to 1.2.1krant2024-02-07
| | | | | | | | | | | | | | - Update package URLs - Remove rvnamed-ng target since it was merged into iptraf-ng Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | gitolite: update to 3.6.13krant2024-02-07
| | | | | | | | | | | | | | | | - Use git for sources since no proper tarball is available - Switch package URL to HTTPS - Refresh the patch Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | git-lfs: update to 3.4.1krant2024-02-07
| | | | | | | | | | | | - Update package URLs to the official ones Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | git: update to 2.43.0krant2024-02-07
| | | | | | | | | | | | - Refresh patches Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | lynx: update to 2.9.0krant2024-02-07
| | | | | | | | | | | | | | | | | | | | - Remove stale mirrors - Use HTTPS for package URL - Don't set default configure args - Disable newly added bz2 support - Formatting Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | knxd: bump to upstream version 0.14.61Othmar Truniger2024-02-07
| | | | | | | | Signed-off-by: Othmar Truniger <github@truniger.ch>
* | fping: update to 5.1krant2024-02-06
| | | | | | | | | | | | - Don't set default configure arg Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | subversion: update to 1.14.3krant2024-02-05
| | | | | | | | | | | | | | | | - Adopt the package - Remove default configure options - Rebase the patch Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | mwan3: use network_get_preferred_ipaddr6Jonas Lochmann2024-02-04
| | | | | | | | | | | | | | | | | | | | This updates mwan3 to use network_get_preferred_ipaddr6 instead of network_get_ipaddr6 if possible to determine a source ip for the connectivity checks. This avoids issues where the first ip address that is returned from network_get_ipaddr6 does not work anymore while the preferred one returned from network_get_preferred_ipaddr6 works. Signed-off-by: Jonas Lochmann <git@inkompetenz.org>
* | mosquitto: reenable options wrongly turned offRosen Penev2024-02-04
| | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | p910nd: hotplug scriptPaul Donald2024-02-04
| | | | | | | | Signed-off-by: Paul Donald <newtwen@gmail.com>
* | snort3: finish up several incomplete capabilitiesEric Fahlgren2024-02-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Reporting - Use json alert data for 10x speed improvement in report generation - Include both gid and sid, plus packet direction in report output - Add by-date incident filtering - Add verbose mode which displays actual rules triggered and their source - Attempt to look up host names from IPs in verbose mode - Clean up display of port number involved in incidents Rules - Complete downloader for subscription rules using oinkcode (only tested with snort.org's "free" tier subscription) - Auto-detect multiple rules files and include them in lua 'ips.rules' - Add '--backup' option to copy out current rules before installing new - Add '--persistent' option to 'snort-rules', storing in persistent location CLI interface - Completely rework command line option parsing in all user scripts - Allow options and commands to be in any order on command line - Add long-form names for all options ('--help' for '-h' and so on) - Detect errors properly in options, enhance help pages Bug fixes - Use 'mkdir -p' on all directory creation - Use proper tmp directory from 'snort.snort.temp_dir' everywhere Signed-off-by: Eric Fahlgren <ericfahlgren@gmail.com>
* | iputils: bump to 20240117Jan Klos2024-02-04
| | | | | | | | Signed-off-by: Jan Klos <jan@klos.xyz>
* | treewide: assign PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | nextdns: Update to version 1.42.0Olivier Poitrey2024-02-04
| | | | | | | | Signed-off-by: Olivier Poitrey <rs@nextdns.io>
* | vnstat2: update to version 2.12Jan Hoffmann2024-02-04
| | | | | | | | | | | | | | | | | | This version includes several new features that allow to simplify the package significantly: The noexit patch and hotplug script are no longer needed, and the init script doesn't have to check for legacy databases anymore. Signed-off-by: Jan Hoffmann <jan@3e8.eu>
* | libcurl-gnutls: update to version 8.6.0Konstantin Demin2024-02-04
| | | | | | | | | | | | https://curl.se/changes.html#8_6_0 Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* | net/nbd: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | | | | | | | | | | | There is not a single CVE linked to network_block_device:nbd so use network_block_device_project:network_block_device instead: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:network_block_device_project:network_block_device Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | net/miniupnpc: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | | | | | | | | | cpe:/a:miniupnp_project:miniupnpc is the correct CPE ID for miniupnpc: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:miniupnp_project:miniupnpc Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | net/ntpd: fix licenseFabrice Fontaine2024-02-04
| | | | | | | | | | | | | | | | | | Replace "Unique" by the standard SPDX identifier for NTP license: https://spdx.org/licenses/NTP.html Fixes: 1aff45c6dd36f2a5875eadaeae2ed93da8ff6d45 (ntpd: add SPDX license information) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | net/boinc: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | | | | | | | | | | | boinc_project:boinc has never been a valid CPE ID so use rom_walton:boinc instead: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:rom_walton:boinc Fixes: 9c2bd865c715cad8646157d6bbfb669d9970c322 (boinc: new package for distributed computing/data acquisition) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | net/tinyproxy: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | | | | | | | | | | | | | tinyproxy_project:tinyproxy is a better CPE ID than banu:tinyproxy as this CPE ID has the latest CVEs (whereas banu:tinyproxy only has CVEs up to 2012): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:tinyproxy_project:tinyproxy Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | net/tinc: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | | | | | | | | | | | tinc-vpn:tinc is a better CPE ID than tinc:tinc as this CPE ID has the latest CVEs (whereas tinc:tinc only has CVEs up to 2002): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:tinc-vpn:tinc Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | net/vsftpd: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | | | | | | | | | | | vsftpd_project:vsftpd is a better CPE ID than beasts:vsftpd as this CPE ID has the latest CVEs (whereas beasts:vsftpd only has CVEs up to 2015): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:vsftpd_project:vsftpd Fixes: 1371b7be878382b8b52cd73ff72a3a41d28013c4 (vsftpd: Fix compilation without ECC or deprecated APIs) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | crowdsec: new upstream release version 1.6.0S. Brusch2024-02-04
| | | | | | | | | | | | | | | | | | | | | | Update crowdsec to latest upstream release version 1.6.0 Signed-off-by: S. Brusch <ne20002@gmx.ch> Maintainer: Kerma GĂ©rald <gandalf@gk2.net> Package tested: not able to test run due to limited space (package is big) Description: update to latest version of upstream
* | nmap: bump package versionKonstantin Demin2024-02-04
| | | | | | | | Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* | nmap: unify SSL dependenciesKonstantin Demin2024-02-04
| | | | | | | | | | | | ssl/full variants now depend on "ca-certs" (provided by "ca-bundle" and "ca-certificates") Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* | nmap: ncat: use default CA bundleKonstantin Demin2024-02-04
| | | | | | | | Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* | cloudflared: refine config.ymlSergey Ponomarev2024-02-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | | The config.yml is an example of a tunnel local configuration. But the cloudlfared treat it as a real config and fails to start. So to avoid problems let's comment all the statements. The `url: http://localhost:8000` is not a valid config option. Additionally add a smale of configuring ingres rules. The cloudflared.config has missing option token. Signed-off-by: Sergey Ponomarev <stokito@gmail.com>
* | Merge pull request #23219 from rockdrilla/curl-8.6.0Stan Grishin2024-02-02
|\ \ | | | | | | curl: update to 8.6.0
| * | curl: update to 8.6.0Konstantin Demin2024-02-01
| | | | | | | | | | | | | | | | | | * https://curl.se/changes.html#8_6_0 Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* | | net/krb5: fix PKG_CPE_IDFabrice Fontaine2024-02-02
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | mit:kerberos_5 is a better CPE ID than mit:kerberos as this CPE ID has the latest CVEs (whereas mit:kerberos only has CVEs until 2018): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:mit:kerberos_5 Fix: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | | dnsproxy: Update to 0.64.1Tianling Shen2024-02-01
| | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | nebula: update to 1.8.2-2Stan Grishin2024-02-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The following fixes have been applied to Makefile: * fix the nebula license type * add PKG_CPE_ID * remove unneeded call to Build/Compile * add leading spaces to descriptions * add Package/nebula/conffiles definition * remove unneeded /lib/upgrade/keep.d files * no longer install actual license file * add the README file Kudos to @BKPepe and @1715173329 for feedback which lead to these fixes Signed-off-by: Stan Grishin <stangri@melmac.ca>
* | | net/tor: add licenseFabrice Fontaine2024-01-31
| | | | | | | | | | | | | | | | | | tor is licensed under BSD-3-Clause Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | | treewide: fix licence typosFabrice Fontaine2024-01-31
|/ / | | | | | | | | | | | | | | | | | | | | | | | | - PKG_LICENCE -> PKG_LICENSE - PKC_LICENSE_FILES -> PKG_LICENSE_FILES - BSD 3-Clause -> BSD-3-Clause - BSD-3-clause -> BSD-3-Clause - BSD-2-clause -> BSD-2-Clause - Public Domain -> Public-Domain - PublicDomain -> Public-Domain - Drop unneeded ',' in PKG_LICENSE or PKG_LICENSE_FILES Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | rclone: Update to 1.65.2Tianling Shen2024-01-30
| | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | cloudflared: Update to 2024.1.5Tianling Shen2024-01-30
| | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | openvpn: add missing script-securityErik Conijn2024-01-29
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Maintainer: @mkrkn @neheb Compile tested: armv7, cortexA15, OpenWRT 23.05 Run tested: Linksys EA8500 Compile tested: armv8, cortexA53, OpenWRT main Run tested: Dynalink DL-WRX36 Description: Script-security is always 2 and cannot be changed from the openvpn config file due to a missing rule in openvpn.init. This is discussed in issue #23014 This patch adds the missing rule in openvpn.init to parse script-security from the openvpn config file. Signed-off-by: Erik Conijn <egc112@msn.com>
Powered by cgit, Themed by Ted Yin.