Adjust states summary for new pfctl -ss output. Fixes #2121
Merge pull request #1271 from fsSnowboard/master
Add more services and reorder
Add following shaping rules:ARMA 3WIIEA OriginGames For Windows LiveCrysis 3DeadSpace 2DeadSpace 3DragonAge2MassEffect3FacetimeGoogle HangoutsTeamSpeak 3VentriloiTunes RadoIMAP/SPOP3/SSMTP/SApple Mobile Sync...
Make sure button 'move to the end' highlight last line
Do not collapse phase2 items every time an action occours
Replace all GET use by POST
univnautes.js: remove console.log
add simple homepage.html
univnautes.css: always use Roboto font
and header is 100% opacity
settings.py: force PickleSerializer for session
Merge branch 'RELENG_2_1' into UNIVNAUTES_2_1
urls.py: fix typo
More improvements on IPsec GUI (Ticket #3328):
Mark host as up or down before execute script, then script can use this information.
Submitted by: Jean Debogue <jean@wedebugyou.com>
Remove wrong code left from copy/paste
Use array id to delete phase2, it will simplify changes I'm working on and will commit soon
Change functions from row_toggle.js to work with different field names, keeping the old behaviour as default. This is necessary to have more than one group of fields in the same page
fix menu wrap on non-default themes
pfconfigxml: accept #comments in textarea params
fix menu wrap on pfense_ng and pfsense_ng_fs
config.xml: fix initial geo config
map markers, at least !
update-geoinfos: add idp.name in output
mod_evasive: 64 connections per IP by default
display a map require a lot of connections... :/
rc.sh: launch syncdata (metadata+geo) juste after start
s/id/ID/ for xmlsec1 verification
remove useless file
Improvements on IPsec GUI (Ticket #3328):
Remove uneeded variables
Remove unused variables
Fix indent and whitespace
Fix subnet display for IPsec status. Ticket #3826
id changes every time ipsec tunnel disconnects and reconnect, need to use peerconfig to get correct description. Ticket #3826
www: syncdata when federations are modified
rc.sh: better logging
add get_federations in pfconfigxml.py
add update-metadatas command and script
Revert "config.xml: use edugain metadata provided by renater"
This reverts commit 8bbd18549b2faf8960aff648956566b35053c660.
config.xml: use edugain metadata provided by renater
update-geoinfos.sh = manage geoinfos + lock
update-geoinfos.py: dont print when randomize geos
Merge pull request #1270 from phil-davis/patch-12
Fix traffic graph widget default autoscale
so the radio buttons selection allows only 1 to be selected and the setting is then saved.Forum: https://forum.pfsense.org/index.php?topic=81166.msg
Remove some redundancy and simplify changes made on last commit
Replace GET by POST, it fixes #3833
Fix comment in css
Hide FreeBSD version from sshd banner. It fixes #3840
Do not reconfigure dhcpd twice on secondary after config sync. Fixes #3797
Merge pull request #1258 from yarick123/master
Merge pull request #1261 from CharlieMarshall/improveInter
Remove blank line if only an ipv6 address is in use
Fix match for help pages privileges, it fixes #3777
Merge pull request #1268 from CharlieMarshall/gatewayWidget
improve/tidy up interfaces widget
Do not use regex to check filetype to avoid being wrong since . is a regex metachar. It fixes #3817
fix typo
Merge pull request #1255 from leleobhz/master
Fix indent whitespaces
Fix phase2 removal, p2index points to unique ide and not to array index
Alias name cannot have more than 31 chars, add maxlength here just as an extra check. Ticket #3827
improve look of gateways widget
Fix #3807:
Merge pull request #1267 from CharlieMarshall/fixTrafficGraph
fix display of traffic graph
Remove 'reject' action from filter logs since reject and block are the same on logs, it should fix #3825
Merge pull request #1265 from CharlieMarshall/switch
move if/else to switch for readability
useless import os
get CONFIG_XML path from settings or os.environ
remove obsolete update_geoinfos.py script
update-geoinfos command
reorganize the project (again), all in "sp" app
map: add static tiles
map: proxy in django, lighttpd is crap
add 'base' in INSTALLED_APPS
templates are now in base
use collectstatic
store static and templates in an 'base' application
Take virtual IPs into consideration for automatic outbound NAT rules, it should now fix #983
pgrep parameters are out of order and it also needs -a to find sshd. While I'm here, simplify sh syntax and prevent noise to be printed if pid file doesn't exist
delete the dhcpd.pid file before starting dhcpd. Fixes bug where on rare occasions a stale PID file could prevent dhcpd from starting until it's manually deleted.
use pgrep here instead, previous way could wrongly show SSH as enabled where it isn't.
caref is useless in federation metadata
add update_federations.py script (draft)
add update_geoinfos.py script
sp/settings.py: AUTH params in settings.py
Fix text description for interface mismatch, fixes #3820
Merge branch 'RELENG_2_1' of git.pfmechanics.com:pfsense/pfsense into RELENG_2_1
fix top nav to fit gold in non-default themes
Revert "improve/tidy up interfaces widget"
I pushed it accidentally, will wait a fixed version of the patch
This reverts commit b75192e3bc851e80d6bfd33c12849dbc269039fb.
Merge pull request #1259 from CharlieMarshall/improveInter
Add missing s to solve the issue reported on https://forum.pfsense.org/index.php?topic=80722.new#new
fix #3515
Remove extra noise from rc.shutdown
Simplify a bit ppp-linkup syntax
Fix awk syntax, it fixes #3813
non-css parts of gold menu
Move the fetching of a package's config file and additional files to separate functions, and then have the "xml" package button perform these so that it is not only a redundant copy of the "pkg" reinstall button. This can help ensure a package files are in a known-good state before other actions are performed, in case the deinstall would fail or behave erratically due to other files being missing.
fix spacing in pfsense_ng topnav
fix gold alignment and redirect
Revert "make gold link more visable"
This reverts commit a03943d203441a87ea9c01f383d451dfc921bdd2.
make gold link more visable
Do this check now that hash algos can be empty
Correct the ipsec status pages to show proper information as needed.
Correct processing and assignment on ikeid variable so it does the right thing
Use proper path to setkey now that ipsec-tools are not used anymore
Correct the functions for returning tunnel status to use strongswan status reports
Allow HASH algorithms to be empty for phase2 in case the encryption one is AES-GCM
Add filter.so to list of extensions loaded for 2.2
Do not allow duplicate subnet entries on left|rightsubnet specification since it will blackhole all traffic to that subnet when connection is setup as route
Do not accept proposal out of that configured even for IKEv2 even though there is no possibility in the GUI to set more than one proposal for Phase1 so far.
Restore behaviour as with racoon to trigger tunnel startup from traffic that needs to go into the tunnel. Even related to Ticket #3806.
Do not show errors from trying to delete a socket or similar
Ensure this is always an array to avoid a PHP error from foreach.
Bump version to 2.1.5
rightsourceip must be used with PSK+Xauth.
This is required for PSK+Xauth. I'll commit that clarification in a bit.Revert "Revert "Fix assignment of tunnel IPs to mobile clients.""
This reverts commit 23ba08fc940b711f3b44551199890dc8e28a63b6.
cherry pic from 'hotfix/3347-Certificate_Authority_SAN_names_not_working':
bugfix #3347: Certificate Authority SAN names not working in 2.1
subjectAltName can be set only via configuration file - created three extra sections in openssl.cnf to use in case of existing subjectAltName....
Added filter.so to list of extensions loaded for filter_var() support.
Revert "Fix assignment of tunnel IPs to mobile clients." This normally is not needed since the attr plugin deals with all this.
This reverts commit 00311d6a841c0f6fc162ea11da06569f10220f5e.
Actually disable this plugin for now. It was not really needed for solving the issues with IKEv1
Do not reset source and destination port range values when it's an associated rule created by nat port forward. It fixes #3778
Move dhcp6c log to dhcpd.log, it fixes #3799
Remove double defined 'localhost' on the list of networks to create outbound NAT rules. It should fix #3800
Do not create automatic outbound NAT rule for disabled openvpn servers and clients
Fix assignment of tunnel IPs to mobile clients.
Fix #3798 - 'IPsec phase 2 pinghost is not used if the source IP should be a virtual IP address'
Avoid generating an invalid racoon config if the user specified a mobile pool that is too small.
Avoid a "Cannot use string offset as an array" error if the packages section of the config is missing.
Require click-through POST confirmation when restoring or deleting a configuation from the backup history page.
Do not execute DNS resolution on GET, only pre-fill Host box so the user can press the button to execute. Turn alias creation links into submit buttons for POST. While here, remove some backticks and simplify a little.
Remove javascript alert DNS resolution action from the firewall log view. It was already removed from 2.2, and it's better not to allow a GET action to perform that action.
Do not execute on GET, only pre-fill Host box so the user can press the button to execute. Turn alias creation links into submit buttons for POST. While here, remove some backticks and simplify a little.
Correct this so the dpdaction is created properly as restart
Shorten the wait at "reload" in startup wizard to 5 seconds from 60. That's more than adequate for current systems, no need to make people sit there for 1 minute. Many likely click out via the logo and miss the last screen entirely.
Do a reload on the cofniguration which is better than update. Also let the keyingtries to 3 rather than forever to avoid problems on recovery.
Change the logic of the vpn config generation to make connectivity more stable especially ipsec. Also for IKEv1 just generate the policies and only on traffic start them.
Move the rekey to yes always to avoid issues.
Per the dhcpd.conf man page and other documentation from ISC, mclt must not be defined on the secondary.
Encode interface/VIP descriptions before displaying them on the NTP daemon settings.
Encode interface/VIP descriptions before displaying them on the GRE and GIF pages also;While here, the GRE page was missing IP aliases from its list of bind IPs, add it in.
Encode the detail field of an alias entry before displaying its contents back to the user.
Escape the individual dnsmasq advanced/custom options
Allow to add ipalias vip to lo0, it should fix #3773
Use GPS type presets only to pre-set values then user can change it. After user changes, save type always as Custom to avoid overwriting values when user attempt to edit. It fixes #3782
More non-functional changes to make code more readable
Fix indent and spaces
This if is unecessary since input_errors is unset in the line above
Fix indent and whitespaces
Make sure there are not empty options on dst select to avoid creating empty user or group. This issue was introduced by b4e9a4da
Fix select name
Fix input validation logic on diag_testport.php, escape more shell arguments for good measure
Fix #3790. Fix IPv6 Prefix ID check using interface user choose before save
Do not try to rekey for IKEv1.
Use a uniqid() to track phase2 entries to avoid confustion and various mistakes when modifying and editing them.
Fix for #3785 - 'strongswan config being generated with ike SA lifetime set to value of ipsec SA lifetime'
Remove even the config.cache from /tmp to avoid issues while here
Fix #3781 - 'strongswan dpdtimeout value not generated correctly'
config.xml: timezone default is Europe/Paris
config.xml: fix SP configuration (certificate)
Add message about Gold to setup wizard and menu/link to Gold signup.
Fix #3575, do not allow user to set IPs for GRE interfaces on interface edit page.
Fix redirect after editing permissions
pfconfigxml.py: add fault tolerant
Disable bandwidth checks for PRIQ, it should fix #3537
Fix field name that cannot contain spaces, and use displayname
Fix scheduler field name
Fix field name
config federation: add a codename field
config whitelist: hint
config whitelist: add a codename field
Strict checks for number of WANs and LANs on wizard
Fix number of WAN / LAN interfaces detection for dedicated wizard
Try to guess number of WANs
Try to guess number of WANs and LANs
Fix number of WAN and LAN connections check
Just show right type of interfaces (LAN/WAN) on traffic shapper wizards, it fixes #3535
Remove 'multi lan/single wan' and 'multi wan/single lan' traffic shaper wizards, multi lan/wan can be used to replace any of them
Replace exec() and system() calls by internal functions
config.xml: add default whitelist
saml_federation: a federation can be enabled/disabled
config.xml: add default federations, cert, ca
univnautes/sp: views: homepage is just a templateview
univnautes/sp: update settings.py
univnautes/sp: context processor sets "idps" list
univnautes/sp: update templates & static
saml_sp config: add 'defaultidps' param
Fix for bug 3769
Use SERVER_NAME instead of HTTP_HOST env var, it doesn't have port, then it avoids wizard end point to wrong IPv6 address. It should fix #3550
Fix #983 - Add IP aliases subnets to interface subnet macro on GUI, since I'm here also fix not rules for PPTP clients macro.
Concat var before call escapeshellarg
Make dhcpleases use unbound pid when it's configured
Fix shell script syntax, it should fix #3361
sp: first UI parameters in pfsense config
sp/settings.py: some values from config.xml
add whitelists configuration
disable IdP configuration pages
captiveportal/saml: redirect to a SP univnautes
config.xml: auth_method = saml
Merge pull request #1252 from N0YB/XHTML_Compliance_System_Menu
System: Firmware: Settings
Updater Settings Tabsystem_firmware_settings.php
Line 488, Column 43: value of attribute "type" cannot be "input"; must be one of "text", "password", "checkbox", "radio", "submit", "reset", "file", "hidden", "image", "button"...
Detect when protocol changes and invalidate session to get a new cookie with secure flag set according. It fixes #3714
Merge pull request #1247 from DasTestament/master
sp: loaddata after syncdb
secret.key created in /usr/local/univnautes/sp/
rm secret.key, added to .gitignore
rm lighty-univnautes-CaptivePortal-SSL.conf (useless)
sp/rc.sh fixes
add /usr/local/univnautes sp (first draft)
create lighty config for univnautes
Merge pull request #1232 from N0YB/Widget_Gateways
Merge pull request #1235 from N0YB/Mixed_Case_Hostname
Merge pull request #1236 from N0YB/Widget_Services_Status
Merge pull request #1237 from N0YB/XHTML_Compliance_System_Menu
Merge pull request #1234 from agibson2/master
Review all parameters on unbound main GUI, fix boolean params and add missing ones. Also make it work properly with 'apply'
Use the apply trigger for unbound acls to avoid restart unbound every time
Some GUI tweaks on unbound main screen
Improve unbound ACL edit page to use correct classes and jquery.ipv4v6ify.js
Fix acl item removal
Few GUI tweaks on unbound ACL page
Fix multiple issues on unbound advanced options GUI:
- Drop many wrong key assignments to pconfig- Add missing keys to pconfig- Deal fine with boolean parameters- Mark subsystem dirty to require apply button- Drop calls to enable_change()- Remove unecessary js function enable_change()...
Use cron.pid to get pid number and avoid kill minicron processes. It fixes #3757
Allow hostnames in bulk import since they are valid entries in a network type alias.
Merge pull request #1242 from ExolonDX/branch_master_01
Don't use pfsense name in comment
Use $product instead of pfSense when logging the version to syslog
Log pfsense version to syslog after bootup
Fix PHP script closing tag placement.
Fix #3749:
When a full upgrade from 2.1.x to 2.2 is being done, after decompresstarball with 2.2 files, /bin/sh is not able to run a script using syntax'sh scriptname'. Because of that, /tmp/post_upgrade_command and/etc/rc.reboot are not executed ending on an incomplete and broken...
Make sure scripts have necessary attributes and use its shebang line instead of force sh to call it. This will help to prevent or workaround issues similar to #3749 in the future
In some cases, new /bin/sh binary doesn't work properly before reboot during a upgrade, and because of that /etc/rc.reboot is not executed and system doesn't reboot. Source /etc/rc.reboot instead of open a new sh session to avoid it happening again in future versions (ticket #3749)
global_override: federation can be a list in config.xml
idp: none choice for certref
use HTTPS for files.pfsense.org for update_bogons and priv_url in pkg-utils
no () around qlength here
Change Cancel button to call history.back() as done in Firewall Rules, the current method has issues with IE 11, it should fix #3728
qlimit must be included here
Avoid reseting firewall hostname by WAN DHCP. It should fix #3746
Convert almost all /sbin/sysctl calls to php functions
Fix sysctl name
saml => force CP listening on port 443
Add set_single_sysctl(), a wrapper to set_sysctl() to make it simple to set value of a single sysctl
Add get_single_sysctl(), a wrapper to get_sysctl() to make it simple to get value of a single sysctl
Fix indent
CP: add "saml" choice in authentication methods
Remove extra spaces and tabs
Remove extra quote and fix syntax
use HTTPS for dyndns providers that support it
Use a php function rather tan using exec. Suggested-by: garga
use certref/caref instead of refca/refcert
add univnautes section in config.xml
add univnautes in certs.inc
add services_captiveportal_saml pages
Remove all .xml file generated from upgrade since it makes /var full
Add one more seatbelt to prevent tar to attempt to overwrite /dev items
Add missing $g to global, as noted on pull request 1249
Back to cons25 for now since we found some issues with xterm on serial console
un-obsolete gettytab.bak
Also check and verify the package server's SSL certificate if using HTTPS. Issue 484Our current XMLRPC client version doesn't have support on its own to validate this in a way we can use to test in a usable for printing an error message. For now, a cURL query to the XMLRPC URL is used in its place.
More refinements to the unofficial package repository warning ( Issue #484 ) -- Now also shows on Dashboard and installed package list. Cleaned up some code and shuffled things around to avoid unnecessary repetition.
Set proper serial parameters on boot.config and loader.conf for nanobsd without vga
Detect if an unofficial package repository is in use and warn the user. Part of issue #484 (more to go)
Make proper checks to check if we should or not enable serial console
Fix typo on var name
Obsolete ttys_wrap and gettytab.bak
Fix #3647 and other improvements:
- Remove auto_login(), now gettytab is a constant file- Add reload_ttys(), that will send a SIGHUP to init and make it reload /etc/ttys- Change serial speed on /etc/ttys when necessary- Change console and serial auto_login on /etc/ttys when necessary...
Change default console from cons25 to xterm, while I'm here, simplify the check
Stop calling auto_login() here since it's already called inside setup_serial_port()
Stop restoring gettytab.bak since it doesn't exist anymore
Sync etc/ttys with FreeBSD 10-STABLE, change default console for al.Pc and default serial for al.115200
Sync gettytab with FreeBSD 10-STABLE, also reduce customizations, the only difference is al.Pc entry, for Pc with auto login
Remove unused function color()
Delete gettytab.bak and ttys_wrap, they are not needed anymore
globals_override.inc: don't rename pfSense
fixes #3713
Fix #3725:
- Fix match_filter_field() and also simplify logic- Fix $filterfieldsarray initialization- Avoid to have double spaces on filterfieldsarray['act']- Fix filter on Firewall Logs
Merge branch 'UNIVNAUTES_2_1' of ssh://repos.entrouvert.org/univnautes into UNIVNAUTES_2_1
config.xml: default filter rules
config.xml: default cpzone univnautes
config.xml: add default ca and cert
config.xml: dhcpd config
config.xml: hostname is univnautes.entrouvert.lan
config.xml: add aliases
webgui on port 8443 (https)
config.xml: activate snmpd
bsnmp-ucd configuration
/etc/motd: univnautes flavor
new logon.png with univnautes logo
globals_override: product_name=pfSense-UnivNautes
config.xml: lan = 10.42.0.1/16 + dhcpd
add etc/inc/globals_override.inc
add "univnautes" in ascii-art logo
Merge pull request #1244 from phil-davis/patch-11
Add a BETA key for PBI signature check, this will be replaced by the final one before RELEASE. Ticket #3365
Fix dir name
Set default serial speed to 115200 for 2.2, fixes #3715
Fix a regression introduced on 8d6c5f6621 that broke CARP+IP alias
Handle no dhcpd settings when upgrading
This minor fix was in master but not 2.1 branch. I noticed the warning message when doing a fresh install/test of 2.1.4-release. It prevents the warning message:Warning: Invalid argument supplied for foreach() in /etc/inc/upgrade_config.inc on line 3153...
Merge pull request #1238 from DasTestament/master
Add the AESGCM and XCBC on the list of algos availble
Update vpn_openvpn_server.php
Update vpn_openvpn_client.php
Actually use ph1ent ikeid here otherwise will duplicate ids here.
Merge pull request #1241 from Gertjanpfsense/master
Fix dscp values and provide a config upgrade to fix values stored in config.xml. This is a proper fix for #3688
Delete README.md
Update openvpn.inc
Tidy up misc. XHTML
"diag_dns.php" Tidy up "equals sign"
"services_captiveportal.php" Add space to OPTION tagUpdate HTML Boolean operatorClose INPUT and BR tags
"services_captiveportal_hostname.php" Update ALIGN to MIDDLE
"services_captiveportal_vouchers.php"...
Update status_captiveportal.php
Don't ask to select a zone if there is only ONE.
Create README.md
Add local/www to the list of directories that needs to be symlink'd to reduce PBI differences between 2.1 and 2.2
oops, that wasn't supposed to be removed.
Use count($array) where applicable, instead of a $rowIndex increment.
Only include a scheduled rule if it is strictly before the end time
The exact moment of the end time is the end of the schedule. We do not want to include a rule when filter_configure_sync wakes up at 00:15:00 etc and is on a not-slow system that processes this code during the interval 00:15:00 to 00:15:01. This should help intermittent issues with schedules not finishing at the appropriate 15-minute boundary. Might help or fix #3558
Remove extra data after space and fix pf rule syntax. It should fix #3688
bring protocols on NAT edit page more in line with rule edit page
Added verbosity check in case when verbosity_level is absent in config.xml
removed comments
Removed unnecessary "else {";
Merge pull request #1239 from phil-davis/patch-9
Merge pull request #1208 from razzfazz/nat_add_missing_protocols
Merge pull request #1218 from razzfazz/nat_add_missing_protocols_master
Remove also . and / from graph
Fix status_rrd_graph_img.php and also improve it:
- Remove escapeshellarg that broke command line- Only remove dangerous chars to avoid command injection- Replace all `hostname` calls by php_uname('n')- Replace all `date` calls by strftime()- Add $_gb to collect possibly garbage from exec return
Make sure single quotes are encoded and avoid javascript injection
Use CDATA for javascript
Simplify logic, add some protection to user input parameters
Fix whitespaces and indent
We need to allow subdirectories under /usr/local/pkg, here is the proper fix
Replace some backticks by exec ans simplify commands
Remove more backtick abuse
Add -n for 2 remaining sysctl calls, also replace backtick by exec
Add full path for dmesg and replace backtick by exec
Remove more backticks
Set 'Disable webConfigurator login autocomplete' as on by default
Always set httponly attribute on cookies
Change the option for webconfig login autocomplete from opt-in to opt-out, also bump config version and write a function to keep the current status on upgrades
Fix syntax error
Protect servicestatusfilter parameter with htmlspecialchars()
Protect rssfeed parameters with htmlspecialchars()
Add comment I forgot on last commit
Re-generate session ID on a successful login to avoid session fixation
Avoid directory traversal on restorefullbackup
Fix core dump on viewing invalid package log
Remove . and / from pkg name to avoid directory traversal
Remove id=0 from miniupnpd menu and shortcut
Avoid directory traversal when reading package xml files, also check if file exists before try to read it
Make sure variables are escaped, also replace exec calls to run rm by unlink_if_exists()
Remove useless code, variable is set again on next line
Escape parameters passed to shell_exec()
Be more careful with host parameter and make sure it's escaped when call shell functions
Validate starttime and stoptime format
Default values for verb if it is not set when edit
a bit of refactoring
forgot to sync _server.php with _client.php naming style
patchpack1
-Fix #3401 (Added tun option "Disable IPv6" -Added new options: route-nopull, route-noexec, verb;
XHTML Compliance - System Menu
Enforce select option
Create some symlinks inside pbi dir to reduce differences between 2.1 and 2.2 and avoid the need to change a lot of PBI scripts
Make the byte counts on OpenVPN status human readable rather than huge unformatted numbers.
Advanced - Admin Access TabAdvanced - Firewall / NAT TabCert Manager - Certificate Revocation TabUser Manager - Users TabUser Manager - Groups Tab
Remove Status Verbiage. Consumes too much realestate in widget. Status icon without the verbiage is sufficient in widget view.
Hostnames are not case restrictive.
Avoid keeping old files from previous sessions on /tmp/configbak
cf/ dir is removed below, do not need to remove the file here
Fix path for trigger_initial_wizard
Better string check
Merge pull request #1034 from vsquared56/master
Replace Header() calls by lowercase
Merge pull request #1222 from phil-davis/patch-8
Merge pull request #1229 from ExolonDX/branch-master_06
Merge pull request #1228 from ExolonDX/branch_master_05
Remove htmlspecialchars() call for a fixed string.
Bring the code of captiveportal up to speed with its module counterpart requirments
Fix i386 default URL for snapshots
Do not expire already disabled users, it fixes #3644
Fix #3665, show IPSec tunnel description on status page
Fix a typo on variable name
Fix td class
Fix #3702, make sure tunnel inside IP is set when interface changes
remove extra .
Be more precise to match members of a bridge interface, it should fix #3637
Revert "Revert "Fix #3700 and other syntax issues:""
This reverts commit 4cc2ae78d3027c349969437f08a88b1fb88c9de8.
Revert "Fix sh syntax"
This reverts commit cd49f9cd5d21a6592ba690cd315f19266092bee5.
Fix sh syntax
Revert "Fix #3700 and other syntax issues:"
This reverts commit e912bfae186b6b657daf52607f9d027f46be0478.
Fix #3700 and other syntax issues:
- Remove G parameter from pfctl since it doesn't exist anymore Initialize $old_router- Fix sh syntax on variable assign, it couldn't have space before =- Simplify logic- Avoid flush states twice, if it was done on IP change, don't do it...
Do not allow interface group name to be bigger than 15 chars, helps ticket #3208
Populate gateway address field with tilde if there is no address or friendly interface.
This is to match the update data.
Fix gateway widget size change on first update.
Inner table size changes on the first update because the table in update data does not have the same attributes as the widget. i.e. border, cellpadding, cellspacing, style & summary.
Also remove an errant td end tag.
Escape argument on call to is_process_running too, also remove some unecessary mwexec() calls
Add some protection to parameters that come through _GET
Escape this before running.
Tidy up misc. widgets XHTML
captive_portal_status.widget.phpRemove NAME from TABLE tag, not valid in XHTML
carp_status.widget.phpAdd missing closing TD tag
dyn_dns_status.widget.php andinstalled_packages.widgete.phpUpdate TD class to single line
load_balancer_status.widget.php...
Update "pkg_edit.,php"
"custom_php_after_head_command", if the PHP code also containsJavaScript ("squid_auth.xml" for example) then this will cause HTMLerrors, as you are not supposed to have anything between the closingHEAD tag and the opening BODY tag....
Formats disponibles : Atom