summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Updated TODODavid Sommerseth2009-04-031-1/+1
|
* Added support for setting firewall profiles in eurephiadm/usercertsDavid Sommerseth2009-04-031-9/+35
|
* When deleting fwprofiles, delete also records from openvpn_usercertsDavid Sommerseth2009-04-031-0/+30
|
* Added missing XSLT files for install rulesDavid Sommerseth2009-04-021-0/+4
|
* Renamed fwadmin command to fwprofiles, which is more correctDavid Sommerseth2009-04-023-32/+31
|
* Completed eurephiadm/fwadmin with add/delete modesDavid Sommerseth2009-04-021-2/+112
|
* Completed eDBadminFirewallProfiles(...) with add and delete in db driverDavid Sommerseth2009-04-021-9/+60
|
* Added eDBmappingFieldsPresent(...) which returns used fields in a fieldMapDavid Sommerseth2009-04-022-0/+15
|
* Make eurephiaXML_getRoot(...) return root element when no nodeset is givenDavid Sommerseth2009-04-021-1/+1
|
* Added simple function for returning results and errors as XMLDavid Sommerseth2009-04-022-0/+44
|
* Security enhancement: Added check in eDBadmin* functions that the context is ↵David Sommerseth2009-04-012-0/+102
| | | | correct
* Fixed up a small detail in users.xslDavid Sommerseth2009-04-011-1/+1
|
* Rewrote eurephiadm/usercerts to use XSLT for listingDavid Sommerseth2009-04-012-42/+112
|
* Rewrote eurephiadm/adminaccess to use XSLT for listingDavid Sommerseth2009-03-312-34/+77
|
* Rewrote eurephiadm/users command to user XSLT wherever possibleDavid Sommerseth2009-03-312-89/+222
|
* Renamed XSLT variable $view_fw to $firewallDavid Sommerseth2009-03-312-4/+4
|
* Added copyright license to XSLT templatesDavid Sommerseth2009-03-313-0/+60
|
* Added a few more files to .gitignoreDavid Sommerseth2009-03-311-0/+2
|
* Rewrote places using xmlPrint_certs(...) to use the XSLTDavid Sommerseth2009-03-313-102/+104
| | | | Added XSLT template for displaying certificate info.
* Added logging of configure runsDavid Sommerseth2009-03-301-39/+51
|
* Cleaned up some compiler warnings in edb-sqliteDavid Sommerseth2009-03-303-0/+20
|
* Using right plug-in path in eurephia_initDavid Sommerseth2009-03-302-2/+2
| | | | This is a regression introduced in commit cda490e1fc19904d015d8d5853af731d3cd983ea
* Added fwadmin in granted access on db initialisationDavid Sommerseth2009-03-301-1/+1
|
* Removed debug info in ./configureDavid Sommerseth2009-03-301-3/+0
|
* Restructured ./configure and improved the path setupDavid Sommerseth2009-03-307-23/+78
| | | | Also added install rules to XSLT files
* Added missing xmlReplaceChars(...) on common_name and organisationDavid Sommerseth2009-03-291-4/+20
|
* Rewrote lastlog and users command to use XSLT for viewing lastlogDavid Sommerseth2009-03-293-133/+214
|
* Added the beginning of fwadmin command in eurephiadmDavid Sommerseth2009-03-294-0/+360
|
* Changed eDBadminGetFirewallProfiles(...) to eDBadminFirewallProfiles(...)David Sommerseth2009-03-293-25/+63
| | | | | Will try a new approach to use the same entry point for all actions connected to the firewall profiles configuration.
* Implemented an XSLT parser for eurephiadmDavid Sommerseth2009-03-292-0/+99
|
* Fix error setting eurephiadm_xslt_path in eurephiadmDavid Sommerseth2009-03-291-5/+7
| | | | | | | In commit d7a8babb19bcc1107daff0cc5673bc32b0ed785b the check if the configuration value 'eurephiadm_xslt_path' was set in the database looked in the wrong configuration area. Fixed this and it now copies the value over from the database configuration.
* BUGFIX: eurephiadm argument parser increased argument pointer too muchDavid Sommerseth2009-03-291-1/+1
|
* Prepared for linking in libxsltDavid Sommerseth2009-03-294-0/+46
| | | | | | | | | | | | Added two extra ./configure arguments, --xslt-path which defines the root directory for all eurephia specific XSLT templates (defaults to /usr/share/eurephia/xslt) and --eurephiadm-xslt which defines the path eurephiadm will use for its XSLT templates (defaults to /usr/share/eurephia/xslt/eurephiadm) Added an extra configuration paramet for eurephiadm (eurephiadm_xslt_path), which can be used to override the compiled in default values
* Added a small utility for decoding password salt informationDavid Sommerseth2009-03-292-0/+91
|
* Fixed some possible issues with the XML implementation, regarding UTF-8David Sommerseth2009-03-292-7/+37
| | | | | | Do proper conversion from char * to xmlChar *. Need to figure out a better way how to return xmlChar * to char * when returning strings which may contain UTF-8.
* Added eDBadminGetFirewallProfiles(...) function in DB driverDavid Sommerseth2009-03-284-0/+141
|
* Added fieldMapping for the firewall access table (openvpn_accesses)David Sommerseth2009-03-283-0/+40
|
* Fixed a "hang" when wrong password was usedDavid Sommerseth2009-03-283-14/+44
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Due to the current implementation of SHA512 salts, it could be experienced as if the application hung on wrong passwords. This is because the rounds count for the passwords are scrambled, with values based on the given password. When a wrong password is given, this will also result in getting a wrong salt length and hash rounds for the following hash calculation. Due to this, the extracted rounds value from the salt string could return some really high number of rounds on wrong passwords (possibly the max value if integer). And this is why the "hang" is experienced. To avoid this, a check is added to make sure the rounds is not unreasonably much higher than the configured max rounds values. If the descrambled rounds number from the salt exceeds max rounds * 1.5, the password (most probaly) is wrong. In this case we do a sleep() to slow down bruteforce attacks and return NULL. The drawback is if the maxrounds later on is changed to a value which hits this scenario: passwordsalt_rounds > maxrounds_cfg * 1.5 In this case these old passwords will be invalidated by that configuration change. This is considered to be a feature and not a bug. The reason for mulitiplying by 1.5, is to allow a little room for a degrading the max rounds setting. By adjusting the max rounds up again, these passwords will be valid again. Added also a sleep() when wrong username is attempted.
* BUGFIX: Fixed missing string replace in certificate functionsDavid Sommerseth2009-03-271-2/+18
| | | | | | | | When calling eDBadminGetCertificateInfo(...) or eDBadminDeleteCertificate(...) with a search XML document using common_name or organisation and these fields contained spaces, no certificates would be deleted. This is because space is replaced with underscore in the database.
* BUGFIX: eurephiadm certs delete help and delete failureDavid Sommerseth2009-03-271-3/+3
| | | | | | | | | When doing certs --delete --help, wrong help text was shown. When trying to delete certificates with common name or organisation as search fields, no certificates was found. This is another fix after the commit 3c35318429e33c98c2d7fac8943dfc6ff40359c7 which changed some of the XML tags for the certificate table.
* Corrected a log entry on login/logoutDavid Sommerseth2009-03-261-2/+2
|
* Further code cleanupDavid Sommerseth2009-03-269-43/+16
| | | | | Added in addition missing GPLv2 only remarks where it was missing from commit 0712bce6f387121e37501ec323e3da89ce4300c3
* Made the licence explicit GPLv2 onlyDavid Sommerseth2009-03-2664-69/+72
|
* Cleaned up the code a little bitDavid Sommerseth2009-03-2669-126/+150
| | | | | Made sure we only include needed include files and checked that the copyright headers are equal and correct
* eurephiadm/lastlog: Added showing username in verbose modeDavid Sommerseth2009-03-251-8/+31
|
* Updated TODODavid Sommerseth2009-03-241-2/+2
|
* Corrected sorting of result in eDBadminGetAdminAccess(...)David Sommerseth2009-03-241-1/+1
|
* eurephiadm - renamed useraccess command to adminaccessDavid Sommerseth2009-03-243-17/+17
|
* eurephiadm/useraccess: Added grant and revoke functionsDavid Sommerseth2009-03-241-7/+97
|
* eurephiadm: Began implementing useraccess commandDavid Sommerseth2009-03-243-0/+285
| | | | Only listing of user access levels are implemented.
generated by cgit (git 2.34.1) at 2025-04-20 04:32:06 +0000