Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | updated statusv3.19.7 | Rainer Gerhards | 2008-06-11 | 1 | -4/+4 |
| | |||||
* | preparing for 3.19.7 release | Rainer Gerhards | 2008-06-11 | 1 | -1/+4 |
| | |||||
* | Remove .cvsignore files, add .gitignore. | Michael Biebl | 2008-06-11 | 16 | -89/+3 |
| | | | | Signed-off-by: Rainer Gerhards <rgerhards@adiscon.com> | ||||
* | Fix linker flags for librsyslog and rsyslogd | Michael Biebl | 2008-06-11 | 2 | -2/+2 |
| | | | | | | | | | | Use $(dl_libs) and $(rt_libs) instead of -ldl and -lrt. This ensures that rsyslog can be successfully built on *BSD. Don't like rsyslogd against $(dl_libs) and $(rt_libs) anymore. This functionality is now in librsyslog. Signed-off-by: Rainer Gerhards <rgerhards@adiscon.com> | ||||
* | fixed syntax error (typo in var name) and cleaup | Rainer Gerhards | 2008-06-10 | 3 | -9/+5 |
| | |||||
* | made rsyslog tickless in the (usual and default) case that repeated | Rainer Gerhards | 2008-06-09 | 3 | -11/+22 |
| | | | | | | message reduction is turned off. More info: http://blog.gerhards.net/2008/06/coding-to-save-environment.html | ||||
* | somewhat improved plain tcp syslog reliability | Rainer Gerhards | 2008-06-09 | 10 | -13/+94 |
| | | | | | | ...by doing a connection check before sending. Credits to Martin Schuette for providing the idea. Details are available at http://blog.gerhards.net/2008/06/reliable-plain-tcp-syslog-once-again.html | ||||
* | fixed a bug with the new property replacer option | Rainer Gerhards | 2008-06-07 | 2 | -2/+2 |
| | | | | | there was a copy&paste error in the timereported property - thanks to Elizabeth for reporting it | ||||
* | added new property replacer option "time-subseconds" | Rainer Gerhards | 2008-06-06 | 8 | -2/+80 |
| | | | | enables to query just the subsecond part of a high-precision timestamp | ||||
* | added doc on suggested TLS deployment | Rainer Gerhards | 2008-06-06 | 2 | -3/+146 |
| | | | | (rough picture, actual configuration sample still missing). | ||||
* | bumping version number | Rainer Gerhards | 2008-06-06 | 4 | -6/+8 |
| | |||||
* | preparing 3.19.6v3.19.6 | Rainer Gerhards | 2008-06-06 | 2 | -2/+3 |
| | |||||
* | enhanced property replacer to support multiple regex matches | Rainer Gerhards | 2008-06-04 | 5 | -11/+61 |
| | |||||
* | bugfix: removed some memory leaks in TLS code | Rainer Gerhards | 2008-06-04 | 3 | -7/+23 |
| | |||||
* | bugfix: off-by-one bug during certificate check | Rainer Gerhards | 2008-06-04 | 2 | -2/+5 |
| | |||||
* | bugfix: part of permittedPeer structure was not correctly initialized | Rainer Gerhards | 2008-06-03 | 2 | -2/+3 |
| | | | | thanks to varmojfekoj for spotting this | ||||
* | bumped version number | Rainer Gerhards | 2008-05-30 | 3 | -2/+4 |
| | |||||
* | finalized 3.19.5v3.19.5 | Rainer Gerhards | 2008-05-30 | 2 | -5/+5 |
| | |||||
* | capability for replacement text in no match regex case added | Rainer Gerhards | 2008-05-30 | 5 | -18/+59 |
| | | | | | | implemented in property replacer: if a regular expression does not match, it can now either return "**NO MATCH** (default, as before), a blank property or the full original property text | ||||
* | enhanced property replacer's regex to support submatches | Rainer Gerhards | 2008-05-29 | 5 | -14/+80 |
| | | | | | | | - enabled Posix ERE expressions inside the property replacer (previously BRE was permitted only) - provided ability to specify that a regular expression submatch shall be used inside the property replacer | ||||
* | fixed typo | Iida, Masanari | 2008-05-28 | 1 | -2/+2 |
| | | | | | | | | Typo caused confusion, because the database name is case sensitive, but case was used different in the sample and the database create script. Signed-off-by: Rainer Gerhards <rgerhards@adiscon.com> | ||||
* | updated status document | Rainer Gerhards | 2008-05-28 | 1 | -4/+4 |
| | |||||
* | bumped version number | Rainer Gerhards | 2008-05-27 | 3 | -2/+4 |
| | |||||
* | finalized 3.19.4v3.19.4 | Rainer Gerhards | 2008-05-27 | 2 | -7/+14 |
| | |||||
* | Merge branch 'ietf-tls' | Rainer Gerhards | 2008-05-27 | 12 | -96/+1248 |
|\ | |||||
| * | implemented wildcards inside certificate name check authentication | Rainer Gerhards | 2008-05-27 | 4 | -7/+311 |
| | | |||||
| * | client now provides cert even if it is not signed by one of the server's ↵ | Rainer Gerhards | 2008-05-27 | 3 | -10/+170 |
| | | | | | | | | trusted CAs (gtls) | ||||
| * | protected gtls error string function by a mutex. | Rainer Gerhards | 2008-05-26 | 2 | -1/+10 |
| | | | | | | | | | | Without it, we could have a race condition in extreme cases. This was very remote, but now can no longer happen. | ||||
| * | fixed fingerprint generator | Rainer Gerhards | 2008-05-26 | 1 | -2/+1 |
| | | | | | | | | fixed problem introduced earlier today | ||||
| * | fixed wrong cert expiration date check | Rainer Gerhards | 2008-05-26 | 1 | -1/+1 |
| | | |||||
| * | added certificate validity date check (gtls) | Rainer Gerhards | 2008-05-26 | 2 | -10/+58 |
| | | |||||
| * | added gtls name authentication based on common name (inside DN) | Rainer Gerhards | 2008-05-26 | 3 | -7/+101 |
| | | | | | | | | also changed fingerprint gtls auth mode to new format fingerprint | ||||
| * | added capability to auto-configure tls auth rule for client connecting to server | Rainer Gerhards | 2008-05-26 | 2 | -13/+52 |
| | | | | | | | | must match hostname in send action | ||||
| * | improved gtls error reporting | Rainer Gerhards | 2008-05-26 | 2 | -7/+26 |
| | | |||||
| * | checking if client provided a cert and complain if not | Rainer Gerhards | 2008-05-23 | 1 | -1/+3 |
| | | |||||
| * | updated TLS documentation with HOWTO on certificate generation | Rainer Gerhards | 2008-05-23 | 1 | -11/+113 |
| | | |||||
| * | changed config directive name to reflect different use | Rainer Gerhards | 2008-05-22 | 3 | -25/+23 |
| | | | | | | | | | | | | $ActionSendStreamDriverCertFingerprint is now $ActionSendStreamDriverPermittedPeer and can be used both for fingerprint and name authentication (similar to the input side) | ||||
| * | added x509/name authentication (so far based on dnsName only) | Rainer Gerhards | 2008-05-22 | 1 | -58/+137 |
| | | |||||
| * | added code to pull the subjectAltName - dNSName | Rainer Gerhards | 2008-05-21 | 2 | -3/+23 |
| | | |||||
| * | fixed invalid prototype | Rainer Gerhards | 2008-05-21 | 1 | -1/+1 |
| | | |||||
| * | implemented x509/certvalid "authentication" | Rainer Gerhards | 2008-05-21 | 5 | -7/+286 |
| | | |||||
* | | bugfix: sender information (fromhost et al) was missing in imudp | Rainer Gerhards | 2008-05-21 | 2 | -1/+3 |
| | | | | | | | | thanks to sandiso for reporting this bug | ||||
* | | Merge branch 'beta' | Rainer Gerhards | 2008-05-21 | 2 | -1/+5 |
|\ \ | | | | | | | | | | | | | | | | Conflicts: ChangeLog | ||||
| * | | bugfix: imklog went into an endless loop if a PRI value was inside | Rainer Gerhards | 2008-05-21 | 2 | -1/+6 |
| | | | | | | | | | | | | | | | | | | a kernel log message This is an unusual case under Linux, and a frequent one under BSD | ||||
* | | | bumping version number | Rainer Gerhards | 2008-05-21 | 3 | -2/+4 |
| | | | |||||
* | | | finalizing v3.19.3v3.19.3 | Rainer Gerhards | 2008-05-21 | 2 | -2/+2 |
| | | | |||||
* | | | Merge branch 'ietf-tls' | Rainer Gerhards | 2008-05-21 | 26 | -112/+742 |
|\ \ \ | | |/ | |/| | | | | | | | | | | Conflicts: ChangeLog | ||||
| * | | added some forgotten doc | Rainer Gerhards | 2008-05-21 | 2 | -12/+27 |
| | | | |||||
| * | | added new transport auth methods to doc set | Rainer Gerhards | 2008-05-21 | 5 | -9/+86 |
| | | | |||||
| * | | re-enabled anon mode (failed if client did not provide cert) | Rainer Gerhards | 2008-05-21 | 2 | -4/+7 |
| | | |