Confirm before deleting the interface.
Raise this to new limit of 2^16.
Ticket #1060. Escape even the alias entry descritpions.
Use correct variable name. Also related to Ticket #847.
Make page more html friendly.
Make pfTop uniform
Reformat pfsync/xmlrpc sync settings. Hopefully make it more clear to understand and use.
Make sure we cannot add interfaces by entering the link directly on url address bar. This does the same check as the one for showing the plus button on interfaces_assign.
Set page title to Status: Dashboard for consistency
Ticket #911. Provide an option under system->advanced->misc to disable killing states when a gateway goes down. Possibly on 2.1+ this might be made an option specific for each gateway!
Resolves #947. Blacklist interfaces to show as possible lagg members if they are present in a lagg already.
Use grep -c instead of wc and awk. Also use full paths.
Eliminate a cat-to-grep
Include guiconfig.inc for auth
Revert 2c4a13d91b72400c07b965b0a522be8dde2d1110 Interface names should appear as uppercase
Revert 9c3cac0cb553e1610948e78dd119c1b0fcb04224 Interface names should appear as uppercase
Revert "Interface names should appear as uppercase"
This reverts commit 66d57db5e44650658d95345683cf4afae6680b68.
This reverts commit 4cea35b344c8b4444f7a5a7a244bac528b483cbc.
This reverts commit e8ad860fb4d19d137e9cb490c498327db8fba719.
Deactivate cpu graph. Will bring back in 2.1
Disable firewall rule drag and drop. Will bring this feature back in 2.1
Add exit; so the redirection actually works.
Remove old reference to function. Reported-by: http://forum.pfsense.org/index.php/topic,30508.0.html
Use php_uname where possible.
include broadcast address to allow dhcp to work.
Resolves #1040. Fix dynamic addition of gateways from routes edit screen.
Resolves #1043. Do not allow limiters in floating rules without direction. It is invalid practice and while the backend skips it the user should be warned.
Fix text for the P1 table header.
Add st and si options
Rename to pfInfo for consistency
Adding Diagnostics: Limiter
Increase setTimeout
Adding Diagnostics: pf Info which shows the output of pfctl -vvi and pfctl -vvI via AJAX
Cleanup code and fix dynamic firewall log reverse view, fixes #1031
Initialize variable. Ticket #1023.
Ticket #1023. Correct carp status even on the status page.
Ticket #1023. Correct the widget code bringing it full speed with latest carp code.
Add option to control automatic creation of NAT rules which assist forwarding rules that send traffic out to the same subnet it originated from.
When adding/editing a gateway, check IP alias subnets, too. Fixes #1015
Add other interfaces to local network selection and show proper names. Fixes #965
Do not save settings related to ports when protocol does not use ports. Ticket #953
Do not save fields from translation section when "Do not NAT" is checked. Ticket #952
Use correct names for integer and boolean types in DHCP options and fix typo in hexadecimal validation for strings. Fixes #962
Upon restoring a config, replacing whole sections, or editing config.xml in edit.php, prevent possible accidental lockout from DNS rebind and HTTP referrer checks by disabling them until reboot or the next time they pass, whichever comes sooner. Ticket #1027
Fix reading the ip from the right file for dyndns.
When the local port is left blank on an OpenVPN client, use 'lport 0' to direct the client to use a random source port. Fixes #1025
Save the host name and domain to a temporary location until the setup wizard is finished to prevent triggering the DNS rebind message. Fixes #1022 Also use this information to implement the redirect for changed host for ticket #455
Handling this properly when the web gui is on an alternate port number.
Make this check more general in case someone makes a wizard that changes an opt interface's IP address and wants to use the "Reload in progress" step. Ticket #455
Properly reflect ports in the GUI view of the anti-lockout rule since Ermal's changes restricted it to only ssh/gui ports.
Show CRL download link only for imported certificates or CRLs with revoked certificates.
Some CRL fixes.
Ticket #1017. Put a @ before each fwrite to silence errors. Also setup the log file in the beginning rather than on each individual function.
Resolves #1018. Provide a more unique host name for the file.
Add workaround for referrer check to not be triggered on the previous IP address when redirected by the setup wizard.
Redirect to the correct IP at the end of the setup wizard if accessing it on an IP address that was changed. Fixes #455
Fix typo in comment.
Ensure this is an array before entering the foreach loop. Fixes #1012
Avoid exec() and use php calls.
Disable CSRF checks on the backup page.
Add nocsrf flag
Fix misnamed form field on CRL import.
Fix variable names. Ticket #954
Fix case of variable name for swap usage. Ticket #477
Open link in new tab/window
Form image buttons are submit buttons and thus default buttons, causing unwanted behavior with the enter key. Use links instead, where possible.
Add style to rowhelper normal text fields in packages for consistency.
CSRF startup code has been moved to guiconfig.inc
Unbreak AJAX
Misc XSS fixes
Protect against XSS by someone broadcasting an HTML SSID... (better to be safe...)
One more potential XSS vector. Not sure how it would have text injected here, but better safe than sorry.
More notice XSS fixes.
Fix XSS issues
Fix XSS in notices.
Bring in XSS id fixes from m0n0wall
Clarify these descriptions a bit more on 1:1 edit.
Handle AJAX
NiftyCheck already included in bottom-loader.js otherwise div mainarea gets rounded twice.
Small rework of code for applying drag and drop reordering of rules and some extra checks added to fix some potential bugs. Ticket #878
Also minimizes the extent of the changes performed (useful when comparing config.xml files from before and after).
Fix handling of floating rules in the drag and drop reordering code. Fix for part of ticket #878
Move this function to allow removing it from easyrule.
Fix filter_rules_sort's compare function to know about floating rules so it won't change their order.
Use this sort before saving, so the rule just added is sorted into the proper category like the rest.
Unbreak graphs
Copy logic for when to show the cellular tab from status_rrd_graph.php. Fixes #714
Return this field to its old name to prevent a conflict of names and since the code that uses it still refers to it by that name. Issue reported at http://forum.pfsense.org/index.php/topic,29985.0.html
This caused the full name field to be ignored when creating a user and prevented making a certificate at the creation of the user (either could still be changed afterward).
Only use escapeshellarg when passing the arguments to the shell. Fixes #1005
Note that this textbox controls HTTP_REFERER hostname checks as well
This will prevent HTML pages from crafting HTML GETs against the web interface and will prevent firewall admins from being "tricked" into clicking on links that may be harmful to their firewall.
Fix misc XSS issues from davey b
Add option to System: Firmware: Settings for running gitsync after installing an update, hidden/disabled if git has not been installed yet.
Ensure csrf magic is loaded
Fix Misc XSS issues
Testing csrf-magic
Add a setting for the data type of values used with DHCP option numbers and input validation for each type. Fixes #962
Add a function type to the field types allowed, to allow more field types without directly adding all of them to row helper.
fix input validation for GRE