pfSense

Restore spoofed MAC after running hostapd to keep behavior consistent with other interfaces. Ticket #841

Restore the original MAC address before running hostapd to work around a hostapd bug. Ticket #841

Try to handle when cert subject entries are arrays.

Allow a . in hostnames. Also, don't allow a space in hostname, it was adding a bunch of trailing spaces to the end of the field. Fixes #1063

Correct binaries needed.

Do not try to be smart on the package name and also use a better resulting condition testing.

Make use of the new tab menu and use _GET instead of _POST for pkg name passed in URL.

If a pkg has logging enabled in syslog, then correctly ensure that it does not get logged to one of the other logs but only to its specified log file.

Syslog.conf would end up with multiple pkg facility names on the same line. So multiple pkgs with logging enabled would end up with the previous pkg prepended to its syslog entry.

Disable redirect gateway checkbox when using shared key (you can't push with shared key). Also re-run the code to hide the local network box if the gw redirect is checked when switching server modes, since there is no need to push a specific local network when pushing the default gateway.

Use unlink here instead of an exec to rm. Remove escapeshellarg call as it isn't needed now. Fixes #1066

Confirm before deleting the interface.

Raise this to new limit of 2^16.

Do not spam console with useless messages. Also remove killall not needed anymore.

Enable LINK_DOWN event for interfaces. It will help cases similar to http://forum.pfsense.org/index.php/topic,29032.0.html

If the protocol is not set in the config, it defaults to https, so assume port 443 since the port isn't set either.

Use new style filterdns argument passing on cmd and remove hack for killall now that its not needed anymore.

Ticket #1060. Escape even the alias entry descritpions.

Use correct variable name. Also related to Ticket #847.

Make page more html friendly.

Do not output blank pkg names

Ensure inetd.conf exists

Make pfTop uniform

Temporarily killall -9 filterdns until the signal issue can be resolved. Will open a ticket

Make sure a port is always set. Remove trailing newline

Set port

Add successful user for sshlockout

Make sure host private key permissions aren't too open so sshd won't complain.

Adding webConfiguratorlockout table and code.

Preseve attributes of files during copy.

Reword auth error message to match ssh for the most part

Revert "Use -ss for syslogd. Suggested-by: Ermal"

This reverts commit c57e0d704ac08afee31e1e79f0b8228f5eb66cb1.

Use -ss for syslogd. Suggested-by: Ermal

Use -l

Unbreak Status -> System Logs -> DHCP due to chroot and new version of DHCPD.

Reformat pfsync/xmlrpc sync settings. Hopefully make it more clear to understand and use.

Do a fflush of file before closing and sync(2). Fix whitespace while here.

Make sure we cannot add interfaces by entering the link directly on url address bar. This does the same check as the one for showing the plus button on interfaces_assign.

Use pfSense_sync()

Call sync after writing the file and before returning to continue processing.

Set page title to Status: Dashboard for consistency

Store upgraded monitor IPs in gateway items, not accidentally as bogus interfaces. This was causing some configs to upgrade and then get stuck in a reassignment loop after the next reboot.

Mount rw so we can have the packages processing correctly.

Use fullpath

Ticket #911. Provide an option under system->advanced->misc to disable killing states when a gateway goes down. Possibly on 2.1+ this might be made an option specific for each gateway!

Print file name when logging an xml error.

Ticket #1047. Make the flags the same for each member interface before adding them to lagg(4)/bridge(4)

Resolves #947. Blacklist interfaces to show as possible lagg members if they are present in a lagg already.

Remove extraneous ')'. So much for php -l

Make the RRD path if it doesn't yet exist at this point.

Run ecl through php instead of executing directly.

Rework this loader.conf changing code a bit. Might help with ticket #560

Use grep -c instead of wc and awk. Also use full paths.

Eliminate a cat-to-grep

Revert "Add Active Directory group membership checking Ticket #1009"

This reverts commit ef17372492fb3d271497160a816eba64b3bcf436.

Add Active Directory group membership checking Ticket #1009

Include guiconfig.inc for auth

Revert 2c4a13d91b72400c07b965b0a522be8dde2d1110 Interface names should appear as uppercase

Revert 9c3cac0cb553e1610948e78dd119c1b0fcb04224 Interface names should appear as uppercase

Revert "Interface names should appear as uppercase"

This reverts commit 66d57db5e44650658d95345683cf4afae6680b68.

Revert "Interface names should appear as uppercase"

This reverts commit 4cea35b344c8b4444f7a5a7a244bac528b483cbc.

Revert "Interface names should appear as uppercase"

This reverts commit e8ad860fb4d19d137e9cb490c498327db8fba719.

Set net.inet.carp.log=1. Ticket #1038

Deactivate cpu graph. Will bring back in 2.1

Disable firewall rule drag and drop. Will bring this feature back in 2.1

Add exit; so the redirection actually works.

Add suggested fix from ticket #1037

Remove old reference to function. Reported-by: http://forum.pfsense.org/index.php/topic,30508.0.html

Reintroduce this optimization, but use the correct return value this time.

Unbreak sysctl handling.

Use exec()

Add pfSsh.php externalconfiglocator playback script

Nuke newline

Skip slices on bootup device

Cleanup

Use product name

Use head binary and eliminate a pipe to avoid broken pipe warning

Fix misc errors. File now restores and throws an alert when completed.

Add php header

Handle slices

Only check / and /config for config.xml. Otherwise you might step on a nanobsd installation.

Adding external configuration loader which will look on all found disks except bootup disk for config.xml. If tconfig.xml is found on an external disk then it tests the roobobj to ensure its a valid file then calls test_config() to ensure it is a valid xml file. Once the file is validated a backup_config() is called to backup the current configuration and finally the file is installed using restore_backup()

Ooops add missing or.

Increase suhosin maximum memory to avoid this error: ALERT - script tried to increase memory_limit to 268435456 bytes which is above the allowed value (attacker 'REMOTE_ADDR not set', file '/etc/inc/config.inc', line 59)

Check for pfsense root object name in config.xml as a fallback if the configured name is not found.

Ticket #1037. Move environment manipulation to the authentication script since escaping slashes is not so easz on dynamic built paths.

No need to go through the array when the key can be tested directly.

Remove temporary hack which spams console during boot.

Use php_uname where possible.

Do not exec but use php_uname

include broadcast address to allow dhcp to work.

Do not guess the defaultgw this is static info.

Resolves #1040. Fix dynamic addition of gateways from routes edit screen.

Ticket #1037. Add suggestion in the ticket for using the CA supplied to openvpn for authenticating to SSL LDAP.

Resolves #1043. Do not allow limiters in floating rules without direction. It is invalid practice and while the backend skips it the user should be warned.

Nuke trailing c/r

Nuke trailing c/r

Set memory to 256M on amd64

Fix text for the P1 table header.

Add st and si options