Commit Graph

3512 Commits

Author SHA1 Message Date
Hobby-Student
39cd031eec update ACME Client KAS by all-inkl.com 2022-08-04 22:59:10 +02:00
Frank Wall
684715cac9 security/acme-client: update changelog, refs 3066 2022-08-03 18:16:05 +02:00
Frank Wall
6454f5346f Merge pull request #3066 from jan-win1993/acme-udr
Add udr challenge type
2022-08-03 18:13:07 +02:00
Jan Winkler
64f0ca4390 Add udr challenge type 2022-08-03 18:07:44 +02:00
Franco Fichtner
c2184c76a4 www/nginx: move to password_hash() as suggested by @dabo-devconsole; closes #3063 2022-08-02 08:35:57 +02:00
Frank Wall
2d34da4a1f Merge pull request #3053 from fraenki/acme_312
security/acme-client: release 3.12
2022-08-01 10:46:37 +02:00
Franco Fichtner
4c74529f61 plugins: remove obsolete _var_mfs; closes #3002 2022-08-01 09:29:17 +02:00
Michael
6604664d90 sysutils/munin-node: Remove MFS support for /var/log (#3041) 2022-08-01 09:27:54 +02:00
Michael
1a4473098b net-mgmt/netdata: Remove MFS support for /var/log (#3040) 2022-08-01 09:27:38 +02:00
Michael
64d3e7fa81 security/maltrail: remove MFS for /var/log/ (#3039) 2022-08-01 09:27:19 +02:00
Franco Fichtner
5456249102 dns/dyndns: duplicated string in translation 2022-08-01 09:06:06 +02:00
Franco Fichtner
9f89264b38 net/haproxy: bump revision for fix 2022-08-01 08:08:50 +02:00
Franco Fichtner
e90663d0c3 www/nginx: also add release note 2022-08-01 08:00:20 +02:00
Franco Fichtner
cc0605386c www/nginx: PHP compat
PR: https://www.reddit.com/r/opnsense/comments/wa6xil/comment/iifo8oe/?context=3
2022-08-01 07:58:43 +02:00
Ad Schellevis
db2e4bcb06 sysutils/git-backup - reference defined git. (https://github.com/opnsense/plugins/issues/2994) 2022-07-29 19:46:11 +02:00
Franco Fichtner
ca778bc0d9 LICENSE: sync 2022-07-28 09:03:14 +02:00
kulikov-a
692cc8d3e7 www/nginx: tls fingerprints rfc8701 compat. (#3018)
* typo

* rfc8701

* rfc8701

* includes

* version bump

* ignore SCSVs (rfc5746 and rfc7507)

* add http_post hook

so we can add maps if needed

* Update pkg-descr
2022-07-27 21:49:28 +02:00
Frank Wall
461787e0a6 security/acme-client: relax port number restriction, closes #3005 2022-07-27 16:59:05 +02:00
Frank Wall
f7a9483bc1 security/acme-client: support uploading certificate to Vault, closes #2796 2022-07-27 16:51:27 +02:00
Frank Wall
b773bfec87 security/acme-client: simplyfi DNS service names
There is simply no point in repeating the 'API' word over and
over again for every DNS service.
2022-07-27 16:05:22 +02:00
Frank Wall
6d5604e406 security/acme-client: add support for Cloudflare Zone ID, closes #2973 2022-07-27 15:55:20 +02:00
Frank Wall
ecbf0bfafa security/acme-client: bump version 2022-07-27 15:04:57 +02:00
Frank Wall
5119e66a0f security/acme-client: fix copyright information, refs #2888 2022-07-27 14:55:59 +02:00
Nikolaj Brinch Jørgensen
472aace939 Added Simply.com (used to be UnoEuro). There is an open PR in acme.sh DEV branch #3978, that fixes dns for simply, since they removed support for the old UnoEuro REST API (V1) in favour of V2 that uses Basic Auth. (#2888)
security/acme-client: Add Simply.com DNS API
2022-07-27 14:54:15 +02:00
Frank Wall
7d682dd143 Merge pull request #3043 from g-a-c/haproxy-php8-deprecations
Re-order function parameters due to PHP8 deprecation notice
2022-07-27 14:48:52 +02:00
Frank Wall
8fad685d6e Merge pull request #3049 from jan-win1993/acme-active24
acme-client: Add Active24 challenge type
2022-07-27 14:39:17 +02:00
Jan Winkler
4025ed6571 acme-client: Add Active24 challenge type 2022-07-27 11:09:26 +02:00
Michael
d27499dbcc net/freeradius: Remove TTLS-GTC from default eap type (#3052) 2022-07-27 08:57:27 +02:00
Franco Fichtner
0be58a3abb devel/debug: try our luck here with version 9 2022-07-20 12:40:17 +02:00
Gavin Chappell
ad0905e575 missed one function 2022-07-15 21:52:43 +01:00
Gavin Chappell
19c614ee00 Re-order function parameters due to PHP8 deprecation notice
This changes the parameters for four functions in HAProxy.php.

The ACME Client appears to call these functions with positional rather than named params
so also switch the order of the parameters in these function calls in
2022-07-15 21:31:29 +01:00
Franco Fichtner
abf01bff99 www/nginx: include missing dh parameter file on 22.7 2022-07-14 08:29:25 +02:00
Franco Fichtner
835f72cc23 mail/postfix: fix missing dh parameter file on 22.7 2022-07-14 08:22:28 +02:00
Franco Fichtner
31a7d5d5b3 security/crowdsec: style and sync 2022-07-13 15:31:59 +02:00
mmetc
a427756cf2 security/crowdsec: v1.0 (#3030) 2022-07-13 15:20:24 +02:00
Franco Fichtner
307b8d995a plugins: switch to 22.7 2022-07-13 10:53:12 +02:00
Franco Fichtner
2f27420aeb www/web-proxy-useracl: remove obsolete 23.1.d 2022-07-11 15:10:01 +02:00
Franco Fichtner
fb70f2ef99 sysutils/boot-delay: remove obsolete 2022-07-11 15:08:03 +02:00
Franco Fichtner
b31bcb9210 sysutils/apcupsd: release on master as well 2022-07-11 15:06:37 +02:00
Franco Fichtner
ec1aad4c69 security/stunnel: improve pkg-descr a little 2022-07-07 08:13:38 +02:00
Ad Schellevis
6ee383dffc security/stunnel: remove optional setting chainIntermediateCAs and ship chain by default. ref https://github.com/opnsense/plugins/pull/2854
While working on the documentation I noticed my previous comment was wrong, which also invalidates the need for an optional setting. When it comes to the "CAfile" setting, the chain shouldn't be provided, for the listener (the server cert) it shouldn't matter at all if you ship the chain since it's not part of the authentication.

This commits simplifies https://github.com/opnsense/plugins/pull/2854 by removing the option. The current documentation online doesn't need any modifications for this.
2022-07-04 16:54:45 +02:00
Franco Fichtner
06a8d618fb security/stunnel: newline for sanity in previous 2022-07-04 15:02:48 +02:00
Ad Schellevis
d162124a4f Squashed commit of the following:
commit e873aa41591442e16ec0581fa8b6e8696a1821ff
Author: Ad Schellevis <ad@opnsense.org>
Date:   Mon Jul 4 14:23:32 2022 +0200

    security/stunnel: Add option to chain intermediate CAs (https://github.com/opnsense/plugins/pull/2854), better explain impact and add move to advanced

commit 1e86212ad7
Author: Johnny S. Lee <6614805+johnnyslee@users.noreply.github.com>
Date:   Mon Feb 21 09:52:26 2022 +0800

    security/stunnel: Allow GUI usage of restart action

    For example, we can now select "Restart Stunnel" from
    `Service/ACME-Client/Automations>Run-Command>System-or-Plugin-Command`
    in GUI.

commit 005af925b1
Author: Johnny S. Lee <6614805+johnnyslee@users.noreply.github.com>
Date:   Mon Feb 21 09:45:28 2022 +0800

    security/stunnel: Add option to chain intermediate CAs

    Add an option, defaults disabled, to chain intermediate CAs which is
    required when using ACME cert.
2022-07-04 14:36:27 +02:00
Franco Fichtner
a2afc161b5 sysutils/apcupsd: small mods 2022-07-04 12:48:25 +02:00
Nicola
2c56368755 sysutils/apcupsd: change minimum value for battery level and minutes settings (#3022) 2022-07-04 12:47:04 +02:00
Franco Fichtner
ffa4e71576 net/firewall: bump version for change 2022-07-04 12:27:48 +02:00
Franco Fichtner
16c91077af net-mgmt/telegraf: package next version 2022-07-04 11:32:13 +02:00
Franco Fichtner
5ae5abc543 dns/ddclient: clarify release notes 2022-07-04 11:24:50 +02:00
Mr. Johnson
799578e942 Enables basic HTTP Authentication agains Elasticsearch (#2703) 2022-06-29 21:48:54 +02:00
Franco Fichtner
2cc80901f8 mail/postfix: style sweep 2022-06-29 15:37:27 +02:00