1. 15 Oct, 2016 1 commit
    • rxcomm's avatar
      SSHFP record creation should scan nonstandard SSH port if necessary (#974) · bbe27df4
      rxcomm authored
      * sshfp records from nonstandard ports
      
      If port 22 is not open, dns_update.py will not create SSHFP records
      because it only scans port 22 for keys. This commit modifies
      dns_update.py to parse the sshd_config file for open ports, and
      then obtains keys from one of them (even if port 22 is not open).
      
      * modified test of s per JoshData request
      
      * edit CHANGELOG per JoshData
      
      * fix typo
      bbe27df4
  2. 08 Oct, 2016 2 commits
  3. 05 Oct, 2016 1 commit
  4. 28 Sep, 2016 2 commits
  5. 27 Sep, 2016 1 commit
  6. 23 Sep, 2016 6 commits
  7. 19 Sep, 2016 1 commit
  8. 18 Sep, 2016 1 commit
  9. 16 Sep, 2016 1 commit
  10. 15 Sep, 2016 1 commit
  11. 24 Aug, 2016 1 commit
  12. 22 Aug, 2016 1 commit
  13. 20 Aug, 2016 3 commits
    • Joshua Tauberer's avatar
      merge v0.19b hot fix release · 27b4edfc
      Joshua Tauberer authored
      27b4edfc
    • Joshua Tauberer's avatar
      v0.19b · ba75ff78
      Joshua Tauberer authored
      ba75ff78
    • Joshua Tauberer's avatar
      simplify how munin-cgi-graph is called to reduce the attack surface area · a14b1779
      Joshua Tauberer authored
      Seems like if REQUEST_METHOD is set to GET, then we can drop two redundant ways the query string is given. munin-cgi-graph itself reads the environment variables only, but its calls to Perl's CGI::param will look at the command line if REQUEST_METHOD is not used, otherwise it uses environment variables like CGI used to work.
      
      Since this is all behind admin auth anyway, there isn't a public vulnerability. #914 was opened without comment which lead me to notice the redundancy and worry about a vulnerability, before I realized this is admin-only anyway.
      
      The vulnerability was created by 6d6f3ea3.
      
      See #914.
      
      This is the v0.19b hotfix commit.
      a14b1779
  14. 19 Aug, 2016 1 commit
    • Joshua Tauberer's avatar
      simplify how munin-cgi-graph is called to reduce the attack surface area · 35a360ef
      Joshua Tauberer authored
      Seems like if REQUEST_METHOD is set to GET, then we can drop two redundant ways the query string is given. munin-cgi-graph itself reads the environment variables only, but its calls to Perl's CGI::param will look at the command line if REQUEST_METHOD is not used, otherwise it uses environment variables like CGI used to work.
      
      Since this is all behind admin auth anyway, there isn't a public vulnerability. #914 was opened without comment which lead me to notice the redundancy and worry about a vulnerability, before I realized this is admin-only anyway.
      35a360ef
  15. 18 Aug, 2016 3 commits
  16. 16 Aug, 2016 2 commits
  17. 15 Aug, 2016 2 commits
  18. 13 Aug, 2016 2 commits
  19. 08 Aug, 2016 6 commits
  20. 01 Aug, 2016 1 commit
    • Joshua Tauberer's avatar
      add SRV records for CardDAV/CalDAV · cf3e1cd5
      Joshua Tauberer authored
      DavDroid's latest version's account configuration no longer just asked for a hostname. Its email address & password configuration mode did not work without a SRV record.
      cf3e1cd5
  21. 29 Jul, 2016 1 commit