michael/webmin
1
0
Fork 0
mirror of https://github.com/webmin/webmin.git synced 2026-03-02 01:02:59 +00:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
12,777 Commits 45 Branches 88 Tags
db92fa36ff877d64b0dccfd8a0ec0bac94cc6cd9
Commit Graph

220 Commits

Author SHA1 Message Date
Jamie Cameron
0b490ddbf2 Headers is local to the log function https://www.virtualmin.com/node/5493501 2018-03-20 23:06:22 -07:00
Jamie Cameron
ee0b68a0ac Config option to disable directory listijng https://github.com/webmin/webmin/issues/874 2018-03-19 20:47:53 -07:00
Jamie Cameron
aae5608dd2 Allow fall-through to unix crypt https://github.com/webmin/webmin/issues/811 2018-02-14 21:34:59 -08:00
Jamie Cameron
c651160844 Added support for SHA512 passwords https://github.com/webmin/webmin/issues/798 2018-02-04 14:17:48 -08:00
Jamie Cameron
8e85ae44bc Fix matching of IPv6 networks https://www.virtualmin.com/node/54905 2018-01-09 21:58:33 -08:00
Jamie Cameron
b30868ce16 Fix twofactor support for LDAP webmin users https://sourceforge.net/p/webadmin/bugs/5070/ 2017-12-24 21:59:51 -08:00
Jamie Cameron
1b833bb4c0 add nolog config directive to skip logging for some regexps https://github.com/webmin/webmin/issues/740 2017-12-24 16:06:06 -08:00
Jamie Cameron
626ca4fba6 Remove successful preload error message https://sourceforge.net/p/webadmin/bugs/5069/ 2017-12-20 15:55:05 -08:00
Jamie Cameron
aa26b75677 IPv6 network size is a number of bits, and so must only be divisble by 8 2017-12-08 23:29:37 -08:00
yangfl
0f9fb77369 Fix typo 2017-11-08 16:43:37 +08:00
Jamie Cameron
2b9c8f9a2a Gracefully deal with unsupported protocols https://sourceforge.net/p/webadmin/bugs/4780/ 2017-07-16 21:40:25 -07:00
Jamie Cameron
e77e26cded Always update last session time 2017-07-10 21:53:34 -07:00
Amish
2ab4bbbb02 Dont log just first message, log everything. 
Say administrator does not want IPv6 support and hence does not have Socket6 module installed. But wants PAM support but forgot to install Authen::PAM.

Since currently webmin prints just $startup_msg[0] (first message) - it will never print that "Perl module Authen::PAM needed for PAM". It will keep printing that "IPv6 support cannot be enabled". So administrator would never know what is the real error (that he needs to install "Authen::PAM")

This patch logs everything instead of just first line.
 2017-06-29 14:29:01 +05:30
Amish
27c428e613 Log if no_pam and pam_only both are set 
Some old config has no_pam set to 1. Now if administrator enables pam_only too then both are conflicting. Which makes webmin to exit with PAM error. But administrator can not figure out why? This logs additional line so that administrator know the reason.
 2017-06-29 07:39:37 +05:30
Jamie Cameron
640bc8495c IPv6 addresses need [ ] in the URL https://sourceforge.net/p/webadmin/bugs/4949/ 2017-04-27 23:23:14 -07:00
Jamie Cameron
37f0eb519e Detect the browser seen on the galaxy s6 https://www.virtualmin.com/node/51987 2017-04-27 09:04:52 -07:00
Jamie Cameron
036f695e19 Assume all .cgi scripts with #! lines that reference perl are executable internally 2017-04-08 16:51:41 -07:00
Jamie Cameron
80ea8d8b2e Close DH params file to avoid FS leakage 2017-03-26 11:54:37 -07:00
Jamie Cameron
5a19fe2e6c Deal with older Net::SSLeay versions 2017-03-12 18:02:02 -07:00
Jamie Cameron
24cf47dde0 Completed webmin per-domain cert support 2017-03-12 17:42:03 -07:00
Jamie Cameron
258490b256 Don't log empty sessions 2017-03-11 13:10:43 -08:00
Jamie Cameron
1ff6413c04 Allow : in redirect URL 2017-03-09 17:50:47 -08:00
Jamie Cameron
082c0644d6 Remove message about timeout of logged out user 2017-02-27 19:26:03 -08:00
Jamie Cameron
aec4a83306 Don't try IPv6 resolution if not enabled 2017-01-23 18:48:32 -08:00
Jamie Cameron
ce0da729ee Handle case where getaddrinfo is not available 2017-01-18 15:27:21 -08:00
Jamie Cameron
475cc4fbdf Strip out unsafe HTML from error messages 2016-10-21 15:46:23 -07:00
Jamie Cameron
0bf336d761 Fix PFS support by creating and using DH params file https://github.com/webmin/webmin/issues/413 2016-10-09 21:56:23 -07:00
Jamie Cameron
5881b223b4 inet6 constants are now in the Socket package https://www.virtualmin.com/node/40065 2016-07-24 13:12:25 -07:00
Jamie Cameron
1c9dc7b727 Log failed logins, and display in Webmin Actions Log module 2016-05-30 16:09:51 -07:00
Jamie Cameron
a6b71554c5 Pass all params to login script 2016-05-29 16:00:26 -07:00
Jamie Cameron
1cf689e931 Support interval-based webmincron time specs 2016-01-17 21:04:45 -08:00
Jamie Cameron
650c06300a Fix method of getting username from LDAP object https://sourceforge.net/p/webadmin/bugs/4695/ 2016-01-02 13:19:52 -08:00
Jamie Cameron
2feeabf152 LDAP matches aren't case sensitive http://virtualmin.com/node/38803 2015-12-08 20:50:44 -08:00
Jamie Cameron
7e95339909 Remove noisy debug line 2015-12-02 13:23:27 -08:00
Jamie Cameron
1dbe198aa3 Support config option to limit sessions to the original IP https://github.com/webmin/webmin/issues/244 2015-08-24 21:41:23 -07:00
Jamie Cameron
ef01659b5b Make cookie path settable https://github.com/webmin/webmin/issues/240 2015-07-27 22:29:41 -07:00
Jamie Cameron
2b77e8f020 Add options to disable TLS 1.0, 1.1 and 1.2 https://sourceforge.net/p/webadmin/bugs/4590/ 2015-05-26 21:06:06 -07:00
Jamie Cameron
9e4269ebae Add command line option to not fork 2015-05-02 15:09:53 -07:00
Jamie Cameron
ab1095e529 Disallow TRACE requests, which we don't even support 2015-04-01 16:54:38 -07:00
Jamie Cameron
c5c8f0d05f Fix IP matching function when dealing with partial networks http://virtualmin.com/node/36017 2015-02-03 15:31:57 -08:00
Jamie Cameron
7bfd7ced5d Fix timeout of unkown session error 2014-12-27 11:11:44 -08:00
Jamie Cameron
ef3cbdda13 Dalvik user agent is used by mobiile browsers 2014-12-18 16:53:18 -08:00
Jamie Cameron
bd683637c0 Log resolved hostname on login and logout http://sourceforge.net/p/webadmin/bugs/4520 2014-12-11 17:05:15 -08:00
Jamie Cameron
22af9bc18e Just having a dash doesn't mean a string is an IP range https://sourceforge.net/p/webadmin/bugs/4511/ 2014-11-30 15:02:12 -08:00
Jamie Cameron
f9ea811781 Allow caseless match 2014-11-28 17:55:00 -08:00
Jamie Cameron
1dba4990f9 Fix invalid not-equals operator 2014-10-30 12:22:52 -07:00
Perturbatio
29f9c54a57 changed display_admin_url to hide_admin_url 
changed display_admin_url to hide_admin_url and 
changed comparator to test if this value is not set to 1
 2014-10-24 15:32:57 +01:00
Perturbatio
595e72f5f7 Inverted the comparison of display_admin_url 
I've inverted the comparison of display_admin_url so 
that it must be set to 0 in order to disable it
 2014-10-24 10:47:45 +01:00
Perturbatio
6eb2314d10 Added check for display_admin_url config item 
Added check for display_admin_url config item which if not 
set to 1 will prevent the server from revealing the admin URL
when the user visits the incorrect domain
(more useful in combination with the musthost config item)
 2014-10-24 00:40:20 +01:00
Jamie Cameron
b657b9b5ab Actually respect no-ssl3 option in miniserv 2014-10-16 11:19:59 -07:00