michael/webmin
1
0
Fork 0
mirror of https://github.com/webmin/webmin.git synced 2026-03-15 14:52:43 +00:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
10,510 Commits 46 Branches 88 Tags
1.770
Commit Graph

186 Commits

Author SHA1 Message Date
Jamie Cameron
1dbe198aa3 Support config option to limit sessions to the original IP https://github.com/webmin/webmin/issues/244 2015-08-24 21:41:23 -07:00
Jamie Cameron
ef01659b5b Make cookie path settable https://github.com/webmin/webmin/issues/240 2015-07-27 22:29:41 -07:00
Jamie Cameron
2b77e8f020 Add options to disable TLS 1.0, 1.1 and 1.2 https://sourceforge.net/p/webadmin/bugs/4590/ 2015-05-26 21:06:06 -07:00
Jamie Cameron
9e4269ebae Add command line option to not fork 2015-05-02 15:09:53 -07:00
Jamie Cameron
ab1095e529 Disallow TRACE requests, which we don't even support 2015-04-01 16:54:38 -07:00
Jamie Cameron
c5c8f0d05f Fix IP matching function when dealing with partial networks http://virtualmin.com/node/36017 2015-02-03 15:31:57 -08:00
Jamie Cameron
7bfd7ced5d Fix timeout of unkown session error 2014-12-27 11:11:44 -08:00
Jamie Cameron
ef3cbdda13 Dalvik user agent is used by mobiile browsers 2014-12-18 16:53:18 -08:00
Jamie Cameron
bd683637c0 Log resolved hostname on login and logout http://sourceforge.net/p/webadmin/bugs/4520 2014-12-11 17:05:15 -08:00
Jamie Cameron
22af9bc18e Just having a dash doesn't mean a string is an IP range https://sourceforge.net/p/webadmin/bugs/4511/ 2014-11-30 15:02:12 -08:00
Jamie Cameron
f9ea811781 Allow caseless match 2014-11-28 17:55:00 -08:00
Jamie Cameron
1dba4990f9 Fix invalid not-equals operator 2014-10-30 12:22:52 -07:00
Perturbatio
29f9c54a57 changed display_admin_url to hide_admin_url 
changed display_admin_url to hide_admin_url and 
changed comparator to test if this value is not set to 1
 2014-10-24 15:32:57 +01:00
Perturbatio
595e72f5f7 Inverted the comparison of display_admin_url 
I've inverted the comparison of display_admin_url so 
that it must be set to 0 in order to disable it
 2014-10-24 10:47:45 +01:00
Perturbatio
6eb2314d10 Added check for display_admin_url config item 
Added check for display_admin_url config item which if not 
set to 1 will prevent the server from revealing the admin URL
when the user visits the incorrect domain
(more useful in combination with the musthost config item)
 2014-10-24 00:40:20 +01:00
Jamie Cameron
b657b9b5ab Actually respect no-ssl3 option in miniserv 2014-10-16 11:19:59 -07:00
Jamie Cameron
006326b38c Actually the main miniserv.pl PID is better https://sourceforge.net/p/webadmin/bugs/4479/ 2014-09-30 17:20:19 -07:00
Jamie Cameron
b2b453e8c4 Fix PID that is logged to utmp on login or logout https://sourceforge.net/p/webadmin/bugs/4479/ 2014-09-30 17:17:59 -07:00
Jamie Cameron
615d2a0255 Add extra protection against shelllshock, but blocking headers that look like shell functions 2014-09-29 10:32:57 -07:00
Jamie Cameron
48260ea268 Use remote IP for all authentication if trusted https://github.com/webmin/webmin/issues/168 2014-09-01 15:12:34 -07:00
Jamie Cameron
b544e9fe5c Add forgotted directory close 2014-08-20 23:02:01 -07:00
Jamie Cameron
10723c36da Undo passthrough for link.cgi as it doesn't work and may be unsafe 2014-06-28 17:53:10 -07:00
Jamie Cameron
39c21f7429 Fixes need to allow access to file.jar with correct cookie http://sourceforge.net/p/webadmin/bugs/4437/ 2014-06-28 17:49:34 -07:00
Jamie Cameron
7514112784 Remove empty block 2014-05-23 16:00:32 -07:00
Jamie Cameron
e99250fb68 Don't use text function in miniserv.pl http://virtualmin.com/node/33257 2014-05-22 09:44:50 -07:00
Jamie Cameron
fad4bc9fde Fix twofactor validation for sudo capable users http://sourceforge.net/p/webadmin/bugs/4406/ 2014-05-20 21:43:30 -07:00
Jamie Cameron
43a7f6f809 Sometimes there is no space before a cookie http://virtualmin.com/node/33174 2014-05-19 21:22:24 -07:00
Jamie Cameron
cc935c6883 Deny cookies to javascript 2014-05-14 16:53:04 -07:00
Jamie Cameron
f3613ed051 Handle missing SOMAXCONN 2014-03-25 18:54:27 -07:00
Jamie Cameron
41240a21e0 Use 'Document follows' instead of 'Bad request' for SSL redirect suggestion, as apparently this breaks some proxies https://sourceforge.net/p/webadmin/bugs/4362/ 2014-01-25 10:30:31 -08:00
Jamie Cameron
5de6687c9a Add new sudo output format 2014-01-20 17:44:36 -08:00
Jamie Cameron
2969f2f207 Add option to trust remote IP from proxy 2014-01-17 09:28:21 -08:00
Jamie Cameron
0f4d806930 Completed IPv6 network matching 2013-11-03 13:33:58 -08:00
Jamie Cameron
d79c017faf Match IPv6 address exactly in access control 2013-11-03 12:54:57 -08:00
Jamie Cameron
b178d99667 two-factor is incompatible with http auth: 2013-10-06 11:47:02 -07:00
Jamie Cameron
4ec798e1bc More work on two-factor support, including new API for provider UI 2013-09-29 12:25:20 -07:00
Jamie Cameron
7b95e948a3 Two-factor disenroll button, other fixes for authy support 2013-09-28 11:42:58 -07:00
Jamie Cameron
caaff31794 Two-factor integration with miniserv 2013-09-27 17:02:30 -07:00
Jamie Cameron
567b881709 Fix syntax for setting SSL no compression https://sourceforge.net/p/webadmin/bugs/4249/ 2013-06-05 14:30:28 -07:00
Jamie Cameron
391da09d1e Log remote IP to syslog https://sourceforge.net/tracker/?func=detail&atid=117457&aid=3606188&group_id=17457 2013-02-27 11:52:35 -08:00
Jamie Cameron
0f8ad77f44 Add cache-control header 2013-02-18 09:09:34 -08:00
Jamie Cameron
3716799d41 Add option for server-defined SSL cipher order 2013-02-09 18:26:10 -08:00
Jamie Cameron
352cad94f4 Close sockets for webmincron processes, to prevent restart fails 2013-01-27 16:33:27 -08:00
Jamie Cameron
c8f1e8afdb Add debugging lines 2013-01-12 14:37:45 -08:00
Jamie Cameron
cc7e11d0a3 Add option to disable SSL compression 2013-01-08 15:03:01 -08:00
Jamie Cameron
16abebcb74 Max line length of only 10k? This is 2012 2012-12-06 10:51:45 -08:00
Jamie Cameron
1fd931d339 Escape URLs in error messages 2012-12-06 10:31:04 -08:00
Jamie Cameron
04fc8be9c8 Fix per-user allow and deny address lists using IPv6 https://sourceforge.net/tracker/?func=detail&atid=117457&aid=3586380&group_id=17457 2012-11-12 10:49:48 -08:00
Jamie Cameron
6984d30516 Make message clearer when deleting corrupt session 2012-10-08 10:32:27 -07:00
Jamie Cameron
09abf15596 Fix IPv6 URL redirects https://sourceforge.net/tracker/?func=detail&atid=117457&aid=3565339&group_id=17457 2012-09-06 15:55:51 -07:00