summaryrefslogtreecommitdiff
path: root/usr.sbin/ftp-proxy
AgeCommit message (Expand)Author
2012-09-18prio 0 is valid, therefore, I chose an "impossible" value for prio meaningHenning Brauer
2012-07-07rename prio in struct pf_rule and related structs to set_prio so it isHenning Brauer
2012-06-25log all, not log-all; ok henningJason McIntyre
2012-04-30Check for nat_range_high before creating the PF nat rule.Christiano F. Haesbaert
2012-04-05Rate-limit accepting of new connections while we are experiencingCamiel Dobbelaar
2012-03-06catch up with "on rdomain" changes; ok claudioMike Belopuhov
2012-03-04In preparation for getline and getdelim additions to libc, rename getline()Federico G. Schwindt
2011-06-22fix whitespaceStuart Henderson
2011-06-21Convert SO_RTABLE's protocol level to the SOL_SOCKET; ok claudioMike Belopuhov
2011-05-16tweak previous;Jason McIntyre
2011-05-12Make it clear that ftp-proxy needs to make outbound connections.Ryan Thomas McBride
2011-04-28divert-to is picky about the address family so adjust the ruleMike Belopuhov
2011-04-28switch ftp-proxy over to divert-to instead of rdr-to. this avoidsMike Belopuhov
2011-03-25Use the rdomain information returned by DIOCNATLOOK to install theClaudio Jeker
2010-01-13pfr.rule.*.addr.type must be initialized to PF_ADDR_NONE for things thatClaudio Jeker
2010-01-12First pass at removing the 'pf_pool' mechanism for translation and routingRyan Thomas McBride
2009-11-22Move from the PF_RULESET_FILTER world order to PF_TRANS_RULESETTheo de Raadt
2009-11-21If tagging is used use match rules instead of pass rules. This is neededClaudio Jeker
2009-09-07rdr -> rdr-toJason McIntyre
2009-09-01Bring manpage up to speed with the changes that just happend or at leastClaudio Jeker
2009-09-01Bring ftp-proxy in sync with the massive pf change just commited by Henning.Claudio Jeker
2008-06-13Better error messages. Include the function causing the problem and do notClaudio Jeker
2008-04-22Flush output buffers before closing TCP session. Fixes the case whereJoel Knight
2008-04-13Use arc4random_buf() when requesting more than a single word of outputDamien Miller
2008-02-26Don't pass quick when tagging, so the tag can be used outsideHenning Brauer
2007-08-15Some servers / proxies out there like to open the data connectionCamiel Dobbelaar
2007-08-01- -T before -tJason McIntyre
2007-08-01allow ftp-proxy to add tag statements to teh rules it insertsHenning Brauer
2007-05-31convert to new .Dd format;Jason McIntyre
2006-12-30Remove stub write callback functions now that libevent allows them to be NULL.Camiel Dobbelaar
2006-12-30Convert three instances of atoi() to strtonum() and apply sane upper bounds.Camiel Dobbelaar
2006-12-12Ignore sigpipe as libevent does not handle that for us. Confirmed byCamiel Dobbelaar
2006-12-01forgot to update the comment as wellCamiel Dobbelaar
2006-12-01use flags S/SA for consistency with the rest of pfCamiel Dobbelaar
2006-11-26repair missing DPADD requestsTheo de Raadt
2006-10-23no need to use "keep state" and "flags S/SA" in pf rules,Jason McIntyre
2006-10-15Close file descriptors before cleaning up the events, might cause a raceCamiel Dobbelaar
2006-08-30document that ftp-proxy cannot function at a raised securelevelCamiel Dobbelaar
2006-03-25unused variableCamiel Dobbelaar
2006-03-22Rework signal handling the idiomatic libevent way. From ospfd.Camiel Dobbelaar
2005-11-20.Sh SECURITY -> .Sh CAVEATSJason McIntyre
2005-11-18don't assume that close() can fail, from deraadtCamiel Dobbelaar
2005-11-17buffer overflowTheo de Raadt
2005-06-07add OpenBSD cvs tags, prompted by xsa@Camiel Dobbelaar
2005-06-07Introduce verbose option to control the logging of the pf rules.Camiel Dobbelaar
2005-05-31tweaks;Jason McIntyre
2005-05-30Don't call va_start() when we do not log. From Andrey Matveev.Camiel Dobbelaar
2005-05-27do not allow nul in the control connection.Camiel Dobbelaar
2005-05-26Import new FTP proxy. Handles IPv6 and all FTP modes. It wasCamiel Dobbelaar
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-27 01:11:40 +0000