| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2007-11-24 | fix yacc/lex parallel file generation | Marc Espie | |
| 2007-11-24 | cope with incorrect extra arguments; from Rodolfo Gouveia | Theo de Raadt | |
| 2007-11-24 | fix goto to jump to the right place | Reyk Floeter | |
| 2007-11-24 | some spelling fixes from Martynas Venckus | Jason McIntyre | |
| 2007-11-23 | - use either "host name" or "hostname", i decided to use "hostname" everywhere | Reyk Floeter | |
| - a URL instead of an URL (a "you-are-el") suggested by jmc@ | |||
| 2007-11-23 | re-implement the "mark" action and document it in the manpage: | Reyk Floeter | |
| it is possible to attach a mark to a session based on matching an entity (header, url, cookie, ...) and add conditional action for this mark. it works a bit like the tag/tagged keywords in pf, but i decided to pick a different name to avoid confusion. ok pyr@ gilles@ | |||
| 2007-11-23 | add cvs id | Stuart Henderson | |
| ok pyr@ | |||
| 2007-11-23 | fix typo | Stuart Henderson | |
| ok pyr@ | |||
| 2007-11-22 | shuffle some structure elements; avoid using enums in *_config structs. | Reyk Floeter | |
| 2007-11-22 | Fix relay roundrobin mode to work correctly when multiple hosts in a | Reyk Floeter | |
| table are down. Thanks to Preston Norvell at serialssolutions dot com for reporting the problem. | |||
| 2007-11-22 | add "demote", was missing. noticed by camield@ | Henning Brauer | |
| 2007-11-22 | be a bit less aggressive retrying; this keeps the message queue | Otto Moerbeek | |
| empty while in the -s period, so the poll timeout actually times out if there are no interfaces available. ok henning@ | |||
| 2007-11-22 | if the drift file is missing, reset adjfreq to zero; iirc diff from Glaser | Otto Moerbeek | |
| from a long time ago. ok ckuethe@ | |||
| 2007-11-22 | add (new) "url" protocol action, this can be used to match/filter URL | Reyk Floeter | |
| suffix/prefix expressions like "example.com/index.html?args". a digest mode allows to match against anonymized SHA1/MD5 digests of suffix/prefix expressions. | |||
| 2007-11-21 | move HTTP cookie and query lookup code from the into separate functions | Reyk Floeter | |
| (the if () else if () block was getting very big). | |||
| 2007-11-21 | spacing | Reyk Floeter | |
| 2007-11-21 | spacing | Reyk Floeter | |
| 2007-11-21 | extend action grammar with "filter value" and "expect value" as a | Reyk Floeter | |
| short form for "filter * from value" or "expect * from value". | |||
| 2007-11-21 | move digest string handling into an extra function. | Reyk Floeter | |
| 2007-11-21 | fix the tree comparison function. it turned out that it could fail | Reyk Floeter | |
| with large trees of protocol actions. | |||
| 2007-11-21 | tweak previous; | Jason McIntyre | |
| 2007-11-21 | rename the "url" filter action to "query" to use the correct term. | Reyk Floeter | |
| please update your hoststated.conf configurations. also add more examples to the manpage. alright pyr@ | |||
| 2007-11-21 | allow the http digest type to be either SHA1 or MD5 determined by the | Reyk Floeter | |
| digest string length; it is compatible to any existing SHA1-only configurations. ok pyr@ gilles@ | |||
| 2007-11-21 | more work on the "filter" action: close the connection instantly when | Reyk Floeter | |
| receiving a filtered entity, fix some remaining issues. | |||
| 2007-11-21 | document the fact that port can be specified in table statements inside | Pierre-Yves Ritschard | |
| service sections. ok reyk@ | |||
| 2007-11-21 | document hoststatectl poll. | Pierre-Yves Ritschard | |
| prompted by reyk@ | |||
| 2007-11-21 | make sure all hosts are checked when hoststatectl poll is issued, now | Pierre-Yves Ritschard | |
| that check interval can differ from table to table. ok reyk@ | |||
| 2007-11-20 | tweak previous; | Jason McIntyre | |
| 2007-11-20 | limit the number of displayed lines per node in relay_protodebug(). | Reyk Floeter | |
| 2007-11-20 | allow to use the "include" directive in tables, services, relays, and | Reyk Floeter | |
| protocols. ok pyr@ | |||
| 2007-11-20 | it may be desirable to send a HTTP error page with error code and a | Reyk Floeter | |
| meaningful message if a HTTP/HTTPS relay closes the connection for some reason. for example, a "403 Forbidden" if the request was rejected by a filter. this will be enabled with the "return error" option and is disabled by default, the standard behaviour is to silently drop the connection; the browser may display an empty page in this case. the look+feel of the HTTP error page can be customized with a CSS style sheet, but we do not intend to allow customization of the error page contents (hoststated is not a webserver!). ok pyr@ | |||
| 2007-11-20 | Allow overriding the global interval in a table. | Pierre-Yves Ritschard | |
| Table specific intervals must be multiples of the global interval. help and ok reyk@ | |||
| 2007-11-20 | NULL != NONE (but both equal 0) | Pierre-Yves Ritschard | |
| 2007-11-20 | another fix to handle "expect" and "filter" actions in the new style | Reyk Floeter | |
| correctly. ok pyr@ | |||
| 2007-11-20 | remove "unused variable" warning | Charles Longeau | |
| ok kettenis@ | |||
| 2007-11-20 | bump table name size. | Pierre-Yves Ritschard | |
| ok reyk@ | |||
| 2007-11-20 | spacing | Reyk Floeter | |
| 2007-11-20 | minor change to some relay log messages | Reyk Floeter | |
| 2007-11-19 | copy in FILES from pw_lock.3 to vipw.8: as nick points out, it should at | Jason McIntyre | |
| least document /etc/ptmp; while i'm at it, might as well tidy it up and make it consistent across these pages; | |||
| 2007-11-19 | do not hardcode make | Marc Espie | |
| 2007-11-19 | spacing | Reyk Floeter | |
| 2007-11-19 | knf (replace some ';;' with a single ';') | Reyk Floeter | |
| 2007-11-19 | do not print "Processing config {dir,file} ...." messages unless the -t | Robert Nagy | |
| or -T option is specified, which is only going to do a syntax check on the config file(s) ok henning@, deraadt@ | |||
| 2007-11-19 | rework the internal handling of protocol actions a little bit: | Reyk Floeter | |
| - allow to use a key for multiple times by appending a queue of additional matches to the tree node. for example, this allows to specify multiple "expect" or "filter" actions to white-/black-list a list of HTTP-headers, URLs, .. - prevent specifing an HTTP header for multiple times when using the expect action. - minor code shuffling | |||
| 2007-11-19 | always enable "late connect" relay mode if an "expect" or "filter" | Reyk Floeter | |
| action has been specified for the protocol. late connect mode first reads the complete request (HTTP header) before opening the inbound connection instead of relaying it line-by-line. | |||
| 2007-11-19 | move repeated code to cleanup a protocol tree into a function. | Reyk Floeter | |
| 2007-11-18 | simplify macro call; | Jason McIntyre | |
| 2007-11-18 | Add support for dumping PCI config space in hex. | Mark Kettenis | |
| ok dlg@ | |||
| 2007-11-17 | Add code to print type 1 (PCI-PCI bridge) and type 2 (CardBus bridge) devices. | Mark Kettenis | |
| 2007-11-17 | allow whitespace before = sign when reading variables from a .pc file. | Steven Mestdagh | |
| "go ahead" espie@, "makes sense" ckuethe@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |