Age | Commit message (Collapse) | Author | |
---|---|---|---|
2022-10-16 | login: 2fa: T874: fix PAM string generation on multiple package installations | Christian Poessinger | |
Commit da535ef5 ("login: 2fa: T874: fix Google authenticator issues") used different strings for grep and sed resulting in the same line beeing added on every installation of the package. This is only disturbing during development not during ISO build. | |||
2022-10-14 | login: 2fa: T874: fix Google authenticator issues | Christian Poessinger | |
Move default values of TOTP configuration from a global to a per user setting. This makes the entire code easier as no global configuration must be blended into the per user config dict. Also it should be possible to set the authentication window "multiple concurrent keys" individual per user. set system login user vyos authentication otp key 'gzkmajid7na2oltajs4kbuq7lq' set system login user vyos authentication plaintext-password 'vyos' | |||
2022-10-12 | system login: T874: add 2FA support for local and ssh authentication. Bugfix | goodNETnick | |
2022-10-12 | Merge pull request #1555 from goodNETnick/ssh_otp | Christian Poessinger | |
system login: T874: add 2FA support for local and ssh authentication | |||
2022-10-11 | system login: T874: add 2FA support for local and ssh authentication | goodNETnick | |
2022-10-10 | build: T3664: Add missing divert for /usr/share/pam-configs/radius | sarthurdev | |
2022-09-15 | system login: T874: add libpam-google-authenticator package to provide 2FA ↵ | goodNETnick | |
support | |||
2022-08-16 | Debian: T4584: remove version number from hostap package requirement | Christian Poessinger | |
2022-07-22 | ssh: T3212: cleanup deprecated /etc/default/ssh file | Christian Poessinger | |
2022-07-22 | dns-forwarding: T2185: cleanup deprecated /etc/powerdns files - now living ↵ | Christian Poessinger | |
in /run/powerdns | |||
2022-07-22 | ntp: T2185: cleanup deprecated /etc/ntp.conf - now living in /run/ntpd | Christian Poessinger | |
2022-07-22 | fastnetmon: T2659: also clean /etc/networks_whitelist | Christian Poessinger | |
2022-07-21 | fastnetmon: T2659: move configuration files to /run | Christian Poessinger | |
2022-07-17 | login: T4536: add all accounts to frr group | Christian Poessinger | |
2022-07-07 | syslog: T4500: Remove max-size from rsyslog leaving rotation to logrotate | sarthurdev | |
After discussion with @zsdc this was decided the better long term fix * Removes hourly logrotate cron in favour of systemd timer override | |||
2022-07-01 | smoketest: T4485: Move smoketest PKI generation to vyos-1x | sarthurdev | |
Allows easy creation of test PKI objects using `vyos.pki` module Generates objects for PKI migration tests | |||
2022-06-02 | sla: T4222: Add OWAMP and TWAMP for service sla | Viacheslav Hletenko | |
OWAMP is a command line client application and a policy daemon used to determine one way latencies between hosts. OWAMP session control uses traditional client-server communication between a control-client and a server, TWAMP (two-way active measurement protocol) Add configuration and operation modes set service sla owamp-server set service sla twamp-server run force owping 192.0.2.120 run force twping 192.0.2.190 | |||
2022-05-26 | http-api: T3412: remove unneeded packages | John Estabrook | |
2022-05-13 | Debian: T4408: add missing sshguard dependency | Christian Poessinger | |
2022-04-02 | wwan: T4324: cronjob is setup via interfaces-wwan.py - drop dedicated cron file | Christian Poessinger | |
2022-03-07 | logrotate: T4250: Fixed logrotate config generation | zsdc | |
* Removed `/var/log/auth.log` and `/var/log/messages` from `/etc/logrotate.d/rsyslog`, because they conflict with VyOS-controlled items what leads to service error. * Removed generation config file for `/var/log/messages` from `system-syslog.py` - this should be done from `syslom logs` now. * Generate each logfile from `system syslog file` to a dedicated logrotate config file. * Fixed logrotate config file names in `/etc/rsyslog.d/vyos-rsyslog.conf`. * Added default logrotate settins for `/var/log/messages` | |||
2022-03-05 | flow-accounting: T4277: delete Debian common configs | Christian Poessinger | |
2022-03-05 | conntrackd: T4259: fix daemon configuration path | Christian Poessinger | |
2022-03-05 | conntrackd: T4259: prevent startup of multiple daemon instances | Christian Poessinger | |
2022-01-30 | Merge pull request #789 from jack9603301/T3420 | Daniil Baturin | |
upnpd: T3420: Support UPNP protocol | |||
2022-01-07 | Debian: T4133: add required nfct package dependency | Christian Poessinger | |
2022-01-03 | Merge pull request #1018 from sever-sever/T3872 | Christian Poessinger | |
monitoring: T3872: Add a new feature service monitoring | |||
2022-01-03 | monitoring: T3872: Add a new feature service monitoring telegraf | Viacheslav | |
2021-12-30 | smoketest: snmp: T4124: locally connect to SNMP service and retrieve data | Christian Poessinger | |
2021-11-18 | wwan: T3795: periodically check if WWAN connection needs a reconnect | Christian Poessinger | |
(cherry picked from commit eb6247e4b464c36fa7441627b221d0db39429251) | |||
2021-11-13 | upnpd: T3420: Add miniupnpd-nftables package | jack9603301 | |
2021-11-09 | atop: T3774: Atop log file rotation fix | zsdc | |
The systemd unit for atop service is changed, so the log file name and location will be always the same. It also adds the logrotate configuration to conditionally rotate a log file. Hardcoded values: - maximum log file size: 10 MB - maximum count of files: 10 These values can be easily changed within the `/etc/logrotate.d/vyos-atop`, no additional configuration is required. Rotation will be done hourly, if necessary, according to `/etc/cron.hourly/vyos-logrotate-hourly`. This change has two benefits: - rotation strategy control can be done via logrotate, and can be exposed to CLI now; - the total size of all logs is now controlled more aggressively, so the chance to get a situation when atop logs took all the space on a drive is significantly lower. Also, if this will be necessary, rotation may be done even each minute what reduces risks related to logs size even more. | |||
2021-10-31 | openvpn: T3834: Support for Two Factor Authentication totp | Kim | |
2021-10-19 | mdns: T3917: Change to avahi-daemon for IPv4 + IPv6 mDNS repeater | sarthurdev | |
2021-10-10 | lcd: T2564: add support for hd44780 displays | Christian Poessinger | |
2021-10-07 | add openvpn-otp dependency | Kim Hagen | |
2021-09-27 | interface-names: T3869: install vyos_net_name to udev directory | John Estabrook | |
2021-08-21 | pppoe: T3090: migrate to vyos.ifconfig library to use the full potential | Christian Poessinger | |
Now that MSS clamping is done on the "per-interface" level the entire PPPoE stuff would have needed to get a full copy in GNU BASH for this or, participate in the common library. Add a new PPP ip-up script named 99-vyos-pppoe-callback which will call the vyos.ifconfig.PPPoEIf.update() function to configure everything as done with all other interfaces. This removes duplicated code for VRF assignment and route installation when a PPPoE interface is brought up or down. | |||
2021-08-21 | Debian: disable time consuming dh_strip_nondeterminism | Christian Poessinger | |
Skip dh_strip_nondeterminism - this is very time consuming and we have no non deterministic output (yet). | |||
2021-08-18 | Debian: containers: T2216: add missing dependency on uidmap | Christian Poessinger | |
Fixes the following error: vyos@vyos:~$ podman logs 2511d118563f WARN[0000] The cgroupv2 manager is set to systemd but there is no systemd user session available WARN[0000] For using systemd, you may need to login using an user session WARN[0000] Alternatively, you can enable lingering with: `loginctl enable-linger 1002` (possibly as root) WARN[0000] Falling back to --cgroup-manager=cgroupfs Error: cannot find newuidmap: exec: "newuidmap": executable file not found in $PATH | |||
2021-08-12 | login: T3746: inform users about pending reboots | Christian Poessinger | |
2021-08-08 | Debian: T3641: drop dead symlink file in /etc/init.d | Christian Poessinger | |
2021-08-08 | Debian: add missing runtime dependency on ndisc6 | Christian Poessinger | |
2021-08-04 | T3721: arm64: fastnetmon 1.2 is amd64 only until a propper arm64 build can ↵ | Runar Borge | |
be created | |||
2021-07-18 | Revert "T3641: fastnetmon package is not available for Debian Bullseye" | Christian Poessinger | |
This reverts commit 70f7f06e778efa4bd3c2ad127d66c080e1db80c5. | |||
2021-07-07 | pki: T3642: Migrate rsa-keys to PKI configuration | sarthurdev | |
2021-07-05 | T3663: python3-inotify should be a runtime dependency | John Estabrook | |
2021-07-04 | T3663: prerequisites for inotify-based watching implementations. | Daniil Baturin | |
2021-07-03 | Merge pull request #907 from sarthurdev/ipsec_cleanup | Christian Poessinger | |
ipsec: T2816: Remove legacy vyatta code that references Openswan | |||
2021-07-03 | ipsec: T2816: Remove legacy vyatta code that references Openswan | sarthurdev | |