summaryrefslogtreecommitdiff
path: root/templates/system
AgeCommit message (Collapse)Author
2010-08-17update help text to use val_helpAn-Cheng Huang
2010-08-16remove more low-level config dir usagesAn-Cheng Huang
2010-07-21Fix completion on multi-type nodeStephen Hemminger
Workaround for bug 5887
2010-07-21Add completion for text fields with limited valuesStephen Hemminger
For all nodes that do 'syntax:expression: $VAR(@) in' add allowed tag to show possible values
2010-07-21Fix formatting of static-host mapping val helpStephen Hemminger
2010-07-21Fix help completion textStephen Hemminger
Use ipv4net when Address/prefix expected Use ipv4 where Address expected
2010-07-20Use pgrep to count number of matching processesStephen Hemminger
pgrep has simple flag to do what the ps | wc -l was doing.
2010-07-19fix typo, val_help, etc.An-Cheng Huang
2010-07-19Convert syslog commands to new CLI help styleStephen Hemminger
2010-07-19Use val_help: features to format betterStephen Hemminger
Previous change did not format val-help tag correctly
2010-07-19Revise static-host-mappingStephen Hemminger
Use ipv4,ipv6 for host mapping address which uses internal CLI syntax check. Revise help text to match CLI standard
2010-07-19Convert public-keys help to new formatStephen Hemminger
2010-07-19Fix language in help text for loadkeyStephen Hemminger
2010-07-16Remove verbs from all help messagesStephen Hemminger
Per current policy remove verb from all help messages in th is package
2010-07-06Allow incorrect user to be deletedStephen Hemminger
Avoid password checks on delete. Bug 5418
2010-07-06Change user name validationStephen Hemminger
Do username validation in perl script. This allows for checking for what is allowed, versus what is recommended. For compatiablity we allow things like upper case user names which but this is not recommended so these names produce a warning.
2010-06-15Remove unnecessary :expression: syntaxStephen Hemminger
Several templates can use simplified non-expression syntax
2010-03-01Bugfix 5377: strict-dad must be applied before interfaces are configuredBob Gilligan
2010-02-23Bugfix 5377: Add parameter to control behavior when DAD fails.Bob Gilligan
RFC-4862 requires that IPv6 operation on an interface be disabled when DAD fails on a link-local address. The kernel IPv6 code supports this feature, but doesn't enable it by default. This change provides a configurable parameter to control this behavior, but, like the kenrnel, disables it by default.
2010-02-17Add support for options in keyfileStephen Hemminger
The sshd file format has optional options; copy them to a placeholder node and generate to authorized_keys Better error message when wrong number of arguments.
2010-02-17Handle DSA keysStephen Hemminger
Bug 5350 Need some changes to support DSA keys (Protocol V2). Also add support for options in key file.
2010-02-03Set system host-name and time-zone firstStephen Hemminger
Bug 4754 Want correct host-name for DHCP to work right later under interfaces. Want timezone correct so that any services started that print time information have correct data.
2010-02-02Run login update as rootStephen Hemminger
Need ability to open file of new user (to load authorized key). So move sudo to template.
2010-02-02Static host-name mapping changesStephen Hemminger
Fix help text (Bug 5254) and allow IPV6 static mapping (Bug 5298)
2010-02-02Add help string for system ip neighborStephen Hemminger
Bug 5285
2010-02-02Add help for system ip arpStephen Hemminger
Bug 5286
2010-01-26Add additional check that new user doesn't exist in NSSStephen Hemminger
If user exists in NSS (LDAP, TACACS+) but not on local machine, then it can not be changed with CLI. useradd will fail (user exists), and usermod will fail (can't find user in passwd file). Bug 5249
2010-01-26Don't allow vyatta configured accounts to overlap internal accountsStephen Hemminger
Bug 5269 This prevents user from doing something harmful like making a user named quagga or cron and putting vbash on that account.
2010-01-19fix bug 5226: Hostname does not allow number as first charRobert Bays
2010-01-19Restrict radius-server timeout valueStephen Hemminger
Values > 30 are likely to cause login timeout, so don't allow them.
2009-12-04Add back public-key templatesStephen Hemminger
Move them under user/node.tag/authorization
2009-12-04Rearrange the public-key configuration schemaStephen Hemminger
New syntax: system login user vyatta authentication public-key user@remote type ssh-rsa
2009-12-03Require key-type to be set.Stephen Hemminger
2009-12-03SSH enhancementsStephen Hemminger
Add public key support Convert allow-root and password-authentication from boolean nodes to regular nodes.
2009-12-02Changes related to co-ordination between kernel parameters and radvd.Bob Gilligan
First, we need to set the global IPv6 parameter under "all" when "disable-forwarding" is deleted because this is the parameter that actually controls whether the stack will forward IPv6 packets. Second, if router advertisements were configured while global IPv6 forwarding was disabled, we need to re-start the daemon when global IPv6 forwarding is re-enabled.
2009-12-02Co-ordinate global and per-interface IPv6 forwarding control.Bob Gilligan
Now a flag file indicates that IPv6 forwarding is disabled on a specific interface.
2009-11-30added required keyword to help text.Michael Larson
2009-10-20move priority after multi tagsslioch
2009-10-15partial fix for bug 4903.slioch
2009-09-24Bugfix 4951: Add configuration parameter to blacklist the IPv6 module.Bob Gilligan
2009-09-23Bugfix 4892: Add a config parameter to disable IPv6Bob Gilligan
Added the parameter "system ipv6 disable". If set, the module parameter "disable_ipv6=1" will be passed to the IPv6 module. This inhibits assignment of IPv6 addresses on any interfaces, effectively preventing any IPv6 communication. But it leaves the IPv6 module loaded so that applications that depend upon its existence will not fail.
2009-09-11User group fixesStephen Hemminger
Some changes to group interface: * don't allow vyattaop the new group used for operators * check for allowed syntax * add missing continuation on syntax check
2009-09-04Enforce syntax checking on passwordStephen Hemminger
Enforce syntax checks on encrypted password field to prevent user errors. But can't check salt field because it is optional and default config.boot doesn't use one! Bug: 4077
2009-09-04Revert "Validate encrypted password field"Stephen Hemminger
This reverts commit a0fe319ce069e15646077a635bc970b961124540.
2009-09-03Validate encrypted password fieldStephen Hemminger
Enforce syntax checks on encrypted password field to prevent user errors. Bug: 4077
2009-07-30Bugfix 4700: Move processing to "end" field so that param modifications are ↵Bob Gilligan
handled. In order to correctly handle cases where parameters are changed after a repository configuration has been set up, we need to do the work in an "end" field instead of a "create" field. The "create" field is only executed when the node itself is created, not when nodes below it are modified. (cherry picked from commit e500a9e4494649e0ecb523d36b28452f2e9dd326)
2009-07-17Fix some more update tagStephen Hemminger
A couple more places where update should be replaced with create because multiple values allowed. (cherry picked from commit a6c4d64593bf647e61133ef9d9383428b0ac5807)
2009-07-14Bugfix 4708: Eliminate use of "update" in non-leaf valueless nodes.Bob Gilligan
2009-06-01Change how system login update worksStephen Hemminger
Use a wrapper script in vyatta_update_login.pl and per login method objects for the update.
2009-05-27NTP management version 3Stephen Hemminger
1. Don't start NTP server at boot (network not configed yet) 2. Start NTP as needed based on vyatta config
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-19 03:26:30 +0000