#
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
-MAILTO=root
+MAILTO=
HOME=/
# Do all jobs in this directories
# what they do. They're here only as hints or reminders. If you are unsure
# consult the online docs. You have been warned.
-# This global SSL configuration is ignored if
-# "SSL" is not defined, or if "NOSSL" is defined.
-<IfDefine SSL>
-<IfDefine !NOSSL>
<IfModule mod_ssl.c>
#
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
- SSLLog /var/log/httpd/ssl_engine_log
- SSLLogLevel info
-
</IfModule>
-</IfDefine>
-</IfDefine>
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2005-2010 IPFire Team #
+# Copyright (C) 2007-2011 IPFire Team #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
#use warnings;
require '/var/ipfire/general-functions.pl';
+require "${General::swroot}/lang.pl";
my %outfwsettings = ();
my %checked = ();
}
if ($configline[17] && $configline[18]) {
+ $DAY = "";
if ($configline[10]){$DAY = "Mon,"}
if ($configline[11]){$DAY .= "Tue,"}
if ($configline[12]){$DAY .= "Wed,"}
$CMD = "$CMD -o $netsettings{'RED_DEV'}";
- if ($configline[9] eq "aktiv") {
+ if ( $configline[9] eq $Lang::tr{'aktiv'} && $outfwsettings{'POLICY'} eq 'MODE1' ) {
+ if ($DEBUG) {
+ print "$CMD -m limit --limit 10/minute -j LOG --log-prefix 'LOG_OUTGOINGFW '\n";
+ } else {
+ system("$CMD -m limit --limit 10/minute -j LOG --log-prefix 'LOG_OUTGOINGFW '");
+ }
+ } elsif ( $configline[9] eq $Lang::tr{'aktiv'} && $outfwsettings{'POLICY'} eq 'MODE2' ) {
if ($DEBUG) {
print "$CMD -m limit --limit 10/minute -j LOG --log-prefix 'DROP_OUTGOINGFW '\n";
} else {
etc/fcron.allow
etc/fcron.conf
-etc/fcron.cyclic
-etc/fcron.daily
+#etc/fcron.cyclic
+etc/fcron.cyclic/info.txt
+#etc/fcron.daily
+etc/fcron.daily/info.txt
etc/fcron.deny
-etc/fcron.hourly
-etc/fcron.minutely
-etc/fcron.monthly
-etc/fcron.weekly
+#etc/fcron.hourly
+etc/fcron.hourly/info.txt
+#etc/fcron.minutely
+etc/fcron.minutely/info.txt
+#etc/fcron.monthly
+etc/fcron.monthly/info.txt
+#etc/fcron.weekly
+etc/fcron.weekly/info.txt
usr/bin/fcronsighup
usr/bin/fcrontab
usr/sbin/fcron
#lib/modules/KVER-ipfire/kernel/drivers/cpufreq/cpufreq_powersave.ko
#lib/modules/KVER-ipfire/kernel/drivers/cpufreq/cpufreq_userspace.ko
#lib/modules/KVER-ipfire/kernel/drivers/crypto
-#lib/modules/KVER-ipfire/kernel/drivers/crypto/geode-aes.ko
+#lib/modules/KVER-ipfire/kernel/drivers/crypto/geode-aes.ko.off
#lib/modules/KVER-ipfire/kernel/drivers/crypto/hifn_795x.ko
#lib/modules/KVER-ipfire/kernel/drivers/crypto/padlock-aes.ko
#lib/modules/KVER-ipfire/kernel/drivers/crypto/padlock-sha.ko
#usr/lib/squid/errors/af/ERR_LIFETIME_EXP
#usr/lib/squid/errors/af/ERR_NO_RELAY
#usr/lib/squid/errors/af/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/af/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/af/ERR_READ_ERROR
#usr/lib/squid/errors/af/ERR_READ_TIMEOUT
#usr/lib/squid/errors/af/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/ar/ERR_LIFETIME_EXP
#usr/lib/squid/errors/ar/ERR_NO_RELAY
#usr/lib/squid/errors/ar/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/ar/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/ar/ERR_READ_ERROR
#usr/lib/squid/errors/ar/ERR_READ_TIMEOUT
#usr/lib/squid/errors/ar/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/az/ERR_LIFETIME_EXP
#usr/lib/squid/errors/az/ERR_NO_RELAY
#usr/lib/squid/errors/az/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/az/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/az/ERR_READ_ERROR
#usr/lib/squid/errors/az/ERR_READ_TIMEOUT
#usr/lib/squid/errors/az/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/bg/ERR_LIFETIME_EXP
#usr/lib/squid/errors/bg/ERR_NO_RELAY
#usr/lib/squid/errors/bg/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/bg/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/bg/ERR_READ_ERROR
#usr/lib/squid/errors/bg/ERR_READ_TIMEOUT
#usr/lib/squid/errors/bg/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/ca/ERR_LIFETIME_EXP
#usr/lib/squid/errors/ca/ERR_NO_RELAY
#usr/lib/squid/errors/ca/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/ca/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/ca/ERR_READ_ERROR
#usr/lib/squid/errors/ca/ERR_READ_TIMEOUT
#usr/lib/squid/errors/ca/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/cs/ERR_LIFETIME_EXP
#usr/lib/squid/errors/cs/ERR_NO_RELAY
#usr/lib/squid/errors/cs/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/cs/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/cs/ERR_READ_ERROR
#usr/lib/squid/errors/cs/ERR_READ_TIMEOUT
#usr/lib/squid/errors/cs/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/da/ERR_LIFETIME_EXP
#usr/lib/squid/errors/da/ERR_NO_RELAY
#usr/lib/squid/errors/da/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/da/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/da/ERR_READ_ERROR
#usr/lib/squid/errors/da/ERR_READ_TIMEOUT
#usr/lib/squid/errors/da/ERR_SECURE_CONNECT_FAIL
usr/lib/squid/errors/de/ERR_LIFETIME_EXP
usr/lib/squid/errors/de/ERR_NO_RELAY
usr/lib/squid/errors/de/ERR_ONLY_IF_CACHED_MISS
+usr/lib/squid/errors/de/ERR_PRECONDITION_FAILED
usr/lib/squid/errors/de/ERR_READ_ERROR
usr/lib/squid/errors/de/ERR_READ_TIMEOUT
usr/lib/squid/errors/de/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/el/ERR_LIFETIME_EXP
#usr/lib/squid/errors/el/ERR_NO_RELAY
#usr/lib/squid/errors/el/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/el/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/el/ERR_READ_ERROR
#usr/lib/squid/errors/el/ERR_READ_TIMEOUT
#usr/lib/squid/errors/el/ERR_SECURE_CONNECT_FAIL
usr/lib/squid/errors/en/ERR_LIFETIME_EXP
usr/lib/squid/errors/en/ERR_NO_RELAY
usr/lib/squid/errors/en/ERR_ONLY_IF_CACHED_MISS
+usr/lib/squid/errors/en/ERR_PRECONDITION_FAILED
usr/lib/squid/errors/en/ERR_READ_ERROR
usr/lib/squid/errors/en/ERR_READ_TIMEOUT
usr/lib/squid/errors/en/ERR_SECURE_CONNECT_FAIL
usr/lib/squid/errors/es/ERR_LIFETIME_EXP
usr/lib/squid/errors/es/ERR_NO_RELAY
usr/lib/squid/errors/es/ERR_ONLY_IF_CACHED_MISS
+usr/lib/squid/errors/es/ERR_PRECONDITION_FAILED
usr/lib/squid/errors/es/ERR_READ_ERROR
usr/lib/squid/errors/es/ERR_READ_TIMEOUT
usr/lib/squid/errors/es/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/et/ERR_LIFETIME_EXP
#usr/lib/squid/errors/et/ERR_NO_RELAY
#usr/lib/squid/errors/et/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/et/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/et/ERR_READ_ERROR
#usr/lib/squid/errors/et/ERR_READ_TIMEOUT
#usr/lib/squid/errors/et/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/fa/ERR_LIFETIME_EXP
#usr/lib/squid/errors/fa/ERR_NO_RELAY
#usr/lib/squid/errors/fa/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/fa/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/fa/ERR_READ_ERROR
#usr/lib/squid/errors/fa/ERR_READ_TIMEOUT
#usr/lib/squid/errors/fa/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/fi/ERR_LIFETIME_EXP
#usr/lib/squid/errors/fi/ERR_NO_RELAY
#usr/lib/squid/errors/fi/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/fi/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/fi/ERR_READ_ERROR
#usr/lib/squid/errors/fi/ERR_READ_TIMEOUT
#usr/lib/squid/errors/fi/ERR_SECURE_CONNECT_FAIL
usr/lib/squid/errors/fr/ERR_LIFETIME_EXP
usr/lib/squid/errors/fr/ERR_NO_RELAY
usr/lib/squid/errors/fr/ERR_ONLY_IF_CACHED_MISS
+usr/lib/squid/errors/fr/ERR_PRECONDITION_FAILED
usr/lib/squid/errors/fr/ERR_READ_ERROR
usr/lib/squid/errors/fr/ERR_READ_TIMEOUT
usr/lib/squid/errors/fr/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/he/ERR_LIFETIME_EXP
#usr/lib/squid/errors/he/ERR_NO_RELAY
#usr/lib/squid/errors/he/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/he/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/he/ERR_READ_ERROR
#usr/lib/squid/errors/he/ERR_READ_TIMEOUT
#usr/lib/squid/errors/he/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/hu/ERR_LIFETIME_EXP
#usr/lib/squid/errors/hu/ERR_NO_RELAY
#usr/lib/squid/errors/hu/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/hu/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/hu/ERR_READ_ERROR
#usr/lib/squid/errors/hu/ERR_READ_TIMEOUT
#usr/lib/squid/errors/hu/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/hu/ERR_ZERO_SIZE_OBJECT
#usr/lib/squid/errors/hy
#usr/lib/squid/errors/hy-am
+#usr/lib/squid/errors/hy-armn
#usr/lib/squid/errors/hy/ERR_ACCESS_DENIED
#usr/lib/squid/errors/hy/ERR_CACHE_ACCESS_DENIED
#usr/lib/squid/errors/hy/ERR_CACHE_MGR_ACCESS_DENIED
#usr/lib/squid/errors/hy/ERR_LIFETIME_EXP
#usr/lib/squid/errors/hy/ERR_NO_RELAY
#usr/lib/squid/errors/hy/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/hy/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/hy/ERR_READ_ERROR
#usr/lib/squid/errors/hy/ERR_READ_TIMEOUT
#usr/lib/squid/errors/hy/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/id/ERR_LIFETIME_EXP
#usr/lib/squid/errors/id/ERR_NO_RELAY
#usr/lib/squid/errors/id/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/id/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/id/ERR_READ_ERROR
#usr/lib/squid/errors/id/ERR_READ_TIMEOUT
#usr/lib/squid/errors/id/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/it/ERR_LIFETIME_EXP
#usr/lib/squid/errors/it/ERR_NO_RELAY
#usr/lib/squid/errors/it/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/it/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/it/ERR_READ_ERROR
#usr/lib/squid/errors/it/ERR_READ_TIMEOUT
#usr/lib/squid/errors/it/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/ja/ERR_LIFETIME_EXP
#usr/lib/squid/errors/ja/ERR_NO_RELAY
#usr/lib/squid/errors/ja/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/ja/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/ja/ERR_READ_ERROR
#usr/lib/squid/errors/ja/ERR_READ_TIMEOUT
#usr/lib/squid/errors/ja/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/ko/ERR_LIFETIME_EXP
#usr/lib/squid/errors/ko/ERR_NO_RELAY
#usr/lib/squid/errors/ko/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/ko/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/ko/ERR_READ_ERROR
#usr/lib/squid/errors/ko/ERR_READ_TIMEOUT
#usr/lib/squid/errors/ko/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/lt/ERR_LIFETIME_EXP
#usr/lib/squid/errors/lt/ERR_NO_RELAY
#usr/lib/squid/errors/lt/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/lt/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/lt/ERR_READ_ERROR
#usr/lib/squid/errors/lt/ERR_READ_TIMEOUT
#usr/lib/squid/errors/lt/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/lv/ERR_LIFETIME_EXP
#usr/lib/squid/errors/lv/ERR_NO_RELAY
#usr/lib/squid/errors/lv/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/lv/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/lv/ERR_READ_ERROR
#usr/lib/squid/errors/lv/ERR_READ_TIMEOUT
#usr/lib/squid/errors/lv/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/ms/ERR_LIFETIME_EXP
#usr/lib/squid/errors/ms/ERR_NO_RELAY
#usr/lib/squid/errors/ms/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/ms/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/ms/ERR_READ_ERROR
#usr/lib/squid/errors/ms/ERR_READ_TIMEOUT
#usr/lib/squid/errors/ms/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/nl/ERR_LIFETIME_EXP
#usr/lib/squid/errors/nl/ERR_NO_RELAY
#usr/lib/squid/errors/nl/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/nl/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/nl/ERR_READ_ERROR
#usr/lib/squid/errors/nl/ERR_READ_TIMEOUT
#usr/lib/squid/errors/nl/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/nl/ERR_URN_RESOLVE
#usr/lib/squid/errors/nl/ERR_WRITE_ERROR
#usr/lib/squid/errors/nl/ERR_ZERO_SIZE_OBJECT
+#usr/lib/squid/errors/oc
+#usr/lib/squid/errors/oc/ERR_ACCESS_DENIED
+#usr/lib/squid/errors/oc/ERR_CACHE_ACCESS_DENIED
+#usr/lib/squid/errors/oc/ERR_CACHE_MGR_ACCESS_DENIED
+#usr/lib/squid/errors/oc/ERR_CANNOT_FORWARD
+#usr/lib/squid/errors/oc/ERR_CONNECT_FAIL
+#usr/lib/squid/errors/oc/ERR_DIR_LISTING
+#usr/lib/squid/errors/oc/ERR_DNS_FAIL
+#usr/lib/squid/errors/oc/ERR_ESI
+#usr/lib/squid/errors/oc/ERR_FORWARDING_DENIED
+#usr/lib/squid/errors/oc/ERR_FTP_DISABLED
+#usr/lib/squid/errors/oc/ERR_FTP_FAILURE
+#usr/lib/squid/errors/oc/ERR_FTP_FORBIDDEN
+#usr/lib/squid/errors/oc/ERR_FTP_NOT_FOUND
+#usr/lib/squid/errors/oc/ERR_FTP_PUT_CREATED
+#usr/lib/squid/errors/oc/ERR_FTP_PUT_ERROR
+#usr/lib/squid/errors/oc/ERR_FTP_PUT_MODIFIED
+#usr/lib/squid/errors/oc/ERR_FTP_UNAVAILABLE
+#usr/lib/squid/errors/oc/ERR_ICAP_FAILURE
+#usr/lib/squid/errors/oc/ERR_INVALID_REQ
+#usr/lib/squid/errors/oc/ERR_INVALID_RESP
+#usr/lib/squid/errors/oc/ERR_INVALID_URL
+#usr/lib/squid/errors/oc/ERR_LIFETIME_EXP
+#usr/lib/squid/errors/oc/ERR_NO_RELAY
+#usr/lib/squid/errors/oc/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/oc/ERR_PRECONDITION_FAILED
+#usr/lib/squid/errors/oc/ERR_READ_ERROR
+#usr/lib/squid/errors/oc/ERR_READ_TIMEOUT
+#usr/lib/squid/errors/oc/ERR_SECURE_CONNECT_FAIL
+#usr/lib/squid/errors/oc/ERR_SHUTTING_DOWN
+#usr/lib/squid/errors/oc/ERR_SOCKET_FAILURE
+#usr/lib/squid/errors/oc/ERR_TOO_BIG
+#usr/lib/squid/errors/oc/ERR_UNSUP_HTTPVERSION
+#usr/lib/squid/errors/oc/ERR_UNSUP_REQ
+#usr/lib/squid/errors/oc/ERR_URN_RESOLVE
+#usr/lib/squid/errors/oc/ERR_WRITE_ERROR
+#usr/lib/squid/errors/oc/ERR_ZERO_SIZE_OBJECT
#usr/lib/squid/errors/pl
#usr/lib/squid/errors/pl-pl
#usr/lib/squid/errors/pl/ERR_ACCESS_DENIED
#usr/lib/squid/errors/pl/ERR_LIFETIME_EXP
#usr/lib/squid/errors/pl/ERR_NO_RELAY
#usr/lib/squid/errors/pl/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/pl/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/pl/ERR_READ_ERROR
#usr/lib/squid/errors/pl/ERR_READ_TIMEOUT
#usr/lib/squid/errors/pl/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/pt-br/ERR_LIFETIME_EXP
#usr/lib/squid/errors/pt-br/ERR_NO_RELAY
#usr/lib/squid/errors/pt-br/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/pt-br/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/pt-br/ERR_READ_ERROR
#usr/lib/squid/errors/pt-br/ERR_READ_TIMEOUT
#usr/lib/squid/errors/pt-br/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/pt/ERR_LIFETIME_EXP
#usr/lib/squid/errors/pt/ERR_NO_RELAY
#usr/lib/squid/errors/pt/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/pt/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/pt/ERR_READ_ERROR
#usr/lib/squid/errors/pt/ERR_READ_TIMEOUT
#usr/lib/squid/errors/pt/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/ro/ERR_LIFETIME_EXP
#usr/lib/squid/errors/ro/ERR_NO_RELAY
#usr/lib/squid/errors/ro/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/ro/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/ro/ERR_READ_ERROR
#usr/lib/squid/errors/ro/ERR_READ_TIMEOUT
#usr/lib/squid/errors/ro/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/ru/ERR_LIFETIME_EXP
#usr/lib/squid/errors/ru/ERR_NO_RELAY
#usr/lib/squid/errors/ru/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/ru/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/ru/ERR_READ_ERROR
#usr/lib/squid/errors/ru/ERR_READ_TIMEOUT
#usr/lib/squid/errors/ru/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/sk/ERR_LIFETIME_EXP
#usr/lib/squid/errors/sk/ERR_NO_RELAY
#usr/lib/squid/errors/sk/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/sk/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/sk/ERR_READ_ERROR
#usr/lib/squid/errors/sk/ERR_READ_TIMEOUT
#usr/lib/squid/errors/sk/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/sk/ERR_WRITE_ERROR
#usr/lib/squid/errors/sk/ERR_ZERO_SIZE_OBJECT
#usr/lib/squid/errors/sr
+#usr/lib/squid/errors/sr-cyrl
+#usr/lib/squid/errors/sr-cyrl/ERR_ACCESS_DENIED
+#usr/lib/squid/errors/sr-cyrl/ERR_CACHE_ACCESS_DENIED
+#usr/lib/squid/errors/sr-cyrl/ERR_CACHE_MGR_ACCESS_DENIED
+#usr/lib/squid/errors/sr-cyrl/ERR_CANNOT_FORWARD
+#usr/lib/squid/errors/sr-cyrl/ERR_CONNECT_FAIL
+#usr/lib/squid/errors/sr-cyrl/ERR_DIR_LISTING
+#usr/lib/squid/errors/sr-cyrl/ERR_DNS_FAIL
+#usr/lib/squid/errors/sr-cyrl/ERR_ESI
+#usr/lib/squid/errors/sr-cyrl/ERR_FORWARDING_DENIED
+#usr/lib/squid/errors/sr-cyrl/ERR_FTP_DISABLED
+#usr/lib/squid/errors/sr-cyrl/ERR_FTP_FAILURE
+#usr/lib/squid/errors/sr-cyrl/ERR_FTP_FORBIDDEN
+#usr/lib/squid/errors/sr-cyrl/ERR_FTP_NOT_FOUND
+#usr/lib/squid/errors/sr-cyrl/ERR_FTP_PUT_CREATED
+#usr/lib/squid/errors/sr-cyrl/ERR_FTP_PUT_ERROR
+#usr/lib/squid/errors/sr-cyrl/ERR_FTP_PUT_MODIFIED
+#usr/lib/squid/errors/sr-cyrl/ERR_FTP_UNAVAILABLE
+#usr/lib/squid/errors/sr-cyrl/ERR_ICAP_FAILURE
+#usr/lib/squid/errors/sr-cyrl/ERR_INVALID_REQ
+#usr/lib/squid/errors/sr-cyrl/ERR_INVALID_RESP
+#usr/lib/squid/errors/sr-cyrl/ERR_INVALID_URL
+#usr/lib/squid/errors/sr-cyrl/ERR_LIFETIME_EXP
+#usr/lib/squid/errors/sr-cyrl/ERR_NO_RELAY
+#usr/lib/squid/errors/sr-cyrl/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/sr-cyrl/ERR_PRECONDITION_FAILED
+#usr/lib/squid/errors/sr-cyrl/ERR_READ_ERROR
+#usr/lib/squid/errors/sr-cyrl/ERR_READ_TIMEOUT
+#usr/lib/squid/errors/sr-cyrl/ERR_SECURE_CONNECT_FAIL
+#usr/lib/squid/errors/sr-cyrl/ERR_SHUTTING_DOWN
+#usr/lib/squid/errors/sr-cyrl/ERR_SOCKET_FAILURE
+#usr/lib/squid/errors/sr-cyrl/ERR_TOO_BIG
+#usr/lib/squid/errors/sr-cyrl/ERR_UNSUP_HTTPVERSION
+#usr/lib/squid/errors/sr-cyrl/ERR_UNSUP_REQ
+#usr/lib/squid/errors/sr-cyrl/ERR_URN_RESOLVE
+#usr/lib/squid/errors/sr-cyrl/ERR_WRITE_ERROR
+#usr/lib/squid/errors/sr-cyrl/ERR_ZERO_SIZE_OBJECT
#usr/lib/squid/errors/sr-latn
#usr/lib/squid/errors/sr-latn-cs
#usr/lib/squid/errors/sr-latn/ERR_ACCESS_DENIED
#usr/lib/squid/errors/sr-latn/ERR_LIFETIME_EXP
#usr/lib/squid/errors/sr-latn/ERR_NO_RELAY
#usr/lib/squid/errors/sr-latn/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/sr-latn/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/sr-latn/ERR_READ_ERROR
#usr/lib/squid/errors/sr-latn/ERR_READ_TIMEOUT
#usr/lib/squid/errors/sr-latn/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/sv/ERR_LIFETIME_EXP
#usr/lib/squid/errors/sv/ERR_NO_RELAY
#usr/lib/squid/errors/sv/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/sv/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/sv/ERR_READ_ERROR
#usr/lib/squid/errors/sv/ERR_READ_TIMEOUT
#usr/lib/squid/errors/sv/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/templates/ERR_LIFETIME_EXP
#usr/lib/squid/errors/templates/ERR_NO_RELAY
#usr/lib/squid/errors/templates/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/templates/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/templates/ERR_READ_ERROR
#usr/lib/squid/errors/templates/ERR_READ_TIMEOUT
#usr/lib/squid/errors/templates/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/th/ERR_LIFETIME_EXP
#usr/lib/squid/errors/th/ERR_NO_RELAY
#usr/lib/squid/errors/th/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/th/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/th/ERR_READ_ERROR
#usr/lib/squid/errors/th/ERR_READ_TIMEOUT
#usr/lib/squid/errors/th/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/tr/ERR_LIFETIME_EXP
#usr/lib/squid/errors/tr/ERR_NO_RELAY
#usr/lib/squid/errors/tr/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/tr/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/tr/ERR_READ_ERROR
#usr/lib/squid/errors/tr/ERR_READ_TIMEOUT
#usr/lib/squid/errors/tr/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/uk/ERR_LIFETIME_EXP
#usr/lib/squid/errors/uk/ERR_NO_RELAY
#usr/lib/squid/errors/uk/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/uk/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/uk/ERR_READ_ERROR
#usr/lib/squid/errors/uk/ERR_READ_TIMEOUT
#usr/lib/squid/errors/uk/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/uz/ERR_LIFETIME_EXP
#usr/lib/squid/errors/uz/ERR_NO_RELAY
#usr/lib/squid/errors/uz/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/uz/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/uz/ERR_READ_ERROR
#usr/lib/squid/errors/uz/ERR_READ_TIMEOUT
#usr/lib/squid/errors/uz/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/uz/ERR_URN_RESOLVE
#usr/lib/squid/errors/uz/ERR_WRITE_ERROR
#usr/lib/squid/errors/uz/ERR_ZERO_SIZE_OBJECT
+#usr/lib/squid/errors/vi
+#usr/lib/squid/errors/vi-vn
+#usr/lib/squid/errors/vi/ERR_ACCESS_DENIED
+#usr/lib/squid/errors/vi/ERR_CACHE_ACCESS_DENIED
+#usr/lib/squid/errors/vi/ERR_CACHE_MGR_ACCESS_DENIED
+#usr/lib/squid/errors/vi/ERR_CANNOT_FORWARD
+#usr/lib/squid/errors/vi/ERR_CONNECT_FAIL
+#usr/lib/squid/errors/vi/ERR_DIR_LISTING
+#usr/lib/squid/errors/vi/ERR_DNS_FAIL
+#usr/lib/squid/errors/vi/ERR_ESI
+#usr/lib/squid/errors/vi/ERR_FORWARDING_DENIED
+#usr/lib/squid/errors/vi/ERR_FTP_DISABLED
+#usr/lib/squid/errors/vi/ERR_FTP_FAILURE
+#usr/lib/squid/errors/vi/ERR_FTP_FORBIDDEN
+#usr/lib/squid/errors/vi/ERR_FTP_NOT_FOUND
+#usr/lib/squid/errors/vi/ERR_FTP_PUT_CREATED
+#usr/lib/squid/errors/vi/ERR_FTP_PUT_ERROR
+#usr/lib/squid/errors/vi/ERR_FTP_PUT_MODIFIED
+#usr/lib/squid/errors/vi/ERR_FTP_UNAVAILABLE
+#usr/lib/squid/errors/vi/ERR_ICAP_FAILURE
+#usr/lib/squid/errors/vi/ERR_INVALID_REQ
+#usr/lib/squid/errors/vi/ERR_INVALID_RESP
+#usr/lib/squid/errors/vi/ERR_INVALID_URL
+#usr/lib/squid/errors/vi/ERR_LIFETIME_EXP
+#usr/lib/squid/errors/vi/ERR_NO_RELAY
+#usr/lib/squid/errors/vi/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/vi/ERR_PRECONDITION_FAILED
+#usr/lib/squid/errors/vi/ERR_READ_ERROR
+#usr/lib/squid/errors/vi/ERR_READ_TIMEOUT
+#usr/lib/squid/errors/vi/ERR_SECURE_CONNECT_FAIL
+#usr/lib/squid/errors/vi/ERR_SHUTTING_DOWN
+#usr/lib/squid/errors/vi/ERR_SOCKET_FAILURE
+#usr/lib/squid/errors/vi/ERR_TOO_BIG
+#usr/lib/squid/errors/vi/ERR_UNSUP_HTTPVERSION
+#usr/lib/squid/errors/vi/ERR_UNSUP_REQ
+#usr/lib/squid/errors/vi/ERR_URN_RESOLVE
+#usr/lib/squid/errors/vi/ERR_WRITE_ERROR
+#usr/lib/squid/errors/vi/ERR_ZERO_SIZE_OBJECT
#usr/lib/squid/errors/zh-cn
#usr/lib/squid/errors/zh-cn/ERR_ACCESS_DENIED
#usr/lib/squid/errors/zh-cn/ERR_CACHE_ACCESS_DENIED
#usr/lib/squid/errors/zh-cn/ERR_LIFETIME_EXP
#usr/lib/squid/errors/zh-cn/ERR_NO_RELAY
#usr/lib/squid/errors/zh-cn/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/zh-cn/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/zh-cn/ERR_READ_ERROR
#usr/lib/squid/errors/zh-cn/ERR_READ_TIMEOUT
#usr/lib/squid/errors/zh-cn/ERR_SECURE_CONNECT_FAIL
#usr/lib/squid/errors/zh-tw/ERR_LIFETIME_EXP
#usr/lib/squid/errors/zh-tw/ERR_NO_RELAY
#usr/lib/squid/errors/zh-tw/ERR_ONLY_IF_CACHED_MISS
+#usr/lib/squid/errors/zh-tw/ERR_PRECONDITION_FAILED
#usr/lib/squid/errors/zh-tw/ERR_READ_ERROR
#usr/lib/squid/errors/zh-tw/ERR_READ_TIMEOUT
#usr/lib/squid/errors/zh-tw/ERR_SECURE_CONNECT_FAIL
--- /dev/null
+etc/snort/snort.conf
\ No newline at end of file
--- /dev/null
+etc/system-release
+etc/issue
+etc/httpd/conf/ssl-global.conf
+etc/rc.d/init.d/functions
+srv/web/ipfire/cgi-bin/connections.cgi
+srv/web/ipfire/cgi-bin/fireinfo.cgi
+srv/web/ipfire/cgi-bin/ids.cgi
+srv/web/ipfire/cgi-bin/index.cgi
+srv/web/ipfire/cgi-bin/media.cgi
+srv/web/ipfire/cgi-bin/pakfire.cgi
+srv/web/ipfire/cgi-bin/pppsetup.cgi
+srv/web/ipfire/cgi-bin/proxy.cgi
+srv/web/ipfire/cgi-bin/vpnmain.cgi
+usr/sbin/updxlrator
+var/ipfire/outgoing/bin/outgoingfw.pl
+srv/web/ipfire/cgi-bin/logs.cgi/firewalllog.dat
+usr/local/bin/makegraphs
+usr/local/bin/hddshutdown
+usr/local/bin/vpn-watch
--- /dev/null
+../../../common/fireinfo
\ No newline at end of file
--- /dev/null
+../../../common/snort
\ No newline at end of file
--- /dev/null
+../../../common/squid
\ No newline at end of file
--- /dev/null
+#!/bin/bash
+############################################################################
+# #
+# This file is part of the IPFire Firewall. #
+# #
+# IPFire is free software; you can redistribute it and/or modify #
+# it under the terms of the GNU General Public License as published by #
+# the Free Software Foundation; either version 3 of the License, or #
+# (at your option) any later version. #
+# #
+# IPFire is distributed in the hope that it will be useful, #
+# but WITHOUT ANY WARRANTY; without even the implied warranty of #
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
+# GNU General Public License for more details. #
+# #
+# You should have received a copy of the GNU General Public License #
+# along with IPFire; if not, write to the Free Software #
+# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA #
+# #
+# Copyright (C) 2010 IPFire-Team <info@ipfire.org>. #
+# #
+############################################################################
+#
+. /opt/pakfire/lib/functions.sh
+/usr/local/bin/backupctrl exclude >/dev/null 2>&1
+
+#
+# Remove core updates from pakfire cache to save space...
+rm -f /var/cache/pakfire/core-upgrade-*.ipfire
+#
+#Stop services
+echo Stopping Proxy
+/etc/init.d/squid stop 2>/dev/null
+echo Stopping vpn-watch
+killall vpn-watch
+
+#
+#Extract files
+extract_files
+
+#
+# Remove some addon cronjobs if the addons are not installed
+[ ! -e /opt/pakfire/db/installed/meta-cacti ] && rm -f /etc/fcron.cyclic/cacti.cron
+[ ! -e /opt/pakfire/db/installed/meta-gnump3d ] && rm -f /etc/fcron.daily/gnump3d-index
+[ ! -e /opt/pakfire/db/installed/meta-asterisk ] && rm -f /etc/fcron.minutely/wakeup.sh
+
+# Remove disable cron mails...
+sed "s|MAILTO=root|MAILTO=|g" < /var/spool/cron/root.orig > /var/tmp/root.tmp
+fcrontab /var/tmp/root.tmp
+
+#
+#Start services
+echo Starting Proxy
+/etc/init.d/squid start 2>/dev/null
+echo Rewriting Outgoing FW Rules
+/var/ipfire/outgoing/bin/outgoingfw.pl
+if [ `grep "ENABLED=on" /var/ipfire/vpn/settings` ]; then
+ echo Starting vpn-watch
+ /usr/local/bin/vpn-watch &
+fi
+
+#
+#Update Language cache
+#perl -e "require '/var/ipfire/lang.pl'; &Lang::BuildCacheLang"
+
+#Disable geode_aes modul
+mv /lib/modules/2.6.32.28-ipfire/kernel/drivers/crypto/geode-aes.ko \
+ /lib/modules/2.6.32.28-ipfire/kernel/drivers/crypto/geode-aes.ko.off >/dev/null 2>&1
+mv /lib/modules/2.6.32.28-ipfire-pae/kernel/drivers/crypto/geode-aes.ko \
+ /lib/modules/2.6.32.28-ipfire-pae/kernel/drivers/crypto/geode-aes.ko.off >/dev/null 2>&1
+mv /lib/modules/2.6.32.28-ipfire-xen/kernel/drivers/crypto/geode-aes.ko \
+ /lib/modules/2.6.32.28-ipfire-xen/kernel/drivers/crypto/geode-aes.ko.off >/dev/null 2>&1
+
+#Rebuild module dep's
+depmod 2.6.32.28-ipfire >/dev/null 2>&1
+depmod 2.6.32.28-ipfire-pae >/dev/null 2>&1
+depmod 2.6.32.28-ipfire-xen >/dev/null 2>&1
+
+#
+#Finish
+#Don't report the exitcode last command
+exit 0
#lib/modules/KVER-ipfire-pae/kernel/drivers/cpufreq/cpufreq_powersave.ko
#lib/modules/KVER-ipfire-pae/kernel/drivers/cpufreq/cpufreq_userspace.ko
#lib/modules/KVER-ipfire-pae/kernel/drivers/crypto
-#lib/modules/KVER-ipfire-pae/kernel/drivers/crypto/geode-aes.ko
+#lib/modules/KVER-ipfire-pae/kernel/drivers/crypto/geode-aes.ko.off
#lib/modules/KVER-ipfire-pae/kernel/drivers/crypto/hifn_795x.ko
#lib/modules/KVER-ipfire-pae/kernel/drivers/crypto/padlock-aes.ko
#lib/modules/KVER-ipfire-pae/kernel/drivers/crypto/padlock-sha.ko
#lib/modules/KVER-ipfire-xen/kernel/drivers/connector
#lib/modules/KVER-ipfire-xen/kernel/drivers/connector/cn.ko
#lib/modules/KVER-ipfire-xen/kernel/drivers/crypto
-#lib/modules/KVER-ipfire-xen/kernel/drivers/crypto/geode-aes.ko
+#lib/modules/KVER-ipfire-xen/kernel/drivers/crypto/geode-aes.ko.off
#lib/modules/KVER-ipfire-xen/kernel/drivers/crypto/hifn_795x.ko
#lib/modules/KVER-ipfire-xen/kernel/drivers/crypto/padlock-aes.ko
#lib/modules/KVER-ipfire-xen/kernel/drivers/crypto/padlock-sha.ko
--- /dev/null
+#usr/include/parted
+#usr/include/parted/constraint.h
+#usr/include/parted/debug.h
+#usr/include/parted/device.h
+#usr/include/parted/disk.h
+#usr/include/parted/exception.h
+#usr/include/parted/filesys.h
+#usr/include/parted/geom.h
+#usr/include/parted/natmath.h
+#usr/include/parted/parted.h
+#usr/include/parted/timer.h
+#usr/include/parted/unit.h
+#usr/lib/libparted.a
+#usr/lib/libparted.la
+#usr/lib/libparted.so
+usr/lib/libparted.so.0
+usr/lib/libparted.so.0.0.1
+#usr/lib/pkgconfig/libparted.pc
+usr/sbin/parted
+usr/sbin/partprobe
+#usr/share/info/parted.info
+#usr/share/locale/ca/LC_MESSAGES/parted.mo
+#usr/share/locale/cs/LC_MESSAGES/parted.mo
+#usr/share/locale/da/LC_MESSAGES/parted.mo
+#usr/share/locale/de/LC_MESSAGES/parted.mo
+#usr/share/locale/es/LC_MESSAGES/parted.mo
+#usr/share/locale/fr/LC_MESSAGES/parted.mo
+#usr/share/locale/gl/LC_MESSAGES/parted.mo
+#usr/share/locale/id/LC_MESSAGES/parted.mo
+#usr/share/locale/it/LC_MESSAGES/parted.mo
+#usr/share/locale/ja/LC_MESSAGES/parted.mo
+#usr/share/locale/nl/LC_MESSAGES/parted.mo
+#usr/share/locale/nn/LC_MESSAGES/parted.mo
+#usr/share/locale/pl/LC_MESSAGES/parted.mo
+#usr/share/locale/pt/LC_MESSAGES/parted.mo
+#usr/share/locale/pt_BR/LC_MESSAGES/parted.mo
+#usr/share/locale/ro/LC_MESSAGES/parted.mo
+#usr/share/locale/ru/LC_MESSAGES/parted.mo
+#usr/share/locale/rw/LC_MESSAGES/parted.mo
+#usr/share/locale/sk/LC_MESSAGES/parted.mo
+#usr/share/locale/sv/LC_MESSAGES/parted.mo
+#usr/share/locale/tr/LC_MESSAGES/parted.mo
+#usr/share/locale/uk/LC_MESSAGES/parted.mo
+#usr/share/locale/vi/LC_MESSAGES/parted.mo
+#usr/share/locale/zh_CN/LC_MESSAGES/parted.mo
+#usr/share/locale/zh_TW/LC_MESSAGES/parted.mo
+#usr/share/man/man8/parted.8
+#usr/share/man/man8/partprobe.8
###################################################
# Stop generic decode events:
-#config disable_decode_alerts
+config disable_decode_alerts
# Stop Alerts on experimental TCP options
config disable_tcpopt_experimental_alerts
#config disable_tcpopt_ttcp_alerts
# Stop Alerts on all other TCPOption type events:
-#config disable_tcpopt_alerts
+config disable_tcpopt_alerts
# Stop Alerts on invalid ip options
#config disable_ipopt_alerts
# Section: Linux Downloads
# -----------------------------------------------------------
- if ($source_url =~ m@^[h|f]t?tp://[^?]+\.(deb|rpm)$@i)
+ if (
+ ($source_url =~ m@^[h|f]t?tp://[^?]+\.(deb|rpm)$@i) ||
+ ($source_url =~ m@^[h|f]t?tp://[^?]+/distfiles/[^?]+\.(tar\.gz|tar\.bz2|tgz|zip|patch\.bz2|gz|docx|patch|pdf|exe)$@i)
+ )
{
$xlrator_url = &check_cache($source_url,$hostaddr,$username,"Linux",$mirror);
}
# Section: Avira Downloads
# -----------------------------------------------------------
- if ($source_url =~ m@^http://dl[0-9]\.avgate\.net/.*\.(htm|html|gz)$@i)
+ if (
+ ($source_url =~ m@^http://dl[0-9]\.avgate\.net/.*\.(htm|html|gz)$@i) ||
+ ($source_url =~ m@^http://80.190.130.19[4-5]/update/.*\.(htm|html|gz)$@i) ||
+ ($source_url =~ m@^http://62.146.64.14[6-7]/update/.*\.(htm|html|gz)$@i)
+ )
{
$xlrator_url = &check_cache($source_url,$hostaddr,$username,"Avira",$mirror);
}
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2007 Michael Tremer & Christian Schmidt #
+# Copyright (C) 2007-2011 IPFire Team <info@ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
push(@colour, ${Header::colourfw} );
}
-my @vpn = `/usr/local/bin/ipsecctrl I|grep erouted|cut -d"]" -f3|cut -d"=" -f4|cut -d";" -f1| sed "s|/| |g"`;
+my @vpn = `/usr/local/bin/ipsecctrl I 2>/dev/null|grep erouted|cut -d"]" -f3|cut -d"=" -f4|cut -d";" -f1| sed "s|/| |g"`;
foreach my $route (@vpn) {
chomp($route);
my @temp = split(/[\t ]+/, $route);
</tr>
<tr>
<!-- spacer -->
- <td colspan="2"> </td>
+ <td colspan="2"><font color='$Header::colourgreen'> </font></td>
</tr>
<tr>
<td colspan='2'>
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2005-2010 IPFire Team #
+# Copyright (C) 2005-2011 IPFire Team <info@ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
close(FILE);
open(FILE, ">/etc/snort/snort.conf") or die 'Unable to write snort config file.';
- my @rules = `cd /etc/snort/rules/ && ls *.rules`; # With this loop the rule might be display with correct rulepath set
+ my @rules = `cd /etc/snort/rules/ && ls *.rules 2>/dev/null`; # With this loop the rule might be display with correct rulepath set
foreach (@rules) {
chomp $_;
my $temp = join(";",@snortconfig);
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2010 IPFire Team <info@ipfire.org> #
+# Copyright (C) 2007-2011 IPFire Team <info@ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
my $connstate = &Header::connectionstatus();
- if ( -e "/var/ipfire/main/gpl-acceted" ) {
+ if ( -e "/var/ipfire/main/gpl-accepted" ) {
if ($cgiparams{'ACTION'} eq $Lang::tr{'shutdown'} || $cgiparams{'ACTION'} eq $Lang::tr{'reboot'}) {
$refresh = "<meta http-equiv='refresh' content='300;'>";
} elsif ($connstate =~ /$Lang::tr{'connecting'}/ || /$Lang::tr{'connection closed'}/ ){
# Diskspace usage warning
my @temp=();
my $temp2=();
-my @df = `/bin/df -B M -x rootfs`;
+my @df = `/bin/df -B M -P -x rootfs`;
foreach my $line (@df) {
next if $line =~ m/^Filesystem/;
if ($line =~ m/root/ ) {
}
# S.M.A.R.T. health warning
-my @files = `/bin/ls /var/run/smartctl_out_hddtemp-*`;
+my @files = `/bin/ls /var/run/smartctl_out_hddtemp-* 2>/dev/null`;
foreach my $file (@files) {
chomp ($file);
my $disk=`echo $file | cut -d"-" -f2`;
my $comment = $3;
my $packet = $4;
- $packet =~ /IN=(\w+)/; my $iface=$1; if ( $1 eq "27" ){ $iface="";}
+ $packet =~ /IN=(\w+)/; my $iface=$1; if ( $1 =~ /2./ ){ $iface="";}
$packet =~ /SRC=([\d\.]+)/; my $srcaddr=$1;
$packet =~ /DST=([\d\.]+)/; my $dstaddr=$1;
$packet =~ /MAC=([\w+\:]+)/; my $macaddr=$1;
&Header::openbox('100%', 'center', $Lang::tr{'disk usage'});
print "<table width='95%' cellspacing='5'>\n";
- open(DF,'/bin/df -B M -x rootfs|');
+ open(DF,'/bin/df -P -B M -x rootfs|');
while(<DF>){
if ($_ =~ m/^Filesystem/ ){
print <<END
close DF;
print "<tr><td colspan='7'> \n<tr><td colspan='7'><h3>Inodes</h3>\n";
- open(DF,'/bin/df -i -x rootfs|');
+ open(DF,'/bin/df -P -i -x rootfs|');
while(<DF>){
if ($_ =~ m/^Filesystem/ ){
print <<END
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2007 Michael Tremer & Christian Schmidt #
+# Copyright (C) 2007-2011 Michael Tremer & Christian Schmidt #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
&Header::openpage($Lang::tr{'pakfire configuration'}, 1);
&Header::openbigbox('100%', 'left', '', $errormessage);
-# check if reboot is necessary
-my $reboot = 0;
-if (`find /var/run/need_reboot 2>/dev/null`) {
- $reboot = 1;
-}
-
if ($pakfiresettings{'ACTION'} eq 'install'){
$pakfiresettings{'INSPAKS'} =~ s/\|/\ /g;
if ("$pakfiresettings{'FORCE'}" eq "on") {
print <<END;
<table width='95%' cellpadding='5' >
END
-if ($reboot == 1) {
+if ( -e "/var/run/need_reboot") {
print "<tr><td align='center' colspan='2'><font color='red'>$Lang::tr{'needreboot'}!</font></td></tr>";
print "<tr><td colspan='2'> </font></td></tr>"
}
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2007 Michael Tremer & Christian Schmidt #
+# Copyright (C) 2007-2011 IPFire Team <info@ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
END
;
-my $atmdev=`cat /proc/net/atm/devices | grep 0`;
+my $atmdev=`cat /proc/net/atm/devices 2>/dev/null | grep 0`;
chomp ($atmdev);
if ($atmdev ne '') {
print <<END
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2010 IPFire Team <info@ipfire.org> #
+# Copyright (C) 2007-2011 IPFire Team <info@ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
my $cachemem=0;
my $proxy1='';
my $proxy2='';
-my $replybodymaxsize=0;
my $browser_regexp='';
my $needhup = 0;
my $errormessage='';
request_body_max_size $proxysettings{'MAX_OUTGOING_SIZE'} KB
END
;
- $replybodymaxsize = 1024 * $proxysettings{'MAX_INCOMING_SIZE'};
if ($proxysettings{'MAX_INCOMING_SIZE'} > 0) {
- if (!-z $acl_src_unrestricted_ip) { print FILE "reply_body_max_size 0 deny IPFire_unrestricted_ips\n"; }
- if (!-z $acl_src_unrestricted_mac) { print FILE "reply_body_max_size 0 deny IPFire_unrestricted_mac\n"; }
+ if (!-z $acl_src_unrestricted_ip) { print FILE "reply_body_max_size none IPFire_unrestricted_ips\n"; }
+ if (!-z $acl_src_unrestricted_mac) { print FILE "reply_body_max_size none IPFire_unrestricted_mac\n"; }
if ($proxysettings{'AUTH_METHOD'} eq 'ncsa')
{
- if (!-z $extgrp) { print FILE "reply_body_max_size 0 deny for_extended_users\n"; }
+ if (!-z $extgrp) { print FILE "reply_body_max_size none for_extended_users\n"; }
}
}
- if ( $replybodymaxsize != '0' )
+ if ( $proxysettings{'MAX_INCOMING_SIZE'} != '0' )
{
- print FILE "reply_body_max_size $replybodymaxsize deny all\n\n";
+ print FILE "reply_body_max_size $proxysettings{'MAX_INCOMING_SIZE'} KB all\n\n";
}
print FILE "visible_hostname";
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2007-2010 IPFire Team info@ipfire.org #
+# Copyright (C) 2007-2011 IPFire Team info@ipfire.org #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
&General::readhasharray("${General::swroot}/vpn/config", \%confighash);
$cgiparams{'CA_NAME'} = '';
- my @status = `/usr/local/bin/ipsecctrl I`;
+ my @status = `/usr/local/bin/ipsecctrl I 2>/dev/null`;
# suggest a default name for this side
if ($cgiparams{'VPN_IP'} eq '' && -e "${General::swroot}/red/active") {
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2005-2010 IPTifre Team #
+# Copyright (C) 2005-2011 IPFire Team <info@ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
$selected{'HW_MODE'}{$wlanapsettings{'HW_MODE'}} = "selected='selected'";
$selected{'MACMODE'}{$wlanapsettings{'MACMODE'}} = "selected='selected'";
-my @channellist_cmd = `iwlist $wlanapsettings{'INTERFACE'} channel`;
+my @channellist_cmd = `iwlist $wlanapsettings{'INTERFACE'} channel 2>/dev/null`;
# get available channels
my @temp;
}
my @channellist = @temp;
-my @txpower_cmd = `iwlist $wlanapsettings{'INTERFACE'} txpower`;
+my @txpower_cmd = `iwlist $wlanapsettings{'INTERFACE'} txpower 2>/dev/null`;
# get available channels
my @temp;
done
chown root:nobody $(CONFIG_ROOT)/dhcpc
+ # Set outgoingfw.pl executable
+ chmod 755 $(CONFIG_ROOT)/outgoing/bin/outgoingfw.pl
+
@$(POSTBUILD)
chmod u-s /usr/bin/fcrontab /usr/bin/fcronsighup
mkdir -p /etc/fcron.minutely /etc/fcron.cyclic /etc/fcron.hourly \
/etc/fcron.daily /etc/fcron.weekly /etc/fcron.monthly
+
+ #Create Placeholder files
+ echo "Place scripts run minutely here ..." > /etc/fcron.minutely/info.txt
+ echo "Place scripts run cyclic here ..." > /etc/fcron.cyclic/info.txt
+ echo "Place scripts run hourly here ..." > /etc/fcron.hourly/info.txt
+ echo "Place scripts run daily here ..." > /etc/fcron.daily/info.txt
+ echo "Place scripts run weekly here ..." > /etc/fcron.weekly/info.txt
+ echo "Place scripts run monthly here ..." > /etc/fcron.monthly/info.txt
+
/usr/bin/fcrontab $(DIR_SRC)/config/cron/crontab
@rm -rf $(DIR_APP)
@$(POSTBUILD)
include Config
-VER = 2.0.2
+VER = 2.0.4
THISAPP = fireinfo-$(VER)
DL_FILE = $(THISAPP).tar.gz
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_MD5 = ed29f591ccfeeb6386a61eafcc5dc398
+$(DL_FILE)_MD5 = 7433e108cce180980189339886621539
install : $(TARGET)
rm -rvf /lib/modules/$(VER)-$(VERSUFIX)/kernel/drivers/isdn/mISDN
rm -rvf /lib/modules/$(VER)-$(VERSUFIX)/kernel/drivers/isdn/hardware/mISDN
+ # Disable geode_aes modul
+ mv /lib/modules/$(VER)-$(VERSUFIX)/kernel/drivers/crypto/geode-aes.ko \
+ /lib/modules/$(VER)-$(VERSUFIX)/kernel/drivers/crypto/geode-aes.ko.off
+
@rm -rf $(DIR_SRC)/patch-o-matic* $(DIR_SRC)/iptables* $(DIR_SRC)/squashfs* $(DIR_SRC)/netfilter-layer7-*
@$(POSTBUILD)
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2007 Michael Tremer & Christian Schmidt #
+# Copyright (C) 2007-2011 IPFire Team <info@ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
include Config
-VER = 4.10
+VER = 4.20
THISAPP = memtest86+-$(VER)
DL_FILE = $(THISAPP).tar.gz
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_MD5 = 2144f21d4489a04149b1891b8d97e8fc
+$(DL_FILE)_MD5 = ef62c2f5be616676c8c62066dedc46b3
install : $(TARGET)
--- /dev/null
+###############################################################################
+# #
+# IPFire.org - A linux based firewall #
+# Copyright (C) 2007-2011 IPFire Team <info@ipfire.org> #
+# #
+# This program is free software: you can redistribute it and/or modify #
+# it under the terms of the GNU General Public License as published by #
+# the Free Software Foundation, either version 3 of the License, or #
+# (at your option) any later version. #
+# #
+# This program is distributed in the hope that it will be useful, #
+# but WITHOUT ANY WARRANTY; without even the implied warranty of #
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
+# GNU General Public License for more details. #
+# #
+# You should have received a copy of the GNU General Public License #
+# along with this program. If not, see <http://www.gnu.org/licenses/>. #
+# #
+###############################################################################
+
+###############################################################################
+# Definitions
+###############################################################################
+
+include Config
+
+VER = 2.3
+
+THISAPP = parted-$(VER)
+DL_FILE = $(THISAPP).tar.gz
+DL_FROM = $(URL_IPFIRE)
+DIR_APP = $(DIR_SRC)/$(THISAPP)
+TARGET = $(DIR_INFO)/$(THISAPP)
+
+PROG = parted
+PAK_VER = 1
+
+DEPS = ""
+
+###############################################################################
+# Top-level Rules
+###############################################################################
+
+objects = $(DL_FILE)
+
+$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
+
+$(DL_FILE)_MD5 = 30ceb6df7e8681891e865e2fe5a7903d
+
+install : $(TARGET)
+
+check : $(patsubst %,$(DIR_CHK)/%,$(objects))
+
+download :$(patsubst %,$(DIR_DL)/%,$(objects))
+
+md5 : $(subst %,%_MD5,$(objects))
+
+dist:
+ @$(PAK)
+
+###############################################################################
+# Downloading, checking, md5sum
+###############################################################################
+
+$(patsubst %,$(DIR_CHK)/%,$(objects)) :
+ @$(CHECK)
+
+$(patsubst %,$(DIR_DL)/%,$(objects)) :
+ @$(LOAD)
+
+$(subst %,%_MD5,$(objects)) :
+ @$(MD5)
+
+###############################################################################
+# Installation Details
+###############################################################################
+
+$(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
+ @$(PREBUILD)
+ @rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar zxf $(DIR_DL)/$(DL_FILE)
+ cd $(DIR_APP) && ./configure --prefix=/usr --disable-device-mapper
+ cd $(DIR_APP) && make $(MAKETUNING)
+ cd $(DIR_APP) && make install
+ @rm -rf $(DIR_APP)
+ @$(POSTBUILD)
include Config
-VER = 2.9.0.2
+VER = 2.9.0.3
THISAPP = snort-$(VER)
DL_FILE = $(THISAPP).tar.gz
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_MD5 = 5d4dabe98bccbea166bbc86e2439f22a
+$(DL_FILE)_MD5 = 5f0c48b06453696ad32e27b9b3dd6603
install : $(TARGET)
include Config
-VER = 3.1.8
+VER = 3.1.10
THISAPP = squid-$(VER)
-DL_FILE = $(THISAPP).tar.bz2
+DL_FILE = $(THISAPP).tar.gz
DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/$(THISAPP)
TARGET = $(DIR_INFO)/$(THISAPP)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_MD5 = a8160dfba55ab7c400c622b72d39fc13
+$(DL_FILE)_MD5 = 0a233d8966a563a795065ccb654caa4f
install : $(TARGET)
$(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
@$(PREBUILD)
- @rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar jxf $(DIR_DL)/$(DL_FILE)
+ @rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar xzf $(DIR_DL)/$(DL_FILE)
cd $(DIR_APP) && ./configure --prefix=/usr --disable-nls \
--datadir=/usr/lib/squid \
ipfiremake miniupnpd
ipfiremake client175
ipfiremake powertop
+ ipfiremake parted
echo Build on $HOSTNAME > $BASEDIR/build/var/ipfire/firebuild
cat /proc/version >> $BASEDIR/build/var/ipfire/firebuild
echo >> $BASEDIR/build/var/ipfire/firebuild
## Screen Dimensions
# Find current screen size
if [ -z "${COLUMNS}" ]; then
- COLUMNS=$(stty size)
+ COLUMNS=$(stty size 2>/dev/null)
COLUMNS=${COLUMNS##* }
fi
if (strlen(restore_file) > 0) {
fprintf(flog, "unattended: Restoring Backup\n");
snprintf(commandstring, STRING_SIZE,
- "cd /harddisk && /bin/tar -xvzp -f /harddisk/var/ipfire/backup/%s", restore_file);
+ "/usr/sbin/chroot /harddisk /bin/tar -xvzp -f /var/ipfire/backup/%s -C /", restore_file);
if (mysystem(commandstring)) {
errorbox("unattended: ERROR restoring backup");
}
#!/usr/bin/perl
+###############################################################################
+# #
+# IPFire.org - A linux based firewall #
+# Copyright (C) 2007-2011 IPFire Team <info@ipfire.org> #
+# #
+# This program is free software: you can redistribute it and/or modify #
+# it under the terms of the GNU General Public License as published by #
+# the Free Software Foundation, either version 3 of the License, or #
+# (at your option) any later version. #
+# #
+# This program is distributed in the hope that it will be useful, #
+# but WITHOUT ANY WARRANTY; without even the implied warranty of #
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
+# GNU General Public License for more details. #
+# #
+# You should have received a copy of the GNU General Public License #
+# along with this program. If not, see <http://www.gnu.org/licenses/>. #
+# #
+###############################################################################
#
# IPFire HDD Shutdown state reader
#
-# This code is distributed under the terms of the GPL
-#
-# 18.09.2007 Maniacikarus - IPFire.org - maniacikarus@ipfire.org
-# 22.09.2007 Arne_F - fitzenreiter.de - arne@fitzenreiter.de
-
-# begin
my @devices = `kudzu -qps -c HD | grep device: | cut -d" " -f2 | sort | uniq`;
my $diskstats = "";
foreach (@devices){
chomp $_;
my @array = split(/\//,$_);
- $diskstats = `cat /var/run/hddstats-$array[$#array]`;
+ $diskstats = `cat /var/run/hddstats-$array[$#array] 2>/dev/null`;
chomp $diskstats;
$newdiskstats = `iostat -d -t $_ | tail -2 | head -1 | awk '{ print \$5","\$6}'`;
chomp $newdiskstats;
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2008 Michael Tremer & Christian Schmidt #
+# Copyright (C) 2008-2011 IPFire Team <info@ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
system ('/usr/bin/vnstat -u');
my @disks = `kudzu -qps -c HD | grep device: | cut -d" " -f2 | sort | uniq`;
-system("unlink /var/run/hddstatus && touch /var/run/hddstatus");
+system("unlink /var/run/hddstatus 2>/dev/null && touch /var/run/hddstatus");
foreach (@disks){
my $disk = $_;
chomp $disk;
my $newdiskstats = "";
my @array = split(/\//,$disk);
- $diskstats = `cat /var/run/hddstats-$array[$#array]`;
+ $diskstats = `cat /var/run/hddstats-$array[$#array] 2>/dev/null`;
chomp $diskstats;
my $newdiskstats = `/usr/bin/iostat -d -t $disk | tail -2 | head -1 | awk '{ print \$5","\$6}'`;
chomp $newdiskstats;
chomp $status;
if ($status !~/standby/ || $diskstats ne $newdiskstats){
- if (-e "/var/run/hddshutdown-".$array[$#array]){system("unlink /var/run/hddshutdown-".$array[$#array]);}
+ if (-e "/var/run/hddshutdown-".$array[$#array]){system("unlink /var/run/hddshutdown-".$array[$#array]." 2>/dev/null");}
}
if (-e "/var/run/hddshutdown-".$array[$#array]){$status = " standby\n";}
#!/usr/bin/perl
##################################################
-##### VPN-Watch.pl Version 0.5 #####
+##### VPN-Watch.pl Version 0.6a #####
##################################################
# #
# VPN-Watch is part of the IPFire Firewall #
$round++;
- # Reset roundcounter after 10 min. To do established check.
- if ($round > 9) { $round=0 }
+ # Reset roundcounter after 60 min. To do established check.
+ if ($round > 59) { $round=0; }
if (open(FILE, "<${General::swroot}/vpn/config")) { @vpnsettings = <FILE>;
close(FILE);
my $remoteip = `/usr/bin/ping -c 1 $remotehostname 2>/dev/null | head -n1 | awk '{print \$3}' | tr -d '()' | tr -d ':'`;chomp($remoteip);
if ($remoteip eq ""){next;if ($debug){logger("Unable to resolve $remotehostname.");}}
my $ipmatch= `echo "$status" | grep '$remoteip' | grep '$settings[2]'`;
- my $established= `echo "$status" | grep '$settings[2]' | grep 'erouted;'`;
-
- if ( $ipmatch eq '' ){
+ my $established= `echo "$status" | grep '$settings[2]' | grep 'erouted;'`;
+ my $known= `echo "$status" | grep '$settings[2]'`;
+
+ if ( $ipmatch eq '' && $known ne '' ){
logger("Remote IP for host $remotehostname($remoteip) has changed, restarting ipsec.");
system("/usr/local/bin/ipsecctrl S $settings[0]");
+ $round=0;
last; #all connections will reloaded
#remove this if ipsecctrl can restart single con again
}
- if ( ($round = 0) && ($established eq '')) {
+
+ if ($debug){logger("Round=".$round." and established=".$established);}
+
+ if ( ($round == 0) && ($established eq '')) {
logger("Connection to $remotehostname($remoteip) not erouted, restarting ipsec.");
system("/usr/local/bin/ipsecctrl S $settings[0]");
+ $round=0;
last; #all connections will reloaded
#remove this if ipsecctrl can restart single con again