system: make sure /var/lib/php/tmp can be accessed by "other"
This is a problem dating back to 3eba9a739e49f when a recursive
create enforced partial permissions, but lighttpd cannot create
a wwwonly-based socket if not all path components are allowed
for it as it is neither root nor wheel.
PR: https://forum.opnsense.org/index.php?topic=48372.0
Firewall: Settings: Advanced - add some toggles to disable some automatically generated rules. closes https://github.com/opnsense/core/issues/9294
Although this adds technical dept, currently a rewrite of the advanced settings page is not planned. When we do rewrite this, most settings in this page need to move to a different place inside the config.xml anyway.
System: Configuration: Defaults - refactor to mvc and add "components" which offers a configuration reset function per model (when not installed, it uses the version tags to identify them). closes https://github.com/opnsense/core/issues/8768
System: Configuration: Defaults - refactor to mvc and add "components" which offers a configuration reset function per model (when not installed, it uses the version tags to identify them). closes https://github.com/opnsense/core/issues/8768
firmware: improve the package manager upgrade for pkg 2.x
This also drops the -U for the relevant upgrade since force the
first time the upgrade then complains that it needs to update
the database although it knew that things could be updated... ;)
We thus hide the output when we know nothing should be done and
print a little more noise when the work is happening which is
mostly a win-win.
config: go 1.24 is the default and 1.25 is being used a bit
Some FreeBSD ports use older versions but let's only try to
cache the newer ones. The old versions are free to be built
and work fine, just not landing in the aux set.