BSD Commit Log Search

www/OPNProxy: switch to mwexecf() use

www/caddy: revision bump after trust store vs. sudo fix

www/nginx: another change here

net/upnp: safe execution change

shell_safe() is better than raw exec() although we do not have any
dynamic shell arguments to handle.  This call requires a new explode
extension (true parameter) that will be available in 25.7.8

net/frr: safe execution changes

net/upnp: service improvements - additions (#5005)

net/upnp: switch from shell_exec() to shell_safe() with automatic trim()

security/acme-client: fix legacy inclusion

net/upnp: minor transformation as mwexecf_bg() will be removed

dns/rfc2136: second iteration using mwexecfb(), no functional changes

net/frr: Fix snmp ospfd and ospf6d flags (#5025)

net/frr: Fix STATIC template interface issue, use isEmpty() in validation (#5019)

* net/frr: Fix STATIC template interface issue, use isEmpty() in validation

* Properly safeguard optional parameters

net/frr: Add hint about service reload (frr-reload) vs full restart requirement (#5022)

* net/frr: Add hint about service reload (frr-reload) vs full restart requirement

* Add missing translations

net/frr: Fix snmp ospfd and ospf6d flags

Add missing translations

net/frr: Add hint about service reload (frr-reload) vs full restart requirement

net/ndp-proxy-go: Fix naming and add docs link (#5017)

Properly safeguard optional parameters

net/frr: Fix STATIC template interface issue, use isEmpty() in validation

www/caddy: Prevent sudo on startup via skip_install_trust (#5015)

This can happen when an internal domain has been added, e.g. example.internal. Caddy will then generate a self signed certificate via smallstep CA, and on startup it tries to install a root certificate for it into the FreeBSD trust store.

If running as www user, this causes sudo to appear at boot, because that is baked into smallstep CA.

https://github.com/smallstep/truststore/blob/master/truststore_freebsd.go

Via skip_install_trust, we prevent caddy from trying this.

always skip_install_trust

www/caddy: Prevent sudo on startup for unprivileged users

This can happen when an internal domain has been added, e.g. example.internal. Caddy will then generate a self signed certificate via smallstep CA, and on startup it tries to install a root certificate for it into the FreeBSD trust store.

If running as www user, this causes sudo to appear at boot, because that is baked into smallstep CA.

Via skip_install_trust, we prevent caddy from trying this.

misc/theme-flexcolor: add rc file for handling default_scheme.css

Due to not overcomplicating this with a GUI do the lower end RC so that
we users can change this easily.

This works nicely, but the import statement is cached by the browser:

@import url('default_scheme.css');

and this needs to be fixed or the plugin split.

misc/theme-flexcolor: add rc file for handling default_scheme.css

Due to not overcomplicating this with a GUI do the lower end RC so that
we users can change this easily.

This works nicely, but the import statement is cached by the browser:

@import url('default_scheme.css');

and this needs to be fixed or the plugin split.

misc/theme-flexcolor: add rc file for handling default_scheme.css

Due to not overcomplicating this with a GUI do the lower end RC so that
we users can change this easily.

This works nicely, but the import statement is cached by the browser:

@import url('default_scheme.css');

and this needs to be fixed or the plugin split.

misc/theme-flexcolor: add rc file for handling default_scheme.css

Due to not overcomplicating this with a GUI do the lower end RC so that
we users can change this easily.

net/tayga: fix typo in static mappings (#5010)

(cherry picked from commit 4518d481f5fcbe1d9531f9da433070784e0e7c45)

net/tayga: fix typo in static mappings (#5010)

net/igmp-proxy: remove the notion of a "realif"

Actually the last in the plugin code!

dns/rfc2136: bump revision