WebSVN – ALCASAR – Log – /conf/

Rev	Age	Author	Path	Log message	Changes
2500	2287 d 6 h	tom.houdayer	/repos/alcasar/trunk/conf/lighttpd/vhosts.d/	Add certificate chains to lighttpd configuration (otherwise some browsers can identify the certificate as insecure)	/conf/lighttpd/vhosts.d/alcasar.conf
2497	2288 d 3 h	tom.houdayer	/repos/alcasar/trunk/conf/	Remove Fail2Ban warnings about old parameter format by deleting useless fail2ban.conf modifications during installation	/conf/fail2ban.sh
2496	2288 d 4 h	tom.houdayer	/repos/alcasar/trunk/	Replace obsolete "state" iptables module to "conntrack"	/conf/etc/alcasar-iptables-local.sh /scripts/alcasar-iptables.sh
2490	2288 d 5 h	tom.houdayer	/repos/alcasar/trunk/	Add quotes to values of FreeRADIUS ldap-alcasar configuration file	/conf/radius/ldap-alcasar /scripts/alcasar-ldap.sh
2488	2288 d 14 h	lucas.echard	/repos/alcasar/trunk/	Replace Apache with Lighttpd Update fail2ban rules Change web error management Add a PEM certificate creation for Lighttpd Replace htdigest Apache tool with a bash function in alcasar-profil.sh	/conf/lighttpd /conf/lighttpd/conf.d /conf/lighttpd/conf.d/fastcgi.conf /conf/lighttpd/vhosts.d /conf/lighttpd/vhosts.d/alcasar.conf /web/errors /web/errors/error-400.html /web/errors/error-401.html /web/errors/error-403.html /web/errors/error-404.html /web/errors/error-405.html /web/errors/error-408.html /web/errors/error-410.html /web/errors/error-411.html /web/errors/error-413.html /web/errors/error-414.html /web/errors/error-415.html /web/errors/error-500.html /web/errors/error-501.html /web/errors/error-502.html /web/errors/error-503.html /web/errors/error-506.html /web/images/footer_lighttpd.png /web/js/error_translate.js /web/js/i18n.js /CHANGELOG /alcasar.sh /conf/fail2ban.sh /scripts/alcasar-CA.sh /scripts/alcasar-activity_report.sh /scripts/alcasar-archive.sh /scripts/alcasar-certificates.sh /scripts/alcasar-conf.sh /scripts/alcasar-daemon.sh /scripts/alcasar-importcert.sh /scripts/alcasar-profil.sh /scripts/alcasar-uninstall.sh /scripts/alcasar-urpmi.sh /web/acc/about.htm /web/acc/admin/services.php /web/acc/haut.php /web/acc/manager/htdocs/badusers.php /web/acc/manager/lib/add_badusers.php /web/acc/manager/lib/sql/drivers/mysql/functions.php /web/acc/manager/lib/sql/nas_list.php /web/acc/manager/lib/xlat.php /web/acc/menu.php
2487	2288 d 17 h	lucas.echard	/repos/alcasar/trunk/conf/	Fix broken fail2ban configuration	/conf/fail2ban.sh
2485	2308 d 7 h	franck	/repos/alcasar/trunk/	Prise en compte de la redirection directe d'un site en @IP:http sans havp nin proxy	/conf/etc/alcasar-site-direct /scripts/alcasar-iptables.sh
2476	2346 d 2 h	tom.houdayer	/repos/alcasar/trunk/conf/radius/	Fix username encoding in FreeRADIUS SQL accounting requests	/conf/radius/queries.conf
2471	2346 d 13 h	richard	/repos/alcasar/trunk/	Geocity update - remove of an unused sql radius-counter	/alcasar.sh /conf/nfsen/GeoLiteCity.dat.gz /conf/nfsen/GeoLiteCityv6.dat.gz /conf/radius/sqlcounter /web/acc/manager/htdocs/help/protocols_help.html /web/acc/manager/lib/langues.php
2470	2348 d 11 h	richard	/repos/alcasar/trunk/	Bypass a potential bug with the order of radius modules instanciation (see bug on freeradius git) update Toulouse BL	/conf/radius/sqlcounter /blacklist/blacklist-MD5SUM.lst /alcasar.sh /blacklist/blacklists.tar.gz /scripts/alcasar-ldap.sh /scripts/alcasar-uninstall.sh
2467	2351 d 13 h	richard	/repos/alcasar/trunk/	Config of RADIUS "ldap module" : ter (It works like a charm!!!) - More tests must be performed after reinstall process	/conf/radius/alcasar /conf/radius/alcasar-with-ldap /conf/radius/alcasar-radius /alcasar.sh /scripts/alcasar-ldap.sh /scripts/alcasar-uninstall.sh
2466	2352 d 15 h	richard	/repos/alcasar/trunk/	Config of RADIUS "ldap module" : bis (to be continued)	/alcasar.sh /conf/sudoers /scripts/alcasar-ldap.sh /scripts/alcasar-uninstall.sh
2465	2358 d 6 h	richard	/repos/alcasar/trunk/	Config of RADIUS "ldap module" (to be continued)	/conf/radius/ldap-alcasar /alcasar.sh /scripts/alcasar-iptables.sh /scripts/alcasar-ldap.sh /scripts/alcasar-uninstall.sh /web/acc/admin/ldap.php
2446	2372 d 6 h	richard	/repos/alcasar/trunk/	Begin of complete revamping of LDAP interface	/web/acc/admin/lib /alcasar.sh /conf/radius/alcasar-radius /web/acc/admin/ldap.php /web/acc/admin/update_ldap.php
2438	2393 d 6 h	richard	/repos/alcasar/trunk/	- Add a V2 to V3 freeradius patch in order accounting works again (it should be ok)	/alcasar.sh /conf/radius/queries.conf
2432	2414 d 8 h	richard	/repos/alcasar/trunk/	Grub2 update (must be verify again)	/conf/grub-10_linux /alcasar.sh /blacklist/blacklist-MD5SUM.lst /blacklist/blacklists.tar.gz /scripts/alcasar-conf.sh /scripts/alcasar-uninstall.sh
2423	2426 d 7 h	richard	/repos/alcasar/trunk/	Mageia6 migration : step 5 freeradius2 --> freeradius3 (it's working)	/conf/radius/alcasar-radius-orig /conf/radius/sql /alcasar.sh /conf/radius/alcasar-radius /scripts/alcasar-urpmi.sh
2422	2427 d 7 h	richard	/repos/alcasar/trunk/	Some errors in FreeRadius conf (to be continued)	/alcasar.sh /conf/radius/alcasar-radius /conf/radius/queries.conf
2421	2428 d 7 h	richard	/repos/alcasar/trunk/	Mageia6 migration : step 4 freeradius2 --> freeradius3 (to be continued - again)	/conf/radius/counter.conf /alcasar.sh /scripts/alcasar-uninstall.sh /scripts/alcasar-urpmi.sh
2420	2435 d 10 h	richard	/repos/alcasar/trunk/	Mageia6 migration : step 3 freeradius2 --> freeradius3 (to be continued)	/conf/radius/alcasar-radius-orig /conf/radius/queries.conf /conf/radius/sql /conf/radius/alcasar-radius.orig /conf/radius/dialup.conf /alcasar.sh /conf/radius/alcasar-radius /scripts/alcasar-uninstall.sh
2394	2470 d 16 h	tom.houdayer	/repos/alcasar/trunk/	The disconnection of users without the status page open can be disabled by a user attribute	/web/acc/manager/htdocs/help/statusOpenRequired_help.html /CHANGELOG /alcasar.sh /conf/freeradius-web/user_edit.attrs /scripts/alcasar-condown.sh /scripts/alcasar-conup.sh /scripts/alcasar-watchdog.sh /web/acc/manager/htdocs/group_new.php /web/acc/manager/htdocs/user_edit.php /web/acc/manager/htdocs/user_new.php /web/acc/manager/lib/langues.php /web/status.php /web/still_connected.php
2372	2481 d 14 h	tom.houdayer	/repos/alcasar/trunk/conf/	Set columns name of radius database to lowercase	/conf/empty-radiusd-db.sql
2371	2481 d 14 h	tom.houdayer	/repos/alcasar/trunk/conf/	Set database engine of radius tables to InnoDB	/conf/empty-radiusd-db.sql
2357	2501 d 15 h	tom.houdayer	/repos/alcasar/trunk/	Remove Fail2Ban NFLOG logs (Fail2Ban has his own logfile)	/CHANGELOG /conf/fail2ban.sh
2355	2502 d 7 h	tom.houdayer	/repos/alcasar/trunk/	Fix all traceability NFLOG rules by specifying the nfgroup to 1 (since the default group of NFLOG is 1 instead of 0 for ULOG1)	/CHANGELOG /conf/etc/alcasar-iptables-local.sh /conf/fail2ban.sh /scripts/alcasar-iptables-bypass.sh /scripts/alcasar-iptables.sh
2353	2503 d 8 h	tom.houdayer	/repos/alcasar/trunk/	Fix traceability log due to an omission during the migration from ulog to nflog (Fail2Ban, alcasar-iptables-local-mac-filtered & alcasar-ip-blocked)	/CHANGELOG /conf/etc/alcasar-iptables-local.sh /conf/fail2ban.sh /scripts/alcasar-iptables-bypass.sh
2328	2517 d 17 h	tom.houdayer	/repos/alcasar/trunk/	Update NfSen to 1.3.8 (security fix)	/conf/nfsen/nfsen-1.3.8.tar.gz /conf/nfsen/nfsen-1.3.7.tar.gz /CHANGELOG
2324	2518 d 19 h	tom.houdayer	/repos/alcasar/trunk/	ACC: Add option to allow unsecure login for user interception	/CHANGELOG /alcasar.sh /conf/sudoers /scripts/alcasar-conf.sh /scripts/alcasar-https.sh /web/acc/admin/network.php /web/intercept.php
2304	2532 d 16 h	tom.houdayer	/repos/alcasar/trunk/	Add Let's Encrypt integration!	/conf/letsencrypt-client /conf/letsencrypt-client/acme.sh-2.7.2.tar.gz /scripts/alcasar-letsencrypt.sh /CHANGELOG /alcasar.sh /conf/sudoers /scripts/alcasar-uninstall.sh /web/acc/admin/network.php /web/acc/admin/network2.php
2296	2537 d 12 h	tom.houdayer	/repos/alcasar/trunk/	Remove '/usr/bin/openssl' sudo privilege for 'apache' user	/CHANGELOG /conf/sudoers /web/acc/phpsysinfo/includes/xml/vitals.php
2284	2538 d 21 h	tom.houdayer	/repos/alcasar/trunk/	Rename Fail2Ban rule "alcasar_acc-htdigest" to "alcasar_acc" (iptable does not support long name)	/CHANGELOG /conf/fail2ban.sh
2272	2554 d 10 h	tom.houdayer	/repos/alcasar/trunk/	Move web/pass/index.php to web/password.php	/web/password.php /web/pass /alcasar.sh /conf/fail2ban.sh /web/index.php /web/language/alcasar-fr.txt
2271	2554 d 11 h	tom.houdayer	/repos/alcasar/trunk/	Fix Fail2Ban broken rules (alcasar_mod-evasive,alcasar_acc-htdigest,alcasar_change-pwd) and add SSL compatibility for alcasar_mod-evasive rule	/CHANGELOG /conf/fail2ban.sh /scripts/alcasar-uninstall.sh
2267	2554 d 20 h	richard	/repos/alcasar/trunk/	- Improve ACC access log	/conf/logrotate.d/admin_log /conf/logrotate.d/php_admin_log /alcasar.sh /scripts/alcasar-activity_report.sh /web/acc/admin_log.php /web/acc/haut.php /web/acc/menu.php
2232	2572 d 18 h	richard	/repos/alcasar/trunk/	- roll back to nfsen 1.3.7 (waiting for surfmap update (see surfmap mailing list)	/conf/nfsen/nfsen-1.3.7.tar.gz /conf/nfsen/nfsen-1.3.8.tar.gz /alcasar.sh
2184	2593 d 12 h	richard	/repos/alcasar/trunk/	uamallowed domain works again	/CHANGELOG /conf/etc/alcasar-services /scripts/alcasar-condown.sh /scripts/alcasar-conup.sh /scripts/alcasar-iptables.sh /web/acc/admin/protocols_filter.php /web/intercept.php
2176	2595 d 8 h	richard	/repos/alcasar/trunk/	M.A.J nfsen	/conf/nfsen/Readme.alcasar /conf/nfsen/nfsen-1.3.8.tar.gz /conf/nfsen/nfsen-1.3.7.tar.gz /CHANGELOG /alcasar.sh
2170	2601 d 7 h	richard	/repos/alcasar/trunk/	mise à jour geoip pour "surfmap"	/conf/nfsen/install-surfmap.sh /CHANGELOG /conf/nfsen/GeoLiteCity.dat.gz /conf/nfsen/GeoLiteCityv6.dat.gz /web/acc/backup/log_generation.php
2151	2623 d 14 h	richard	/repos/alcasar/trunk/conf/		/conf/template-fr.html /conf/template.html
2098	2724 d 3 h	raphael.pion	/repos/alcasar/trunk/conf/logrotate.d/	configuration de logrotate des logs admins renseignant les dernieres connexions. On effacera les données de plus de un an. notre fichier de log se trouve ici : /var/www/html/acc/admin_log.txt	/conf/logrotate.d/php_admin_log

2500

2287 d 6 h

tom.houdayer

/repos/alcasar/trunk/conf/lighttpd/vhosts.d/

Add certificate chains to lighttpd configuration (otherwise some browsers can identify the certificate as insecure)

/conf/lighttpd/vhosts.d/alcasar.conf

2496

2288 d 4 h

tom.houdayer

/repos/alcasar/trunk/

Replace obsolete "state" iptables module to "conntrack"

/conf/etc/alcasar-iptables-local.sh
/scripts/alcasar-iptables.sh

2488

2288 d 14 h

lucas.echard

/repos/alcasar/trunk/

Replace Apache with Lighttpd

Update fail2ban rules
Change web error management
Add a PEM certificate creation for Lighttpd
Replace htdigest Apache tool with a bash function in alcasar-profil.sh

/conf/lighttpd
/conf/lighttpd/conf.d
/conf/lighttpd/conf.d/fastcgi.conf
/conf/lighttpd/vhosts.d
/conf/lighttpd/vhosts.d/alcasar.conf
/web/errors
/web/errors/error-400.html
/web/errors/error-401.html
/web/errors/error-403.html
/web/errors/error-404.html
/web/errors/error-405.html
/web/errors/error-408.html
/web/errors/error-410.html
/web/errors/error-411.html
/web/errors/error-413.html
/web/errors/error-414.html
/web/errors/error-415.html
/web/errors/error-500.html
/web/errors/error-501.html
/web/errors/error-502.html
/web/errors/error-503.html
/web/errors/error-506.html
/web/images/footer_lighttpd.png
/web/js/error_translate.js
/web/js/i18n.js

/CHANGELOG
/alcasar.sh
/conf/fail2ban.sh
/scripts/alcasar-CA.sh
/scripts/alcasar-activity_report.sh
/scripts/alcasar-archive.sh
/scripts/alcasar-certificates.sh
/scripts/alcasar-conf.sh
/scripts/alcasar-daemon.sh
/scripts/alcasar-importcert.sh
/scripts/alcasar-profil.sh
/scripts/alcasar-uninstall.sh
/scripts/alcasar-urpmi.sh
/web/acc/about.htm
/web/acc/admin/services.php
/web/acc/haut.php
/web/acc/manager/htdocs/badusers.php
/web/acc/manager/lib/add_badusers.php
/web/acc/manager/lib/sql/drivers/mysql/functions.php
/web/acc/manager/lib/sql/nas_list.php
/web/acc/manager/lib/xlat.php
/web/acc/menu.php

2485

2308 d 7 h

franck

/repos/alcasar/trunk/

Prise en compte de la redirection directe d'un site en @IP:http sans havp nin proxy

/conf/etc/alcasar-site-direct

/scripts/alcasar-iptables.sh

2471

2346 d 13 h

richard

/repos/alcasar/trunk/

Geocity update - remove of an unused sql radius-counter

/alcasar.sh
/conf/nfsen/GeoLiteCity.dat.gz
/conf/nfsen/GeoLiteCityv6.dat.gz
/conf/radius/sqlcounter
/web/acc/manager/htdocs/help/protocols_help.html
/web/acc/manager/lib/langues.php

2467

2351 d 13 h

richard

/repos/alcasar/trunk/

Config of RADIUS "ldap module" : ter (It works like a charm!!!) - More tests must be performed after reinstall process

/conf/radius/alcasar
/conf/radius/alcasar-with-ldap

/conf/radius/alcasar-radius

/alcasar.sh
/scripts/alcasar-ldap.sh
/scripts/alcasar-uninstall.sh

2465

2358 d 6 h

richard

/repos/alcasar/trunk/

Config of RADIUS "ldap module" (to be continued)

/conf/radius/ldap-alcasar

/alcasar.sh
/scripts/alcasar-iptables.sh
/scripts/alcasar-ldap.sh
/scripts/alcasar-uninstall.sh
/web/acc/admin/ldap.php

2438

2393 d 6 h

richard

/repos/alcasar/trunk/

- Add a V2 to V3 freeradius patch in order accounting works again (it should be ok)

/alcasar.sh
/conf/radius/queries.conf

2423

2426 d 7 h

richard

/repos/alcasar/trunk/

Mageia6 migration : step 5
freeradius2 --> freeradius3 (it's working)

/conf/radius/alcasar-radius-orig
/conf/radius/sql

/alcasar.sh
/conf/radius/alcasar-radius
/scripts/alcasar-urpmi.sh

2421

2428 d 7 h

richard

/repos/alcasar/trunk/

Mageia6 migration : step 4
freeradius2 --> freeradius3 (to be continued - again)

/conf/radius/counter.conf

/alcasar.sh
/scripts/alcasar-uninstall.sh
/scripts/alcasar-urpmi.sh

2394

2470 d 16 h

tom.houdayer

/repos/alcasar/trunk/

The disconnection of users without the status page open can be disabled by a user attribute

/web/acc/manager/htdocs/help/statusOpenRequired_help.html

/CHANGELOG
/alcasar.sh
/conf/freeradius-web/user_edit.attrs
/scripts/alcasar-condown.sh
/scripts/alcasar-conup.sh
/scripts/alcasar-watchdog.sh
/web/acc/manager/htdocs/group_new.php
/web/acc/manager/htdocs/user_edit.php
/web/acc/manager/htdocs/user_new.php
/web/acc/manager/lib/langues.php
/web/status.php
/web/still_connected.php