GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 00:37:00 +08:00
Code Issues Packages Projects Releases Wiki Activity
308 Commits 19 Branches 88 Tags
376fea950fbf5a11b7e14adefa6d2f71af818751
Commit Graph

308 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nikos Mavrogiannopoulos
376fea950f removed session ticket support 2013-03-24 18:53:30 +01:00
Nikos Mavrogiannopoulos
be87110e7c bumped version 2013-03-24 18:50:16 +01:00
Nikos Mavrogiannopoulos
a5ad896899 doc update 2013-03-24 18:45:27 +01:00
Nikos Mavrogiannopoulos
f275f8ac4c removed unused variable 2013-03-24 17:45:07 +01:00
Nikos Mavrogiannopoulos
b42857ffdd MTU discovery simplified 2013-03-24 16:25:32 +01:00
Nikos Mavrogiannopoulos
fc6e385abe MTU handling updates 2013-03-24 13:19:51 +01:00
Nikos Mavrogiannopoulos
123eae6510 clear any lists prior to running sec mod 2013-03-24 09:36:42 +01:00
Nikos Mavrogiannopoulos
2a8bd08288 Revert "run sec mod earlier to save memory" 
This reverts commit a8152e8c59.
 2013-03-24 09:31:46 +01:00
Nikos Mavrogiannopoulos
b433e20682 when debugging do not set memory limits 2013-03-24 09:11:02 +01:00
Nikos Mavrogiannopoulos
a8152e8c59 run sec mod earlier to save memory 2013-03-24 08:50:40 +01:00
Nikos Mavrogiannopoulos
c1db9b9711 deinitialize memory taken by configuration parser. 2013-03-24 08:46:16 +01:00
Nikos Mavrogiannopoulos
1baa8d8a6f disable dh-params by default 2013-03-24 08:42:43 +01:00
Nikos Mavrogiannopoulos
cbcb97cc79 doc update 2013-03-23 23:25:29 +01:00
Nikos Mavrogiannopoulos
42d532c3a3 doc update ocserv_0_1_0 2013-03-23 10:08:03 +01:00
Nikos Mavrogiannopoulos
6da505a0a1 added dh-params option into sample file 2013-03-23 09:48:06 +01:00
Nikos Mavrogiannopoulos
4f49779015 make clear that anyconnect compat layer is experimental 2013-03-23 09:45:10 +01:00
Nikos Mavrogiannopoulos
b994462ce1 depend on gnutls 3.1.10 2013-03-23 09:41:28 +01:00
Nikos Mavrogiannopoulos
6632f53f58 updated doc 2013-03-22 08:56:55 +01:00
Nikos Mavrogiannopoulos
55c62d25b9 use quotes when printing password file 2013-03-17 09:56:07 +01:00
Nikos Mavrogiannopoulos
c6f3f5b428 cookies are overwritten prior to fork 2013-03-17 09:54:13 +01:00
Nikos Mavrogiannopoulos
a3b4a742bf Added anyconnect options to sample config 2013-03-17 00:00:25 +01:00
Nikos Mavrogiannopoulos
0b87653241 updated 2013-03-16 23:41:52 +01:00
Nikos Mavrogiannopoulos
dd3f304091 readjusted log levels 2013-03-16 23:28:51 +01:00
Nikos Mavrogiannopoulos
530dbc71f1 reduce MTU on mtu failure in a less steep way 2013-03-16 23:25:19 +01:00
Nikos Mavrogiannopoulos
a29e6847c9 changed level of messages 2013-03-16 23:24:15 +01:00
Nikos Mavrogiannopoulos
9f18e7db9a consider chroot environment when creating socket file. 2013-03-16 23:02:50 +01:00
Nikos Mavrogiannopoulos
c69c86cfdd simplified umask 2013-03-16 22:54:05 +01:00
Nikos Mavrogiannopoulos
82df00f0b0 updates in unix socket creation 2013-03-16 21:27:58 +01:00
Nikos Mavrogiannopoulos
f941e6af69 added missing file 2013-03-16 19:38:12 +01:00
Nikos Mavrogiannopoulos
0dba2cbcff use pkcs11_reinit() only when defined. 2013-03-16 19:38:05 +01:00
Nikos Mavrogiannopoulos
40c99e2b4a bumped version 2013-03-16 19:33:01 +01:00
Nikos Mavrogiannopoulos
37f0303424 adjust buffer size if needed. 2013-03-16 19:31:18 +01:00
Nikos Mavrogiannopoulos
70b7f3d6d9 consider TCP MSS in MTU calculations. 2013-03-16 19:26:10 +01:00
Nikos Mavrogiannopoulos
be6033e7b4 set certain limits on the worker process using setrlimit() 2013-03-15 20:01:56 +01:00
Nikos Mavrogiannopoulos
6746b1851f Added copyright headers 2013-03-15 19:46:20 +01:00
Nikos Mavrogiannopoulos
08efccdfb1 include config.h in all files 2013-03-15 19:45:14 +01:00
Nikos Mavrogiannopoulos
3d0530958f reinitialize PKCS #11 modules after fork 2013-03-15 19:40:24 +01:00
Nikos Mavrogiannopoulos
72e086be00 combine writes to a single system call. 2013-03-15 18:49:54 +01:00
Nikos Mavrogiannopoulos
3883e930c7 updated syscall list in seccomp 2013-03-15 18:42:32 +01:00
Nikos Mavrogiannopoulos
5a4ce846b7 The TLS private keys are kept into a privileged process. 
That process is called security-module (sec-mod) and communicates
with the workers using a unix domain socket.
 2013-03-15 17:47:38 +01:00
Nikos Mavrogiannopoulos
73a532b5c5 Always send the provided password to PAM irrespective of the prompt. 2013-03-14 16:26:16 +01:00
Nikos Mavrogiannopoulos
0be2b2a054 crypt(3) is used in the plain password file. 
In addition, ocpasswd program was added to generate password file entries.
 2013-03-14 16:23:47 +01:00
Nikos Mavrogiannopoulos
8d6af501c0 Added ocpasswd 2013-03-14 13:05:30 +01:00
Nikos Mavrogiannopoulos
9224a02b77 Updated sample script. 2013-03-13 19:19:45 +01:00
Nikos Mavrogiannopoulos
b552f27ddb Do not let scripts block the server operation. 2013-03-13 19:18:52 +01:00
Nikos Mavrogiannopoulos
0c4b013b3f Added plain password format 2013-03-12 23:40:11 +01:00
Nikos Mavrogiannopoulos
4c5c9110e8 small doc updates 2013-03-11 19:51:12 +01:00
Nikos Mavrogiannopoulos
1eeb33d5d7 enable session tickets. 2013-03-11 19:49:33 +01:00
Nikos Mavrogiannopoulos
979729e8a3 manual page moved to section 8 2013-03-07 10:45:36 +01:00
Nikos Mavrogiannopoulos
b0a99ad57c doc update 2013-03-07 10:43:45 +01:00