ocserv

mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 16:57:00 +08:00

Author	SHA1	Message	Date
Nikos Mavrogiannopoulos	afef74fa23	removed the certificate[optional] auth type	2015-02-19 11:47:20 +01:00
Nikos Mavrogiannopoulos	b6ef99b443	doc update	2015-02-12 21:10:12 +01:00
Nikos Mavrogiannopoulos	23586bdb9c	no longer document the auth option certificate[optional]	2015-02-12 21:08:41 +01:00
Nikos Mavrogiannopoulos	aa10eb53c1	doc update	2015-02-11 11:44:57 +01:00
Nikos Mavrogiannopoulos	bcea928abe	Added support for no-routes (X-Split-Exclude)	2015-02-06 14:05:10 +01:00
Nikos Mavrogiannopoulos	df7f3c528c	updated design documents	2015-01-25 09:52:08 +01:00
Nikos Mavrogiannopoulos	29760b0fa4	account freeradius-client version 1.1.7 in README.radius.	2015-01-25 08:34:53 +01:00
Nikos Mavrogiannopoulos	99c9a8ef6a	enable min-reauth-time in default configuration	2015-01-24 13:56:41 +01:00
Aron Xu	39248a6596	Run after network-online.target, instead of network.target Signed-off-by: Aron Xu <aron@debian.org>	2015-01-24 10:16:08 +01:00
Aron Xu	d925276da8	Remove syslog.target from systemd service files syslog is now socket-activated on all major distributions, hence the target is deprecated. Signed-off-by: Aron Xu <aron@debian.org>	2015-01-24 10:15:57 +01:00
Aron Xu	e2c609505b	Run in foreground when using systemd Signed-off-by: Aron Xu <aron@debian.org>	2015-01-24 10:15:18 +01:00
Aron Xu	dfc5f33f85	Listen to Port 443 as in sample.config Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>	2015-01-24 09:07:09 +01:00
Nikos Mavrogiannopoulos	bcef2eb16b	doc update	2015-01-20 14:26:42 +01:00
Nikos Mavrogiannopoulos	04a9381068	Compression is disabled by default	2015-01-16 10:45:53 +01:00
Nikos Mavrogiannopoulos	8d2a562af1	increased MIN_NO_COMPRESS_LIMIT	2015-01-15 21:00:32 +01:00
Nikos Mavrogiannopoulos	048b25ba45	Made the no-compress-limit configurable	2015-01-15 18:31:33 +01:00
Nikos Mavrogiannopoulos	fe848ad153	replaced use-seccomp by isolate-workers That, if enabled, includes the Linux namespaces restrictions into workers.	2015-01-15 10:25:23 +01:00
Nikos Mavrogiannopoulos	2f3d520c85	do not enforce PFS on default strings That allows legacy clients connect.	2015-01-11 12:22:27 +01:00
Nikos Mavrogiannopoulos	50f2fb88f6	simplify the input of IPv6 networks The prefix is specified as part of the network.	2014-12-29 20:15:36 +02:00
Nikos Mavrogiannopoulos	90b0ac7932	radius: added support for Framed-IPv6-Prefix	2014-12-29 20:00:45 +02:00
Nikos Mavrogiannopoulos	496f563686	doc update	2014-12-27 11:11:06 +02:00
Nikos Mavrogiannopoulos	80459cfbd5	the default strings will enforce PFS	2014-12-25 10:56:19 +02:00
Nikos Mavrogiannopoulos	4cf2797afc	radius: use Framed-Route and Framed-IPv6-Route That is read and if format is the expected, they are forwarded to client.	2014-12-14 20:37:50 +01:00
Nikos Mavrogiannopoulos	113ae94f13	removed unused option	2014-12-14 14:06:03 +01:00
Nikos Mavrogiannopoulos	173301744c	updated radius documentation	2014-12-13 22:22:28 +01:00
Nikos Mavrogiannopoulos	a32c5db859	Added README.radius	2014-12-11 12:09:56 +01:00
Nikos Mavrogiannopoulos	93125ea945	updated documentation on radius	2014-12-10 11:46:17 +01:00
Nikos Mavrogiannopoulos	320773e80a	Added support for radius interim updates	2014-12-10 11:18:29 +01:00
Nikos Mavrogiannopoulos	766afb591a	Added support for reading user configuration from radius.	2014-12-09 15:38:27 +01:00
Nikos Mavrogiannopoulos	2194e11b39	Added support for radius authentication	2014-12-09 10:59:18 +01:00
Nikos Mavrogiannopoulos	cb9dcde387	Notify the client that the server may have a dynamic DNS address That is send "X-CSTP-DynDNS: true", in CSTP headers if the server is configured as having a dynamic DNS address.	2014-11-30 11:30:08 +01:00
Nikos Mavrogiannopoulos	74aa65bfa0	enhanced sample.config	2014-11-26 17:09:54 +01:00
Nikos Mavrogiannopoulos	0320f61e3f	Disable RC4 in the default priority strings	2014-11-18 22:23:02 +01:00
Nikos Mavrogiannopoulos	2069af24a8	disable SSL 3.0 on the default priorities	2014-10-17 11:01:28 +02:00
Nikos Mavrogiannopoulos	c2856e2ee6	disabled session control by default in sample.config	2014-10-15 07:58:36 +02:00
Nikos Mavrogiannopoulos	3a455f4178	listen-file -> listen-clear-file	2014-09-28 09:06:14 +02:00
Nikos Mavrogiannopoulos	e2585b2f26	unix-conn-file -> listen-file	2014-09-26 08:54:41 +02:00
Nikos Mavrogiannopoulos	4ea5a56ace	Allow the CSTP layer to operate without TLS That also introduces a unix domain socket under which connections to the server can occur.	2014-09-23 16:08:29 +02:00
Nikos Mavrogiannopoulos	18cef50ebe	doc update	2014-06-12 15:36:39 +02:00
Nikos Mavrogiannopoulos	9e4be33533	Added sequence diagram describing the session control operation.	2014-06-10 15:39:10 +02:00
Nikos Mavrogiannopoulos	021febe5d8	doc update	2014-06-10 15:16:54 +02:00
Nikos Mavrogiannopoulos	cbe4d80b1e	No longer install d-bus or systemd files.	2014-06-02 14:52:13 +02:00
Nikos Mavrogiannopoulos	7ccdba8234	doc update	2014-05-27 16:04:53 +02:00
Nikos Mavrogiannopoulos	7ba0fffb07	Added the configuration option deny-roaming. That required moving the read of the group configuration during the cookie authentication phase.	2014-05-25 10:17:28 +02:00
Nikos Mavrogiannopoulos	78132e2a6d	Added auto group listing on PAM authentication as well. In addition a configuration option to print group IDs over a certain number was added.	2014-05-23 16:36:48 +02:00
Nikos Mavrogiannopoulos	d51a7cb7e7	re-use the string replace API for route add/del replacements.	2014-05-23 11:32:07 +02:00
Nikos Mavrogiannopoulos	57d848d228	The replaced keywords were put into brackets.	2014-05-23 11:19:42 +02:00
Nikos Mavrogiannopoulos	51494e0df1	doc update	2014-05-23 11:08:23 +02:00
Nikos Mavrogiannopoulos	2276acf57b	limit the cookie validity time to 3 hours in the configuration examples.	2014-05-22 13:48:09 +02:00
Nikos Mavrogiannopoulos	177c1c95bd	Allow aliases to group names.	2014-05-21 12:25:26 +02:00

1 2 3

143 Commits