| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | The pacman tool got replaced by the sec-updater tool | Tobias Brunner | 2017-11-15 | 1 | -1/+0 |
| | | |||||
| * | sec-updater: Import SWID tags of updated packages | Andreas Steffen | 2017-09-09 | 1 | -0/+1 |
| | | | | | | | | sec-updater downloads the deb package files from security updates from a given linux repository and uses the swid_generator command to derive a SWID tag. The SWID tag is then imported into strongTNC using the manage.py importswid command. | ||||
| * | curl: Enable following redirects | Tobias Brunner | 2017-07-27 | 1 | -0/+1 |
| | | | | | | | | The maximum number of redirects can be limited. The functionality can also be disabled. Fixes #2366. | ||||
| * | sw-collector: Collects endpoint software events | Andreas Steffen | 2017-07-08 | 1 | -1/+2 |
| | | |||||
| * | imv-swima: Created SWIMA IMV plugin | Andreas Steffen | 2017-07-08 | 1 | -0/+1 |
| | | |||||
| * | imc-swima: Created SWIMA IMC plugin | Andreas Steffen | 2017-07-08 | 1 | -0/+1 |
| | | |||||
| * | eap-aka-3gpp: Add plugin that implements 3GPP MILENAGE algorithm in software | Tobias Brunner | 2017-07-05 | 1 | -1/+2 |
| | | | | | | | | | | | This is similar to the eap-aka-3gpp2 plugin. K (optionally concatenated with OPc) may be configured as binary EAP secret in ipsec.secrets or swanctl.conf. Based on a patch by Thomas Strangert. Fixes #2326. | ||||
| * | conf: Remove snippet for aikpub2 | Tobias Brunner | 2017-03-23 | 1 | -1/+0 |
| | | |||||
| * | The tpm plugin offers random number generation | Andreas Steffen | 2017-03-20 | 1 | -0/+1 |
| | | | | | | | The tpm plugin can be used to derive true random numbers from a TPM 2.0 device. The get_random method must be explicitly enabled in strongswan.conf with the plugin.tpm.use_rng = yes option. | ||||
| * | addrblock: Support an optional non-strict mode accepting certs without addrblock | Martin Willi | 2017-03-02 | 1 | -0/+1 |
| | | | | | | | | This allows a gateway to enforce the addrblock policy on certificates that actually have the extension only. For (legacy) certificates not having the extension, traffic selectors are validated/narrowed by other means, most likely by the configuration. | ||||
| * | bypass-lan: Allow ignoring or only considering subnets of specific interfaces | Tobias Brunner | 2017-02-08 | 1 | -0/+1 |
| | | | | | The config can also be reloaded by sending a SIGHUP to charon. | ||||
| * | revocation: OCSP and/or CRL fetching can be disabled | Andreas Steffen | 2016-12-30 | 1 | -0/+1 |
| | | |||||
| * | nm: Make global CA directory configurable | Tobias Brunner | 2016-10-04 | 1 | -0/+1 |
| | | |||||
| * | conf: aikpub2.opt added to Makefile.am | Andreas Steffen | 2016-08-25 | 1 | -0/+1 |
| | | |||||
| * | p-cscf: Make sending requests configurable and disable it by default | Tobias Brunner | 2016-03-10 | 1 | -0/+1 |
| | | |||||
| * | conf: Add documentation for new osx-attr option | Tobias Brunner | 2015-08-28 | 1 | -0/+1 |
| | | |||||
| * | Added imc-hcd attributes to strongswan.conf | Andreas Steffen | 2015-08-18 | 1 | -0/+1 |
| | | |||||
| * | imv_policy_manager: Added capability to execute an allow or block shell ↵ | Andreas Steffen | 2015-04-26 | 1 | -0/+1 |
| | | | | | command string | ||||
| * | kernel-pfkey: Add option to set receive buffer size of event socket | Tobias Brunner | 2015-03-06 | 1 | -0/+1 |
| | | | | | | | | | If many requests are sent to the kernel the events generated by these requests may fill the receive buffer before the daemon is able to read these messages. Fixes #783. | ||||
| * | Implemented improved BLISS-B signature algorithm | Andreas Steffen | 2015-02-25 | 1 | -0/+1 |
| | | |||||
| * | forecast: Document strongswan.conf options | Martin Willi | 2015-02-20 | 1 | -0/+1 |
| | | |||||
| * | ext-auth: Add an ext-auth plugin invoking an external authorization script | Martin Willi | 2014-10-06 | 1 | -0/+1 |
| | | | | | Original patch courtesy of Vyronas Tsingaras. | ||||
| * | Don't fail to install if sysconfdir isn't writable | Shea Levy | 2014-09-26 | 1 | -3/+3 |
| | | |||||
| * | systemd: Add a native systemd journal logger | Martin Willi | 2014-09-22 | 1 | -0/+1 |
| | | |||||
| * | conf: Document swanctl options | Tobias Brunner | 2014-06-30 | 1 | -0/+1 |
| | | |||||
| * | conf: Document aikgen options | Tobias Brunner | 2014-06-30 | 1 | -0/+1 |
| | | |||||
| * | autoconf: Replace --disable-tools option with --disable-scepclient | Tobias Brunner | 2014-06-30 | 1 | -3/+3 |
| | | | | | | Since using a separate option for pki this was the only tool that was still enabled by that option. | ||||
| * | Remove kernel-klips plugin | Tobias Brunner | 2014-06-19 | 1 | -1/+0 |
| | | |||||
| * | configure: Separate pki from --disable-tools | Martin Willi | 2014-06-04 | 1 | -0/+1 |
| | | | | | While pki builds and runs just fine on Windows, this is not true for scepclient. | ||||
| * | Updated IMC/IMV entries in strongswan.conf man page | Andreas Steffen | 2014-05-31 | 1 | -0/+1 |
| | | |||||
| * | vici: Document strongswan.conf options | Martin Willi | 2014-05-07 | 1 | -0/+1 |
| | | |||||
| * | conf: Fix out-of-tree build from distribution | Tobias Brunner | 2014-02-27 | 1 | -6/+3 |
| | | | | | | | It worked from the repository, where strongswan.conf.5.main is generated in the build dir, but not from the distribution where it is located in the source dir, so explicitly create it in the source dir. | ||||
| * | conf: Fix installation on FreeBSD | Tobias Brunner | 2014-02-13 | 1 | -2/+2 |
| | | | | | Apparently, the -t option for install is not portable. | ||||
| * | conf: The use of $^ is not portable | Tobias Brunner | 2014-02-13 | 1 | -3/+6 |
| | | | | | | Generating strongswan.conf.5.main in a subshell gets the file properly written to the builddir in out-of-tree builds. | ||||
| * | conf: Install config files world-readable but warn about permissions for ↵ | Tobias Brunner | 2014-02-12 | 1 | -3/+3 |
| | | | | | certain options | ||||
| * | conf: Only install config snippets for enabled components | Tobias Brunner | 2014-02-12 | 1 | -2/+3 |
| | | |||||
| * | conf: Document options of other programs | Tobias Brunner | 2014-02-12 | 1 | -1/+6 |
| | | |||||
| * | conf: Document options of plugins in libpts | Tobias Brunner | 2014-02-12 | 1 | -0/+4 |
| | | |||||
| * | conf: Document libimcv options | Tobias Brunner | 2014-02-12 | 1 | -0/+8 |
| | | |||||
| * | conf: Document libtnccs options | Tobias Brunner | 2014-02-12 | 1 | -1/+6 |
| | | |||||
| * | conf: Create automatically generated config snippets in build dir | Tobias Brunner | 2014-02-12 | 1 | -3/+8 |
| | | |||||
| * | conf: Install config snippets in /usr/share/strongswan/templates/config too | Tobias Brunner | 2014-02-12 | 1 | -0/+7 |
| | | |||||
| * | conf: Only install config snippets if they don't exist yet | Tobias Brunner | 2014-02-12 | 1 | -7/+13 |
| | | |||||
| * | conf: Options of all plugins documented | Tobias Brunner | 2014-02-12 | 1 | -1/+47 |
| | | | | | Some options are still missing descriptions though. | ||||
| * | conf: Add logger example config | Tobias Brunner | 2014-02-12 | 1 | -1/+2 |
| | | |||||
| * | conf: Split strongswan.conf(5) man page and use generated snippet | Tobias Brunner | 2014-02-12 | 1 | -0/+4 |
| | | |||||
| * | conf: Generate groff snippet for configuration options | Tobias Brunner | 2014-02-12 | 1 | -2/+6 |
| | | |||||
| * | conf: Generate strongswan.conf(5) man page in different directory | Tobias Brunner | 2014-02-12 | 1 | -0/+4 |
| | | |||||
| * | conf: Generate and install config sippets for option descriptions | Tobias Brunner | 2014-02-12 | 1 | -5/+62 |
| | | | | | | The strongswan.d directory is also created relative to the configured location of strongswan.conf. | ||||
| * | conf: Create /etc/strongswan.d directory and include .conf files | Tobias Brunner | 2014-02-12 | 1 | -0/+1 |
| | | |||||
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |