0ab205ccfa
Merge pull request #1628 from dgw/welcome-to-2019
...
Welcome to 2019
2019-01-08 22:50:58 +00:00
8d5427cf9b
Welcome to 2019
...
What are we going to do today, Brain?
The same thing we do every year, Pinky: Update all the copyright
headers!
[Skip CI]
2019-01-01 17:05:05 -06:00
6af027c5dd
Normalize methods with 'UserName' to 'Username'
2019-01-01 16:19:27 -05:00
70a221addd
Add more details to DNS error logs. See #1626
2019-01-01 12:51:51 +00:00
1e23a36e1d
More translateable strings ( #1354 )
2018-04-01 12:06:29 +01:00
fd15c43711
Update date in comment about default SSL ciphers
2018-04-01 00:37:06 +01:00
d647eaabc0
Welcome to 2018
...
The same procedure as last year, Miss Sophie?
The same procedure as every year, James.
[skip ci]
2018-01-19 19:38:58 +00:00
3189ce7f8a
Welcome to 2017
...
Welcome to 2017
temp
temp2
2017-03-12 20:34:26 -04:00
5c524df298
Merge branch '1.6.x'
2016-11-20 18:09:55 +00:00
6366430870
Fix deletion of users which are connecting.
...
Close #1342
2016-11-20 17:56:26 +00:00
cc653efb6b
Rename translation methods to be not one letter.
...
It fixes several warnings, when the name was shadowed by a local "p".
2016-09-12 00:01:45 +01:00
85984ee4be
Merge pull request #1277 from xnrand/master
...
Add network-specific settings for cert validation
2016-08-20 12:08:41 +01:00
f76ab76c4a
Update default SSL ciphers
...
Use an updated list of Default Ciphers, pulled from the same Mozilla recommendations.
This was pulled by me on June 3, 2016, thought we should update the cipherlist since it's been 5 months since it was last updated.
2016-06-03 11:40:37 -04:00
409ed4b6bc
Add network-specific config for cert validation
...
Added the following two network-specific configuration options that can
be changed via controlpanel or webadmin:
* TrustAllCerts: Will trust ALL certificates when enabled, effectively
disabling TLS certificate validation.
Default value: false
* TrustPKI: Whether or not to trust PKI-valid certificates. Setting this
to false will make znc trust only trusted certificates added by the
user.
Default value: true
With default values, behavior is exactly the same as before.
This is based on the work of Roelf Wichertjes. See YourBNC/znc@5c747598 .
See znc/znc#866 .
2016-05-20 01:17:26 +02:00
8eeeaf71a0
Add framework for translating ZNC to different languages
2016-01-31 20:09:19 +00:00
1f226d2ade
Add test for #1229 and actually fix it.
2016-01-09 18:00:47 +00:00
5d6068ca9d
Default SSL ciphers updated to new Mozilla recommendation
2016-01-02 17:32:30 +01:00
8f73840e74
Welcome to 2016
...
🎆 Happy 2016 🎆
2016-01-01 20:11:21 +01:00
d185d6f22d
clang-format: switch tabs to spaces
...
I like tabs, but I have to admit that spaces make source code more
consistent, because every editor/viewer tends to render tabs differently :(
2015-12-07 00:53:30 +00:00
3861b6a583
Fix several comments broken by clang-format
2015-12-07 00:53:01 +00:00
33b0627d75
Add clang-format configuration.
...
For now, it uses tabs like before, to make the diff easier to read/check.
One of following commits will switch it to spaces.
2015-12-07 00:53:01 +00:00
582cd635f5
Fix --disable-tdns (thanks kerio)
2015-12-06 12:36:16 +00:00
52a4548d51
Fix style a bit.
2015-12-05 17:54:23 +00:00
47f887ce43
Add SNI client support
...
Close #1200
2015-12-05 17:48:13 +00:00
38fb4cc444
Calculate per-network traffic ( #963 )
2015-08-22 01:27:23 +02:00
4995e7517e
Prefer StartsWith(s) over Left(n) == s
2015-08-14 13:51:44 +02:00
d39b20b505
Fix sources to include their respective header
2015-07-14 19:05:23 +02:00
e1ada6c643
TDNSTask & CDNSJob: use member intialization lists [-Weffc++] ( #270 )
2015-03-07 21:54:33 +01:00
1d2650d450
Use member initialization lists [-Weffc++] ( #270 )
2015-03-01 15:00:10 +01:00
05c96a16d1
Merge remote-tracking branch 'origin/1.6.x'
2015-03-01 09:19:01 +01:00
75b210e841
Search'n'replace remaining NULL occurrences ( #816 )
2015-02-26 20:58:01 +01:00
6002bd5c2b
Remove unnecessary virtual keyword occurrences
...
This makes it convenient to 'grep virtual' and 'grep override' :)
2015-02-25 18:33:09 +01:00
4935ef4d26
Fix compilation warning when HAVE_LIBSSL is not defined
...
Building core object Socket...
src/Socket.cpp:30:16: warning: unused function 'ZNC_DefaultCipher' [-Wunused-function]
static CString ZNC_DefaultCipher() {
^
1 warning generated.
2015-02-25 09:36:56 +01:00
ef9939e1ec
Add override ( #816 )
...
Changes applied by 'clang-modernize -add-override [...]'
2015-02-25 09:24:00 +01:00
70c0ffb10b
Use nullptr ( #816 )
...
Changes applied by 'clang-modernize -use-nullptr [...]'
2015-02-25 09:20:20 +01:00
507f9b3392
Follow SSL Cipher Server Preference
2015-01-02 23:40:15 +01:00
2e29d49a53
Welcome to 2015
2014-12-31 11:28:38 +01:00
d56621f9f6
Fix modperl startup
2014-12-25 16:36:55 +00:00
72ca970731
Make default ciphers a bit better
2014-12-23 00:57:59 +00:00
8930fc4d7a
Don't break IRC control characters in some encodings
...
Fix #577
2014-12-21 17:09:59 +00:00
4a5fddce7e
Fix typo in comment
2014-12-15 15:52:51 +00:00
04148b970b
Use random DNS result instead of choosing the same every time.
...
Fix #133
2014-12-15 14:25:03 +00:00
60ec923d1f
Fix calculation of SSL fingerprints
2014-12-14 09:58:00 +00:00
e535e62390
Fix connection of SSL clients to ZNC
2014-12-02 21:42:28 +00:00
4442af724f
Validate TLS certificate of IRC server.
...
Fix #156
2014-11-29 14:25:15 +00:00
28bee5aff3
Honor SSL ciphers in ZNC->Server connections
2014-11-26 22:31:12 +00:00
b759c68847
Config option for SSL protocols ( resolves #720 )
...
ZNC currently disables SSLv2 and SSLv3 by default. To keep the ZNC
defaults (recommended, may change in the future versions) and for
example disable TLSv1 in addition, specify in the global config
section:
SSLProtocols = -TLSv1
Available (case-insentive) values are:
All, SSLv2, SSLv3, TLSv1, TLSv1.1, TLSv1.2
A non-prefixed "absolute" value overrides the ZNC defaults:
SSLProtocols = TLSV1 +TLSv1.1 +TLSv1.2
2014-11-06 23:49:49 +01:00
54e8b62b87
Fix #719 : Disable SSL compression
2014-11-06 20:41:49 +01:00
6ae9a439b2
Fix non-SSL build
2014-11-06 20:41:49 +01:00
3d57ccb738
Resolve #621 : Config option for allowed SSL ciphers
...
In the global section, for example:
SSLCiphers = ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS
https://www.openssl.org/docs/apps/ciphers.html
https://hynek.me/articles/hardening-your-web-servers-ssl-ciphers
2014-10-26 14:59:36 +01:00
Alexey Sokolov