OPNSense/core 63065a9src/opnsense/www/themes/opnsense/assets/stylesheets main.scss, src/opnsense/www/themes/opnsense/build/css main.css

theme, sharpen our theme a bit

OPNSense/core f7213e8src/www vpn_ipsec_mobile.php

psec_mobile.php fix minor escaping issue

OPNSense/core 5123277src/opnsense/mvc/app/library/OPNsense/Core Config.php

config access, don't try to open config.xml in write mode when file is not writeable. 
closes https://github.com/opnsense/core/issues/3241

OPNSense/core dd1d8cbsrc/opnsense/mvc/app/library/OPNsense/Auth AuthenticationFactory.php

OPNSense/core 0793375src/opnsense/mvc/app/library/OPNsense/Auth AuthenticationFactory.php IService.php, src/opnsense/mvc/app/library/OPNsense/Auth/Services System.php Sshd.php

Authentication/pam, initial (working) version to move already implemented pam services 
into our framework. for https://github.com/opnsense/core/issues/3242

OPNSense/core ab3b5b5src/opnsense/www api.php

MVC/Exception handling, prevent UserException from being pushed to /tmp/PHP_errors.log

OPNSense/core a22e5a7src/etc/inc/plugins.inc.d webgui.inc, src/etc/rc.subr.d var

php session, fix previous

OPNSense/core 426b0e1src/etc/inc/plugins.inc.d webgui.inc, src/etc/rc.subr.d var

Revert "php session path, 
https://github.com/opnsense/core/commit/3eba9a739e49f23830751a0104ece72eaecff7cb"

This reverts commit 545f29a7d2a883696f4923286bbb21dd9e5618d6.

OPNSense/core 545f29asrc/etc/inc/plugins.inc.d webgui.inc, src/etc/rc.subr.d var

OPNSense/core 7d5b9dfsrc/etc/rc.subr.d recover

OPNSense/core 895d6bbsrc/www system_certmanager.php

remove "show certificate info" on certificate list from pending CSR (#3243)

OPNSense/plugins ee14d04www/nginx README.md, www/nginx/src/opnsense/mvc/app/controllers/OPNsense/Nginx/forms httpserver.xml

www/nginx: plugins, bug fixes (#1198)

* www/nginx: add plugin support
* www/nginx: respect the enabled flag at service level
* www/nginx: release note
* www/nginx: Alias support for downstream proxy
* www/nginx: release note
* www/nginx: improve release note
* www/nginx: revert enabled flag
* www/nginx: add a readme for developers
* www/nginx: fix typos

OPNSense/plugins 591a472www/nginx README.md

fix typos

OPNSense/core 3eba9a7src/etc/inc/plugins.inc.d webgui.inc, src/opnsense/service/templates/OPNsense/WebGui php.ini

php, move session files into it's own directory

OPNSense/plugins 0a570e5www/nginx README.md

www/nginx: add a readme for developers
DeltaFile
+60-0www/nginx/README.md
+60-01 files

OPNSense/core 969f452src/etc/inc certs.inc

certs.inc, make sure create_temp_openssl_config() can't wrap lines

OPNSense/plugins f32b92dwww/nginx/src/opnsense/mvc/app/models/OPNsense/Nginx Nginx.xml

www/nginx: revert enabled flag

OPNSense/plugins c080ae1www/nginx pkg-descr

www/nginx: improve release note

OPNSense/plugins 8f9dc5csecurity/etpro-telemetry/src/opnsense/scripts/etpro_telemetry/telemetry __init__.py, security/etpro-telemetry/src/opnsense/scripts/suricata/metadata/rules et-telemetry.xml

ET-Telemetry, limit logs shipped to rules received from Proofpoint.

OPNSense/core 02b16dcsrc/opnsense/scripts/suricata rule-updater.py

ids, rule-updater.py, cleanup unused

OPNSense/plugins 20f02adwww/nginx pkg-descr

www/nginx: release note

OPNSense/plugins d723b50www/nginx/src/opnsense/mvc/app/controllers/OPNsense/Nginx/forms httpserver.xml, www/nginx/src/opnsense/mvc/app/models/OPNsense/Nginx Nginx.xml

www/nginx: Alias support for downstream proxy

OPNSense/plugins 1e6a232www/nginx pkg-descr

www/nginx: release note

OPNSense/plugins 3e60824www/nginx/src/opnsense/mvc/app/controllers/OPNsense/Nginx/forms settings.xml, www/nginx/src/opnsense/mvc/app/models/OPNsense/Nginx Nginx.xml

www/nginx: respect the enabled flag at service level

OPNSense/plugins c31f9benet/frr pkg-descr, net/frr/src/opnsense/mvc/app/controllers/OPNsense/Quagga/forms dialogEditOSPFNetwork.xml

net/frr: add route summarization via area range (#1196)

OPNSense/plugins b3bf06cwww/nginx pkg-descr, www/nginx/src/etc/nginx/opnsense_http_vhost_plugins README

www/nginx: add plugin support

OPNSense/plugins d93c013net/vnstat pkg-descr Makefile, net/vnstat/src/opnsense/service/templates/OPNsense/Vnstat vnstat

net/vnstat: make db persistEnt in MFS installation  (#1197)

OPNSense/core 4337e25src/opnsense/service/templates/OPNsense/IPFW ipfw.conf

Merge branch 'fredronnv-dev/ipfwcaptiveportal'

OPNSense/core 3a02d1asrc/opnsense/service/templates/OPNsense/IPFW ipfw.conf

Merge branch 'dev/ipfwcaptiveportal' of https://github.com/fredronnv/core into 
fredronnv-dev/ipfwcaptiveportal

OPNSense/plugins 11b199csecurity/tor/src/opnsense/mvc/app/controllers/OPNsense/Tor/forms acl_exitpolicy.xml acl_sockspolicy.xml

security/tor: sync with master

OPNSense/plugins 769a2c5www/c-icap/src/opnsense/mvc/app/controllers/OPNsense/CICAP/forms antivirus.xml

www/c-icap: sync with master

OPNSense/plugins 39f4753net/frr Makefile, net/frr/src/opnsense/www/js/quagga lodash.js

net/frr: sync with master

OPNSense/plugins a771c82mail/rspamd/src/opnsense/mvc/app/controllers/OPNsense/Rspamd/forms settings.xml

mail/rspamd: sync with master

OPNSense/plugins 4495072www/nginx pkg-descr, www/nginx/src/opnsense/mvc/app/models/OPNsense/Nginx Nginx.xml

www/nginx: sync with master

OPNSense/core f11eb71src/etc/inc config.inc

legacy_config_get_interfaces, let's make sure we don't stumble over an empty interface, 
closes https://github.com/opnsense/core/issues/3231

(cherry picked from commit 621f84e900f5ea17c58bf665573b9d13f4344f59)

OPNSense/core 0aabd02src/opnsense/scripts/interfaces dhclient-script

interfaces: check for valid alias IP #3197

Suggested by: @tbandixen

(cherry picked from commit 90c0c395a54967f28c797b46293d4fb975b27ded)

OPNSense/core 90c0c39src/opnsense/scripts/interfaces dhclient-script

interfaces: check for valid alias IP #3197

Suggested by: @tbandixen

OPNSense/core 8e9ae38src/opnsense/scripts/interfaces dhclient-script

Revert "interfaces: remove arp flush from dhclient-script #3197"

This reverts commit a1dbbb5ef132487c88b2b144ac67eeedb00a576c.

OPNSense/core 621f84esrc/etc/inc config.inc

legacy_config_get_interfaces, let's make sure we don't stumble over an empty interface, 
closes https://github.com/opnsense/core/issues/3231

OPNSense/core eea383esrc/www system_advanced_firewall.php

firewall: tweak a help text

(cherry picked from commit 32cd65b9f9f4a11080671181f1ecfb4a7d0bf78b)

OPNSense/core 2251cf5src/etc/inc/plugins.inc.d openvpn.inc

openvpn: proper daemonize instead of background job #3223

(cherry picked from commit c217bee6f2f6f7bc2d8ffbad5535812a62627e22)
(cherry picked from commit 156d6f7287da05f337f9784dfc024c7b42a3a50d)
(cherry picked from commit f10b710a587e69edb704184ac7171a209f21f604)

OPNSense/core 6c263d4src/opnsense/service/templates/OPNsense/IPFW ipfw.conf

Revert "ipfw: there's no need to loop over cp_interfaces"

This reverts commit 6178310af241221faf94e9515235b002a12dfbdf.

Don't want to risk opening 53 on wan

OPNSense/core 6178310src/opnsense/service/templates/OPNsense/IPFW ipfw.conf

ipfw: there's no need to loop over cp_interfaces

We can allow traffic to this host via all.

OPNSense/core f2da545src/opnsense/service/templates/OPNsense/IPFW ipfw.conf

ipfw: only allow traffic to/from me via cp_interfaces

OPNSense/tools 2a31eddcomposite nightly.sh

composite/nightly: make scripting easier

OPNSense/ports b5b6c6e. MOVED, Mk/Uses cargo.mk

Framework: sync with upstream

Taken from: HardenedBSD
DeltaFile
+4-4Mk/Uses/cargo.mk
+1-0MOVED
+5-42 files

OPNSense/ports f395a14databases/postgresql95-server Makefile distinfo

databases/postgresql95-server: sync with upstream

Taken from: HardenedBSD

OPNSense/ports 13f4508databases/postgresql95-client Makefile

databases/postgresql95-client: sync with upstream

Taken from: HardenedBSD

OPNSense/ports bc9c6badevel/p5-Parse-RecDescent Makefile pkg-plist

devel/p5-Parse-RecDescent: sync with upstream

Taken from: HardenedBSD

OPNSense/ports 7fc0dc3textproc/py-sphinx_rtd_theme distinfo Makefile

textproc/py-sphinx_rtd_theme: sync with upstream

Taken from: HardenedBSD