the-bastion

Commit Graph

Author	SHA1	Message	Date
Stéphane Lesimple	a728c2f760	fix: opensuse: tests: no longer rely on sysV scripts	1 month ago
Stéphane Lesimple	36850d6a05	fix: early check for port validity to avoid warnings later on	1 month ago
Stéphane Lesimple	98336fdafe	feat: httpproxy: add support for more HTTP methods (#601 ) By default this stays as before (GET and POST), but more methods can be allowed through the HTTP Proxy configuration.	4 months ago
Stéphane Lesimple	c1817bc887	enh: tests: add tests for sign files issue	7 months ago
Stéphane Lesimple	c1f0789aee	feat: httpproxy: craft the Host header on the egress request (#564 ) And also return X-Bastion-Remote-Host in addition to X-Bastion-Remote-IP to our caller.	7 months ago
Stéphane Lesimple	93671ef571	fix: tests: more robust sshd reloading across OSes	8 months ago
Stéphane Lesimple	b367cd7f59	fix: tests: freebsd: proper reload of recent sshd	8 months ago
Stéphane Lesimple	7cac4dc911	chore: remove references to NetBSD/OpenBSD in the code	8 months ago
Stéphane Lesimple	a9589658f8	fix: tests: remove support for MD5 fingerprints	8 months ago
Stéphane Lesimple	9a357f9ff7	fix: tests: better detect faulty modules syntax	8 months ago
Stéphane Lesimple	8e25642f42	fix: remove tests for DSA keys, compiled out of recent OpenSSH versions These keys have always been denied by the bastion code anyway.	8 months ago
Stéphane Lesimple	9cf946ec42	fix: groupAddServer: don't ignore --force-key (close #561 )	10 months ago
Stéphane Lesimple	395243f665	fix: sftp wrapper: handle -P properly (close #553 )	10 months ago
Nabil	fcc3044903	Fix: typos	1 year ago
Stéphane Lesimple	c83add8d8c	release v3.19.01	1 year ago
Stéphane Lesimple	f79b186727	chore: github actions: replace ubuntu 20.04 by 24.04 (EOL)	1 year ago
Stéphane Lesimple	11cb6ce351	feat: httpproxy: optional support for plain http on egress	1 year ago
Stéphane Lesimple	a2f1d4f4f1	enh: ssh autologin: allow TERM env passthrough	1 year ago
vt1t1	ff5931e9d7	[fix] Add comment to groupSetServers and test	1 year ago
Roy van Baekel	c9503f50e7	Implement ssh --forward-agent \| -x functionality	1 year ago
Stéphane Lesimple	19390986fa	feat: add undocumented rename-account.sh and modify osh-orphaned-homedir.sh accordingly	1 year ago
Stéphane Lesimple	43d5e8e986	enh: 35% faster is_valid_ip() when fast=1	1 year ago
Stéphane Lesimple	fdb6c292a8	chore: use proper naming of 'subnet' instead of 'prefix' or 'slash' To avoid confusion, we now use 'subnet' to talk about a subnet represented with the CIDR notation, such as 10.0.0.0/8. In in that case: - 10.0.0.0/8 is a 'subnet' - 10.0.0.0 is the 'prefix' - 8 is the 'prefix length', or by extension the 'subnet length' Use these words everywhere in the code and documentation for clarity.	1 year ago
Stéphane Lesimple	0e2138a389	chore: use TAP::Harness for unit tests	1 year ago
Stéphane Lesimple	faaa2ed651	enh: tests: add --skip-functional-tests --skip-unit-tests	1 year ago
Stéphane Lesimple	8d33197061	feat: IPv6 support	1 year ago
Stéphane Lesimple	1d9ae483da	chg: set ECDSA as default egress key algo for new installs	1 year ago
Stéphane Lesimple	545547de6d	chore: tests: no longer run consistency check by default This is slow and almost never catched a bug, so consistency check is still supported but will not run by default, as it is quite slow, checking the system between each and every test. The option --skip-consistency-check is now ignored, and a new option to enable it has been added: --consistency-check	1 year ago
Stéphane Lesimple	4de9f88fe4	chore: faster tests by removing grant/revoke command dance When restricted commands need to be used during tests, we now use "account0" which has all these commands granted, instead of granting/revoking commands every time with no added value with respect to the tests. This was previously required for OSes that have a limit to the number of groups an account can be a member of, but these OSes have now long been unsupported.	1 year ago
Stéphane Lesimple	ad54cc6aad	chore: speedup tests in 330-selfkeys.sh	1 year ago
Stéphane Lesimple	92bc512050	feat: add assetForgetHostKey	1 year ago
TomRicci	f599793c76	fix: protocol scpdownload scpupload in 395-mfa-scp-sftp-rsync.sh	2 years ago
Stéphane Lesimple	8cafbc854c	fix: allow ssh-as in connect.pl	2 years ago
Stéphane Lesimple	3ee9a5d896	fix: regression introduced by `932e72e` for stealth stdout in ssh Before `932e72e`, plugin-scoped stealthStdout was ignored, which was fixed by `932e72e` which in turn made ssh ignore the pattern-based egress ssh stealthStdout option. This fix ensures stealthStdout is honored for both plugins and egress ssh.	2 years ago
Stéphane Lesimple	accd50eea7	feat: add rsync support to --protocol	2 years ago
Stéphane Lesimple	f4de5957a3	feat: add groupSetServers	2 years ago
Stéphane Lesimple	2e96603300	feat: support wildcards in --user (fix #461 )	2 years ago
Stéphane Lesimple	77ab1e2336	fix: tests: Ubuntu 24.04 adjustments	2 years ago
Stéphane Lesimple	7487597d61	fix: tests: don't test FIDO2 on unsupported distros	2 years ago
perrze	0b13371165	Adding tests for secure keys feature	2 years ago
Stéphane Lesimple	a1efcec582	feat: replace --wait by a tcp-based connection try	2 years ago
Stéphane Lesimple	4216795895	fix: tests: detect definition errors in modules	2 years ago
Stéphane Lesimple	c53f50ddf9	enh: remove nc dependency	2 years ago
Stéphane Lesimple	496fe94dd3	enh: allow @ as a valid remote user char (fixes #437 )	2 years ago
Stéphane Lesimple	7423f6ad63	feat: add dnsSupportLevel option for systems with broken DNS (fixes #397 )	2 years ago
Stéphane Lesimple	d8f9423e8f	fix: scp/sftp: correctly bypass JIT MFA if asked to, when old helpers are used	2 years ago
Stéphane Lesimple	8625b74307	fix: tests for FreeBSD	2 years ago
Stéphane Lesimple	345a1f951f	fix: don't exit with fping host is unreachable As ping can return unknown exit codes for unknown cases, just never bail out to avoid taking bad decisions, as we retry each second maximum, there's no DoS risk	2 years ago
Stéphane Lesimple	59b04ab761	tests: add tests for MFA with scp/sftp	2 years ago
Stéphane Lesimple	b48463076f	feat: osh.pl: jit mfa for plugins	2 years ago

1 2 3

147 Commits (master)