third-party-mirrors/sslh
1
0
Fork 0
mirror of https://github.com/yrutschle/sslh.git synced 2025-04-19 02:07:39 +03:00
Code Issues Packages Projects Releases Wiki Activity
470 Commits 3 Branches 42 Tags
Commit Graph

57 Commits

Author SHA1 Message Date
yrutschle
8e130882fc sslh-fork drops all capabilities after connecting to server side 2021-05-09 15:46:25 +02:00
yrutschle
308b54aa8a remove caveat about UDP refactor 2021-05-08 07:06:14 +02:00
yrutschle
a0f9fc164e changelog the sslh-select refactoring 2021-04-21 08:42:27 +02:00
yrutschle
adb27aa4a3 add a per-protocol transparent proxy option 2021-02-21 21:03:01 +01:00
yrutschle
05a835ff1f begin of release not for UDP 2020-12-06 15:50:08 +01:00
yrutschle
41e3b0cd1d warn about refactor 2020-11-29 10:19:50 +01:00
yrutschle
9f99f296b1 warn about unknown settings in the configuration file 2020-08-29 18:22:42 +02:00
yrutschle
8b6e06e6c7 support for libconfig 1.4.9. Fix #275 2020-08-11 17:37:23 +02:00
yrutschle
99d4a6d4a2 explicit obsoletion of ssl param 2020-07-29 22:23:36 +02:00
yrutschle
8638199f13 test for command line parameters 2020-07-19 18:32:57 +02:00
yrutschle
ac8563525e fix Changelog for -v 2020-07-18 17:25:39 +02:00
yrutschle
2f983625d0 documentation update 2020-07-18 16:54:23 +02:00
Yves Rutschle
0cc516bf51 v1.21 2020-07-11 21:30:26 +02:00
yrutschle
c5b0932bad syslog_facility 'none' disables syslog 2020-06-19 23:39:25 +02:00
Yves Rutschle
c595aadb4d log to syslog even if in foreground 2020-05-28 10:13:54 +00:00
Jonathan McCrohan
f029b4098b Update Let's Encrypt entry in example.cfg 
Update Let's Encrypt entry in example.cfg for tls-alpn-01 challenge.
Previous entry was based on tls-sni-01 challenge which is deprecated and
was disabled in March 2019.

Signed-off-by: Jonathan McCrohan <jmccrohan@gmail.com>
 2019-06-16 23:26:33 +01:00
yrutschle
2705face30 TCP_FASTOPEN changelog 2019-03-10 10:11:28 +01:00
yrutschle
a7b4462c6e Added 'minlength' option 2019-02-03 14:45:14 +01:00
Yves Rutschle
4ae2e62d25 v1.20 2018-11-20 22:58:41 +01:00
yrutschle
0003680137 remove old tls and ssl targets, only use alpn/sni probe also for TLS with no extensions 2018-09-23 12:07:06 +02:00
yrutschle
ffe9971624 test suite for SNI/ALPN with multiple targets and all combinations covered 2018-08-30 19:50:53 +02:00
Yves Rutschle
677e385fec new probing algorithm 2018-08-13 22:29:09 +02:00
Yves Rutschlé
83be63d282 v1.19 2018-01-20 18:40:15 +00:00
Yves Rutschle
aa06261d70 added syslog_facility option 2017-07-21 22:46:24 +02:00
Yves Rutschle
38447c8158 v1.18 2016-03-29 21:19:05 +02:00
Yves Rutschle
414ed7de11 Support keepalive for connections on the connecting side 2016-02-04 09:19:54 +01:00
moparisthebest
8af039d3eb Add ALPN protocol based probe 2016-01-05 00:32:10 -05:00
Yves Rutschle
8758a298ba Changed connection log to include the name of the probe that triggered. 2015-12-15 16:06:14 +01:00
Yves Rutschle
2cb424c646 Added log_level option to configuration file, which switches off log at each connection 2015-12-15 15:51:18 +01:00
Yves Rutschle
8fdaf6eb08 changed configuration file to accomodate SNI in a cleaner way 2015-07-17 15:04:04 +02:00
Yves Rutschle
9475d9689b Comment for SNI inclusion 2015-07-15 15:02:37 +02:00
Yves Rutschle
3aefaf3004 Added Makefile option to build without libpcre 2015-07-09 15:31:42 +02:00
Yves Rutschle
3550cbe77c Finalised v1.17 2015-03-09 21:51:39 +01:00
Yves Rutschle
2705426f63 Attribute previous commit 2014-12-27 19:51:20 +01:00
Yves Rutschle
bb4aeb446a Use default configuration filename 2014-12-27 11:57:27 +01:00
Yves Rutschle
74de4f4fd2 Transparent proxy support for FreeBSD (attribution) 2014-12-25 20:15:52 +01:00
Yves Rutschle
b9ddfb4c7a Support RFC5952-style IPv6 addresses 2014-12-22 18:19:02 +01:00
Yves Rutschle
6fb234f85e added fail2ban configuration examples 2014-03-30 18:51:21 +02:00
Yves Rutschle
426797f9c0 call setgroups before setgid 2014-03-30 17:28:00 +02:00
Yves Rutschle
9d2deff6ad Changelog prepared for v1.16 2014-02-11 22:06:01 +01:00
Yves Rutschle
6bcb5c83f2 libcap support: print out process capabilities at startup if verbose 2014-02-09 21:39:27 +01:00
Yves Rutschle
67c34a7460 set IP_FREEBIND if available to bind to non-existent interfaces 2014-02-09 13:29:49 +01:00
Yves Rutschle
f2ca4c13a6 ChangeLog entry for the branch 2013-09-28 21:38:33 +02:00
Ondřej Kuzník
e4fb8b8496 defered -> deferred 2013-09-28 20:42:04 +02:00
Yves Rutschle
f3c5f098ca fixed getpeername causing sslh to quit 2013-08-29 12:15:50 +02:00
Yves Rutschle
c02e2d7aee v1.15 release 2013-07-27 16:25:04 +02:00
Yves Rutschle
e3159409c0 check fd < FD_SETSIZE 2013-07-25 21:35:27 +02:00
Yves Rutschle
2781c75ff9 Added tranparent proyxing 2013-07-21 13:46:45 +02:00
Yves Rutschle
d02ffcd154 Fixed bug in sslh-select: if socket dropped while defered_data was present, sslh-select would crash. 2013-07-20 00:45:33 +02:00
Yves Rutschle
f842e2e081 v1.14: 21DEC2012 
Corrected OpenVPN probe to support pre-shared secret
	mode (OpenVPN port-sharing code is... wrong). Thanks
	to Kai Ellinger for help in investigating and
	testing.

	Added an actual TLS/SSL probe.

	Added configurable --on-timeout protocol
	specification.

	Added a --anyprot protocol probe (equivalent to what
	--ssl was).

	Makefile respects the user's compiler and CFLAG
	choices (falling back to the current values if
	undefined), as well as LDFLAGS.
	(Michael Palimaka)

	Added "After" and "KillMode" to systemd.sslh.service
	(Thomas Weischuh).

	Added LSB tags to etc.init.d.sslh
	(Thomas Varis).
 2013-07-10 23:19:33 +02:00