chiark / gitweb /
userv-utils.git
13 years agogit-daemon/chiark-urlmap: better security
Tony Finch [Wed, 31 Mar 2010 02:35:10 +0000 (03:35 +0100)]
git-daemon/chiark-urlmap: better security

Check the server IP address corresponds to the server hostname
when exporting VPN-only repositories.

Use symlinks under ~/.userv so that public-git directories
are not exported by default, as in the www-cgi configuration.

13 years agogit-urlmap: clarify comments
Tony Finch [Wed, 31 Mar 2010 02:30:52 +0000 (03:30 +0100)]
git-urlmap: clarify comments

13 years agogit-daemon: add Makefile and documentation.
Tony Finch [Wed, 31 Mar 2010 02:24:20 +0000 (03:24 +0100)]
git-daemon: add Makefile and documentation.

13 years agogit-daemon: invoke 'git upload-pack' instead of 'git-upload-pack'
Tony Finch [Wed, 31 Mar 2010 01:04:32 +0000 (02:04 +0100)]
git-daemon: invoke 'git upload-pack' instead of 'git-upload-pack'

13 years agogit-daemon: update TODO
Tony Finch [Wed, 31 Mar 2010 00:50:56 +0000 (01:50 +0100)]
git-daemon: update TODO

13 years agogit-daemon: include an example inetd.conf line.
Tony Finch [Wed, 31 Mar 2010 00:49:35 +0000 (01:49 +0100)]
git-daemon: include an example inetd.conf line.

13 years agogit-daemon: Simplify the filenames
Tony Finch [Wed, 31 Mar 2010 00:43:28 +0000 (01:43 +0100)]
git-daemon: Simplify the filenames

13 years agogit-daemon: fix and de-obfuscate the pkt-line parser.
Tony Finch [Wed, 31 Mar 2010 00:39:19 +0000 (01:39 +0100)]
git-daemon: fix and de-obfuscate the pkt-line parser.

13 years agogit-daemon: tidy up a bit
Tony Finch [Tue, 30 Mar 2010 23:52:01 +0000 (00:52 +0100)]
git-daemon: tidy up a bit

13 years agolog repository location
Tony Finch [Tue, 30 Mar 2010 20:58:52 +0000 (20:58 +0000)]
log repository location

13 years agogit-daemon: no need for a special configuration variable namespace
Tony Finch [Tue, 30 Mar 2010 20:56:41 +0000 (20:56 +0000)]
git-daemon: no need for a special configuration variable namespace

13 years agogit-daemon: overhaul configuration and add the userv service script
Tony Finch [Tue, 30 Mar 2010 20:14:55 +0000 (20:14 +0000)]
git-daemon: overhaul configuration and add the userv service script

Use a perl namespace to hold the userv variables that are set
by the git-daemon-urlmap script(s).

13 years agogit-daemon: config improvements
Tony Finch [Tue, 30 Mar 2010 17:45:36 +0000 (17:45 +0000)]
git-daemon: config improvements

Get configuration file(s) from the command line. Reverse order of
return values so user configs can just return the repo pathname.

13 years agogit-daemon: tweak comments
Tony Finch [Tue, 30 Mar 2010 15:09:49 +0000 (15:09 +0000)]
git-daemon: tweak comments

13 years agogit-daemon: allow userv to decide which services to allow.
Tony Finch [Tue, 30 Mar 2010 14:58:15 +0000 (14:58 +0000)]
git-daemon: allow userv to decide which services to allow.

13 years agogit-daemon: move checking to more appropriate place.
Tony Finch [Mon, 29 Mar 2010 16:17:45 +0000 (16:17 +0000)]
git-daemon: move checking to more appropriate place.

Less checking in the daemon itself; instead check in the
configuration which can be shared across the security boundary.

13 years agoNote what the git-upload-pack userv service needs to do
Tony Finch [Fri, 26 Mar 2010 19:07:01 +0000 (19:07 +0000)]
Note what the git-upload-pack userv service needs to do

13 years agogit-daemon: allow virtual hosts to forbit tilde parts in URLs
Tony Finch [Fri, 26 Mar 2010 18:56:43 +0000 (18:56 +0000)]
git-daemon: allow virtual hosts to forbit tilde parts in URLs

13 years agogit-daemon: suppress warnings
Tony Finch [Fri, 26 Mar 2010 18:28:22 +0000 (18:28 +0000)]
git-daemon: suppress warnings

13 years agogit-daemon: Log timeout errors and polish code a bit.
Tony Finch [Fri, 26 Mar 2010 18:23:24 +0000 (18:23 +0000)]
git-daemon: Log timeout errors and polish code a bit.

13 years agogit-daemon: simplify xread()
Tony Finch [Fri, 26 Mar 2010 18:15:26 +0000 (18:15 +0000)]
git-daemon: simplify xread()

13 years agogit-daemon.pl: second iteration based on feedback from Ian.
Tony Finch [Fri, 26 Mar 2010 18:00:46 +0000 (18:00 +0000)]
git-daemon.pl: second iteration based on feedback from Ian.

Instead of invoking the standard git-daemon via userv, do what
the standard git-daemon does and invoke git-upload-pack.

Log errors to syslog. Obtain the client IP address and port.

Use a configuration file to work out the user from the
virtual host name and tilde part of the URL.
Put the syntax check regexes in the configuration file.

Pass parameters to userv git-upload-pack service with
user-defined variables instead of command line arguments.

13 years agogit-daemon-vhosts.pl: A sample virtual host configuration file.
Tony Finch [Fri, 26 Mar 2010 17:16:34 +0000 (17:16 +0000)]
git-daemon-vhosts.pl: A sample virtual host configuration file.

13 years agoInitial pass at a git daemon for userv.
Tony Finch [Fri, 26 Mar 2010 16:43:09 +0000 (16:43 +0000)]
Initial pass at a git daemon for userv.

17 years agoAdd a few missing #include's of <string.h>. cvs debian_version_0_3
ian [Tue, 6 Jun 2006 21:02:20 +0000 (21:02 +0000)]
Add a few missing #include's of <string.h>.

17 years agomoved changelog
ian [Tue, 6 Jun 2006 20:59:26 +0000 (20:59 +0000)]
moved changelog

17 years agorationalise changelog
ian [Tue, 6 Jun 2006 20:56:26 +0000 (20:56 +0000)]
rationalise changelog

18 years ago@@ -12,6 +12,7 @@
ian [Thu, 11 Aug 2005 18:52:07 +0000 (18:52 +0000)]
@@ -12,6 +12,7 @@
+  * Use slip, not cslip, for udptunnel (!)

18 years ago*** empty log message ***
ian [Thu, 11 Aug 2005 18:50:18 +0000 (18:50 +0000)]
*** empty log message ***

19 years ago*** empty log message ***
ian [Sun, 5 Sep 2004 16:10:30 +0000 (16:10 +0000)]
*** empty log message ***

20 years ago*** empty log message ***
ian [Tue, 2 Mar 2004 23:09:55 +0000 (23:09 +0000)]
*** empty log message ***

20 years ago*** empty log message ***
ian [Sun, 13 Jul 2003 22:58:51 +0000 (22:58 +0000)]
*** empty log message ***

20 years ago*** empty log message ***
ian [Sun, 13 Jul 2003 22:57:25 +0000 (22:57 +0000)]
*** empty log message ***

20 years agocopyright notices
ian [Sun, 6 Jul 2003 21:25:01 +0000 (21:25 +0000)]
copyright notices

20 years ago*** empty log message ***
ian [Sun, 6 Jul 2003 20:47:12 +0000 (20:47 +0000)]
*** empty log message ***

20 years ago*** empty log message ***
ian [Sun, 6 Jul 2003 20:32:27 +0000 (20:32 +0000)]
*** empty log message ***

20 years ago0.2.99.0.1
ian [Sun, 6 Jul 2003 16:57:23 +0000 (16:57 +0000)]
0.2.99.0.1

20 years agochangelog
ian [Thu, 3 Jul 2003 11:55:19 +0000 (11:55 +0000)]
changelog

20 years agoremove binaries and ~-files
ian [Wed, 2 Jul 2003 18:55:22 +0000 (18:55 +0000)]
remove binaries and ~-files

20 years agofound in chiark:/usr/local/src/davenant
ian [Wed, 2 Jul 2003 18:55:01 +0000 (18:55 +0000)]
found in chiark:/usr/local/src/davenant

20 years agofound in davenant:/usr/local/src/misc
ian [Wed, 2 Jul 2003 18:53:26 +0000 (18:53 +0000)]
found in davenant:/usr/local/src/misc

20 years agodocument changes
ian [Sun, 15 Jun 2003 17:59:10 +0000 (17:59 +0000)]
document changes

20 years agoreject some of the uxsup changes
ian [Sun, 15 Jun 2003 17:57:17 +0000 (17:57 +0000)]
reject some of the uxsup changes

20 years agochanges from Cambridge University (Ben Harris) unedited; will edit shortly
ian [Sun, 15 Jun 2003 17:46:49 +0000 (17:46 +0000)]
changes from Cambridge University (Ben Harris) unedited; will edit shortly

20 years agoIPv6 support - minor change courtesy of Ben Harris
ian [Sun, 15 Jun 2003 17:34:23 +0000 (17:34 +0000)]
IPv6 support - minor change courtesy of Ben Harris

20 years ago@@ -1,8 +1,9 @@
ian [Sun, 15 Jun 2003 17:33:54 +0000 (17:33 +0000)]
@@ -1,8 +1,9 @@
-userv-utils (0.2.4) unstable; urgency=low
+userv-utils (0.3.0) unstable; urgency=low

-  * Minor fixes to INSTALL.
-  * Report nonzero death of m4 better.
-  * ipif service MAXEXROUTES increased from 5 to 50.
+  * New dyndns service.
+  * ipif: Minor fixes to INSTALL.
+  * ipif: Report nonzero death of m4 better.
+  * ipif: service MAXEXROUTES increased from 5 to 50.

  --

21 years ago@@ -2,6 +2,7 @@
ian [Sun, 15 Sep 2002 12:37:59 +0000 (12:37 +0000)]
@@ -2,6 +2,7 @@
+  * ipif service MAXEXROUTES increased from 5 to 50.

21 years ago@@ -1,6 +1,7 @@
ian [Sun, 23 Jun 2002 22:32:06 +0000 (22:32 +0000)]
@@ -1,6 +1,7 @@
+  * Report nonzero death of m4 better.

21 years ago@@ -1,3 +1,9 @@
ian [Sun, 23 Jun 2002 22:30:29 +0000 (22:30 +0000)]
@@ -1,3 +1,9 @@
+userv-utils (0.2.4) unstable; urgency=low
+
+  * Minor fixes to INSTALL.
+
+ --
+
 userv-utils (0.2.3) unstable; urgency=low

   * udptunnel-reconf can write a known_hosts file for you.

22 years ago0.2.3 rel-uservutils-0-2-3
ian [Mon, 11 Feb 2002 21:47:16 +0000 (21:47 +0000)]
0.2.3

22 years ago@@ -1,3 +1,9 @@
ian [Mon, 11 Feb 2002 21:46:58 +0000 (21:46 +0000)]
@@ -1,3 +1,9 @@
+userv-utils (0.2.3) unstable; urgency=low
+
+  * udptunnel-reconf can write a known_hosts file for you.
+
+ -- Ian Jackson <ian@davenant.greenend.org.uk>  Mon, 11 Feb 2002 21:46:48 +0000
+
 userv-utils (0.2.2) unstable; urgency=low

   * udptunnel-reconf default script pauses for 10s between restarts.

22 years agoVersion rel-uservutils-0-2-2
ian [Sat, 15 Dec 2001 17:56:01 +0000 (17:56 +0000)]
Version

22 years ago@@ -7,8 +7,9 @@
ian [Sat, 15 Dec 2001 17:55:07 +0000 (17:55 +0000)]
@@ -7,8 +7,9 @@
   * udptunnel-vpn-config.m4 allows global file to override as intended.
   * www-cgi passes HTTP_COOKIE header.
   * indirect ssh via V_sshinvoke.
+  * userv-ipif config file allows exclusions in network permissions.

- --
+ -- Ian Jackson <ian@davenant.greenend.org.uk>  Sat, 15 Dec 2001 17:55:06 +0000

 userv-utils (0.2.1) unstable; urgency=low

22 years agoReally get sshinvoke right.
ian [Wed, 26 Sep 2001 00:21:00 +0000 (00:21 +0000)]
Really get sshinvoke right.

22 years ago@@ -6,6 +6,7 @@
ian [Wed, 26 Sep 2001 00:20:35 +0000 (00:20 +0000)]
@@ -6,6 +6,7 @@
+  * indirect ssh via V_sshinvoke.

22 years ago@@ -4,6 +4,7 @@
ian [Wed, 26 Sep 2001 00:19:47 +0000 (00:19 +0000)]
@@ -4,6 +4,7 @@
+  * udptunnel-vpn-config.m4 allows global file to override as intended.

22 years ago@@ -3,6 +3,7 @@
ian [Wed, 26 Sep 2001 00:18:56 +0000 (00:18 +0000)]
@@ -3,6 +3,7 @@
+  * forbid_remote is a per-tunnel option.

22 years ago@@ -2,6 +2,7 @@
ian [Wed, 26 Sep 2001 00:12:14 +0000 (00:12 +0000)]
@@ -2,6 +2,7 @@
+  * udptunnel-reconf understands forbid_remote set to `-'.

23 years ago@@ -2,6 +2,7 @@
ian [Sat, 17 Mar 2001 15:32:58 +0000 (15:32 +0000)]
@@ -2,6 +2,7 @@
+  * www-cgi passes HTTP_COOKIE header.

23 years ago@@ -1,6 +1,7 @@
ian [Sat, 10 Mar 2001 17:32:29 +0000 (17:32 +0000)]
@@ -1,6 +1,7 @@
+  * udptunnel-reconf inittab entries default to having </dev/null.

23 years ago@@ -1,3 +1,9 @@
ian [Tue, 20 Feb 2001 02:21:55 +0000 (02:21 +0000)]
@@ -1,3 +1,9 @@
+userv-utils (0.2.2) unstable; urgency=low
+
+  * udptunnel-reconf default script pauses for 10s between restarts.
+
+ --
+
 userv-utils (0.2.1) unstable; urgency=low

   * New udptunnel-reconf program for generating invoke scripts, inittab

23 years ago@@ -1,11 +1,12 @@ rel-uservutils-0-2-1
ian [Mon, 11 Dec 2000 02:46:04 +0000 (02:46 +0000)]
@@ -1,11 +1,12 @@
 userv-utils (0.2.1) unstable; urgency=low

-  * service.c (userv ipif) /32 prefixes work properly now.
-
   * New udptunnel-reconf program for generating invoke scripts, inittab
-    entries, and the like.
+    entries, and the like, for a multi-host VPN.
+
+  * service.c (userv ipif) /32 prefixes work properly now.
+  * `make distclean' works in ipif, www-cgi and top level.

- --
+ -- Ian Jackson <ian@davenant.greenend.org.uk>  Mon, 11 Dec 2000 02:45:58 +0000

 userv-utils (0.2.0) unstable; urgency=low

23 years agoMerge udptunnelconf branch; cvs up -j branchpoint-2000-12-10-udptunnelconf -j mergepo...
ian [Mon, 11 Dec 2000 02:41:27 +0000 (02:41 +0000)]
Merge udptunnelconf branch; cvs up -j branchpoint-2000-12-10-udptunnelconf -j mergepoint-1-2000-12-10-udptunnelconf

23 years ago@@ -1,3 +1,9 @@ branchpoint-2000-12-10-udptunnelconf
ian [Sun, 10 Dec 2000 22:00:20 +0000 (22:00 +0000)]
@@ -1,3 +1,9 @@
+userv-utils (0.2.1) unstable; urgency=low
+
+  * service.c (userv ipif) /32 prefixes work properly now.
+
+ --
+
 userv-utils (0.2.0) unstable; urgency=low

   Improvements to ipif (tunnelling/VPN facility):

23 years agoVersion 0.2.0 rel-uservutils-0-2-0
ian [Mon, 18 Sep 2000 00:31:39 +0000 (00:31 +0000)]
Version 0.2.0

23 years agoVersion 0.2.
ian [Mon, 18 Sep 2000 00:31:28 +0000 (00:31 +0000)]
Version 0.2.

23 years ago@@ -1,8 +1,11 @@
ian [Mon, 18 Sep 2000 00:31:11 +0000 (00:31 +0000)]
@@ -1,8 +1,11 @@
 userv-utils (0.2.0) unstable; urgency=low

-  * ipif/INSTALL instructions &c improved, slattach patch included.
+  Improvements to ipif (tunnelling/VPN facility):
+  * INSTALL instructions much improved and README created.
+  * Patch to slattach included.
+  * Documentation comments improved.

- --
+ -- Ian Jackson <ian@davenant.greenend.org.uk>  Mon, 18 Sep 2000 01:31:01 +0100

 userv-utils (0.1.90) unstable; urgency=low

23 years ago@@ -1,6 +1,6 @@
ian [Sun, 13 Aug 2000 20:23:23 +0000 (20:23 +0000)]
@@ -1,6 +1,6 @@
 userv-utils (0.2.0) unstable; urgency=low

-  * ipif/INSTALL instructions slightly improved, slattach patch included.
+  * ipif/INSTALL instructions &c improved, slattach patch included.

  --

23 years ago@@ -1,3 +1,9 @@
ian [Thu, 10 Aug 2000 00:18:31 +0000 (00:18 +0000)]
@@ -1,3 +1,9 @@
+userv-utils (0.2.0) unstable; urgency=low
+
+  * ipif/INSTALL instructions slightly improved, slattach patch included.
+
+ --
+
 userv-utils (0.1.90) unstable; urgency=low

   * ipif/INSTALL instructions, such as they are, included.

23 years agoUpdate VERSION rel-uservutils-0-1-90
ian [Wed, 21 Jun 2000 22:48:53 +0000 (22:48 +0000)]
Update VERSION

23 years ago@@ -1,3 +1,12 @@
ian [Wed, 21 Jun 2000 22:48:28 +0000 (22:48 +0000)]
@@ -1,3 +1,12 @@
+userv-utils (0.1.90) unstable; urgency=low
+
+  * ipif/INSTALL instructions, such as they are, included.
+
+  * ipif service now supports `=' character in addrs in ipif-networks, for
+    local endpoint only.
+
+ -- Ian Jackson <ian@davenant.greenend.org.uk>  Wed, 21 Jun 2000 23:48:10 +0100
+
 userv-utils (0.1.9) unstable; urgency=low

   * Completely revamped udptunnel (in ipif) - now does encryption.

23 years agoupdate version number. rel-uservutils-0-1-9
ian [Sun, 18 Jun 2000 13:43:41 +0000 (13:43 +0000)]
update version number.

23 years ago@@ -1,10 +1,10 @@
ian [Sun, 18 Jun 2000 13:42:29 +0000 (13:42 +0000)]
@@ -1,10 +1,10 @@
-userv (0.1.9) unstable; urgency=low
+userv-utils (0.1.9) unstable; urgency=low

   * Completely revamped udptunnel (in ipif) - now does encryption.

  -- Ian Jackson <ian@davenant.greenend.org.uk>  Sun, 18 Jun 2000 14:41:36 +0100

-userv (0.1) experimental; urgency=low
+userv-utils (0.1) experimental; urgency=low

   * Initial release.

23 years ago@@ -1,8 +1,8 @@
ian [Sun, 18 Jun 2000 13:41:48 +0000 (13:41 +0000)]
@@ -1,8 +1,8 @@
-userv (0.2) unstable; urgency=low
+userv (0.1.9) unstable; urgency=low

   * Completely revamped udptunnel (in ipif) - now does encryption.

- --
+ -- Ian Jackson <ian@davenant.greenend.org.uk>  Sun, 18 Jun 2000 14:41:36 +0100

 userv (0.1) experimental; urgency=low

23 years agoRemove finger program from trunk.
ian [Sun, 18 Jun 2000 13:41:30 +0000 (13:41 +0000)]
Remove finger program from trunk.

23 years agoPrint "still open" messages. userv-utils-0-1-finger-mergeup-1
ian [Fri, 9 Jun 2000 20:27:14 +0000 (20:27 +0000)]
Print "still open" messages.

23 years agoClean up message.
ian [Fri, 9 Jun 2000 20:27:05 +0000 (20:27 +0000)]
Clean up message.

23 years agoBugfixes.
ian [Wed, 7 Jun 2000 00:59:31 +0000 (00:59 +0000)]
Bugfixes.

23 years agoMake debugging redirect work.
ian [Wed, 31 May 2000 01:57:25 +0000 (01:57 +0000)]
Make debugging redirect work.

23 years agoipif encrypting tunnel much better now
ian [Wed, 31 May 2000 01:16:26 +0000 (01:16 +0000)]
ipif encrypting tunnel much better now

23 years agoUpdate copyright notices.
ian [Wed, 31 May 2000 01:16:11 +0000 (01:16 +0000)]
Update copyright notices.

23 years agoAdd example invocation.
ian [Wed, 31 May 2000 01:16:05 +0000 (01:16 +0000)]
Add example invocation.

23 years agoNew encrypting tunnel seems to work !
ian [Wed, 31 May 2000 00:58:53 +0000 (00:58 +0000)]
New encrypting tunnel seems to work !

23 years agocrypto debugging, and several bugfixes
ian [Tue, 30 May 2000 23:53:01 +0000 (23:53 +0000)]
crypto debugging, and several bugfixes

23 years agocrypto debugging, and several bugfixes
ian [Tue, 30 May 2000 23:51:00 +0000 (23:51 +0000)]
crypto debugging, and several bugfixes

23 years agoWorks at least without crypto.
ian [Tue, 30 May 2000 23:06:46 +0000 (23:06 +0000)]
Works at least without crypto.

23 years agoWorks at least without crypto.
ian [Tue, 30 May 2000 22:49:36 +0000 (22:49 +0000)]
Works at least without crypto.

23 years agoActual forwarder program compiles apparently ok.
ian [Tue, 30 May 2000 18:48:16 +0000 (18:48 +0000)]
Actual forwarder program compiles apparently ok.

23 years ago@@ -1,6 +1,7 @@
ian [Mon, 29 May 2000 17:16:29 +0000 (17:16 +0000)]
@@ -1,6 +1,7 @@
+  * Embryonic new version of udptunnel.

23 years agoOption is -l not -lc, document that.
ian [Sun, 28 May 2000 18:27:09 +0000 (18:27 +0000)]
Option is -l not -lc, document that.

23 years ago@@ -1,3 +1,9 @@
ian [Sat, 20 May 2000 20:04:03 +0000 (20:04 +0000)]
@@ -1,3 +1,9 @@
+userv (0.2) unstable; urgency=low
+
+  * Embryonic new finger program.
+
+ --
+
 userv (0.1) experimental; urgency=low

   * Initial release.

24 years agoFinalise 0.1 rel-uservutils-0-1
ian [Tue, 9 Nov 1999 23:25:04 +0000 (23:25 +0000)]
Finalise 0.1

24 years agomake dist works
ian [Tue, 9 Nov 1999 23:21:46 +0000 (23:21 +0000)]
make dist works

24 years agoNew Makefile.
ian [Tue, 9 Nov 1999 23:18:10 +0000 (23:18 +0000)]
New Makefile.

24 years agoNew changelog.
ian [Tue, 9 Nov 1999 23:13:49 +0000 (23:13 +0000)]
New changelog.

24 years agoAdd copyrights.
ian [Tue, 9 Nov 1999 23:12:54 +0000 (23:12 +0000)]
Add copyrights.

24 years agoUpdate statuses.
ian [Tue, 9 Nov 1999 23:11:49 +0000 (23:11 +0000)]
Update statuses.

24 years agoRationalised.
ian [Tue, 9 Nov 1999 23:04:32 +0000 (23:04 +0000)]
Rationalised.

24 years agoFound in chiark:/info
ian [Tue, 9 Nov 1999 22:39:15 +0000 (22:39 +0000)]
Found in chiark:/info

24 years agoAdded copyright messages.
ian [Tue, 9 Nov 1999 22:35:41 +0000 (22:35 +0000)]
Added copyright messages.