a65b3b24ce
kdig(): ignore lines starting with semicolon in json
2024-04-10 00:03:46 +02:00
0496feb8fb
Use custom certbot config path
2024-01-28 19:21:01 +01:00
e96d61703b
ns/sync.php: instant sync when adding new sync
2023-10-08 00:50:48 +02:00
bb937526a7
check.php: use null coalescing operator ("??") more
2023-08-14 18:20:47 +02:00
0340c24a81
Use kdig() everywhere appropriate
2023-08-13 18:52:34 +02:00
4fbdcdb13b
Knot timeout: 3 > 20
2023-08-11 18:56:52 +02:00
2570d09ba9
Add reg/edit.php and regParseRecord()
2023-07-31 01:13:06 +02:00
40e67b0c0c
declare(strict_types=1);
2023-07-17 21:15:18 +02:00
b05653d16f
ns: add CSYNC to ALLOWED_TYPES
2023-07-05 19:53:39 +02:00
1d856e1e2e
ns/sync: translations and bugfixes
2023-06-26 04:13:52 +02:00
858d6e8d02
Add ns/sync and jobs/ns-syncs
2023-06-24 16:54:36 +02:00
ccd17b7ffa
Clear entries in ssh-keys when deleting account
2023-06-21 22:08:57 +02:00
973a129079
Add type in functions signatures
2023-06-20 00:36:58 +02:00
7f7bcadb58
Fix important vulnerability in reg/ds.php + exescape
...
In page reg/ds.php, POST parameter 'key' was directly sent to shell, allowing for remote arbitrary commands execution.
This commit fixes this vulnerability, and uses a new function to automatically escape every shell command arguments as an additional generic protection.
2023-06-19 02:15:43 +02:00
067e1ccf42
Allow SSH keys authentication for SFTP(Go)
2023-06-15 03:35:42 +02:00
e4ae765486
init.php + jobs + job to delete old testing accounts
2023-06-08 17:36:44 +02:00
f05a55a7fa
Display string rules, reg: allow "-" for subdomains
2023-06-05 00:18:10 +02:00
a83ae30ce7
Fix zone deletion process (again)
2023-05-06 02:39:19 +02:00
c05c16a516
--blocking for knotc everywhere
2023-05-03 01:38:50 +02:00
864f868890
Split accounts capabilities; Info about rate limit
2023-05-02 19:30:53 +02:00
81229a5e33
nsDeleteZone: Fix zone deletion process
2023-04-27 22:18:03 +02:00
5af557f630
Better return code checking, --force for zone-purge
2023-04-27 03:24:34 +02:00
3749aa9b4a
Fix exec()'s $output
2023-04-23 16:36:41 +02:00
b5b2f95bf5
rm --recursive > rm -r for BusyBox compatibility
2023-04-23 03:19:10 +02:00
813927e03e
Ensure domains are not too long
2023-04-21 19:01:46 +02:00
d51f9dfac3
Set umask to 0077 everywhere
2023-04-19 14:59:07 +02:00
bd06fc7fbf
Use Apache
...
- Allows customization through .htaccess
- No need to configure or reload a server when adding a site
- Content negotiation
2023-04-10 00:50:42 +02:00
b9af7fee09
reg: Delay at unregistration; Display domain history
2023-03-25 16:26:05 +01:00
ed05d4aab9
reg/register: add "Check availability" feature
2023-03-19 22:22:34 +01:00
abb9aabf5b
Advanced services status management
2023-03-09 01:35:30 +01:00
ad98060f9e
Fix deprecation notices
2023-02-07 22:25:16 +01:00
b2bfbb7bf8
Niver > ServNest
2023-01-29 21:09:00 +01:00
3b97b3cc2f
Describe config.ini in DOCS/configuration.md
2023-01-26 16:22:03 +01:00
23b2afe03e
fix: Also delete apex domain in regDeleteDomain()
2023-01-23 01:42:18 +01:00
312292d06a
feature: reg: allow multiple suffixes
2023-01-23 01:14:59 +01:00
335b826559
Gettext internationalization and english translation
2023-01-21 01:27:52 +01:00
6b1b3547c3
OpenSSL > libsodium, authenticate username, PHP 8.2+
2023-01-18 16:00:17 +01:00
4f84025baf
Encrypt display username, with key in cookie
2023-01-07 23:11:44 +01:00
a3da268ead
ht: subdomain and subpath on shared domain
2022-12-22 01:44:57 +01:00
57dfb02a40
Store secret key in DB + autorotate it
2022-12-21 00:14:55 +01:00
73c137aaba
Split pages/ between pg-act/ and pg-view/
2022-12-20 21:17:03 +01:00
ffd7e283a1
Simplify PDO use
2022-12-13 17:38:54 +01:00
1c193cd59d
Add reg/transfer.php
2022-12-13 16:52:10 +01:00
7a018e5a88
Trusted > approved, add approval.php, DB_PATH > DB
2022-12-10 18:19:37 +01:00
9173336714
Check that account still exists when doing something
2022-11-30 23:38:02 +01:00
f15681999b
Internal ID, Argon2 for usernames, username changes
2022-11-30 23:12:42 +01:00
05db184fa6
ht: More restrictive directory names
2022-11-28 17:16:30 +01:00
922f649a08
Use a hash as internal username
2022-11-26 21:45:48 +01:00
dc3c976d37
Make services reloading systemd-agnostic
2022-11-23 22:21:34 +01:00
567034b8fe
Fix regDeleteDomain security flaw + D regex modifier
...
regDeleteDomain() in fn/reg.php used too loose pattern matching for data deletion, that also deleted other domains that included the deleted domain
2022-11-20 18:17:03 +01:00
Miraty