mirror/librenms-librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
17,705 Commits 47 Branches 151 Tags
1.65.1
Commit Graph
17705 Commits
This Branch
This Branch
All Branches
Author SHA1 Message Date
Tony Murray 15496dffd9 Bump verison 1.65.1 
Multiple security fixes. Thanks to:

Shielder <https://shielder.it/>
Loginsoft <https://www.loginsoft.com/>

For reporting vulnerabilities
1.65.1 		2020-07-10 14:56:16 -05:00
Jellyfrog 6bea59b8a0 Fix SQL injections in ajax_table.php (#11920) 
* Fix SQL injections via searchPhrase parameter

* Fix SQL injections via address parameter

* Fix sort injection

Co-authored-by: Tony Murray <[email protected]>
 2020-07-10 14:53:08 -05:00
Tony Murray 8f3a29cde5 Fix sql injection (#11923) 
in custom oid code

Thanks to loginsoft p.v.t l.t.d india for the report!
Website: https://www.loginsoft.com/
 2020-07-10 14:52:58 -05:00
Jellyfrog 1bb6bd8405 Sanitize graph title input (#11919) 2020-07-09 13:15:19 -05:00
Andreas e2294b57ad Fix graphing with generic_v3_multiline_float (#11916) 
#11853 introduced a bug which broke graphing (e.g. for the pi-hole app)
 2020-07-09 13:15:11 -05:00
Tony Murray 4cd79ca7fb Fix settings access (#11915) 
normal users could access
 2020-07-09 13:14:57 -05:00
Tony Murray 8a6de3ef23 Bump version to 1.65 1.65 2020-07-03 00:50:46 -05:00
Tony Murray be2d4a2e75 Changelog for 1.65 2020-07-03 00:50:44 -05:00
Tony Murray 44549ae63e Show poller settings even if distributed polling is disabled (#11893) 2020-07-03 00:37:37 -05:00
Tony Murray eb74af5756 Fix device up/down sort (#11891) 2020-07-03 00:36:01 -05:00
Tony Murray 014928accd Release wording change (#11892) 2020-07-03 00:15:05 -05:00
Tony Murray a312436bca Edit maintenance schedule, handle timezone properly (#11889) 
Was not properly formatting to user's timezone
Also handle the case where the browser and server timezone don't match
don't show incorrect values in dialog then pop to the correct ones.
Update title on modal to be appropriate
 2020-07-02 17:46:16 -05:00
Adam Bishop 9c80d0baa7 Remove the last node from the arbor sysObjectId (#11890) 
Arbor seem to change the sysObject ID for each variant. There don't seem to be any functional differences, so rather than add the 3 other object ID's I've got, it seems sensible to just trim the objectID.

There don't seem to be any functional differences from the perspective of SNMP.
 2020-07-02 21:39:17 +02:00
Munzy 8a851eda9f Auth AD URL (#11884) 
* Missing auth_ad_url

WIP

* add auth_ad_filter

* Pluralize

* Remove Translation, and add translations generation.
 2020-07-01 13:23:35 -05:00
Tony Murray 98502325db fix devices missing from graph view (#11886) 
devices without a location were not showing
 2020-07-01 17:47:23 +02:00
TheGreatDoc dd8844980f Move qnap to yaml discovery + extended discovery (#11882) 
* Move qnap to yaml discovery + extended discovery

* Fix pre-cache
 2020-07-01 06:53:59 -05:00
Jellyfrog 5cf5627ff5 Simpler fix for 659325d5d0 (#11883) 2020-06-30 18:36:13 -05:00
Tony Murray d38ce9dbf3 Update FAQ.md 2020-06-30 18:28:11 -05:00
Tony Murray b9f80d32bd Fix unauthenticated graphs (#11879) 
broken with security fix
 2020-06-30 09:25:01 -05:00
Derova c606659e11 Added support for Integra E radios (#11871) 
* Added support for Integra E radios

* Update saf-integra-e.json

* Update saf-integra-e.inc.php

Co-authored-by: Tony Murray <[email protected]>
 2020-06-30 16:12:00 +02:00
Tony Murray eb7fde70b2 Merge pull request #11880 from Jellyfrog/bug/python34 
Python 3.4 is the minimum requirement
 2020-06-30 09:09:37 -05:00
Jellyfrog 2fb1594348 Python 3.4 is the minimum requirement 
And not 3.5
 2020-06-30 16:01:22 +02:00
Tony Murray b36ab394a8 Merge pull request #11878 from Jellyfrog/bug/security-fixes 
Prevent unauthorized access to device graphs
 2020-06-30 07:55:35 -05:00
Jellyfrog 659325d5d0 Prevent unauthorized access to device graphs 
Users could access info for the wrong device by piggyback on port permissions
 2020-06-30 13:35:45 +02:00
Tony Murray 4da411c839 Merge pull request #11764 from karrots/patch-1 
Add APC Cooler detection
 2020-06-29 23:45:31 -05:00
Tony Murray 9fbc3cbb05 Merge branch 'master' into patch-1 2020-06-29 23:28:27 -05:00
Tony Murray bbe4625f8a Merge pull request #11876 from murrant/install-change-all-tabs 
Install change all tabs
 2020-06-29 22:46:08 -05:00
Tony Murray 4399cefa25 Merge pull request #11877 from murrant/remove-str-i-usage 
Fix some str_i_contains() usages
 2020-06-29 22:33:49 -05:00
Tony Murray 38d0398728 fix some str_i_contains usages 2020-06-29 17:58:55 -05:00
Tony Murray aac25798ed Merge pull request #11867 from murrant/more-install-changes 
Fix validation and other issues when config.php is missing
 2020-06-29 17:49:28 -05:00
Tony Murray 71d5d29dbb Automatically change all tabs in install docs 
Reduced the likelihood of a user viewing info for the wrong os.
 2020-06-29 16:17:07 -05:00
Tony Murray d75cc5235d Settings geocode lookup (#11875) 
* Add setting to enable geocoding to ui

* rename settings

* rename settings

* capitalization

* Open streetmaps does not support geocoding
 2020-06-29 21:03:03 +02:00
Tony Murray 63ba612fe8 Drop group write validation (#11873) 
causes more pain than it highlights issues
New install docs mitigate the original issue
 2020-06-29 16:29:43 +02:00
Tony Murray 9de48cfae2 Merge pull request #11866 from SourceDoctor/fix_availability_device_query 
Alternative/Better Availability Calculation Method
 2020-06-29 09:15:43 -05:00
Tony Murray 047c5197c6 Merge pull request #11874 from librenms/dependabot/npm_and_yarn/websocket-extensions-0.1.4 
Bump websocket-extensions from 0.1.3 to 0.1.4
 2020-06-29 08:15:48 -05:00
dependabot[bot] 9937e72c1c Bump websocket-extensions from 0.1.3 to 0.1.4 
Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-node) from 0.1.3 to 0.1.4.
- [Release notes](https://github.com/faye/websocket-extensions-node/releases)
- [Changelog](https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md)
- [Commits](https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4)

Signed-off-by: dependabot[bot] <[email protected]>
 2020-06-29 12:42:03 +00:00
SourceDoctor 82a1d7b8ec remove unneeded use 2020-06-29 10:27:52 +02:00
SourceDoctor 2241ba1df9 reduce to new algorithm 2020-06-29 10:16:45 +02:00
Tony Murray 52dd406c3f Merge pull request #11872 from murrant/installer-fixes 
installer fixes
 2020-06-29 01:27:52 -05:00
Tony Murray c78ec70396 installer fixes 2020-06-29 01:19:19 -05:00
Tony Murray db5524dc09 Merge pull request #11762 from murrant/consolidate-install-doc 
Update and Consolidate Install docs Ubuntu 20.04 and CentOS 8
 2020-06-29 01:10:28 -05:00
Tony Murray 4aec56dc42 Merge pull request #11868 from murrant/fping6 
Make fping work when fping6 is not present
 2020-06-29 01:06:56 -05:00
Tony Murray 2f2cd3404c installer fixes 2020-06-29 00:58:29 -05:00
Tony Murray 19402c5f66 acl is needed 2020-06-29 00:35:53 -05:00
Tony Murray 37f5541b83 don't need python2 packages 2020-06-29 00:06:34 -05:00
Tony Murray ea26f32d3e remove errant semicolin 2020-06-28 23:53:03 -05:00
Tony Murray 5b27431f8b no need to warn if config.php is missing 2020-06-28 22:37:44 -05:00
Tony Murray 6573ef84a5 simpler logic 2020-06-28 21:58:19 -05:00
Tony Murray 3cd240daf4 Merge pull request #11870 from murrant/remove-session-validate 
PHP session is no longer required
 2020-06-28 20:56:24 -05:00
Tony Murray d4add95e1f reorganize code to be better 2020-06-28 20:48:11 -05:00