e960e2800d
Merge branch '0.0.10-alpha' of ssh://numinibsd/git/base/enigma-bbs into security-updates
2019-05-06 20:49:16 -06:00
37ea1e3a30
Listen 'address' for SSH
2019-04-09 20:25:27 -06:00
0ed507cd7b
Initial real 2FA/OTP work
2019-04-09 20:07:19 -06:00
23779c3abe
Use authInfo obj vs weird params. auth factor 1: factor 2 for 2FA, etc.
2019-02-22 22:51:12 -07:00
57938e761e
+ Implement SSH PubKey authentication
...
* Security related items to config/security dir
2019-02-20 23:55:09 -07:00
8ba80426e3
Better disconnect - should resolve issues with SSH
2019-02-02 10:20:22 -07:00
f15629682c
Fix outstanding SSH bug seen with NetRunner and SyncTERM with ugly hack: Disable keep-alives
2019-01-29 20:36:45 -07:00
6408e40604
Fix minor typo
2019-01-13 19:10:54 -07:00
b23cdd20bf
Listen to 'env' events
2019-01-02 19:52:15 -07:00
3864d957c9
* Servers now use async listen()
2018-12-27 02:46:16 -07:00
9d1815682d
* ServerModule's createServer() is now async
...
* Re-write of NNTP Message-ID <> internal message UUIDs
2018-12-27 02:19:26 -07:00
ee93035bb8
* Disconnect clients that attempt to login with banned usernames for Telnet as well
...
* Slow disconnects to thwart brute force attacks - these names won't exist anyway,
but we want the attacking client to not DoS us
2018-12-25 00:18:04 -07:00
06a1925288
Check bad usernames @ login
2018-12-24 15:32:38 -07:00
73e8b0454e
Wrap ctx.reject() and catch throws
2018-12-24 15:14:37 -07:00
df2bf4477e
SECURITY UPDATE
...
* Handle failed login attempts via Telnet
* New lockout features for >= N failed attempts
* New auto-unlock over email feature
* New auto-unlock after N minutes feature
* Code cleanup in users
* Add user_property.js - start using consts for user properties. Clean up over time.
* Update email docs
2018-11-22 23:07:37 -07:00
9fd819d608
Resolve TODO RE using EnigError for bad login attempts
2018-11-21 19:43:50 -07:00
74b03fe846
Fix exception when no SSH stuff is configured
2018-11-12 22:05:36 -07:00
25560cb47a
SyncTERM SSH support
...
+ Enabled all ssh2-streams supported KEX, ciphers, etc. for now. Will communicate with Deuce about this.
2018-11-04 19:29:51 -07:00
1d8be6b014
Pardon the noise. More tab to space conversion!
2018-06-22 21:26:46 -06:00
e9787cee3e
ENiGMA 1/2 WILL USE SPACES FROM THIS POINT ON VS TABS
...
* Really just to make GitHub formatting happy. Arg.
2018-06-21 23:15:04 -06:00
1fe46894d3
More Hot-Reload related changes
...
* Config.get(): Returns the latest config
* Update code all over the place to use Config.get() vs Config.conf (which will be deprecated)
2018-06-20 19:57:06 -06:00
2f09f3e995
Fix a couple rare bugs around SSH sessions
2018-06-14 20:00:01 -06:00
388e581b90
* Fix file transfer bug for WebSockets and SSH. Set/restore temp data handler belongs in base client.
...
* Lint some files
2018-05-12 09:33:41 -06:00
7ac388c30d
Force no compression
...
It appears as tho there is a problem with compression and the upstream library. This PR forces no compression mode, making a work around for #181 .
This work around is derived from https://github.com/mscdex/ssh2/issues/594 which may be the cause for #181 as well.
2018-04-24 08:30:14 -04:00
94f3721bf8
Prompt when already logged in
2018-01-21 20:49:38 -07:00
019596d709
Convert to using graceful-fs vs vanilla fs module
2017-05-19 21:20:19 -06:00
a7c0f2b7b0
* Add FileBaseFilters
...
* Add HTTP(S) file web server with temp URLs
* Get temp web d/l from file list
* Add File area filter editor (all file area stuff will be rename to file "base" later)
* Concept of "listening servers" vs "login servers"
* Ability to get servers by their package name
* New MCI: %FN: File Base active filter name
* Some ES6 updates
* VC resetInitialFocus() to set focus to explicit/detected initial focus field
* Limit what is dumped out when logging form data
2016-10-24 21:49:45 -06:00
9f22117e49
* Move login servers to core/servers/login
2016-09-19 21:28:50 -06:00
Bryan Ashby