Enrico Tagliavini
6cdc0f31b0
enable automatic ECDH when possible (openssl 1.0.2)
...
Openssl 1.1.0 and later are enabling ECDH automatically, but for older
version it must be enabled explicitly or all Perfect Forward Secrecy
ciphers will be silently ignored. See also [1]. This commit applies the
same fix as found in CnetOS 7 httpd package to enable automatic ECDH as
found in [2].
[1] https://wiki.openssl.org/index.php/Diffie-Hellman_parameters
[2] https://git.centos.org/blob/rpms!httpd.git/c7/SOURCES!httpd-2.4.6-ssl-ecdh-auto.patch
7 years ago
Koichiro IWAO
793a418cfb
common: log what value is set to tls_ciphers
...
Related to #1033 .
7 years ago
Koichiro IWAO
3da4d72323
common: quit using `!` as comment out symbol in config files
...
It is not used anywhere in default config. Some config like
`tls_ciphers` might contain `!` like this:
tls_ciphers=FIPS:!aNULL:!eNULL
Fixes #1033 .
7 years ago
Vraiment
fd37805ac0
Make sesman.ini dynamic for the location of the configuration file
7 years ago
Vraiment
9ed5243de9
Make xrdp.ini to be dynamic for each operating system
7 years ago
daixj
31ef2552c4
log: revert permission
7 years ago
daixj
828079b442
libxrdp: fix memory leak
7 years ago
daixj
ea6bb62410
log: fix fd checking
7 years ago
daixj
551bb185c5
log: remove unused code and fix potential memory leak
7 years ago
Vraiment
09712d70ad
Added PAM support for MacOS
7 years ago
Koichiro IWAO
c50015122c
FreeBSD: rework setsid code
...
Pull request #650 is not valid to avoid run session twice.
It certainly stops running session twice but causes #1016 .
In FreeBSD, sesman process will run like this. The intermediate
sesman is needed to detect session termination correctly.
xrdp-sesman (daemon)
|
+- xrdp-sesman (FreeBSD specific intermediate sesman)
|
+- xrdp-sesman (bsd sesion leader & each session)
|
+- Xorg
+- startwm.sh
+- xrdp-chansrv
To stop runninng session twice correctly, just exit before the
intermediate sesman executes Xorg, WM and chansrv.
7 years ago
Vraiment
4cee6726f8
Make changes to generate dylibs in mac again
7 years ago
Koichiro IWAO
e16029cbc2
fix leak of SCP_DISCONNECTED_SESSION
...
Pointed out by: #919
7 years ago
Jay Sorg
f763cb3788
fix for zombie processes sometimes appearing
7 years ago
Jay Sorg
acd05f365f
xrdp: xrdp_encoder.c fix compile when XRDP_RFXCODEC is not defined
7 years ago
Jay Sorg
a64cb81a36
xrdp: fix some leaks in xrdp_encoder.c
7 years ago
Koichiro IWAO
b17c45d86f
fix potential fd leak
...
In most cases, checking fd > 0 is not valid. open(2) returns -1 on
error, 0 on stdin, 1 on stdout, 2 on stderr, >2 . The border should be
between -1 and 0. Additionally, between 2 and 3.
Pointed out by: #919
7 years ago
Koichiro IWAO
5daa09171e
devredir: fix xinode leak
...
Pointed out by: #919
7 years ago
Koichiro IWAO
08f847d74b
sesman: refactor, change variable names
...
session_variables1 -> env_names
session_variables2 -> env_values
Use the name used in callee function env_set_user(). The former names
are not clear.
7 years ago
Koichiro IWAO
dcf64e43ca
remove trailing space
7 years ago
Koichiro IWAO
f2db57afb0
fix indent
7 years ago
matt335672
3f2a017c97
Make listen check before daemon fork
7 years ago
Koichiro IWAO
256fa11951
update submodules to the latest release
7 years ago
Koichiro IWAO
060e04313b
Bump version to v0.9.5
7 years ago
Koichiro IWAO
8fee3c0f3f
Update NEWS for v0.9.5
7 years ago
Dominik George
53eccc93a2
Simplify pulseaudio module build instructions
7 years ago
Koichiro IWAO
001cb3e2c6
README: add a link to wiki, how to set up audio redirection
7 years ago
Koichiro IWAO
93481365d1
pulse: replace old pulse notes with bran-new README
7 years ago
Dominik George
3244cb59d5
Fix memory corruption introduced by CVE-2017-16927 fix.
7 years ago
cocoon
84c160725a
workaround for corrupted display with W2K8
...
workaround for corrupted display like black bars left of cmd with W2K8
7 years ago
Koichiro IWAO
d8bb32541a
sesman: bring Xorg at the top in sesman.ini
...
as Xorg prefered recommended backend now. Add more comments.
7 years ago
Koichiro IWAO
942bb6316a
add comment on sessions xrdp.ini
7 years ago
Koichiro IWAO
64a0deb9cf
sesman: comment on non-suid Xorg in sesman.ini
...
Pointed out by: #923
7 years ago
rkantos
cdba988f52
Update xrdp_keyboard.ini
...
Add the missing? Finnish rdp_layout_ definitions. Makes my install now work with Finnish keyboard layout. (same as Swedish)
7 years ago
Koichiro IWAO
a20d5c29e8
xrdp_caps: remove unneeded comment on case statement
7 years ago
Koichiro IWAO
64f15d6553
xrdp_caps: constify and sort capability set
7 years ago
Koichiro IWAO
577bd8214f
common: add more capset constants
...
defined at MS-RDPBCGR 2.2.1.13.1.1.1 [1] and sort
[1] https://msdn.microsoft.com/en-us/library/cc240486.aspx
7 years ago
Koichiro IWAO
77a34e0a7b
common: express capability set constants in hex
...
as same as done in MS-RDPBCGR 2.2.1.13.1.1.1 [1].
[1] https://msdn.microsoft.com/en-us/library/cc240486.aspx
7 years ago
Koichiro IWAO
788ae1467a
xrdp_sec: constify color depth value
7 years ago
Koichiro IWAO
8d951ab02e
xrdp_listen: suppress log when TRANS_STATUS_DOWN
...
The log is always logged when clients are disconnecting even though
nothing unusual is happening. This scares users too much. Actually,
some users created a issue on GitHub with the following log. It will
lose focus from the real error.
> [ERROR] Listening socket is in wrong state, terminating listener
7 years ago
Koichiro IWAO
fb8f0adcc4
remove useless braces
7 years ago
Koichiro IWAO
d0c27a2904
common: suppress log when closing log files
...
because if xrdp is running 'fork=yes' mode, the log message
'shutting down log subsystem...' is logged everytime when the child
process is exitting. In other words, everytime when clients are
disconnecting. This is a little bit too vebose.
7 years ago
speidy
d958d1f018
sesman: scpv0, accept variable length data fields
7 years ago
Koichiro IWAO
3de3a4fab5
common: add more references to constants' origin
...
classify constants into these 5 types
* constants for xrdp
* constants come from ITU-T Recommendations
* constants come from Remote Desktop Protocol
* constants come from other MS products
* unclassified yet
7 years ago
Koichiro IWAO
799c230998
common: add references to constants' origin
7 years ago
Jay Sorg
a9eb21e6d7
common: avoid 100% cpu on ssl accept, can be fake client
7 years ago
Justin Terry (VM)
d7d14d7462
Implements the accept/close logic for vsock
7 years ago
Koichiro IWAO
929a7c359d
chansrv: add LOG_LEVEL_TRACE here, too
7 years ago
Koichiro IWAO
4885a071b4
travis: add build test on FDK AAC, Opus
7 years ago
Jay Sorg
bc48578a90
remove crc16.h from common/Makefile.am
7 years ago