* Now we use onload event to disable user CSS accoring to default
or user settings. Problem was that we were setting the 'disabled'
attribute on unloaded stylesheet. This should work in all moderen
browsers.
* Fixed initialization of user CSS settings from cookie. Now we the correct
values are being read. This could be possible fix for issue #138.
* Changed generation of CSS link elements to get rid of JS deprecated
warnings.
_SC_GETGR_R_SIZE_MAX was treated as a maximum buffer size while
it should only be a proposition for an initial size.
The buffer size is now increased dynamically if the initial size
is not sufficient.
Commit b06b1f15ac broke the configure option
"--disable-ssl" as the function sslMakeContext() was not enclosed in an
"#if defined(HAVE_OPENSSL)" statement.
* Updated README.md with additional instructions
* Updated configure.ac and Makefile.am to remove configuration warnings
Fixes were made according to information from issue #295
Now we are able to catch 38 and 48 ANSI escape codes in csim funcion. This two codes
define extended foreground/background color of terminal output in 256 color mode.
This enables us to add CSS classes "ansi0-ansi255" and "bgAnsi0-bgAnsi255" to related
output sections. Colors defined in CSS classes are the same as xterm colors.
* IE doesn't trigger warning when session is closed
* IE and Firefox actually sends Ctrl-W event to terminal
* In Chrome user still gets warning and event is NOT sent to terminal
When new process is launched default terminal speed is correctly set to 38400.
This improves usage of Emacs editor and perhaps some other applications.
This is also partial fix for issue #58
Instead of making the browser sniffing more complicated, it's probably
better to use code that works for all current browsers. As such, this
swaps to use gzip compression encoding instead of deflate and drops the
IE browser sniffing code. This means shellinabox works in IE11 and
should work in every version of IE since IE7. From this commit, IE6 is
no longer supported. Thanks @lfourquaux.
type="textfield" is invalid, however most browsers seem to default to
type="text" so this must have been overlooked.
This patch was modified to fit in our fork by @KLuka.
Keyboard icon was not visible on dark background. This fixes icon to work well
on light and dark background. Image was fixed by @Grimthorr.
Copy of icon was removed from demo directory.
Posts from issue #118 tells us that at signs in JavaScript comments could produce
some troubles in IE browsers.
This related to something called "contional compilation" in JS ...
When browser tab/window is closed during active session, child process
stays alive forever (even if shellinaboxd is terminated).
This fix works only if shellinaboxd is started without root privileges.
Droping them at runtime doesn't help either. Issue is related to PAM
session management process.
If we start shellinaboxd with root priviliges this fix will not affect
anything.
* When session timeouts cleanup procedure is triggered. Procedure is executed
in launcher process, because this is parent of child (service) process.
There we execute checks, if we have correct child pid (stored in session) and
than we can terminate process.
* Added debug information about cleaning up child process
https://code.google.com/p/shellinabox/issues/detail?id=103https://code.google.com/p/shellinabox/issues/detail?id=203
Patch reference: e69132f3762bd57a328dfc40b645d670d651afe7
Patch message:
When connecting to shellinabox through an HTTP Proxy, we need to be careful
in holding the HTTP/S connection with unbound pending HTTP-POST as they would
occupy one thread in the outbound proxy.
We do need to make sure that:
- HTTP POST will graceful time-out from the client side, if no data is returned
by the server in 30s (gives the impression to the HTTP Proxy that the "page load"
is completed after tha time and then would release the thread)
- In case of connection errors, the browser doesn't retry with a short loop but
waits 1s before trying again. This prevent the browser freezing and the CPU looping.
Disable SSLv2, SSLv3, and compression; generate new DH or ECDH keys
during each handshake; always start a new session on server
renegotiation; set a strong cipher list.
Signed-off-by: Anders Kaseorg <andersk@mit.edu>
[ Patch from https://code.google.com/p/shellinabox/issues/detail?id=215 ]