summarylogtreecommitdiffstats
diff options
context:
space:
mode:
authormax.bra2019-02-11 12:54:08 +0100
committermax.bra2019-02-11 12:54:08 +0100
commit896ec092e879301843f2ebd64814c9d66804074f (patch)
tree243a325bfe55809525633b8fe2e29cdc7024a4ad
parent0bcf70cbc8eeb492440726e19bc372ae500c283e (diff)
downloadaur-896ec092e879301843f2ebd64814c9d66804074f.tar.gz
wpad vulnerability
Diffstat
-rw-r--r--.SRCINFO4
-rw-r--r--PKGBUILD4
-rw-r--r--dnsmasq.include6
3 files changed, 9 insertions, 5 deletions
diff --git a/.SRCINFO b/.SRCINFO
index 2997e83d6084..09dfa127c317 100644
--- a/.SRCINFO
+++ b/.SRCINFO
@@ -1,7 +1,7 @@
pkgbase = pi-hole-server
pkgdesc = The Pi-hole is an advertising-aware DNS/Web server. Arch adaptation for lan wide DNS server.
pkgver = 4.2.1
- pkgrel = 2
+ pkgrel = 3
url = https://github.com/pi-hole/pi-hole
install = pi-hole-server.install
arch = any
@@ -43,7 +43,7 @@ pkgbase = pi-hole-server
md5sums = 36f3125e753c0e6f37496b26309501da
md5sums = 3ab295119379da3c6ba6db3a2b4b1bd8
md5sums = 96dc9795f528dd537ea169e67a7bb0fe
- md5sums = 4d6b3db77bd0b712fc193aa32ba4eea8
+ md5sums = 4d9038588164bb9130c8ca11653f83f3
md5sums = 971cc2859672341d77f8deba702fb7f7
md5sums = b63fcf29c29796023a2677bcf2b369a7
md5sums = 9bc23c314397a0f59978cfe246140cda
diff --git a/PKGBUILD b/PKGBUILD
index 32c83d0ca1ec..c0fbc93d4b93 100644
--- a/PKGBUILD
+++ b/PKGBUILD
@@ -4,7 +4,7 @@
pkgname=pi-hole-server
_pkgname=pi-hole
pkgver=4.2.1
-pkgrel=2
+pkgrel=3
_wwwpkgname=AdminLTE
_wwwpkgver=4.2
pkgdesc='The Pi-hole is an advertising-aware DNS/Web server. Arch adaptation for lan wide DNS server.'
@@ -44,7 +44,7 @@ md5sums=('6f4255a3471a4d2aad1ef22d5eba55aa'
'36f3125e753c0e6f37496b26309501da'
'3ab295119379da3c6ba6db3a2b4b1bd8'
'96dc9795f528dd537ea169e67a7bb0fe'
- '4d6b3db77bd0b712fc193aa32ba4eea8'
+ '4d9038588164bb9130c8ca11653f83f3'
'971cc2859672341d77f8deba702fb7f7'
'b63fcf29c29796023a2677bcf2b369a7'
'9bc23c314397a0f59978cfe246140cda'
diff --git a/dnsmasq.include b/dnsmasq.include
index 607d0cddcaae..7bc2d6a21a34 100644
--- a/dnsmasq.include
+++ b/dnsmasq.include
@@ -28,7 +28,11 @@ localise-queries
bogus-priv
no-resolv
cache-size=10000
-log-queries=extra
+log-queries
log-facility=/run/log/pihole/pihole.log
local-ttl=2
log-async
+# If a DHCP client claims that its name is "wpad", ignore that.
+# This fixes a security hole. see CERT Vulnerability VU#598349
+dhcp-name-match=set:wpad-ignore,wpad
+dhcp-ignore-names=tag:wpad-ignore