Committed by: aaron
Approved by: tobez (implicit)
2006-02-15 Jochen Wiedmann <jwied@cpan.org> (0.39)
* t/forkm.t: Hopefully, I finally got rid of the
problem with the forking tests. It seems, that
the perlipc manual got updated in the past years,
most possibly for the same reason: A child handler
must be written to catch childs in a loop.
Approved by: tobez (implicit)
2.17 Mon Jan 9 18:22:51 EST 2006
-IMPORTANT NOTE: Versions of this module prior to 2.17 were incorrectly
using 8 byte IVs when generating the old-style RandomIV style header
(as opposed to the new-style random salt header). This affects data
encrypted using the Rijndael algorithm, which has a 16 byte blocksize,
and is a significant security issue.
The bug has been corrected in versions 2.17 and higher by making it
impossible to use 16-byte block ciphers with RandomIV headers. You may
still read legacy encrypted data by explicitly passing the
-insecure_legacy_decrypt option to Crypt::CBC->new().
-The salt, iv and key are now reset before each complete encryption
cycle. This avoids inadvertent reuse of the same salt.
-A new -header option has been added that allows you to select
among the various types of headers, and avoids the ambiguity
of having multiple interacting options.
-A new random_bytes() method provides access to /dev/urandom on
suitably-equipped hardware.
2.16 Tue Dec 6 14:17:45 EST 2005
- Added two new options to new():
-keysize => <bytes> Force the keysize -- useful for Blowfish
-blocksize => <bytes> Force the blocksize -- not known to be useful
("-keysize=>16" is necessary to decrypt OpenSSL messages encrypted with Blowfish)
- Update WWW
- Update distinfo, tarball was rerolled and renamed, no changes in the code
PR: 92968
Submitted by: Jean Milanez Melo <jmelo@freebsdbrasil.com.br>
The idea is that IPFilter in its current state can already do a simple L4
round-robin in its NAT rules. However, it does not detect or sense when a
service and/or host is down. It will continue to send requests to a downed
service/host.
However, IPFilter lets us add and remove rules on-the-fly so it should be
possible to build a daemon that lets you specify "clusters". In each cluster
you would specify its members/hosts and services. As well as a health-check
for the service to determine its current state.
Once a service was deemed "up" we would add a Round-Robin rule to the NAT
table, and naturally, the reverse once we detect a service as being "down".
In addition to this, this program can optionally add ipf rules to log for RST
(reset) packets coming from the members of your clusters. In the situations
where the software/port goes down, but the host itself is still working, we
would detect failure instantly. (Since the forwarded connections to the service
would trigger a RST packet back). If this option is enabled, l4ip spawns the
"ipmon" command to monitor for the "log" entries given when such a packet is
detected. l4ip will then mark the service down. This is an add-on feature and
is strictly not necessary for functional usage. It is currently only supported
for TCP.
WWW: http://www.lundman.net/unix/l4ip.php
- Drop NEURAL_NET (removed upstream) and TRAIN_SCRIPT (now always
installed and depend on PERL5 for it).
- Fix removal of EXAMPLESDIR on pkg-plist
- Fix spelling in pkg-message and UPDATING
- Some Makefile cleanup
- drop RC_SUFX in Makefile, USE_RC_SUBR= ${PORTNAME} and move
files/dspam.sh.in ---> files/dspam.in
PR: ports/93361
Submitted by: maintainer
* add support for flash 7 plugin [1]
* add ${X11BASE} to the plugins' search path [1]
* changed the order that 'linkfarm' script searches for plugins, so that
jdk 1.4 instead of jdk 1.3 is found if both are installed [1]
* bump PORTREVISION
* portlint
PR: ports/87523 [1]
Submitted by: Simun Mikecin <numisemis@yahoo.com> [1]
Approved by: garga (mentor)
.include <Makefile.inc> causes errors when make is not invoked from
port's directory on RELENG_4
PR: ports/92669
Submitted by: vd
Approved by: garga (mentor, implicitly), maintainer timeout
