relevant bugs) version:
Major changes between version 1.7.4p3 and 1.7.4p4:
* A potential security issue has been fixed with respect to the
handling of sudo's -g command line option when -u is also
specified. The flaw may allow an attacker to run commands as a
user that is not authorized by the sudoers file.
* A bug has been fixed where "sudo -l" output was incomplete if
multiple sudoers sources were defined in nsswitch.conf and there
was an error querying one of the sources.
* The log_input, log_output, and use_pty sudoers options now work
correctly on AIX. Previously, sudo would hang if they were
enabled.
* Fixed "make install" when sudo is built in a directory other
than the directory that holds the sources.
* The runas_default sudoers setting now works properly in a
per-command Defaults line.
* Suspending and resuming the bash shell when PAM is in use now
works properly. The SIGCONT signal was not being propagated to
the child process.
Major changes between version 1.7.4p2 and 1.7.4p3:
* A bug has been fixed where duplicate HOME environment variables
could be set when the env_reset setting was disabled and the
always_set_home setting was enabled in sudoers.
* The value of sysconfdir is now substituted into the path to the
sudoers.d directory in the installed sudoers file.
* Fixed compilation problems on Irix and other platforms.
* If multiple PAM "auth" actions are specified and the user enters
^C at the password prompt, sudo will now abort any subsequent
"auth" actions. Previously it was necessary to enter ^C once for
each "auth" action.
Major changes between version 1.7.4p1 and 1.7.4p2:
* Fixed a bug where sudo could spin in a cpu loop waiting for the
child process.
* Packaging fixes for sudo.pp to better handle patchlevels.
Major changes between version 1.7.4 and 1.7.4p1:
* Fix a bug introduced in sudo 1.7.3 that prevented the -k and -K
options from functioning when the tty_tickets sudoers option was
enabled.
* Sudo no longer prints a warning when the -k or -K options are
specified and the ticket file does not exist.
* Changes to the configure script to enable cross-compilation of
Sudo.
Major changes between version 1.7.3 and 1.7.4:
* Sudoedit will now preserve the file extension in the name of the
temporary file being edited. The extension is used by some
editors (such as emacs) to choose the editing mode.
* Time stamp files have moved from /var/run/sudo to either
/var/db/sudo, /var/lib/sudo or /var/adm/sudo. The directories
are checked for existence in that order. This prevents users
from receiving the sudo lecture every time the system reboots.
Time stamp files older than the boot time are ignored on systems
where it is possible to determine this.
* Ancillary documentation (README files, LICENSE, etc) is now
installed in a sudo documentation directory.
* Sudo now recognizes "tls_cacert" as an alias for "tls_cacertfile"
in ldap.conf.
* Defaults settings that are tied to a user, host or command may
now include the negation operator. For example:
Defaults:!millert lecture
will match any user but millert.
* The default PATH environment variable, used when no PATH variable
exists, now includes /usr/sbin and /sbin.
* Sudo now uses polypkg for cross-platform packing.
* On Linux, sudo will now restore the nproc resource limit before
executing a command, unless the limit appears to have been
modified by pam_limits. This avoids a problem with bash scripts
that open more than 32 descriptors on SuSE Linux, where
sysconf(_SC_CHILD_MAX) will return -1 when RLIMIT_NPROC is set
to RLIMIT_UNLIMITED (-1).
* Visudo will now treat an unrecognized Defaults entry as a parse
error (sudo will warn but still run).
* The HOME and MAIL environment variables are now reset based on
the target user's password database entry when the env_reset
sudoers option is enabled (which is the case in the default
configuration). Users wishing to preserve the original values
should use a sudoers entry like:
Defaults env_keep += HOME
to preserve the old value of HOME and
Defaults env_keep += MAIL
to preserve the old value of MAIL.
* The tty_tickets option is now on by default.
* Fixed a problem in the restoration of the AIX authdb registry
setting.
* If PAM is in use, wait until the process has finished before
closing the PAM session.
* Fixed "sudo -i -u user" where user has no shell listed in the
password database.
* When logging I/O, sudo now handles pty read/write returning ENXIO,
as seen on FreeBSD when the login session has been killed.
* Sudo now performs I/O logging in the C locale. This avoids
locale-related issues when parsing floating point numbers in the
timing file.
* Added support for Ubuntu-style admin flag dot files.
Major changes between version 1.7.2p8 and 1.7.3:
* Support for logging a command's input and output as well as the
ability to replay sessions. For more information, see the
documentation for the log_input and log_output Defaults options
in the sudoers manual. Also see the sudoreplay manual for
information on replaying I/O log sessions.
* The use_pty sudoers option can be used to force a command to be
run in a pseudo-pty, even when I/O logging is not enabled.
* On some systems, sudo can now detect when a user has logged out
and back in again when tty-based time stamps are in use.
Supported systems include Solaris systems with the devices file
system, Mac OS X, and Linux systems with the devpts filesystem
(pseudo-ttys only).
* On AIX systems, the registry setting in /etc/security/user is
now taken into account when looking up users and groups.
Sudo now applies the correct the user and group ids when running
a command as a user whose account details come from a different
source (e.g. LDAP or DCE vs. local files).
* Support for multiple sudoers_base and uri entries in ldap.conf.
When multiple entries are listed, sudo will try each one in the
order in which they are specified.
* Sudo's SELinux support should now function correctly when running
commands as a non-root user and when one of stdin, stdout or stderr
is not a terminal.
* Sudo will now use the Linux audit system with configure with the
--with-linux-audit flag.
* Sudo now uses mbr_check_membership() on systems that support it
to determine group membership. Currently, only Darwin (Mac OS X)
supports this.
* When the tty_tickets sudoers option is enabled but there is no
terminal device, sudo will no longer use or create a tty-based
ticket file. Previously, sudo would use a tty name of "unknown".
As a consequence, if a user has no terminal device, sudo will now
always prompt for a password.
* The passwd_timeout and timestamp_timeout options may now be
specified as floating point numbers for more granular timeout
values.
* Negating the fqdn option in sudoers now works correctly when sudo
is configured with the --with-fqdn option. In previous versions
of sudo the fqdn was set before sudoers was parsed.
changes:
The patches to fix the following CVEs are included with help from
Vincent Danen and other members of the Red Hat security team:
CVE-2010-1781 CVE-2010-1782 CVE-2010-1784 CVE-2010-1785
CVE-2010-1786 CVE-2010-1787 CVE-2010-1788 CVE-2010-1790
CVE-2010-1792 CVE-2010-1793 CVE-2010-2648
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Remove default value of GEM_BUILD.
* Ajust new ruby package's framework.
= Mechanize CHANGELOG
=== 1.0.0
* New Features:
* An optional verb may be passed to Mechanize#get GH #26
* The WWW constant is deprecated. Switch to the top level constant Mechanize
* SelectList#option_with and options_with for finding options
* Bug Fixes:
* Rescue errors from bogus encodings
* 7bit content-encoding support. Thanks sporkmonger! GH #2
* Fixed a bug with iconv conversion. Thanks awesomeman! GH #9
* meta redirects outside the head are not followed. GH #13
* Form submissions work with nil page encodings. GH #25
* Fixing default values with serialized cookies. GH #3
* Checkboxes and fields are sorted by page appearance before submitting. #11
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Add LICENSE.
* Ajust new ruby package's framework.
* Update dependency according to gemspec.
Changes are too many to write here, please refer History.txt.
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Correct spelling of CATEGORIES.
* Add LICENSE.
* Remove default value of GEM_BUILD.
* Ajust new ruby package's framework.
* Add CONFLICTS since it will install the same name commands both
ruby18 and ruby19 based packages.
== 0.9.4 / 2009-04-05
* 6 minor enhancements
- Added a Maruku filter (thanks to Martyn Loughran)
- Updated to version 0.8.0 of Blueprint css
- Better handling of errors generated by filters
- Modified how the editor is spawned when creating pages
- URLs for index pages now have a trailing slash
- Configuration options now have nice descriptions
webby --options
* 7 bug fixes
- Fixed haml & sass option handling [Alex Brem]
- Work around for a parsing bug in the rdiscount gem (markdown handling)
- Editor launching now handles switches passed to the editor
- When a page fails to render, it no longer writes an empty file to
the output folder (thereby overwriting the last good page)
- Pagination bug
- Presentation slides were not being found when headers had attributes
- The blog template now has all the CSS files
== 0.9.3 / 2008-10-08
* 4 minor enhancements
- Added a "wikiwords" filter to process [[text]] as links to other pages
(thanks to Paul)
- Added colorization to the output text (facets gem required)
- Replaced the Heel webserver with webrick
- Special windows version with windows line endings in generated files
* 2 bug fixes
- Fixed a bug on Windows where line endings were messing with meta-data
- The paginator was not linking correctly back to the first page from
subsequent pages in a list
== 0.9.2 / 2008-09-11
* 1 bug fix
- Layouts were not being found if more than one layout was in a directory
in the layouts folder
== 0.9.1 / 2008-09-10
* 1 major enhancement
- multiple output files can be generated from a single page
* 2 minor enhancements
- simplified the handling of meta-data at the top of files
- pagination now honors the "page per directory" flag
* 2 bug fixes
- filename extensions were not being preserved when creating a new page
- webby now works properly with rake 0.8.2
== 0.9.0 / 2008-08-25
* 2 major enhancements
- The "rake" command line tool has been replaced by the "webby"
command line tool for day to day site tasks
- Now using the "rdiscount" gem for markdown syntax
* 4 minor enhancements
- Layouts can exist in subdirectories of the layouts folder
- Addition of a "tumblog" template
- Addition of a sitemap file (Ana Nelson)
- Updated to version 6.4.2 of ImageMagick for tex2img conversions
* 5 bug fixes
- Better error message when an unkonwn filter is given
- Table of contents generation bug
- Failing to clean out the "content_for" cache when doing a
multi-page render
- Explicitly loading the RedCloth gem
- Handling exceptions from system calls on the Windows platform
== 0.8.4 / 2008-06-03
* 1 minor improvement
- Global defaults for HAML and SASS [Dag Odenhall]
* 1 bug fix
- Added the blog templates to the package
== 0.8.3 / 2008-06-02
* 2 major enhancements
- Added blogging support
- Added S5 slide presentation support
* 6 minor enhancements
- Changed the arguments to the DB#find method
- Added locals support for page templates
- Updated atom feed generation template
- Partials now support local variables when rendering
- Can guard rendering results from processing by subsequent filters
(useful when rendering partials or embedding other pages)
- Support for "content_for" style captures [M@ McCray]
* 5 bug fixes
- Fixed reference to an non-existent Error class
- Basepath filter now handles XML files properly
- Removed the "--delete" flag from the rsync options [Denis Defreyne]
- Fixed a nil cursor bug in the rendering filter stack
- Recursive find now works from the root content folder (bug 20281)
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Add LICENSE.
* Remove default value of GEM_BUILD.
* Update dependency according to gemspec.
* Add CONFLICTS since it will install the same name commands both
ruby18 and ruby19 based packages.
Exact changes are unknown.
* Add LICENSE.
* Remove default value of GEM_BUILD.
* Add CONFLICTS since it will install the same name commands both
ruby18 and ruby19 based packages.
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Update HOMEPAGE.
* Add LICENSE.
* Remove default value of GEM_BUILD.
* Ajust new ruby package's framework.
Changes are unknown.
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Add LICENSE.
* Remove default value of GEM_BUILD.
== Changes
* June 13th, 2010: Tenth public release 1.2.0.
* Removed Camping adapter: Camping 2.0 supports Rack as-is
* Removed parsing of quoted values
* Add Request.trace? and Request.options?
* Add mime-type for .webm and .htc
* Fix HTTP_X_FORWARDED_FOR
* Various multipart fixes
* Switch test suite to bacon
* January 3rd, 2009: Ninth public release 1.1.0.
* Moved Auth::OpenID to rack-contrib.
* SPEC change that relaxes Lint slightly to allow subclasses of the
required types
* SPEC change to document rack.input binary mode in greator detail
* SPEC define optional rack.logger specification
* File servers support X-Cascade header
* Imported Config middleware
* Imported ETag middleware
* Imported Runtime middleware
* Imported Sendfile middleware
* New Logger and NullLogger middlewares
* Added mime type for .ogv and .manifest.
* Don't squeeze PATH_INFO slashes
* Use Content-Type to determine POST params parsing
* Update Rack::Utils::HTTP_STATUS_CODES hash
* Add status code lookup utility
* Response should call #to_i on the status
* Add Request#user_agent
* Request#host knows about forwared host
* Return an empty string for Request#host if HTTP_HOST and
SERVER_NAME are both missing
* Allow MockRequest to accept hash params
* Optimizations to HeaderHash
* Refactored rackup into Rack::Server
* Added Utils.build_nested_query to complement Utils.parse_nested_query
* Added Utils::Multipart.build_multipart to complement
Utils::Multipart.parse_multipart
* Extracted set and delete cookie helpers into Utils so they can be
used outside Response
* Extract parse_query and parse_multipart in Request so subclasses
can change their behavior
* Enforce binary encoding in RewindableInput
* Set correct external_encoding for handlers that don't use RewindableInput
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Remove default value of GEM_BUILD.
* Ajust new ruby package's framework.
Changes are unknown.
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Add LICENSE.
* Remove default value of GEM_BUILD.
Version 1.0.1 (2008-11-10)
* Ruby 1.9 compatibility.
* Minor performance improvements.
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Remove default value of GEM_BUILD.
* Update dependency according to gemspec.
Changes are too may to write here, please refer CHANGELOG for detail.
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Update HOMAPAGE.
* Add LICENSE.
* Remove default value of GEM_BUILD.
0.8.8:
support ruby 1.9.1.
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Currently, MASTER_SITES points home page, sigh.
* Add LICENSE.
* Remove default value of GEM_BUILD.
* Update dependency according to gemspec.
* Add CONFLICTS since it will install the same name commands both
ruby18 and ruby19 based packages.
Changes from 0.8.17 are too many, please refer
http://compass-style.org/docs/CHANGELOG/ for detail.
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Add LICENSE.
* Ajust new ruby package's framework.
* Update dependency according to gemspec.
*2.3.9 (September 4, 2010)*
* Deprecates config.load_(once_)paths in favor of autolaod_(once_)paths. [fxn]
*2.3.8 (May 24, 2010)*
* Version bump.
*2.3.7 (May 24, 2010)*
* Version bump.
*2.3.6 (May 23, 2010)*
* Added config/initializers/cookie_verification_secret.rb with an auto-generated secret for using ActionController::Base#cookies.signed [DHH]
* Fixed that the debugger wouldn't go into IRB mode because of left-over ARGVs [DHH]
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Add LICENSE.
* Update dependency according to gemspec.
*2.3.9 (September 4, 2010)*
Unknown, but some tests are updated.
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Add LICENSE.
* Update dependency according to gemspec.
*2.3.9 (September 4, 2010)*
* Version bump.
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Add LICENSE.
* Update dependency according to gemspec.
*2.3.9 (September 4, 2010)*
* Version bump.
*2.3.8 (May 24, 2010)*
* HTML safety: fix compatibility *without* the optional rails_xss plugin.
*2.3.7 (May 24, 2010)*
* HTML safety: fix compatibility with the optional rails_xss plugin. [Nathan Weizenbaum, Santiago Pastorino]
*2.3.6 (May 23, 2010)*
* JSON: set Base.include_root_in_json = true to include a root value in the JSON: {"post": {"title": ...}}. Mirrors the Active Record option. #2584 [Matthew Moore, Joe Martinez, Elad Meidar, Santiago Pastorino]
* Ruby 1.9: ERB template encoding using a magic comment at the top of the file. [Jeremy Kemper]
<%# encoding: utf-8 %>
* Fixed that default locale templates should be used if the current locale template is missing [DHH]
* Fixed that PrototypeHelper#update_page should return html_safe [DHH]
* Fixed that much of DateHelper wouldn't return html_safe? strings [DHH]
* Fixed that fragment caching should return a cache hit as html_safe (or it would all just get escaped) [DHH]
* Introduce String#html_safe for rails_xss plugin and forward-compatibility with Rails 3. [Michael Koziarski, Santiago Pastorino, Jos«± Ignacio Costa]
* Added :alert, :notice, and :flash as options to ActionController::Base#redirect_to that'll automatically set the proper flash before the redirection [DHH]. Examples:
flash[:notice] = 'Post was created'
redirect_to(@post)
...becomes:
redirect_to(@post, :notice => 'Post was created')
* Added ActionController::Base#notice/= and ActionController::Base#alert/= as a convenience accessors in both the controller and the view for flash[:notice]/= and flash[:alert]/= [DHH]
* Added cookies.permanent, cookies.signed, and cookies.permanent.signed accessor for common cookie actions [DHH]. Examples:
cookies.permanent[:prefers_open_id] = true
# => Set-Cookie: prefers_open_id=true; path=/; expires=Sun, 16-Dec-2029 03:24:16 GMT
cookies.signed[:discount] = 45
# => Set-Cookie: discount=BAhpMg==--2c1c6906c90a3bc4fd54a51ffb41dffa4bf6b5f7; path=/
cookies.signed[:discount]
# => 45 (if the cookie was changed, you'll get a InvalidSignature exception)
cookies.permanent.signed[:remember_me] = current_user.id
# => Set-Cookie: discount=BAhU--848956038e692d7046deab32b7131856ab20e14e; path=/; expires=Sun, 16-Dec-2029 03:24:16 GMT
...to use the signed cookies, you need to set a secret to ActionController::Base.cookie_verifier_secret (automatically done in config/initializers/cookie_verification_secret.rb for new Rails applications).
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Remove default value of GEM_BUILD.
* Update dependency according to gemspec.
Changes are too may to write here, please refer doc/CHANGELOG for detail.
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Add LICENSE.
* Remove default value of GEM_BUILD.
* Ajust new ruby package's framework.
* Update dependency according to gemspec.
* Add CONFLICTS since it will install the same name commands both
ruby18 and ruby19 based packages.
= Changelog
== Version 2.0.0 - 2009-06-24
* Change highlighting mode default to 'off' instead of 'on'
* Update for Thin 1.2.2
== Version 1.0.3 - 2009-03-02
* Update for MIME::Types 1.16
== Version 1.0.2 - 2008-12-03
* Fix FileType namespace issue (thanks defunkt) and new version of coderay
* various task maintenance
* updated version dependencies
== Version 1.0.1 - 2008-04-24
* Fix performance issue in serving large files
* Fix performance issue in checking for coderay file type when coderay would not be used.
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Add LICENSE.
* Remove default value of GEM_BUILD.
* Ajust new ruby package's framework.
* Add CONFLICTS since it will install the same name commands both
ruby18 and ruby19 based packages.
- release: 2.6.6
date: 2010-06-27
bugfixes:
- |
Fixed a bug around InterporationEnhancer and FastEruby to escape back-quote. (thanks to Andrew R Jackson)
- release: 2.6.5
date: 2009-07-20
bugfixes:
- |
Fixed bug around '-z' option.
- release: 2.6.4
date: 2009-02-18
enhancemens:
- |
Rails 2.2 and 2.3 support.
- release: 2.6.3
date: 2009-02-07
bugfixes:
- Enhancer name was not displayed in Ruby 1.9.1 when it was missing.
- Command option argument name was not displayed correctly as a part of error message.
- MethoNotFound error was raised when invalid option was specified.
- release: 2.6.2
date: 2008-06-12
enhancements:
- |
Ruby 1.9 support.
bugfixes:
- |
Fixed installation problem on Windows (Thanks to Tim Morgan and Allen).
- release: 2.6.1
date: 2008-06-06
enhancements:
- |
Rails 2.1 support. (special thanks Jos«± Valim)
- release: 2.6.0
date: 2008-05-05
enhancements:
- |
Improved support of Ruby on Rails 2.0.2.
New class ActionView::TemplateHandlers::Erubis is defined and
registered as default handler of *.html.erb and *.rhtml.
- |
'<%% %>' and '<%%= %>' are converted into '<% %>' and '<%= %>' respectively.
This is for compatibility with ERB.
ex1.rhtml:
<ul>
<%% for item in @list %>
<li><%%= item %></li>
<%% end %>
</ul>
result:
$ erubis ex1.rhtml
<ul>
<% for item in @list %>
<li><%= item %></li>
<% end %>
</ul>
- |
'<%= -%>' removes tail spaces and newlines.
This is for compatibiliy with ERB when trim mode is '-'.
'<%= =%>' also removes tail spaces and newlines, and this is
Erubis-original enhancement (cooler than '<%= -%>', isn't it?).
ex2.rhtml:
<div>
<%= @var -%> # or <%= @var =%>
</div>
result (version 2.6.0):
$ erubis -c '{var: "AAA\n"}' ex2.rhtml
<div>
AAA
</div>
result (version 2.5.0):
$ erubis -c '{var: "AAA\n"}' ex2.rhtml
<div>
AAA
</div>
- |
Erubis::Eruby.load_file() now allows you to change cache filename.
ex.
eruby = Erubis::Eruby.load_file("ex3.rhtml",
:cachename=>'ex3.rhtml.cache')
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Update HOMEPAGE.
* Add LICENSE.
* Ajust new ruby package's framework.
* Update dependency according to gemspec.
= 2.1
=== 19th Aug, 2010 (whyday)
* Helpers#R now calls to_param on any object it passes in
* Fix route generation issue with routes including "." (#22)
* Improved tests
* Improved 1.9 support
* Camping::Server is now built upon Rack::Server
* Add support for ERB, Haml etc through Tilt
* Introducing Camping.options and Camping#set
* Camping::Server only loads ActiveRecord when needed
= 2.0
=== 9th Apr, 2010
* Speed-up of Camping::Mab (thanks zimbatm!)
* @state is now an alias of @env['rack.session']
* Camping.use injects a Rack middleware.
* Update Flipbook to RDoc 2.4
* Removed old examples.
* Updated examples/blog.rb
* Camping::Apps returns!
* Session-cookies now timeout naturally (thanks jenna!)
* You can now `throw :halt` to halt the response in a helper.
* Camping::H#u is gone (was an alias to merge!)
* Camping::Session now uses session-cookies. The AR-backend is gone for now.
* camping/db.rb has been renamed to camping/ar.rb.
* Camping now uses Rack internally. Every app responds to #call.
= 1.6
=== Never released
* Camping::Apps removed, it wasn't reliable.
* bin/camping server kinds splitted in various files.
* NotFound and ServerError controllers changed to methods :
r404 : called when a controller was not found
r500 : called on uncaught exception
r501 : called on undefined method
All of those can be overridden at your taste.
* Markaby no longer required. Like AR, is it autoloaded on (Mab) usage.
* Camping::H is now inheriting from Hash instead of HashWithIndifferentAccess.
* Which made possible to remove the last strict dependency : active_support
* #errors_for removed, it wasn't really used
* Bug fixes !
Increase the timeout for "--run" commands to one hour.
Restrict snapshotting to the system disk, so that additional disks
mounted for the purpose of exporting data can be persistently
modified.
