Changes:
2009.12.11 -- Version 2.1.1
* Fixed some breakage in openvpn.spec (which is required to build an
RPM distribution) where it was referencing a non-existent
subdirectory in the tarball, causing it to fail (patch from
David Sommerseth).
2009.12.11 -- Version 2.1.0
* Fixed a couple issues in sample plugins auth-pam.c and down-root.c.
(1) Fail gracefully rather than segfault if calloc returns NULL.
(2) The openvpn_plugin_abort_v1 function can potentially be called
with handle == NULL. Add code to detect this case, and if so, avoid
dereferencing pointers derived from handle (Thanks to David
Sommerseth for finding this bug).
* Documented "multihome" option in the man page.
2009.11.20 -- Version 2.1_rc22
* Fixed a client-side bug on Windows that occurred when the
"dhcp-pre-release" or "dhcp-renew" options were combined with
"route-gateway dhcp". The release/renew would not occur
because the Windows DHCP renew function is blocking and
therefore must be called from another process or thread
so as not to stall the tunnel.
* Added a hard failure when peer provides a certificate chain
with depth > 16. Previously, a warning was issued.
Enable silent rules with automake 1.11
Fix race if g_main_loop_quit() is called just before g_main_loop_run()
override the main-context construct time property in the constructor
Fixed installation of python bindings
Add test for empty ip address
Test invalid IP address
Remove empty lines
Validate returned IP addresses
(missed those and *emacs* the first time round because they pull
in their png dependencies via default-on options; they were included
in the test bulk build though)
Upstream changes:
2010-06-11 Shlomi Fish <shlomif@iglu.org.il>
* Add a fix for t/io_multihomed6.t to make sure
ok 3 will be printed before ok 4. due to many failures in the tests.
Such as:
- http://www.cpantesters.org/cpan/report/07413426-b19f-3f77-b713-d32bba55d77f
* New Release IO-Socket-INET6-2.65
2010-06-08 Shlomi Fish <shlomif@iglu.org.il>
* Applied a patch to fix t/io_multihomed6.t on old Perls / old Linux
distributions:
- https://rt.cpan.org/Ticket/Display.html?id=58198
- Thanks to Paul.
* New Release IO-Socket-INET6-2.64
2010-05-29 Shlomi Fish <shlomif@iglu.org.il>
* Applied a modified patch to t/io_multihomed6.t to correct the test
on Fedora 10 and others:
- https://rt.cpan.org/Public/Bug/Display.html?id=57676
* New Release IO-Socket-INET6-2.63
- Bug Fixes
- The following vulnerabilities have been fixed.
- The SMB dissector could dereference a NULL pointer. (Bug 4734)
- J. Oquendo discovered that the ASN.1 BER dissector could overrun
the stack.
- The SMB PIPE dissector could dereference a NULL pointer on some
platforms.
- The SigComp Universal Decompressor Virtual Machine could go into an
infinite loop. (Bug 4826)
- The SigComp Universal Decompressor Virtual Machine could overrun
a buffer. (Bug 4837)
- The following bugs have been fixed:
- Cannot open file with File -> Open. (Bug 1791)
- Application crash when changing real-time option. (Bug 4035)
- Crash in filter autocompletion. (Bug 4306)
- The XML dissector doesn't allow dots (".") in tags. (Bug 4405)
- Live capture stops when using zlib 1.2.5. (Bug 4708)
- Want to be able to apply decode as to Data Portion of Lan Trace.
(Bug 4721)
- SABP short pdu (packet_per.c). (Bug 4743)
- Kerberos pre-auth type constants - MS extensions are wrong. (Bug 4752)
- Check HTTP Content-Length parsing for overflow. (Bug 4758)
- Wrong variable used for proto_tree_add_text() in ptp dissector.
(Bug 4773)
- Crash when close window frame of gtk file chooser. (Bug 4778)
- Wrong decoding for BGP ORF. (Bug 4782)
- Crash when Ctrl-Backspacing the display filter. (Bug 4797)
- Acker AFI field incorrect size in PGM dissector. (Bug 4798)
- Fedora 13: wireshark fails to build (linking problem). (Bug 4815)
- The NFS FH hash (nfs.fh.hash) incorrectly matches multiple filehandles.
(Bug 4839)
- AES-CTR decoding not working, (dissectors/packet_ipsec.c using gcrypt).
(Bug 4838)
- Updated Protocol Support
ASN.1 BER, BGP, HTTP, IGMP, IPsec, Kerberos, NFS, PGM, PTP, SABP, SigComp,
SMB, TCAP, XML,
- Updated Capture File Support
ERF, PacketLogger.
No changelog published; from the commit history:
* Allow :no_declare=>true on new Exchanges to prevent sending Exchange.Declare
* Add MQ::Queue#purge (thanks Uwe Kubosch)
* Avoid opts.delete() to prevent issues during reconnect and wrapper apis that pass in options
* Add MQ#recover to redeliver unackd messages
* Add :confirm => some_proc for Queue#subscribe to receive ConsumeOk
* Make rpc return queues autodelete
* Re-send prefetch command on reconnect
* Stop adding to the load path, use File.expand_path instead
* Remove a queue from MQ#queues on CancelOk if it is autodelete
Changes:
* Minor changes to Manager class. The :Transport option may now be an
object or a class. Explicity call Timeout.timeout so that a timeout
method may be defined in subclasses. Thanks to Eric Monti.
--- 4.0.9 2010/05/21
New utility for managing threads - thread_create.h.
Add socket pipe utility - spipe.h. The socket pipe has same purpose as
Unix pipe . Unfortunately Windows pipes do not work on select/poll -
but YAZ' implementation do.
Fixes for yaz_cond-functions on Windows 7.
DLL export more symbols.
zoomsh: show record do NOT render opac.
Remove *.la files from Debian and RPM packages.
--- 4.0.8 2010/05/11
Debian package libyaz-dev depends on libgnutls-dev again (was
removed in YAZ 4.0.6, but due to Libtool it is still needed
even though yaz-config do not list libgnutls libs).
ZOOM: Use only one WRBUF for returning string results for
ZOOM_resultset. Reduces memory usage for ZOOM in general.
ZOOM: ZOOM_connection do not use a shared pointer to
ZOOM_resultset after ZOOM_resultset is destructed by
user. Reverts to YAZ 4.0.4 behavior.
--- 4.0.7 2010/05/04
record-conv: fix problem with at least one XSL conversion -
due to probably incorrect usage of XML XSL documents.
Changes in libsoup from 2.30.0 to 2.30.1:
* Fix for https through proxies that close the connection when
returning a "407 Proxy Authentication Required" response,
and add a regression test for that case. [#611663]
* Fixed multiple forms/multipart-related interoperability
problems reported by Egon Andersen:
* Don't quote the multipart boundary string if it's
not needed, since RFC 2616 recommends that you
don't, and some servers don't handle quotes there
correctly. (Sigh.) [#614176]
* Don't put an extra blank line before the first
multipart part, since it's unnecessary and some
servers don't handle a multipart preamble correctly.
(Sigh.) [#614183]
* Don't put Content-Transfer-Encoding headers in the
multipart/form-data parts, even though the HTML 4
spec says you must, since no other browsers do, and
some servers don't handle them correctly. (Sigh.)
[#614198]
* Changed SoupCookieJarSqlite to actually erase deleted
cookies from the database. [#615711, Lukasz Slachciak]
* Fixed SoupLogger to be more robust against getting passed
bad data by the session. [#611663]
* Fixed SoupAuthDomain to ignore paths when doing proxy auth
* Fixed a g_warning when hovering over a javascript link in
WebKit. [#613442, Xan Lopez]
Changes in libsoup from 2.29.91 to 2.30.0:
* Fixed a crash in the whitespace-stripping code in
soup_uri_new() [#612644, "arnaud.lb"]
* Update content-sniffing algorithm to match Chrome and the
soon-to-be-updated sniffing spec. [#611502, Gustavo Noronha
Silva]
* We now handle "Content-Encoding: x-gzip" as well as "gzip"
(even though "x-gzip" has been deprecated for more than 10
years). [#611476]
* Fixed leaks found by valgrind
* Make the "make check" programs only bind to 127.0.0.1, not
any public network interfaces. [#609489, Saleem Absulrasool]
* Add a test to sniffing-test to make sure that Content-Type
parameters are preserved correctly. [Gustavo Noronha Silva]
Changes in libsoup from 2.29.90 to 2.29.91:
* Added SOUP_SESSION_SSL_STRICT and
SOUP_MESSAGE_CERTIFICATE_TRUSTED, to allow callers to
determine if an https response comes from a server with a
recognized/valid or unrecognized/invalid certificate.
[#610374, Gustavo Noronha Silva]
* Fixed handling of certain badly-formatted URIs [#590524]
Changes in libsoup from 2.29.6 to 2.29.90:
* Added soup_cookie_jar_set_accept_policy() and related API
for implementing cookie acceptance policies. [#608353, Xan
Lopez]
* Fixed the "request-read" signal in SoupServer to actually be
emitted.
Changes in libsoup from 2.29.5 to 2.29.6:
* Fixed SoupContentDecoder to ignore trailing junk after the
encoded message body (as other browsers do), rather than
getting stuck in an infinite loop. [#606352]
* Fixed an invalid read in soup_cookie_applies_to_uri()
[#607024, pointed out by Xan]
* Fixed linking on OS X [#606959]
* Removed a harmless warning in SoupServer. [#606645]
Changes in libsoup from 2.29.3 to 2.29.5:
* Added SoupContentDecoder, providing support for
Content-Encoding: gzip for WebKitGTK. [#522772]
* Added "accept-language" and "accept-language-auto"
properties to SoupSession, to support the Accept-Language
header. [#597004, Mario Sanchez Prada]
* Fixed a bug in SoupPasswordManagerGNOME that could cause
crashes if you typed the wrong password once and then tried
again. [#595554, debugged by Gustavo Noronha Silva]
* Fixed a crash in SoupAuthDigest if the server claims support
for both qop=auth and qop=auth-int. (This was not noticed
sooner because no one actually supports qop=auth-int, and
the server in question here was probably confused. :)
* Updated cookie parsing/output to more closely match
draft-ietf-httpstate-cookie-00. [Also fixes#603496 (WebKit
unit test), and #604794 (hang parsing malformed Set-Cookie
header)]
* Fixed https-via-proxy to not hang if there is an error
communicating with the proxy immediately after the TLS
negotiation. [#587528]
* Fixed a bug that broke gobject-introspection's introspection
of libsoup. [#603696, Vincent Untz]
* Handle spurious CR/LFs between responses. [#602863,
Alexander V. Butenko]
* Fixed soup-message-client-io to not erroneously include URI
fragments on the Request-Line when sending via a proxy.
[Related to WebKit bug #28687]
* Fixed Digest authentication against certain (buggy?)
clients/servers that require you to use quotes in exactly the
same places where the spec uses them. [#582219]
* Fix ugly gtype-related hack to work with the latest unstable
glib. [Benjamin Otte]
ancient sources predating a move in the repo.
Source does not maintain a CHANGELOG. It is anticipated that most changes
are build related, though PR/42651 is also addressed by this.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.9
- Bftpdwill attempt to create it's utmp directory
if that directory does not exist. Fixes issue on
Ubuntu where the direcotry is wiped out at each
reboot.
- The ROOTDIR option now works properly for
anonymous users.
Thanks to Paul for reporting this bug.
GStreamer is a library that allows the construction of graphs of
media-handling components, ranging from simple Ogg/Vorbis playback to
complex audio (mixing) and video (non-linear editing) processing.
Applications can take advantage of advances in codec and filter technology
transparently. Developers can add new codecs and filters by writing a
simple plugin with a clean, generic interface.
GStreamer is released under the LGPL.
This package is part of the 'bad' plugins for GStreamer. It provides the
mms plugin, for Microsoft Multi Media Server streaming protocol support.
While here, set LICENSE=gnu-lgpl-v2.1.
2010-05-30 libmms-0.6 release (Hans de Goede <j.w.r.degoede@hhs.nl>)
--------------------------------------------------------------------
* libmms hosting has moved back to sf.net and switched to git as vcs
* For mms:// uris try mmsh before mms like mediaplayer does, this avoids
large connection delays with servers which silently drop packets to the
mmsh port. This resolves:
https://bugs.launchpad.net/libmms/+bug/517007https://bugs.launchpad.net/libmms/+bug/512089
* mmsh: allow stream ids > 23
This brings the mms patch from below to our mmsh support code as well:
https://sourceforge.net/tracker/?func=detail&aid=1521441&group_id=101989&atid=630609
* Add support for GUID_ASF_EXTENDED_STREAM_PROPERTIES to mms, add the
GUID_ASF_EXTENDED_STREAM_PROPERTIES support added to the mmsh code in
the 0.5 release to our mms code too
* Many cleanups and out of bounds buffer access checks added
* Debug printf's are now always compiled in, but they are silent by default
set the LIBMMS_DEBUG environment variable to enable them
* Don't fall back to lowest bitrate video stream when id 0 is the one we want
* Remove percent escaping from mms uris before sending them to the server:
http://bugs.xine-project.org/show_bug.cgi?id=99
* Testing has shown the above bugfixes also resolve:
https://bugs.launchpad.net/libmms/+bug/540476https://bugs.launchpad.net/libmms/+bug/531326http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=493735https://bugs.launchpad.net/libmms/+bug/477876
Old per change ChangeLog entries
--------------------------------
2009-11-03 Maxim Levitsky <maximlevitsky@gmail.com>
* Rework URL handling
* Increase buffer size for very long URLS and handle buffer overflow
2007-12-11 Hans de Goede <j.w.r.degoede@hhs.nl>
* Remove out of date (not working with recent autotools) autogen.sh,
use: "autoreconf -i -f -v" instead.
2007-12-11 Hans de Goede <j.w.r.degoede@hhs.nl>
* Better tracking of seekable state in mms.c, return immediately
from the seek functions when they gat called on a non seekable
stream.
2007-12-11 Hans de Goede <j.w.r.degoede@hhs.nl>
* Do some minimal sanity checks on the information parsed from the
asf header.
2007-12-11 Hans de Goede <j.w.r.degoede@hhs.nl>
* Add mmsx.c / .h, mmsx.c is a small wrapper around mms.c and mmsh.c
The mmsx functions provide transparent access to both protocols
so that programs who wish to support both can do so with a single
code path if desired.
2007-12-11 Hans de Goede <j.w.r.degoede@hhs.nl>
* Add an atrribute to the mms / mmsh structs to track if the
stream is seekable and export it.
2007-12-11 Hans de Goede <j.w.r.degoede@hhs.nl>
* Add support for both time and byte offset based mmsh seeking!
2007-12-11 Hans de Goede <j.w.r.degoede@hhs.nl>
* Export (add get methods for) asf header- and packet-length.
2007-12-11 Hans de Goede <j.w.r.degoede@hhs.nl>
* Calculate length returned by mss_get_length() instead if returning
the filesize from the header. The filesize usually is bigger then
then the header + all packets because the end of the file contains
time->packet offset lookup tables, however these tables are not
accessible through mms.
2007-12-11 Hans de Goede <j.w.r.degoede@hhs.nl>
* Some off_t changes so that applications no longer need to be
have _FILE_OFFSET_BITS defined to 64 when compiling, when they
will be linked against a libmms which did have _FILE_OFFSET_BITS
defined to 64 during its compile (which gets defined by default
by configure on systems which support it).
2007-09-10 Soren Hansen <shawarma@users.sourceforge.net>
* Fix libmms to work with URL's that contain a query string.
Many thanks to Bob Richmond for discovering this and providing
a patch!
2007-09-10 Soren Hansen <shawarma@users.sourceforge.net>
* Fix hardcoded path in pkgconfig. Thanks to Ronald Bultje for
the patch!
2007-09-09 Soren Hansen <shawarma@users.sourceforge.net>
* Make libmms C89 compliant. Thanks to Jens Granseuer for the
patch!
2007-09-09 Soren Hansen <shawarma@users.sourceforge.net>
* Fix discarded first mmsh packet. Thanks to
azwemmer@users.sourceforge.net for the patch!
2007-09-09 Soren Hansen <shawarma@users.sourceforge.net>
* Fix URL handling. Thanks to Gabriel Velo for the patch!
2007-09-09 Soren Hansen <shawarma@users.sourceforge.net>
* Added seeking support. Many thanks to Anon Sricharoenchai
for this excellent work!
2007-09-09 Soren Hansen <shawarma@users.sourceforge.net>
* Fix stream ID > 23. Thanks to Fabrizio Gennari for the patch!
2007-09-09 Soren Hansen <shawarma@users.sourceforge.net>
* Double the acceptable size of ASF headers. Thanks to Sjoerd
Simons for the patch!
* deletion of unattached GDL added.
* Polish translation update by Emil.
* fix UADDR list redisplay problem.
* fix a crash of dc_gui2_stat when there is nothing to display.
* add upload stat to dc_gui2_stat (only DCTC v0.85.9 provides upload logs).
* fix a user display problem. If a user entering the hub is already created
(used by GDL, upload, share list, ...), he was not displayed in the user
clist.
* Fix incorrect global stat values occuring when multiple 'done' files are
loaded.
* Bittorrent tab is handled by an external program: dc_gui2_bt
* To ease development of future external program, most of the configuration is
* now store in gconf instead gnome_config.
* dc_gui2 command line parameters are back (dc_gui2 --help for the list).
* update .spec file to support fedora (based on Sammy Atmadja modification).
* 'done' log file contains upload log.
* fix the incorrect information sent to the UI when uploading a file bigger than
2GB (only the display is buggy, the transfer works).
* update .spec file to support fedora (based on Sammy Atmadja modification).
* Several bugs in filename sorting in the Dolphin file manager have been
fixed
* Issues with encoded filenames in ZIP archives have been fixed
* A number of bugs in games, such as KMines, KNetwalk and LSkat and
KSpaceDuel have been fixed
The changelog lists more
1.1002 Fri Dec 4 18:33:23 PST 2009
- Updated for Net::SNMP v6.0.0
- looking more closely at my fail reports, they have another
problem: Net::SNMP uses a v-string, and it doesn't compare
properly in the test suite. Tweaked Makefile.PL.
- Applied cleanup patches from gcola aka acferen__yahoo.com to
eliminate some harmless but annoying warnings.
- Turns out that using POE::Kernel->method as a global access
to the kernel is unsupported. Since I'm already importing
POE::Kernel, I have $poe_kernel in my namespace already, so
use that instead.
1.1003
- Cleanups
1.1004 Mon Dec 7 13:17:15 PST 2009
- more cleanups
1.1005 Mon Dec 7 13:30:08 PST 2009
- Apparently my 'eval { use Sub::Identify }' is causing
hiccups with smoke testing. Rewritten to 'eval { require Sub::Identify }'
1.1006 Sun Jan 10 20:17:10 PST 2010
- well I'm now blushing because I finally found a bug that was
reported to me but I was previously unable to reproduce.
The author of Net::SNMP has released v6.0.0, which doesn't
compare very well to a "regular" number like 5.0. This
broke my 4.x support. So I have removed it.
Based on PR#43352 by Wen Heping.
pkgsrc changes:
* set LICENSE=gnu-gpl-v2
* simplify patch-aa.
* remove patch-ab, replace with SUBST instead, and also replace /etc in manpage.
* add patch-ac for fixes standalone mode. XXX: IPv4 only
* cosmetics fixes.
Upstream ChangeLog:
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.8
- Added patch which will allow client to see hidden
files if the "-a" parameter is used in list commands.
Hidden files are only shown if SHOW_HIDDEN_FILES
is enabled in the config file.
Patch provded by Raster.
- Swapped out glob function for custom directory
search matching. Allows clients to see broken
symbolic links if "SHOW_NONREADABLE_FILES" is set
to "yes".
Patch supplied by Raster.
- Added patch to clean up zombies if several children
processes all die at the same time. We were cleaning up
just one child per signal before.
Patch supplied by Raster.
- Fixed typo in log error message.
- Made sure we can read user config file options
even with unusual compile flags.
- Fixed anonymous login.
- Anonymous login disabled by default in the config file.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.7
- Added patch from Raster which returns more speicifc error
messages to the client when a file or directory cannot be
removed. This should avoid confusing some clients when the
user attempts to remove a directory.
- Added checks for increased security/stability and to remove
compiler warnings.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.6
- Removed some debugging information from the log file.
- Made certain that bandwidth log will not over-write itself
when multiple users are logged in.
- Bandwidth log file is flushed to avoid loss of data.
- Bftpd will write to bandwidth log even if client does
not disconnect cleanly.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.5
- Added better UTF support. Clients that check for this
will now enable UTF-8. For example, Filezilla.
- Made sure remote admin login was disabled. This shouldn't
have worked anyway, but disabled the feautre to make sure.
- Added additional log file which tracks user bandwidth.
See the option in the config file called BANDWIDTH.
- Updated README file to contain notes on logging.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.4
- Fixed a possible security hole which would allow
attackers to perform a DoS attack against bftpd.
(Thanks to Dazhi for pointing out this problem.)
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.2.1 (aka 2.3)
- Bftpd should not attempt to close stdin, stdout and stderr
if they do not exist. Fixed this in main.c.
(Patch provided by Ivan A-R.)
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.2
- Bftpd does not exit when an incorrect password is given.
The server does drop connections in cases where logins are
specifically denied, full server or if an error appears in
the config file.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.1.2
- Added option to not show files in a dir list
if the file is not readable. Thanks to Eric
Woltermann for sending in this patch.
By default non-readable files are not listed.
See the SHOW_NONREADABLE_FILES config option.
- Make the replace() function safer with
range checking to avoid buffer over-flow.
- Fixed calls to replace() function.
- Most string buffers now have a set size of
MAX_STRING_LENGTH, rather than some arbitraty size.
- Applied patch to allow user specific data to
be subsituted into the user MOTD file path.
The symbols %u and %h and be used in place of the
user's username and home directory in the MOTD_USER
config option.
Thanks to Eric Woltermann for submitting this patch.
- Bftpd now prompts for a password, even on anonymous
accounts to help increase compatiblity with some
web browsers.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.1.1
- Fixed directory creation so that the proper
umask is used. thanks to Thiemo for pointing
out this problem.
- Fixed buffer under-size error in options.c
Thanks to Athan for reporting this bug.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.1
- By default, the SITE command is now disabled
in the bftpd.conf file. This is to prevent
security holes and DoS attacks via "site md5 <filename>"
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.0.3
- Added md5 support for amd64 machines.
- If no arch is defined for md5, assume little endian.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.0.2
- Transfer buffer size now defaults to staying the
same (max) size for all transfers. To get a variable
buffer size, change the config option CHANGE_BUFSIZE
to "yes".
- Added config file option SHOW_HIDDEN_FILES. When this
option is set to "yes", bftpd shows hidden files in directory
listings. By default this is set to "no".
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.0.1
- Avoid possible segfault in replace() function
in mystring.c
- Avoid memory error in main.c using strdup()
- Avoid segfault in options.c the create_options()
- Added ability to use the SITE command to provide md5
checksums of files. (usage: site md5 filename)
Very many thanks to Ulrich Drepper and Gray Watson for
the md5 library!
- Changed ratio calculations to use double type to
allow for larger files and data transfers.
- Added HELP option to the SITE command.
(usage: site help)
- Added config file variable CHANGE_BUFSIZE. This
determines whether the transfer buffer changes size.
It defaults to "yes".
- Removed extra fileno() calles in file receives.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 2.0
- Avoid memory error in options.c
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.9.3
- Avoid segfaults in options.c and cwd.c
- Added memory checks in options.c
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.9.2
- Avoid segfaults in options.c and dirlist.c
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.9.1
- Avoid segfaults in options.c and main.c
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.9
- Added limits.h entry to main.c and options.c
for compatibility with FreeBSD.
(All problems with bftpd on FreeBSD were found and
corrected by Beech of the FreeBSD team.)
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.8.4
- When printing file sizes for files larger than 4GB
the file size is now displayed correctly.
- When a FTP client drops a connection without sending
an ABORT (ABOR) signal, Bftpd will detect the dropped
connection and log it. This prevents stale connections
preventing new users from connecting.
(Bug found and fixed by: Thorsten)
- Added limits.h and signal.h to list of headers used
in commands.c, for compatibility with BSD.
- Changed sighandler_t in "run_script()" to sig_t
for compatibility between Linux and BSD.
- Added OpenPAM patch from FreeBSD (login.c)
- Added limits.h include to login.c file for
compatibility with BSD.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.8.3
- If Bftpd is unable to create bftpdutmp file, an error
should now be written to the log file.
- Directory output corrected for when large files (> 2GB)
are listed.
- Documentation for xinetd config updated.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.8.2
- Changed bftpd's direcotry name to plain "bftpd"
rather than "bftpd-version". This will, hopefully, make
it easier to run scripts which build/run bftpd.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.8.1
- Avoid segfault in getoption() (options.c)
Credit to Mats Erik Andersson for finding this bug.
- Fixed potential memory leaks in commands.c
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.7.2
- Fixed serious bug which would cause bftpd to crash
while sending a file. Double-free error.
(Credit to Davide Pozza for reporting these bugs below.)
- Prevent buffer over-flow in parsecmd() when
forming confstr variable.
- Check return values of strtoul() to make sure they
do not over-flow an int.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.7.1
(Credit to Davide Pozza for reporting these bugs.)
- Avoid memory over-flow in bftpd_login (login.c)
with the str[] variable. Made size 512 + 1.
- Avoid buffer over-flow in str[] variable in
main().
- Prevent buffer over-flow in check_file_password()
when performing fscanf().
- In check_file_password() made calloc() allocate
larger buffer to prevent over-flow.
- Performed range checking on the number of users on
the system to make sure they don't over-flow a 32-bit int.
- Make sure malloc calls in commands.c do not allocate
too much or too little memory.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.6.6
- Perform memory allocation check in bftpd_cwd_mappath()
- Changed a strcmp() to strcasecmp() in command_retr function.
- Performed free(mapped) at end of command_retr.
- Performed memory checks and clean-up in various functions.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.6.5
- The when using the FILE_AUTH option, the text
password file can contain anonymous users. That is,
users who do not require passwords. THIS IS DANGEROUS
ON MOST SYSTEMS. A entry with the password field set to
a * (star) does not require a password. See the
config file option FILE_AUTH for more information.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.6.4
- Allow ANONYMOUS_USER config file option to be used with
the FILE_AUTH option. This basically allows anyone
to login to the system without a password if both
options are used!
- When a chroot fails during login the server will
no longer tell the client which directory it was trying
to chroot to.
- When the config.h file contains a definition for
NO_GETPWNAM then the getpwnam() function is not used.
Also, this forces the use of the FILE_AUTH option. If
NO_GETPWNAM is defined and FILE_AUTH is not used, all
connections are dropped.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.6.3
- Introduced option to over-ride the local/LAN
IP address assigned to the host computer. This
option takes a 4-number IP address in the format
of "127.0.3.101". See OVERRIDE_IP in bftpd.conf for
more information.
- Removed description-pak file from source tree.
- The options PRE_WRITE_SCRIPT and POST_WRITE_SCRIPT
have been added to the bftpd.conf file. These options
let you run scripts before and after any command writes
to the file system. Handy if you want to re-mount.
Please see the bftpd.conf file for details.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.6.2
- When using FILE_AUTH to login, check
DO_CHROOT option before performing
a chroot().
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.6.1
- Removed code which uses sendfile().
The sendfile code appears to cause a
conflict on some systems when used
with 64-bit file size variables.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.6
- Released bftpd without code changes, but
with updated Polish documentation.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.5
- Added Polish documentation to website.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.4.1
- Added ability to use a plain text file
for authentication. See config file option
FILE_AUTH for details.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.4
- Fixed default configuration.
- Fixed compile warnings for vanilla config.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.3.2
- Fixed Makefile to erase config.cache file during
"make clean"
- Added ability to uncompress files on the fly
during downloads. Any file with the extension
".gz" can be decompressed during transfer to
the client with the use of the GZ_DOWNLOAD
in the config file. This option requires bftpd
be configured (pre-compile time) with the flag
--enable-libz.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.3.1
- Changed ratio values to unsigned long
variables to support large files.
- Editted Makefile to allow bftpd to handle large
files (2GB+).
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.2.2
- Added ability to upload files and
compress them into .gz files on the fly.
See bftpd.conf file for the option.
This option requires --enable-libz be
used when running the configure script.
- Cleaned up code to avoid compiler warnings
from gcc 4.0.2.
Files changed: main.c commands.c
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.2.1
- When the config file is re-read, global
are changed only.
Files changes: options.c options.h
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.2
- Made re-reable options be able to hold larger
values. Up to 256 bytes/characters long.
- Replaced old rpm spec file with one from
Joe, which will be used from now on for
rpm builds.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.1.3
- When a child/client dies, the
parent process will now attempt to
remove the client's log entry
from the bftpdutmp file. This
should prevent stale entries.
- Changed some default values to
constants in options.h
- Fixed typo(s) in bftpd.conf
- Set delete/over-write for global
users to be disabled by default
in bftpd.conf.
- Added the XFER_DELAY option to
the bftpd.conf file. This allows
the admin to set a time delay
between data transfer bursts.
This aid in bandwidth throttling.
Please see bftpd.conf for more
details on this feature.
- Added more re-read options
when catching signal SIGHUP.
The re-readable options are now:
HELLO_STRING, QUIT_MSG, XFERBUFSIZE,
DATA_TIMEOUT, CONTROL_TIMEOUT,
USERLIMIT_GLOBAL, USERLIMIT_SINGLEUSER,
USERLIMIT_HOST, DENY_LOGIN and XFER_DELAY.
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.1.2
- Program now catches signal SIGHUP.
- When bftpd catches the SIGHUP (hang up)
it re-reads the config file. It looks
for some config values, but not all.
At this time, the values which are
re-read are:
HELLO_STRING, QUIT_MSG and XFERBUFSIZE
Jesse Smith <jessefrgsmith@yahoo.ca> -> 1.1.1
- Added rpm spec file to redhat directory.
- Changed numberic string length (512) to a defined
string length (MAXCMD). Makes code more
compatible with main.c and uses less stack
memory. File changed: commands.c
- When receiving files, the transfer buffer
(XFER_BUFSIZE) is divided by the number of
connected clients. This should prevent bandwidth
being sucked back by multiple connections.
- Minor fixes, checking for malloc errors,
freeing memory and closing sockets.
File changed: commands.c
- When sending files, the transfer buffer
(XFER_BUFSIZE) is divided by the number
of connected clients. This should prevent
bandwidth being taken over by multiple connections.
- Changed Makefile so bftpd.8 gets installed as
a manual page in the proper location.
Also updated rpm spec file to include man page.
Jesse Smith <slicer69@hotmail.com> -> 1.1.0
- Changed some bftpdutmp_log(0) lines to
calls to bftpdutmp_end(). This should be safer.
- Made sure that clients cannot write or append
to files if the "delete" command is disabled. I
think if they cannot delete the file they shouldn't
be allowed to truncate it to zero bytes either.
- Added reason for login failure to log file.
- Removed logging of getting user count from
temp file. Just seems to be taking up space.
(This is simply based on net/bind96).
BIND 9.7.0pl2 (9.7.0-P2)
New Features in BIND 9.7 - 'DNSSEC for Humans'
BIND 9.7 introduces several improvements, especially for simplifying
DNSSEC configuration and DNSSEC maintenance. This article lists some
of the new features and significant changes in BIND 9.7.
For more information please refer these webpage.
http://www.isc.org/software/bind/new-features/9.7http://www.isc.org/files/release-notes/9.7.0-P2%20rel%20notes.txt
Based on packaged by Jeff Woodall and provided via PR#43254.
Enhanced CTorrent is a BitTorrent console client written in C/C++. Like
ctorrent, which it is based on, high performance with minimal system
resources and dependencies is a priority. Enhanced CTorrent adds additional
features like dynamic adjustments and fixes several bugs in the original
ctorrent client (obsolete and marked EOL in pkgsrc repository).
More info at: http://www.rahul.net/dholmes/ctorrent/
Simple Ruby client library for twitter streaming API. Uses EventMachine for
connection handling. Adheres to twitter's reconnection guidline. JSON format
only.
Changes include:
* compile on FreeBSD-8 where closefrom(3) returns void
* log the pid of dhcpcd
* Indicate server IP received message from even if server ID not present
* Fix crashes on IPv4LL failure and add more logging
