* Use qt2-designer-kde for a uic that understands KDE2 widgets.
* Fix problem noted by Marcello Balduccini <marcello.balduccini@ttu.edu>
in how kpgp handles pipes with child processes -- prevents kpgp from
remaining stuck while waiting for the child pgp process to terminate.
EtherApe is a graphical network monitor for Unix modeled after etherman.
Featuring link layer, ip and TCP modes, it displays network activity
graphically. Hosts and links change in size with traffic. Color coded
protocols display. It supports Ethernet, FDDI, Token Ring, ISDN, PPP
and SLIP devices. It can filter traffic to be shown, and can read
traffic from a file as well as live from the network.
Update jwhois to 3.0.1. Changes:
* Command line option to disable content redirection
* Lots of information added to the example configuration file
* IPv6 failover to IPv4
* Option to display redirections instead of hiding them
* Case insensitive hostname matching
* Introduced new host-specific configuration
* Limited support for rwhois
* Support for sending queries through a web interface via external browser
* Ability to rewrite queries before sending to whois server
* Support for whois-servers.net
gkrellmwireless is a plugin for gkrellm that shows the signal
strength/quality/noise of a wireless ethernet card.
Currently only wi(4) (Lucent ORiNOCO and derivatives) interfaces are supported.
time as the REPLACE_PERL definition, simplify things by using the
REPLACE_PERL functionality.
Also substitute the correct prefix in a package Makefile target,
rather than using the configure script.
Remove now unnecessary script.
Makefile target.
+ Modify Makefiles in patch stage, rather than using sed in configure
stage.
+ Use ${LOWER_OPSYS} where appropriate.
+ Use pax in preference to a tar pipeline to copy hierarchies at
install time.
script, do this at configure time by means of a conventional patch to
the configuration script.
Move the invocation of the post-configure stage to be a package
Makefile target, rather than in a script file.
time. We need the various Makefile.in to be regenerated due to changes in
the patched configure.in. Doing it now prevents the build process from
automatically doing it later during the build, which would overwrite any
changes done to the configure script by targets in ${_CONFIGURE_PREREQ}.
redefines about which buildlink.mk files would care is BUILDLINK_X11_DIR,
which points to the location of the X11R6 hierarchy used during building.
If x11.buildlink.mk isn't included, then BUILDLINK_X11_DIR defaults to
${X11BASE} (set in bsd.pkg.mk), so its value is always safe to use. Remove
the ifdefs surrounding the use of BUILDLINK_X11_DIR in tk/buildlink.mk and
revert changes to move x11.buildlink.mk before the other buildlink.mk files.
x2vnc merges the capabilities of x2x and vncviewer. It will allow
a machine with an X display and a machine with a VNC server running
on its main screen to act as if they were two displays connected
to one machine. When you move your mouse pointer off the screen in
a direction of your choosing, the pointer will appear on the other
screen instead.
Provided in PR 14344 by Michael Santos (mike@ethmoid.org).
Changes from version 0.07:
0.09, 2001-10-18, wojtekka@irc.pl
- included patch from OpenBSD port by Patroklos Argyroudis <argp@bsd.gr>.
- fixing the fix - patch by awayzzz <awayzzz@digibel.org>.
0.08, 2000-12-12, ascent@linux.pl
- modified IPv4 to IPv6 mapping -- better memory managing.
0.08, 2001-10-13, wojtekka@irc.pl
- some memory leaks fixed thanks to Sorrow The Prince <s0tp@libero.it>.
- fixed dos condition thanks to awayzzz <awayzzz@digibel.org>.
use X11_BUILDLINK_MK as a test value. Generally just reordering the
inclusions so that x11.buildlink.mk comes before the other buildlink.mk
files will make everthing work.
Andrey Simonenko in PR/14281.
IPA allows to make IP accounting (network accounting) based on
IP Filter accounting rules on NetBSD, OpenBSD and FreeBSD.
It supports limits for accounting rules and limits events as
"limit is reached", "reached limit is expired", etc. It understands
time intervals like "end of day", "end of week", "end of month", etc.
There is a special viewer for accounting database and access control
lists which allow or disallow one to view accounting information
for rules.
The automatic truncation in gensolpkg doesn't work for packages which
have the same package name for the first 5-6 chars.
e.g. amanda-server and amanda-client would be named amanda and amanda.
Now, we add a SVR4_PKGNAME and use amacl for amanda-client and amase for
amanda-server.
All svr4 packages also have a vendor tag, so we have to reserve some chars
for this tag, which is normaly 3 or 4 chars. Thats why we can only use 6
or 5 chars for SVR4_PKGNAME. I used 5 for all the packages, to give the
vendor tag enough room.
All p5-* packages and a few other packages have now a SVR4_PKGNAME.
interface, the mtr-gtk package uses gtk. For use in environments
which need mtr's functionality, but which are unlikely to have X11
installed, such as DMZ hosts, etc.
Patches by Andrew Brown, atatat@netbsd.org.
With apologies to Al I wouldn't know where to start with a summary of the
changes between 2.1 and 2.2.1 - there are just too many. A couple of
hopefully static URLS that contain useful information are
http://www.kde.org/announcements/changelog2_1to2_2.htmlhttp://www.kde.org/announcements/changelog2_2to2_2_1.html
Support for a.out for kde{libs,base} added by me. The libtool/a.out
combination doesn't like the linking of modules into binaries. A better
way of doing this will appear in future versions of KDE/pkgsrc.
nemesis is a command-line UNIX network packet injection suite.
supported protocols: TCP, UDP, ICMP, ARP/RARP, IGMP, DNS,
RIP, and OSPF
"Nemesis attacks directed through fragrouter could be a most
powerful combination for the system auditor to find security
problems that could then be reported to the vendor(s), etc."
- Curt Wilson in Global Incident Analysis Center Detects Report
(SANS Institute - Nov 2000)
Provided in PR 14021 by xs@nitric.net.
Munged slightly by me to use buildlink functionality, and to use the
correct link time invocations for ELF binaries.
Firewalking is a technique developed by Mike D. Schiffman and David E.
Goldsmith that employs traceroute-like techniques to analyze IP packet
responses to determine gateway ACL filters and map networks.
Firewalk the tool employs the technique to determine the filter rules
in place on a packet forwarding device.
This package was provided in PR 14020 by xs@nitric.net. I split it into
two separate packages, firewalk-gtk and firewalk, and modified it to use
buildlink functionality.
Firewalking is a technique developed by Mike D. Schiffman and David E.
Goldsmith that employs traceroute-like techniques to analyze IP packet
responses to determine gateway ACL filters and map networks.
Firewalk the tool employs the technique to determine the filter rules
in place on a packet forwarding device.
This package was provided in PR 14020 by xs@nitric.net. I split it into
two separate packages, firewalk-gtk and firewalk, and modified it to use
buildlink functionality.
LaBrea is a program that creates a tarpit or, as some have called it,
a "sticky honeypot". LaBrea takes over unused IP addresses on a
network and creates "virtual machines" that answer to connection
attempts. LaBrea answers those connection attempts in a way that
causes the machine at the other end to get "stuck", sometimes for a
very long time.
- Client works on Solaris again. It was broken in 3.2.
- Added DEFAULTROUTE=yes|no option to configuration file.
- Server parses address pool file better.
- Server address pool allows ranges of addresses on a line: a.b.c.d-e
- Added "-d" (=debug) and "-P" (=check pool file syntax) options to
pppoe-server.
- Client now ignores PADT's if they are from the wrong source MAC address
or to the wrong destination MAC address.
- Minor fixes to Makefile.in for Turbolinux.
- Improved KERNEL-MODE-PPPOE instructions
- Works with patched pppd 2.4.1
- Many improvements to server: Added "-u" and "-r" options; server can
now respond to request on multiple Ethernet interfaces.
- SECURITY BUG FIX: Server now ignores PADT's if they are from the wrong
source MAC address. You are STRONGLY RECOMMENDED to upgrade to 3.1
if you use pppoe-server in production.
- Many small improvements to server. Server now only makes one
discovery socket, systemwide, with addition of "-n" option to pppoe.
- Fixes for compilation problems on BSD, Solaris and some Linux platforms.
- Added "-p" option to pppoe-server to allow you to specify a pool of
IP addresses to assign to clients.
- Added GUI system (tkpppoe). This work was funded by Iospan
Wireless, Inc. The GUI includes a Set-UID wrapper (pppoe-wrapper)
which allows ordinary users to control a link (if so authorized.)
I believe the wrapper script is secure, but please audit the
source code (gui/wrapper.c) if you have any concerns.
- Changes to scripts and pppoe.conf. DNS setup is now dynamic (happens
each time adsl-connect runs.)
- Made relay.c check packet lengths rigorously; made it throw out Ethernet
frame padding on session packets as well as discovery packets.
Changes since 0.4.9:
* OAF instead of gnorba, thanks to Christophe Fergeau
<teuf@users.sourceforge.net>
* Added support for HTTPS protocol since wget supports it but you
need to upgrade wget to 1.7
* New icons thanks to Paolo Bacchilega <paolo.bacch@tin.it>
* Proxy settings are better looking now
* Timeout value for wget is configurable now
* Added new pref to run a shell command when all downloads
completed (in other words, when gtm has done all it can do without
user intervention).
* Fixed bugs:
- Crash when the config file was corrupted thanks to
João Alves Marques Carneiro <ee96090@fe.up.pt>
- Check that target dir exists and is writable
- Do not overwrite an existing file without asking the
user if he wants a override or a resume
- Fixed some problems in the spec file, thanks to Alex
Converse
Changes since 0.34:
* Added preforked childs to mode 'single'.
* t/server (Run): Child process is now waiting one second
in forking mode. Helps the script t/forkm.t to run fine.
some changes by me (strongly buildlinked now).
ATTENTION: If package compilation is failing for you on -current in the
linking step, make sure you have /usr/include/libintl.h v1.2 (2001/08/13)!
[Thanks for the tip, Johnny!]
Some of the changes since 2.3.9 (for a complete log see ${WRKSRC}/NEWS):
* sometimes lftp did not expand tilde in remote path - fixed.
* new setting ftp:home to specify starting directory explicitly. Set it
to `/' to override RFC1738 ftp url semantics if you don't like the
look of `ftp://host/%2Fpath'.
* improved abort sequence for passive mode, now wu-ftpd does not hang.
* fish protocol support (over plain ssh connection).
* use CONNECT method for https over http proxy.
* support for variable name completion (Nicolas Noble).
* queue editing support (Glenn F. Maynard).
* support http keep-alive in case of chunked transfer encoding.
* terminate some never-ending jobs before moving to background.
* support for HTTP/1.1 416 reply code.
* support for ftp ACCT command (ftp:acct variable) and for SITE GROUP command
(ftp:site-group variable). E.g. `set ftp:acct/user@host account/password'.
* new setting ftp:port-ipv4 to specify explicitly IP address sent with PORT
command (suggested by Julien Oster and Jonas Jensen with patches).
* new setting ftp:ssl-auth to specify AUTH argument to use (SSL, TLS, TLS-C
or TLS-P).
* roxen directory listing support.
* new settings ftp:retry-530 and ftp:retry-530-anonymous. Retry on server
reply 530 for PASS command if text matches these regular expressions.
These settings should be useful to distinguish between overloaded server
(temporary condition) and incorrect password (permanent condition).
* retry ftp login quickly on next address if the server has many (works
well on ftp.redhat.com, for example).
* improved fuzzy variable name matching. Exact prefix and exact name after
prefix are taken into account separately. E.g. http:pro is not ambigous
now between http:proxy and https:proxy.
* implemented -c option for reverse mirror (mirror -R -c).
* allow open "" to switch to disconnected dummy session.
* allow adding bookmark for disconnected dummy session.
* new translation zh_TW (by R.I.P. Deaddog <maddog@linuxhall.org>).
* made `lftp@' the default ftp password.
As well as many bug fixes and translation updates.
Changes from version 1.0:
Introduced support for reporting network address, broadcast address,
number of IPs, first IP and last IP.
Made some source adjustments to facilitate compiling under
Win32, MacOS Classic and MacOS X.
Optimized a routine or two.
Cleaned up code / headers.
* Many changes to the internal data structures (not backward compatible!)
* Centralized backups
* Lots of bug fixes
* Many other feature enhancements
Requested by Ben Wong <benjamin.wong@cc.gatech.edu>.
While there, fix the dependency on ocaml, and install some docs.
PACKAGE DEVELOPERS: please don't just include binaries into pkgs!
foo-* to foo-[0-9]*. This is to cause the dependencies to match only the
packages whose base package name is "foo", and not those named "foo-bar".
A concrete example is p5-Net-* matching p5-Net-DNS as well as p5-Net. Also
change dependency examples in Packages.txt to reflect this.
crank down the maximum number of commands to feed one sed. Otherwise
config.status won't work with any of sun's seds.
Doing something with gsed won't work because while you can tell a
package to use a given sed (via ${SED} if needed), you can't tell
configure to use a given sed.
Tcpslice extract pieces of and/or merge together packet trace files generated
using tcpdump's -w flag. Tcpslice uses libpcap, a system-independent interface
for user-level packet capture.
Provided in pkg/13926 by Stoned Elipot <seb@pbox.org>.
and Windows 2000 terminal servers, into the packages collection.
Package provided in PR 14059 by Grant Beattie (grant@grunta.com), slightly
modified by myself.
publicfile supplies files to the public through HTTP and FTP
Security features:
publicfile chroot()s to the public file area and sheds root privileges.
publicfile never attempts to modify the public file area.
publicfile never runs any other programs.
HTTP features:
publicfile supports virtual hosts through the Host field.
publicfile supports virtual hosts through absolute URLs.
publicfile supports HTTP/1.1 persistent connections.
publicfile supports HTTP/1.1 chunked responses.
publicfile supports user-controlled content types.
publicfile supports exact-prefix If-Modified-Since.
FTP features:
publicfile has built-in LIST and NLST commands.
publicfile provides EPLF LIST responses.
publicfile supports restarted transfers.
publicfile supports pipelining.
Package provided by Sen Nagata <sen@eccosys.com> in pkg/13892.
This import closes pkg/13167, too.
* Fixed minor name resolution problem so that reverse lookups are not
performed on hostnames supplied as are dotted IP addresses
* Fixed minor problem where DAs listed in net.slp.DAaddresses could not be
found if multicast was not enabled.
* Fixed minor bugs in DA discovery code so that SLPFindScopes() returns more
consistant results.
* Applied patch from Jim Meyer that fixes several predicate parsing
irregularities
* Fixed minor KnownDAEcho problem that resulted in some DAs not getting
registrations.
010912 When storing part of the buffer for a renewed attempt,
store the *end*, not the beginning. Affects copy_up and copy_down.
Autoconf. Use daemon() if available. Make sure that we don't try
to close uninitialized file handles in add_client.
New option -n to not make sockets nonblocking (mainly useful
for debugging).
010911 Make sure that remaining data is stored away when we get EAGAIN
in copy_up.
Released 0.3.3.
010909 Added -p argument to store process id in a file (Andreas Wrede).
Made the sockets nonblocking. Handle EAGAIN in copy_up/down.
Released 0.3.2.
010908 Ignore SIGPIPE. Released 0.3.1.
010827 Option -h uses a hash on the client IP address for the initial
server selection. Option -s ("stubborn") prevents failover to
another server if the initial choice is unavailable.
010824 Use getport for the local port as well.
Changes:
* display transfer rates
* detect stalled connections and abort after stall-timeout seconds
* fix ASCII mode uploads
* write proper URLs (encoding special chars, include user and port)
* various bug fixes
The moral of the story is that cvs 1.11 doesn't like:
cvs update
Modify files
cvs update after someone else has deleted them but with enough local
changes that they don't disapear
cvs ci
The checkin succeeds, but the ,v file stays in the attic.
Original message:
Bring ucd-snmp-current back to life. This is a package of ucd-snmp
4.2.1, the latest release of the net-snmp project (the name change is
still in progress).
Include a bugfix for lisp_LISP independently discovered by me that has
been pulled up to the automake-1-4 branch of automake cvs.
Changes are:
New in 1.4-p5:
* Allow AM_PROG_LIBTOOL again.
* Diagnose AC_CONFIG_HEADERS the same as AC_CONFIG_HEADER.
* Display distributed file list correctly in usage message.
* Allow numbers in macro names.
* Bugfixes.
New in 1.4-p4:
* Deal with configure.ac as well as configure.in -- this time for real!
* The version numbering system now allows three point version numbers,
such as 1.4.4, without thinking they are alpha release numbers.
New in 1.4-p3:
* Deal with configure.ac as well as configure.in.
* Don't complain if `version.texi' is included in multiple places.
New in 1.4-p2:
* Deal with AC_CONFIG_FILES from autoconf-2.50.
* Improvements to f77 support.
* DESTDIR now works for script targets.
* distcheck-hook works correctly.
New in 1.4-p1:
* The version numbering system now allows fork identifiers (such as
the p1 in this version of automake).
* Cope gracefully with various versions of libtool which may or may not
require ltconfig, ltcf-c.sh, ltcf-cxx.sh or ltcf-gcj.sh.
* Bugfixes.
* SNMP alerts
* IDMEF XML output (the Silicon Defense plugin is integrated into
the main codebase now)
* Limited regex support in the rules language
* New packet counters for stream4 and frag2
* New normalization mode for http_decode
provided by Luke Mewburn <lukem@wasabisystems.com> with modifications by
me to allow running on older NetBSD systems (so any errors in the script
are mine alone).
* Changes in bgpd
** Fix "^$" community list bug.
** Below command's Address Family specific configurations are added
nexthop-self
route-reflector-client
route-server-client
soft-reconfiguration inbound
* Changes in zebra
** Treat kernel type routes as EGP routes.
a framework to allow networking applications to discover the existence,
location, and configuration of networked services in enterprise networks.
The OpenSLP project is an effort to develop an open-source implementation of
Service Location Protocol suitable for commercial and non-commercial
application.
set FOO_CONFIG=${BUILDLINK_CONFIG_WRAPPER.foo} in both CONFIGURE_ENV and
MAKE_ENV. We remove the check for GNU_CONFIGURE because if a package
Makefile includes the buildlink.mk file, then it most likely wants to use
the config script wrappers as well. Change suggested by Hubert Feyrer
(hubertf) and Tomasz Luchowski (zuntum).
scripts need for the nmbd and smbd programs to always start in daemom-mode,
which is why the "-D" flag was set via command_args in the scripts
themselves. Any additional options should be passed in through the
{nmbd,smbd}_flags settings in /etc/rc.conf. Add comments to reflect this
in the scripts.
The error reported by the PR author is most likely due to either installing
these scripts with ".sh" extensions, which is not how these are installed
into the ${PREFIX}/etc/rc.d and is definitely wrong, or in directly
sourcing these files from an rc.local script, which is again, definitely
wrong.
from the "ChangeLog" file below). Also, this NetBSD package now installs the
HTML docs into "/usr/pkg/share/doc/html".
* ntpd/refclock_oncore.c (oncore_start): Set pps_enable=1, just
like the atom driver does.
From: reg@dwf.com
* ntpd/refclock_nmea.c (nmea_ppsapi): Set pps_enable=1, just like
the atom driver does.
From: Scott Allendorf <sca@newton.physics.uiowa.edu>
* ntpd/ntp_config.c (getconfig): CONF_CLOCK_PANIC was using the
wrong config flag.
From: <justin_forrester@hp.com>
Most important changes:
o added user-land programs: kalog, aklog, arla-cli
o improved user-land programs: vos, bos, pts, etc.
o added man pages
o security fix (in rx)
o and tons of bug fixes
I included a start script to be placed under /etc/rc.d.
Samba 2.0.x (2.0.10) has functionality that is missing from the Samba 2.2.x
releases, one of which is an operational "share modes" directive.
According to the Samba mailing lists, there isn't a way in 2.2.x to do
what "share modes = No" did in 2.0.x, so revive an older, stable release
of Samba that does contain the missing functionality. Setting the share
mode on a service is necessary only to get certain legacy MS-DOS
applications working in a multi-user environment.
yale-tftpd is an improved (but slightly incompatible until you configure it)
tftpd server. It has a powerful and configurable security setup and is well
suited for people who want to boot network devices using their system as a
TFTP server.
This package consists of two programs, collectively termed "6's Spiffy
AudioGalaxy Query Tool."
AudioGalaxy is a Napster-like music sharing server accessible at
http://www.audiogalaxy.com.
The core program is the query tool itself, "ag." ag accepts an AudioGalaxy
search query (that is, anything that you might type into AudioGalaxy's
search engine), runs the query for you, selects the first couple of results
returned by the search (the exact number of results selected per search is
configurable) and queues them for download, using the "Choose Versions"
feature of AudioGalaxy to try to get a minimum (also configurable) bitrate
for your downloads.
directly by patching the script. This causes LDFLAGS to be reset properly
before checking for gettext(), which now succeeds and causes the locale
files to be built. Remove USE_LIBINTL as unnecessary. Tested on
NetBSD-1.5W/i386 and NetBSD-1.5.1/mac68k.
* Multiple server/account management
* Search history
* Bandwidth limiting
* Ability to specify multiple share directories
* Many internal improvements
* Vorbis file sharing support
* MPEG/AVI file sharing support
* Added file type to search criteria
* Updated Browse OpenNAP dialog
* Fixed Safe Exit option
* Added an option to execute a program after a successful download
* Fixed a potentially exploitable remote segmentation fault concerning
uploads
* SOCKS5 support should (hopefully) be fixed now
* Timestamped events
* Many bug fixes
BUILDLINK_PREFIX.<pkgname>. This allows buildlink to find X11BASE packages
regardless of whether they were installed before or after xpkgwedge was
installed. Idea by Alistair Crooks <agc@pkgsrc.org>.
- from www.ethereal.com
New dissectors include Appletalk Data Stream Interface, AUTH_DES,
DVMRP, GIOP, Gnutella, iSCSI, ISUP, M2PA, MP-BGP message, MSDP,
MTP3, PAP, PIMv1, RFC 2250 MPEG1, and for you gamers, QuakeWorld
and Quake II. Many other dissectors were updated and bug-fixed.
WHATS NEW IN Samba 2.2.1a: 11th July 2001
==========================================
This is the latest stable release of Samba. This is the version that all
production Samba servers should be running for all current bug-fixes.
This is a minor bugfix release for 2.2.1, *NOT* security related.
1). 2.2.1 had a bug where using smbpasswd -m to add a Windows NT or
Windows2000 machine into a Samba hosted PDC would fail due to our
stricter user name checking. We were disallowing user names
containing '$', which is needed when using smbpasswd to add a
machine into a domain. Automatically adding machines (using the
native Windows tools) into a Samba domain worked correctly.
2.2.1a fixes this single problem.
New/Changed parameters in 2.2.1
-------------------------------
Added parameters.
-----------------
obey pam restrictions
When Samba is configured to use PAM, turns on or off Samba checking
the PAM account restrictions. Defaults to off.
pam password change
When Samba is configured to use PAM, turns on or off Samba passing
the password changes to PAM. Defaults to off.
large readwrite
New option to allow new Windows 2000 large file (64k) streaming
read/write options. Needs a 64 bit underlying operating system
(for Linux use kernel 2.4 with glibc 2.2 or above). Can improve performance
by 10% with Windows 2000 clients. Defaults to off. Not as tested
as some other Samba code paths.
hide unreadable
Prevents clients from seeing the existance of files that cannot
be read. Off by default.
enhanced browsing
Turn on/off the enhanced Samba browing functionality (*1B names).
Default is "on". Can prevent eternal machines in workgroups when
WINS servers are not synchronised.
Removed parameters.
-------------------
domain groups
domain admin users
domain guest users
Changes in 2.2.1
-----------------
1). "find" command removed for smbclient. Internal code now used.
2). smbspool updates to retry connections from Michael Sweet.
3). Fix for mapping 8859-15 characters to UNICODE.
4). Changed "security=server" to try with invalid username to prevent
account lockouts.
5). Fixes to allow Windows 2000 SP2 clients to join a Samba PDC.
6). Support for Windows 9x Nexus tools to allow security changes from Win9x.
7). Two locking fixes added. Samba 2.2.1 now passes the Clarion network
lock tester tool for distributed databases.
8). Preliminary support added for Windows 2000 large file read/write SMBs.
9). Changed random number generator in Samba to prevent guess attacks.
10). Fixes for tdb corruption in connections.tdb and file locking brlock.tdb.
smbd's clean the tdb files on startup and shutdown.
11). Fixes for default ACLs on Solaris.
12). Tidyup of password entry caching code.
13). Correct shutdowns added for send fails. Helps tdb cleanup code.
14). Prevent invalid '/' characters in workgroup names.
15). Removed more static arrays in SAMR code.
16). Client code is now UNICODE on the wire.
17). Fix 2 second timstamp resolution everywhere if dos timestamp set to yes.
18). All tdb opens now going through logging function.
19). Add pam password changing and pam restrictions code.
20). Printer driver management improvements (delete driver).
21). Fix difference between NULL security descriptors and empty
security descriptors.
22). Fix SID returns for server roles.
23). Allow Windows 2000 mmc to view and set Samba share security descriptors.
24). Allow smbcontrol to forcibly disconnect a share.
25). tdb fixes for HPUX, OpenBSD and other OS's that don't have a coherent
mmap/file read/write cache.
26). Fix race condition in returning create disposition for file create/open.
27). Fix NT rewriting of security descriptors to their canonical form for
ACLs.
28). Fix for Samba running on top of Linux VFAT ftruncate bug.
29). Swat fixes for being run with xinetd that doesn't set the umask.
30). Fix for slow writes with Win9x Explorer clients. Emulates Microsoft
TCP stack early ack specification error.
31). Changed lock & persistant tdb directory to /var/cache/samba by default on
RedHat and Mandrake as they clear the /var/lock/samba directory on reboot.
refinements since 4.0.99k, a new feature -- an experimental
"huff-n-puff" filter (optionally enabled in /etc/ntp.conf) -- which
discards samples with the highest delays, and new drivers for:
Forum Graphic GPS, WWV/H, Heath GC-100 II, HOPF serial and PCI,
ONCORE, ulink331.
Drop the packages's requirement for GNU readline. It turns out
that command line editing in "ntpq" is not all that useful, as
you can alway let your shell recall "ntpq -c <command>".
Changes:
o several new options in config file revelant when sending messages to Plus phones;
now supports ICQ gateway, too
o yet another change in Era handling code
o improved way to parse email address from both environment variables and config file
o improved hostname detection code
* converted to use buildlink.mk files
* simplified patch-aa
--- 9.1.3 released ---
--- 9.1.3rc3 released ---
911. [bug] Fail gracefully with multiple hint zones. [RT #1433]
910. [port] Some pre-RFC2133 IPv6 implementations do not define
IN6ADDR_ANY_INIT. [RT #1416]
--- 9.1.3rc2 released ---
904. [bug] The server would leak memory if attempting to use
an expired TSIG key. [RT #1406]
903. [bug] dig should not crash when receiving a TCP packet
of length 0.
902. [bug] The -d option was ignored if both -t and -g were also
specified.
901. [cleanup] The man pages no longer have empty lines outside of
literal blocks.
898. [bug] "dig" failed to set a nonzero exit status
on UDP query timeout. [RT #1323]
894. [bug] When using the DNSSEC tools, a message intended to warn
when the keyboard was being used because of the lack
of a suitable random device was not being printed.
892. [bug] The server could attempt to refresh a zone that
was being loaded, causing an assertion failure.
[RT #1335]
891. [bug] Return an error when a SIG(0) signed response to
an unsigned query is seen. This should actually
do the verification, but it's not currently
possible. [RT #1391]
888. [bug] Don't die when using TKEY to delete a nonexistent
TSIG key. [RT #1392]
860. [interop] Drop cross class glue in zone transfers.
852. [bug] Handle responses from servers which do not
now about IXFR.
850. [bug] dns_rbt_findnode() would not find nodes that were
split on a bitstring label somewhere other than in
the last label of the node. [RT #1351]
705. [port] Work out resource limit type for use where rlim_t is
not available. [RT #695]
704. [port] RLIMIT_NOFILE is not available on all platforms.
703. [port] sys/select.h is needed on older platforms. [RT #695]
--- 9.1.3rc1 released ---
831. [bug] The configure script tried to determine
endianness before making its final decision on
which C compiler to use, causing Solaris/x86
systems with gcc to be incorrectly identified
as big-endian. [RT #1315]
827. [bug] When an IXFR protocol error occurs, the slave
should retry with AXFR.
826. [bug] Some IXFR protocol errors were not detected.
825. [bug] zone.c:ns_query() detached from the wrong zone
reference. [RT #1264]
824. [bug] Correct line numbers reported by dns_master_load().
[RT #1263]
822. [bug] Sending nxrrset prerequisites would crash nsupdate.
[RT #1248]
806. [bug] DNS_R_SEENINCLUDE was failing to propagate back up
the calling stack to the zone maintence level, causing
zones to not reload when an included file was touched
but the top-level zone file was not.
771. [cleanup] TSIG errors related to unsynchronized clocks
are logged better. [RT #919]
734. [bug] An attempt to re-lock the zone lock could occur if
the server was shutdown during a zone tranfer.
[RT #830]
712. [bug] Sending a large signed update message caused an
assertion failure. [RT #718]
669. [bug] dnssec-keygen now makes the public key file
non-world-readable for symmetric keys. [RT #403]
