Changes since 8.9.6:
DeleGate/9.7 (STABLE)
9.7.0 new stable version
9.7.1 fixes for frozen or broken SSL+gzip thread on FreeBSD and Windows
9.7.2 fixes for SIGPIPE with thread on Linux and Solaris
9.7.3 fixes for automatic adjusting of MAXIMA=delegated:N on memory shortage
9.7.4 coped with the chained certificate for SSL
9.7.5 fixes for freezing by sync. error with gunzip/gzip threads
9.7.6 fixes for SIGSEGV on Solairs, SOCKS on Windows, UDPrelay error
9.7.7 coped with VC++ in VisualStudio 2005/2008, revival of IPv6 on Windows
DeleGate/9.6 (DEVELOPMENT)
9.6.0 thread based smooth gzip/HTTP streaming, lighter SSL by thread
9.6.1 fixes for Solaris, Arm-linux, log-mutex, sftp/FTPS, CFI, MAX_DELEGATE
9.6.2 fixes for SEGV in FreeBSD thread, frozen FTPS, sftp/SSL, POP/NNTP/HTTP gw
9.6.3 fixes for frozen gzip and SSL threads by signals or with CFI filters
DeleGate/9.5 (STABLE)
9.5.0 new stable version
9.5.1 minor fixes for Japanese character code conversion
9.5.2 a minor fix for Japanese character code conversion
9.5.3 minor fixes for JP char. conv., tuning for recv. via slow line
9.5.4 fix for uploading via chained-FTP, MITM with slow-client
9.5.5 fix for SEGV in FTP, IPv6/IPv4 in /etc/hosts, etc.
9.5.6 fix for MITM with keep-alive, JP char. conv.
DeleGate/9.4 (DEVELOPMENT)
9.4.0 editing built-in parameters, SERVER=sudo, invocation via SSH/CGI/SSI
9.4.1 transparent application-level proxy over SOCKS
9.4.2 external auth. command, conditional CACHE, Japanese code conversion
9.4.3 fixed UDP and FTP over SOCKS, generalized routing with proxy auth.
9.4.4 MOUNT for SOAP/XML, fixed SEGV on charcode conv.
DeleGate/9.3 (STABLE)
9.3.0 new stable version
9.3.1 fixed SSL session cache with client's certificate
9.3.2 fixed CGI/SHTML revealment, SEGV on Win. service STOP, SEGV in Credhy
DeleGate/9.2 (DEVELOPMENT)
9.2.5 minor fixes for HTTP, sftp, FTP, UDPrelay, SockMux, MASTER auth., Win
9.2.4 faster MITM, SOCKS over SSL, multiplexed SOCKS/SockMux, cache on Win
9.2.3 supported SSL MITM mode, syslog, fixed abortion and delay in CFI on Win
9.2.2 supported huge file over 4GB in FTP, and HTTP, fixed CFI on Windows
9.2.1 fixes for Keep-Alive and logging as a service on Win, CGI/SSI+FTOCL
9.2.0 added access counters, Cookie encryption, fixed CGI/CFI/SSI for Win
DeleGate/9.1 (STABLE)
9.1.0 new stable version
9.1.1 minor fixes for HTTP, FTP/EPRT, DNS, STLS=fsv, and AUTHORIZER
9.1.2 minor fixes for SSL
DeleGate/9.0 (DEVELOPMENT)
9.0.0 IPv6 support
9.0.1 supported dynamic linker and improved SSL/TLS performance and usability
9.0.2 fixed IPv6 name resolution, fixed make problems on 64bits machine, etc.
9.0.3 added Skype brocker, encrypted config., extended CHARSET conv., etc.
9.0.4 added gateway for sftp/SSH server to FTP/HTTP
9.0.5 total renewal of remote config. and admin. via HTTPS
9.0.6 anonymizing NNTP article, tracking SPAMmers, routing DNS
DeleGate/8.11 (STABLE)
8.11.0 new stable version
8.11.1 fixed I/O timeout, virtual host & transparent proxy, coped with non-C99
8.11.2 fix for Windows, HTTP, MOUNT, etc.
8.11.3 fixed permission for SSLtunnel and STLS, Cookie to/from HTTPS/HTTP
8.11.4 fixed compilation problems, UDP/SocksV5, obsoleted X-Locking header
8.11.5 coped with HRS, fixes for Win32 (freezing, filters and log directory)
DeleGate/8.10 (DEVELOPMENT)
8.10.0 rewritten in ANSI/ISO C++ / C (tested only with Gcc variants and VC++)
8.10.1 qualified with "const", porting to OS/2 and FreeBSD
8.10.2 become suitable to be compiled and run with Bounds-Checking Gcc
8.10.3 fixed a lot of overflows on arrays of char, pointers, and structures
8.10.4 moved STARTTLS into each app. protocol and introduced STLS parameter
8.10.5 fixed STARTTLS for SMTP and binary I/O with VC++
8.10.6 fixed relaying POST and gzip on HTTP, symlink on Win32 (8.10.3)
And always is defined as share/examples/rc.d
which was the default before.
This rc.d scripts are not automatically added to PLISTs now also.
So add to each corresponding PLIST as required.
This was discussed on tech-pkg in late January and late April.
Todo: remove the RCD_SCRIPTS_EXAMPLEDIR uses in MESSAGES and elsewhere
and remove the RCD_SCRIPTS_EXAMPLEDIR itself.
under share/examples/rc.d. The variable name already was named
RCD_SCRIPTS_EXAMPLEDIR.
This is from ideas from Greg Woods and others.
Also bumped PKGREVISION for all packages using RCD_SCRIPTS mechanism
(as requested by wiz).
8.9.0 fixes for HTTP, SSLway and SMTP.
8.9.1 fixed proxy-HTTP for authentication and SSLtunnel (8.9.0)
8.9.2 extended CFI, supported SWF MOUNT, fixed FTP, making with SSL
8.9.3 added SMTPCONF=callback, fixed SSLway, FTP+SSL, Telnet, Tcprelay, etc.
8.9.4 added service shutdown on abort in child process, fixed FTP, gzip/HTTP
8.9.5 fix for Win32 (8.9.4),virtual host (8.9.3),added JIS to ASCII conv,etc.
8.9.6 fix for SSLway, CFI, AUTHORIZER, FTP, Resolvy, Socks5, added XML MOUNT, interface for FreyaSX, etc.
under ${PREFIX} instead of being an absolute path.
So fix the references using RCD_SCRIPTS_EXAMPLEDIR to be
${PREFIX}/${RCD_SCRIPTS_EXAMPLEDIR}.
This should have no changes to use before.
Please note that the MESSAGE files in most cases are wrong in the
first place. We have automated mechanisms and could have an automated
message for explaining rc.d script usage. (This is something to do!)
which installs to ${RCD_SCRIPTS_EXAMPLEDIR}. But the MESSAGE
referred to wrong hard-coded location if the RCD_SCRIPTS_EXAMPLEDIR
was not the default. So use RCD_SCRIPTS_EXAMPLEDIR instead.
PKGREVISION not bumped because if someone had changed
RCD_SCRIPTS_EXAMPLEDIR before recent change of autoregistration
of rc.d script in PLIST, then it could not have been packaged
in first place.
Note that this commit does not imply that the MESSAGE is correct.
In some cases, the MESSAGE is clearly wrong such as suggesting
running the rc.d script from the example directory (which will work
although).
the RCD_SCRIPTS rc.d script(s) to the PLIST.
This GENERATE_PLIST idea is part of Greg A. Woods'
PR #22954.
This helps when the RC_SCRIPTS are installed to
a different ${RCD_SCRIPTS_EXAMPLEDIR}. (Later,
the default RCD_SCRIPTS_EXAMPLEDIR will be changed
to be more clear that they are the examples.)
These patches also remove the etc/rc.d/ scripts from PLISTs
(of packages that use RCD_SCRIPTS). (This also removes
now unused references from openssh* makefiles. Note that
qmail package has not been changed yet.)
I have been doing automatic PLIST registration for RC_SCRIPTS
for over a year. Not all of these packages have been tested,
but many have been tested and used.
Somethings maybe to do:
- a few packages still manually install the rc.d scripts to
hard-coded etc/rc.d. These need to be fixed.
- maybe remove from mk/${OPSYS}.pkg.dist mtree specifications too.
2003-03-19 DeleGate/8.5.2 fixes for HTTP-gateway and FTP-proxy with PERMIT (since 8.4.0)
2003-03-14 DeleGate/8.5.1 fixes for SMTP (AUTH PLAIN), DNS and HTTP
2003-03-06 DeleGate/8.5.0 new stable version
2003-03-05 DeleGate/8.4.1 fixes for HTTP / PERMIT (8.4.0), DNS server stall on Win32, etc.
2003-02-19 DeleGate/8.4.0 bind(privileged port) by command, access control by method, etc.
2003-02-21 DeleGate/8.3.4 fixes for forwarding HTTP to MASTER, invoking CFI, VSAP, etc.
2003-01-16 DeleGate/8.3.3 fixes for FTP, NNTP, HTTP, porting to Win32, etc.
2003-01-01 DeleGate/8.3.2 fixed SEGV on heavy load (since 8.2.2) and select() loop on Win32
2002-12-30 DeleGate/8.3.1 fix for making on OS/2 and a fix for "gzip" on Win9X
2002-12-27 DeleGate/8.3.0 new stable version
2002-12-23 DeleGate/8.2.5 SockMux fixes and extension
2002-12-22 DeleGate/8.2.4 SockMux fixes and extension
2002-12-21 DeleGate/8.2.3 SockMux fixes and extension
2002-12-20 DeleGate/8.2.2 introduced SockMux" socket multiplexer protocol
2002-12-12 DeleGate/8.2.1 fixed MOUNT and CFI
2002-12-03 DeleGate/8.2.0 introduced conditional parameter and pseudo host name for AF_UNIX
2002-11-27 DeleGate/8.1.0 new stable version
2002-11-25 DeleGate/8.0.11 changes about HTTP cache and NNTP/HTTP gateway, etc.
2002-11-13 DeleGate/8.0.10 changes for CFI, restarting on configuration error, etc.
2002-11-06 DeleGate/8.0.9 supported HTTP Content-Encoding:gzip to client
2002-11-01 DeleGate/8.0.8 supported HTTP Content-Encoding:gzip from server
2002-10-22 DeleGate/8.0.7 fixes for NNTP and MOUNT
2002-10-11 DeleGate/8.0.6 changes for HostList by host and auth, ext. for ABOR/FTP
2002-10-08 DeleGate/8.0.5 fixes for CFI, PASV/FTP/Socks and extension for ftp://u*h@p
2002-09-30 DeleGate/8.0.4 changed SERVER default, improved restarting on Win32
2002-09-20 DeleGate/8.0.3 fix for SERVER=delegate
2002-09-18 DeleGate/8.0.2 fix for SERVER=delegate
2002-09-17 DeleGate/8.0.1 changes for default configurations (SERVER, etc.) and parameter spec.
2002-09-13 DeleGate/8.0.0 changes for default configurations, CFI extension, Win32 fixes, etc.
2002-09-22 DeleGate/7.9.13 fix for SERVER=delegate
2002-09-08 DeleGate/7.9.12 fixed for FTP proxy auth., buffer overflows, etc.
2002-08-26 DeleGate/7.9.11 fixes for Win32 bugs, CSS vulnerability, etc.
2002-07-20 DeleGate/7.9.10 fixes for HTTP/1.1 Keep-Alive, adaptation to OS/2, Win32, etc.
2002-06-28 DeleGate/7.9.9 extensions for HTTP, -r option, etc.
2002-06-25 DeleGate/7.9.8 fixes for SMTP, HTTP, extensions of HOSTLIST, HTTPCONF, etc
2002-06-18 DeleGate/7.9.7 fixes for Win32 service and AUTHORIZER cache
2002-06-14 DeleGate/7.9.6 fixes for MOUNT, AUTH TLS for FTP, udprelay, etc.
2002-05-22 DeleGate/7.9.5 fixes for freezing on Win32 and reloading by HTTP/1.1
2002-05-07 DeleGate/7.9.4 fixes for WinXP, VSAP, etc.
2002-04-05 DeleGate/7.9.3 fixes for fixes for NNTP, CFI srcipt, SMTP EHLO, IMAP, etc.
2002-03-11 DeleGate/7.9.2 fixes for origin-HTTP, chained DeleGate, Win32 DHCP DNS, etc.
2002-03-04 DeleGate/7.9.1 a fix for 7.9.0 (NNTP/HTTP gateway)
2002-03-04 DeleGate/7.9.0 fixes for logfile on Win32, extension of SRCIF for ftp-data, etc.
2002-02-26 DeleGate/7.8.3 extended SRCIF, SRCIF for FTP data, modified UDP/SOCKS, etc.
2002-02-06 DeleGate/7.8.2 fixes for FTP MOUNT, extension of SRCIF for SOCKS/BIND, etc.
2002-01-05 DeleGate/7.8.1 a fix for FTP proxy
2001-12-28 DeleGate/7.8.0 HOSTLIST, non-anonymous FTP MOUNT, etc
[NEW]
+ FTP/SSL: supported "AUTH TLS", on-demand FTP/SSL (with sslway -St)
+ HTTP: introduced HTTPCONF="cka-cfi" to force Keep-Alive with FCL/FTOCL
+ general: introduced src. addr. binding (SRCIF=host[:port[:proto:dst:src]])
+ general: introduced "-va" option (hidden log to be sent on ABORT)
+ SSLTUNNEL: introduced proxy auth. for SSLTUNNEL (by AUTH=pauthgen)
+ VSAP: introduced AUTH_VSAP (tentative)
+ FTP: enabled FCL/FSV=sslway for FTPS (implicit SSL)
+ NNTP: added client hostname to forbidden POST error log
+ MOUNT: new MountOption fo,bo,bif (ForwOnly,BackOnly,BackIfForw)
+ MOUNT: enabled dst=-host MountOption for servers as virtual hosts
+ genrail: made notify-mail include AbortLog and BackTrace
+ Socks: introduced "/-r" opt. (resolve locally, not on SocksV5 server)
+ Shio: added "c host:port" (connect to host:port without using shell)
+ HTTP: implemented AUTHORIZER and XECHO for HTTP
+ SSLway: introduced "-St" option to make STARTTLS be mandatory
+ FTP: supported MLSD command relay
+ general: randomized text and data segment address at compile time
+ general: introduced a time period in a week(-T.wWHHMM)
+ SSLway: inplemented STARTTLS for SMTP,POP,IMAP "-st[/protocol]"
+ SSLway: added "-pass {pass:string|file:path}"
+ SSLway: added error message about .pas to show what is necessary
+ MOUNT: extended matching and rewriting (ex. "*%1[a-b]%S *%(0)/%(1)")
+ MOUNT: reverse MOUNT for "*%(N)" in right hand rURL to left hand vURL
+ MOUNT: new abbreviation ///path -> =://=:=/path (the same proto&serv)
+ MOUNT: new abbreviation //serv/path -> =://serv/path (the same proto)
+ POP: supported AUTH without arguments
+ FTP: introduced FTPCONF=nodata (can be useful for FXP)
+ FTP:/HTTP: added logging in xferlog on FTP/HTTP (HTTPCONF=xferlog:ftp)
[CHANGE]
+ FTP: added (empty) successful response for HELP command
+ general: removed obsolete codes (FTPGET,FORCEON,HTTPMAIL,PUBLIC,?_?,etc)
+ general: stopped to use getmsg() with poll()
+ HTTP: HTTP-PROXY become controllable by CONNECT
+ FTP: modified PASV response format to be more acceptable by clients
+ HTTP: extended timeout for fflush/fclose (was shorten in 6.1.21)
+ HTTP: modified to accept resp. "HTTP" lacking "/X.X" (6.1.22)
+ FTP: changed FTP max. relative date in LIST to 6 month (from 11)
+ SSLway: changed to hide command line arguments and environmnet vars
+ MOUNT: added MOUNT="//* = default" for SERVER=imap
[FIX]
+ SSLway: fixed SEGV with the cc of SunOS4 (since 6.1.19)
+ SSLway: coped with multi-lines of opening message for STARTTLS
+ FTP: fixed not to apply server-side CFI for cached response
+ FTP: fixed CMAP switch for "ftp-data" protocol
+ INETD: enabled HTTP req. for "exec" protocol by INETD
+ INETD: fixed SEGV with INETD specification without arg-list
+ HTTP: fixed "nojava" for MOUNTed server with RELAY=no (since 6.1.20)
+ NNTP: fixed to MOUNT SERVER=nntp://host with "default"
+ FTP/HTTP: coped with WU-Ftpd/2.6.1 + DeleGate/Win32
+ SMTP: fixed SIGPIPE to server by slow DATA from client
+ NNTP: fixed to clean up zombis of NNTPCC
+ origin-NNTP: fixed spooling article at spool/ddd/dd (4.2.0)
+ MOUNT: fixed matching to the end of line (by "$")
+ general: fixed endless SEGVs by duplicate fclose() in notify-mail
+ FTP: revival of "RETR //user:pass@host/path" (5.7.1)
+ FTP: fixed possible overflows in "//user:pass@host" scanning
+ DNS: fixed infinite loop on recvfrom() error
+ HTTP: fixed MOUNT for virtual Host (moved,host=-xxx)
+ NNTP: fixed not to start INIT before all opening messages done
+ HTTP: fixed to fflush before doing sleep/Nice (for chained DeleGate)
+ HTTP: fixed [Reply] button in NNTP/HTTP (6.1.12)
+ SMTP: fixed to wait response for DATA before send QUIT in b.g. (6.0.0)
+ SSLway: enabled RSA tmp. key callback both for openSSL/SSLeay
+ HTTP: fixed "bad response" on EOF/timeout with server (6.1.22)
+ HTTP: fixed status respopnse via CGI/CFI (6.1.19)
+ NNTP: fixed jamming of multi-servers by timeout during startup
+ MOUNT: fixed SEGV on bad MOUNT parameter (non full-URL in right hand)
+ CRON: fixed "-expire" to follow CACHEDIR in symbolic link
+ FTP/HTTP: fixed to do cache FTP/HTTP with Authorization: anon-ftp
+ FTP/HTTP: fixed to do cache FTP/HTTP with URL ftp://ftp:pass@host
+ NNTP: fixed NNTPCC with SERVER=nntp://server
+ HTTP: fixed not to try HTML oriented conversion for plain text
+ HTTP: fixed not to regard "EOF on server reusing" as badServer
+ HTTP: extended to record "badServer" (ex. HTTP/1.1->NCSA/1.5.2)
+ SSI/HTTP: fixed to skip ">" character in quoted-string
+ Telnet: fixed aborting login with AUTHORIZER
+ FTP: fixed SEGV on bound proxy (SERVER=ftp://user:pass@server)
+ general: fixed memory wasting by repetitive randenv()
+ general: fixed putting uninit. buff. when invoked without args
+ SSLway: fixed to do RAND_seed first (for openSSL0.8.5 or later)
+ HTTP: fixed possible SEGV on uninit. buff. ref. for -_-/proto://...
+ HTTP: fix for removing charset in META tag (when no space after ";")
+ HTTP: fixed Content-Length in NNTP/HTTP with Accept-Language:(charset)
+ NNTP: fixed string buffer reallocation (1MB<size)
+ SMTPGATE: fixed SEGV on empty local part in recipient's address
+ FTP/TUNNEL: enabled PASV on TUNNEL (precedes XDC/TUNNEL)
+ FTP/TUNNEL: enabled MODE XDC on TUNNEL
+ FTP: enabled "CWD //ftp:foo%40%bar@server/path"
+ FTP: enabled USER user:pass@host, CWD //user:pass@host anytime
* general: regard POLLHUP as well as POLLIN|POLLPRI (mainly for pipe)
(it can be disabled by -wH command line option for debugging)
+ FTP: enabled %XX in password of "user:pass" part for USER,CWD
+ TUNNEL: fixed to wait children for TUNNEL via sshd (since 6.1.13)
+ FTP: fixed cached RETR by PASV with DeleGate in XDC mode
+ FTP/HTTP: fixed erasing password in embeded URL in FTP/HTTP page
+ HTTP: fixed relaying HTTP/0.9 response to HTTP/1.1 client
+ cache: fixed readlink() error detection on some platforms(AIX)
+ IMAP: introduced IMAP proxying by "LOGIN user@host pass"
+ SMTPGATE: don't count Max-Exclams(!) in uuencoded text
+ HTTP: fixed possible SEGV on Can't Connect message generation
+ MIME: fixed getting value out of "name=value; ..."
+ FTP: fixed REST followed by RETR //serv/path, with cache, etc.
+ SMTPGATE: return appropriate code(554) on bad Message-ID error
+ porting: trial to escape readlink() bug in some version of Linux
+ porting: fix for compilation on AIX+gcc
Changes include:
+general: set TIMEOUT=shutout:900s by default (was shutout:0)
+FTP: fixed SEGV on cascaded DeleGates (with MODE XDC)
+DNS: fixed non-recursive DNS resolution on little endians
Changes include:
+ security: randomized stack base to prevent overflow attack
+ general: fixed some dangerous buffer overflows
+ MASTER: immediate rejection in MASTER mode for forbidden users
+ CFI: fixed direction of LOGFILE on -v,-vv not to socket but to LOGFILE
+ CFI: fixed not to pass "[execpath]command" to shell (since5.9.2)
+ HTTP: fixed SEGV on long (maybe non-) scheme name in URL
+ INETD: fixed SEGV when argument-list part in INETD parameter is empty
+ SocksV5: fixed dropping response data on BIND/ACCEPT
+ Socksv5: fixed (enabled) UDP/SocksV5 on little endians
+ SocksV4: return immediate error response to SocksV5 request
+ NNTP: removed duplicated X-Forwarded in NNTPCC