branch. WARNS=2 turns on all kinds of stuff that isn't really appropriate,
and isn't turned on in current. "-Wwrite-strings", in particular, triggers
an error on a bit of harmless code in "file.c". Closes PR pkg/17840.
even multivolume ones:
1. We introduced WinRAR 3.0 discount program, so a single user
license now is only $29.
As always, already registered users do not need to pay again.
RAR 1.x - 2.x registration is valid for 3.0 too.
New international RAR site is www.rarlab.com. You may visit it
to download latest versions and register RAR.
Also do not forget that we have a lot of regional sites processing
RAR registrations. Complete list is available in rar_site.txt.
2. Compression algorithm improved. Changes include:
a) dictionary size is increased to 4 MB, this helps to increase
compression on large data sets;
b) a special algorithm for text data, based on Dmitry Shkarin's
PPMII sources: ftp://ftp.elf.stuba.sk/pub/pc/pack/ppmdh.rar
We express our sincere gratitude and respect to Dmitry for
his excellent PPMII;
c) special preprocessing algorithms for 32-bit x86 executables,
Itanium executables, true color data, audio data and tables.
In many cases significantly increasing compression;
d) now RAR chooses the best combination of algorithms automatically,
so "Multimedia compression" mode and switch -mm are obsolete.
By default, RAR uses only the general compression algorithm
in the "Fast" and "Fastest" compression methods (-m1 and -m2),
advanced algorithms such as audio and true color processing are
enabled only in "Normal"..."Best" (-m3..-m5) modes, the advanced
text compression is activated only in "Good" and "Best"
compression (-m4..-m5). This default can be overridden using
the -mc switch.
RAR 3.0 archives can be unpacked by any RAR version beginning
from RAR 2.9, currently it is 2.9 and 3.0. RAR 3.0 can unpack
archives created by all older RAR versions.
3. Encryption algorithm is changed to AES (Advanced Encryption Standard)
with 128 bit key length.
4. Francesco Indrio <naradamoon@operamail.com>, <naradamoon@libero.it>
has once again done a nice job redesigning WinRAR graphics.
5. "Wizard" command helps novice users to perform basic
archive operations in simple, step by step mode.
Just click on Wizard button on the toolbar and choose
an operation which you want to perform.
6. "Send archive by email" option in the "Files" part of archiving
dialog. Your email program must support MAPI interface,
otherwise this option will not work.
In the command line mode you may use -ieml[.][addr] switch
to send a created archive by email.
7. WinRAR adds "Compress and email" item to Explorer context menu.
8. Default volume naming scheme is changed from volname.rar,
volname.r00, ..., to volname.part001.rar, volname.part002.rar, etc.
Switch -vn and "Old style volumes names" option in the archiving
dialog allow to use the old extension based scheme.
9. Added support of so called recovery volumes (.rev files),
which can be used to reconstruct missing files in a volume set.
One .rev file allows to reconstruct one missing RAR volume,
for example, 5 .rev files are able to reconstruct any 5 volumes.
In WinRAR you may create recovery volumes either specifying
their number in the archiving dialog or using "Protect" command
inside of the first volume.
In the command line RAR it can be done by the command 'rv[n]'
or switch -rv[n].
RAR and WinRAR automatically use .rev files to reconstruct
missing volumes when unpacking or testing a volume set.
It is also possible to double click on .rev file in WinRAR shell
or use the command 'rc' in the command line to force reconstructing.
I wish to thank developers of Mirror program, who invented
this idea and proposed to implement it in WinRAR.
10. SFX modules:
a) Windows SFX modules now support archives larger than 4 GB
and Unicode names;
b) It is possible to replace the standard SFX icon with your own.
Just specify the icon file name in "Load SFX icon from the file"
field of "Advanced SFX options/Text and icon" dialog.
c) new "Shortcut=DestType,SrcName,DestFolder,Description"
SFX script command allows to create shortcuts to unpacked
files on Desktop, Start Menu, Start Menu/Programs or Startup.
This feature is also available through "Shortcuts" list
in the "Advanced SFX options" WinRAR dialog;
d) modified syntax of TempMode SFX script command. It now uses
comma instead of '@' as a question and title separator.
It is important only for those users, who write SFX script
manually instead of specifying SFX parameters in WinRAR
"Advanced SFX options" dialog;
e) "Delete" SFX script command and "Files to delete" field
in "Advanced SFX options" dialog may include wildcard masks.
For example:
Delete=*.tmp
f) removed "Allow external signature" advanced SFX option
and the corresponding "ExtSign" script command.
RAR 3.0 archive format includes the end of archive marker,
so SFX module automatically stops extraction when reaching
the end of archive and all data appended to archive are
ignored by default;
g) if you specified INF file in SFX "Setup" command, SFX will
attempt to install it instead of opening its contents
in Notepad as in the previous version;
h) the new DOS SFX module is 32-bit, so it is not limited to 64 KB
dictionary more and can unpack any RAR 3.0 archives regardless
of dictionary size;
i) "SFX options" button in the archiving dialog opens directly
"Advanced SFX options" without intermediate selection of
SFX module. If you need to change SFX type, use "Module"
page in the advanced SFX options.
Please note that new SFX modules are able to unpack only RAR 3.0
archives. They must not be used with archives created by older
RAR versions.
11. Switch -hp<pwd> can be used instead of -p<pwd> to encrypt
both file data and file headers, so such information as file
names, sizes, comments will not be visible without a password.
"Encrypt file names" option in the password dialog provides
the same function in WinRAR shell.
12. Added support for ISO9660 (.iso) file format, which is widely
used to store CD images. WinRAR is able to browse and unpack
contents of ISO files. WinRAR also supports Joliet extension
of ISO9660 and displays long file names inside of Joliet CD images.
13. Using switch -mc you may set advanced compression parameters
such as prediction order and memory size for the text compression
algorithm. It is also possible in WinRAR shell using "Compression..."
button in the "Advanced" part of archiving dialog.
14. Switch -ms allows to specify files, which will be stored
without compression. For example, -msrar;zip;jpg.
It helps to increase archiving speed without noticeable
loss in the compression ratio.
The same option is available in WinRAR shell through
"Files to store without compression" field in the advanced
part of the archiving dialog.
15. "Info" command now is available also outside of archives,
when working with uncompressed files. One task of this command
is getting information about selected files, another is
performing miscellaneous operations with groups of archives.
After the files scan step is completed, you may switch to
other pages of the dialog and apply commands like "Comment"
and "SFX" to all found RAR and ZIP archives.
"Info" replaces "Estimate" command, which function is available
as a part of the information dialog. Amount of estimation information
is reduced, because an accuracy of Estimate results was not enough
to provide reliable results for different compression methods.
16. "Comment", "Protect", "SFX", "Lock" and "Extract" WinRAR commands
can be also used outside of archives. Their buttons are disabled
by default, but you may enable them in toolbar settings or
use "Commands" menu. "Repair" command is also available
inside of archives.
17. "Test archived files" WinRAR option and the command line switch -t
allow to test files after archiving. This option is especially
useful in combination with the move command, so files will be
deleted only if archive had been successfully tested.
18. "Backup" part of the archiving dialog provides two new file
time selecting modes allowing to archive files modified
before or after the specified date.
19. Switches -ta<date> and -tb<date> allow to add or extract files
modified after or before the specified date. Date format
is YYYYMMDDHHMMSS. It is allowed to insert separators like '-'
or ':' to date string and omit trailing fields. For example,
the following switch is correct: -ta2001-11-20.
20. Switch -ver tells RAR to keep old file versions in archive
when adding their new versions.
The corresponding WinRAR shell option is "Keep previous file
versions" in "Backup" part of archiving dialog.
21. "My Network Places" item is added to WinRAR address bar,
so you may browse the network in WinRAR file list.
The address bar also includes some other shell folders
like "My Computer" and "My Documents".
22. When you press "Up one level" toolbar button or Backspace
in the disk root, WinRAR will display the disks list in
the file panel.
23. It is possible to copy and paste archived and usual files
in WinRAR with Ctrl+C and Ctrl+V keys. For example, you may
select some files in archive, press Ctrl+C, open a folder
in Explorer and press Ctrl+V to unpack selected files to
that folder.
24. "Pause" button added to the operation progress window.
Archiving progress window is now displaying time left
instead of total estimated time.
25. CRC32 column is displayed inside of RAR, ZIP, ACE and ARJ archives.
CRC32 is the special control sum calculated basing on file data
and it may help to detect either two archived files are the same
without unpacking them. Same files always have the same CRC32 value.
26. When "Put each file in separate archive" option in the archiving
dialog is enabled, WinRAR uses a text entered in the archive name
field as the destination folder for created archives. Previous
versions ignored the archive name in the "separate archives" mode.
27. "Extract archives to subfolders" option in the extraction
dialog. It is available only when more than one archive
is unpacked. It will place unpacked contents of each archive
to separate subfolder, which name will be generated basing
on the archive name.
28. Switch -ad appends an archive name to destination path.
It may be useful when unpacking a few archives at once,
so files from each archive will go to separate folder.
29. "Extract each archive to separate folder" item is present
in Explorer context menu when unpacking a group of archives.
30. Two new options in WinRAR "Settings/General":
a) "Allow history in dialogs";
b) "Start in wizard mode".
31. Switch -af<type> allows to define a type of new archive
in WinRAR command line. <Type> can be 'rar' or 'zip'.
For example, 'winrar a -afzip arc' will create arc.zip archive.
This switch is supported only by WinRAR. Console RAR is not
able to create ZIP archives.
32. Switch -en disables adding "end of archive block".
By default, RAR 3.0 adds "end of archive" block to the end of
new or updated archive. It allows to skip external data like
digital signatures safely, but in some special cases it may be
useful to disable this feature. For example, if an archive
is transferred between two systems via a unreliable link and
at the same time a sender adds new files to it, it may be
important to be sure that the already received file part will
not be modified on the other end between transfer sessions.
33. Now RAR can update encrypted solid archives.
34. "Exit" button is added to the toolbar. It is disabled by default,
you may enable it manually with "Select buttons..." in WinRAR
settings.
35. "Select toolbar buttons" dialog allows to change the order
of toolbar buttons. Just select buttons to move and press
"Up" or "Down". Also you may drag buttons directly on
the toolbar while holding down the ALT key.
36. "Word wrap" option in "Settings/Viewer" selects the default
wrapping mode in new internal viewer windows.
37. Console RAR sends error messages to stderr instead of stdout.
38. New '+' modifier for -ag switch allows to place the date string
before a base archive name.
39. In the extraction dialog the entered folder is opened
in the folders tree automatically as you type, with a small
delay about 0.5 second. Also you may locate the currently
entered folder name in the tree pressing "Display" button.
40. It is possible to use wildcards in the path part of file mask
in -x switch and "Files to exclude" field of the archiving
dialog. For example, -x*\temp\*.
41. Switch -ilog accepts the optional log file name parameter.
For example, -ilogc:\log\backup.log.
42. Improved Chinese and Japanese (DBCS encoded) names processing
in ZIP archives (RAR format already supported such names since
WinRAR 2.80). But anyway, it is recommended to use RAR format
for such names, because it uses more portable Unicode encoding
instead of ZIP DBCS.
43. WinRAR uses new visual styles of Windows XP controls.
44. Improved processing of "Group Policies" settings. Earlier
it was possible to open a disk disabled in the policies
by pressing "Up" button inside of archive or entering
its path in the address bar.
45. Console rar.exe executed from NT service is continuing
to run after user's logoff.
46. If you attempt to close the command window and an archiving
or extraction operation is already performing for more than
one minute, WinRAR will ask for confirmation.
47. WinRAR recognizes and processes TAR @LongLink records.
GNU TAR uses them to store names longer than 100 characters
in TAR archives.
This package installs two free TrueType fonts, they are useful for web viewing.
The typeface is Geometric Slabserif 703, which is Bitstream's version of
Memphis a typeface designed in 1930 by Rudolph Weiss. While it may seem odd
that a typeface designed 65 years ago would look good on-screen today,
the reason has to do with the shape of the letterforms themselves.
They have a simple, geometric shape, and their serifs (the small protrusions
from the ends of the letter) are in the "slab" family, which means they, too,
are simple. The "x-height" (the height of the lowercase letter "x") is
relatively large, but not so large that it makes reading difficult in the web
where there is little real control over leading (the space between the lines).
Bitstream is supplying these typefaces to help you see the importance of type
on the web. Once you see how different web pages can look just by changing the
typeface, and how much easier they can be to read, you'll see the importance of
typographic choice on the web.
Notable changes:
- fix to ao.m4 macro
- minor alsa09 plugin updates
- fixes to irix plugin
Note: patch-ac added to remove unconditional use of -ldl in libao.la.
i386: citrix_ica-6.30.1050
sparc: citrix_ica-6.20.985
Update provided in PR pkg/17192 by Murray Armfield.
Submitter could not find an update list to the client program but
noticed the following changes:
- Auto reconnect option
- Smart card logons
- proxy/firewall configuration changes, now takes https and netscape settings for firewall.
changes since bozohttpd 5.12:
o support .mp3 files (type audio/mpeg)
o use stat() to find out if something is a directory, for -X mode
changes since bozohttpd 5.11:
o constification
o fixes & enhancements for directory index mode (-X)
changes:
- Ignore undefined bits of "flash used" tag, as cannon sets them nonzero,
causing jhead to indicate flash used when it wasn't with some Canon models.
- Automatic rotation using jpegtran & clear rotation element
- Option to put a file in as comments (as opposed to edit file)
This adresses pkg/17816 by Eric Jacoboni
Jabber is an open, XML based Instant Messaging system that seeks
to be the standard IM network. It is a distributed system, created
from the ground up, not relying upon central servers. Thus, anyone
can run a server, and they are all interoperable. For assistance
with migrating users to Jabber, many servers feature transports
for interoperating with other IM systems.
Features:
* Message (ICQ-style) and Chat (AIM-style) modes
* Drag and drop to send to multiple contacts
* Full Unicode support
* Secure connections
* Saving contact list locally, and server sync on login
* Icon Themes
* Agent registration and searching
* Retrieving and updating User Info
* Sound support for incoming events
* Auto-away after a configurable amount of time
* Tray/dock icon for KDE/GNOME environments
* Language plugins
an application under the Blackbox window manager, into pkgsrc using files
provided by Anthony Mallet <anthony dot mallet at useless-ficus dot net>
in PR pkg/17831 with minor modifications by myself.
and also changes the ABI of "libcrypto" and "libssl". (So the shared
library majors and buildlink requirements are bumped, too.) The code
base is now synced perfectly with NetBSD HEAD and netbsd-1-6 branches
as of 2002-08-04, the optimization levels are reduced to "-O2", but
I've retained some of the processor optimization flags and different code
path #defines in the "Configure" script, just to keep things interesting.
The default "certs" directory on NetBSD is now "/etc/openssl/certs", to
give continuity to those who find themselves using the package system's
"openssl" after upgrading a package that formerly used the base system's.
[Suggested by itojun.] The best way to avoid such problems, however, is
to upgrade your base system *first*.
I'm making use of the new and improved build system as much as possible.
This gives us a cleaner way to make shared libraries and real man pages,
but loses many of the symlinks to the openssl binary.
I've culled items from the "CHANGES" file that appear to have security
implications or are particularly interesting for NetBSD users, below.
My comments are marked off with '===>'.
===> This is from the netbsd-20020804-patch
*) Fix ASN1 checks. Check for overflow by comparing with LONG_MAX
and get fix the header length calculation.
[Florian Weimer <Weimer@CERT.Uni-Stuttgart.DE>,
Alon Kantor <alonk@checkpoint.com> (and others),
Steve Henson]
Changes between 0.9.6d and 0.9.6e [30 Jul 2002]
*) New option
SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS
for disabling the SSL 3.0/TLS 1.0 CBC vulnerability countermeasure
that was added in OpenSSL 0.9.6d.
As the countermeasure turned out to be incompatible with some
broken SSL implementations, the new option is part of SSL_OP_ALL.
SSL_OP_ALL is usually employed when compatibility with weird SSL
implementations is desired (e.g. '-bugs' option to 's_client' and
's_server'), so the new option is automatically set in many
applications.
[Bodo Moeller]
*) Changes in security patch:
Changes marked "(CHATS)" were sponsored by the Defense Advanced
Research Projects Agency (DARPA) and Air Force Research Laboratory,
Air Force Materiel Command, USAF, under agreement number
F30602-01-2-0537.
*) Add various sanity checks to asn1_get_length() to reject
the ASN1 length bytes if they exceed sizeof(long), will appear
negative or the content length exceeds the length of the
supplied buffer.
[Steve Henson, Adi Stav <stav@mercury.co.il>, James Yonan <jim@ntlp.com>]
*) Assertions for various potential buffer overflows, not known to
happen in practice.
[Ben Laurie (CHATS)]
*) Various temporary buffers to hold ASCII versions of integers were
too small for 64 bit platforms. (CAN-2002-0655)
[Matthew Byng-Maddick <mbm@aldigital.co.uk> and Ben Laurie (CHATS)>
*) Remote buffer overflow in SSL3 protocol - an attacker could
supply an oversized session ID to a client. (CAN-2002-0656)
[Ben Laurie (CHATS)]
*) Remote buffer overflow in SSL2 protocol - an attacker could
supply an oversized client master key. (CAN-2002-0656)
[Ben Laurie (CHATS)]
Changes between 0.9.6c and 0.9.6d [9 May 2002]
*) Implement a countermeasure against a vulnerability recently found
in CBC ciphersuites in SSL 3.0/TLS 1.0: Send an empty fragment
before application data chunks to avoid the use of known IVs
with data potentially chosen by the attacker.
[Bodo Moeller]
Changes between 0.9.6a and 0.9.6b [9 Jul 2001]
*) Change ssleay_rand_bytes (crypto/rand/md_rand.c)
to avoid a SSLeay/OpenSSL PRNG weakness pointed out by
Markku-Juhani O. Saarinen <markku-juhani.saarinen@nokia.com>:
PRNG state recovery was possible based on the output of
one PRNG request appropriately sized to gain knowledge on
'md' followed by enough consecutive 1-byte PRNG requests
to traverse all of 'state'.
1. When updating 'md_local' (the current thread's copy of 'md')
during PRNG output generation, hash all of the previous
'md_local' value, not just the half used for PRNG output.
2. Make the number of bytes from 'state' included into the hash
independent from the number of PRNG bytes requested.
The first measure alone would be sufficient to avoid
Markku-Juhani's attack. (Actually it had never occurred
to me that the half of 'md_local' used for chaining was the
half from which PRNG output bytes were taken -- I had always
assumed that the secret half would be used.) The second
measure makes sure that additional data from 'state' is never
mixed into 'md_local' in small portions; this heuristically
further strengthens the PRNG.
[Bodo Moeller]
*) The countermeasure against Bleichbacher's attack on PKCS #1 v1.5
RSA encryption was accidentally removed in s3_srvr.c in OpenSSL 0.9.5
when fixing the server behaviour for backwards-compatible 'client
hello' messages. (Note that the attack is impractical against
SSL 3.0 and TLS 1.0 anyway because length and version checking
means that the probability of guessing a valid ciphertext is
around 2^-40; see section 5 in Bleichenbacher's CRYPTO '98
paper.)
Before 0.9.5, the countermeasure (hide the error by generating a
random 'decryption result') did not work properly because
ERR_clear_error() was missing, meaning that SSL_get_error() would
detect the supposedly ignored error.
Both problems are now fixed.
[Bodo Moeller]
Changes between 0.9.6 and 0.9.6a [5 Apr 2001]
===> This is our ABI change.
*) Rename 'des_encrypt' to 'des_encrypt1'. This avoids the clashes
with des_encrypt() defined on some operating systems, like Solaris
and UnixWare.
[Richard Levitte]
*) Don't use getenv in library functions when run as setuid/setgid.
New function OPENSSL_issetugid().
[Ulf Moeller]
*) Store verify_result within SSL_SESSION also for client side to
avoid potential security hole. (Re-used sessions on the client side
always resulted in verify_result==X509_V_OK, not using the original
result of the server certificate verification.)
[Lutz Jaenicke]
===> package doesn't doesn't do this. We'll bump major versions
===> as necessary.
*) Make sure that shared libraries get the internal name engine with
the full version number and not just 0. This should mark the
shared libraries as not backward compatible. Of course, this should
be changed again when we can guarantee backward binary compatibility.
[Richard Levitte]
*) Rework the system to generate shared libraries:
- Make note of the expected extension for the shared libraries and
if there is a need for symbolic links from for example libcrypto.so.0
to libcrypto.so.0.9.7. There is extended info in Configure for
that.
- Make as few rebuilds of the shared libraries as possible.
- Still avoid linking the OpenSSL programs with the shared libraries.
- When installing, install the shared libraries separately from the
static ones.
New features:
* The built-in Help system was revamped, a hyperlink mechanism was
added for following cross-references
* Enhanced Exuberant ctags support
* Line numbers are available in shell commands
* Goto Line also accepts column numbers
* Automatic line-feed termination when saving is now optional
* A customizable window title
* Optional syntax based parenthesis matching (iso. purely character based)
Fixed bugs:
* Find Definition incorrectly reads the X selection when not needed
* Background popup menu could lock up X-server when used with
any of the lock keys on
* Very wide windows when starting NEdit under fvwm
* Workaround for illegal key bindings installed by other Motif
applications, causing PageUp/PageDown and arrow keys to stop
responding in NEdit. This is not an NEdit bug, it just looks like one
* Fix for PageUp/PageDown keys not responding
* Crash when running X on 2nd screen
* Line number display updating in continous wrap mode
* Performance problem with X Resources highlight patterns
* Menu fonts showing up as blocks
* Lockup's in syntax highlighting (especially Perl)
* Crash when using characters with ASCII code >= 128 in syntax
highlighting patterns
* Crash when modifying tab distance in continous wrap mode
* Crash when running NEdit in low-depth color modes
* Continous wrap mode + variable width font display bugs
* Potential scroll bar corruption in continuous wrap mode
* Workaround for selection copy/paste problems with recent versions
of gnome-terminal
* Jump to tags only referenced by line number
* Composed characters in learned sequence
* Missing titles in some dialogs
* Macro language: continue statement outside loop crash
* Rectangular overstrike paste fixes
* Hard-coded statistics line font
* Open filenames starting with a dash
* Crash when closing window of non-existing file while error dialog is up
* Bad CapsLock grab on certain keyboard configurations
* Replacements in rectangular selections could sometimes fail
* Various buffer overflow fixes
* Multiple selection dialog does not pop up on first find
* Tag not found
* Files opened with -read command line option could not be unlocked
