Changes between 1.2.18 and 1.2.19
Native
update Docs: Add SetHandler and new env var to Apache config docs. (rjung)
update Apache 1.3: Backport "no-jk" feature. (rjung)
update Apache: Add an environment variable to make SetHandler "jakarta-servlet" more useful. The variable is JK_WORKER_NAME, but can be changed by the new directive JkWorkerIndicator. (rjung)
fix LB: Don't use single worker shortcut, if the single worker is being diabled. (rjung)
fix Status worker: Add short explanation of activation and error states to legend. (rjung)
fix Docs: Add meaning of zero timeout values for various timeouts in workers.properties. (rjung)
fix LB: Cleanup of Mladens forced recovery. (rjung)
fix LB: Do not change lb_value for recovering workers to max, if we are using BUSYNESS method. (rjung)
fix Apache: Since 1.2.14 mod_jk failed to detect client abort. (rjung)
fix Docs: Corrected description of JkEnvVar. (rjung)
fix Solaris: Detect filio.h in configure to make the new connection detection build on solaris (r432825). (rjung)
update Add feature to force the recovery of workers that are member of loadbalancer if all the members are in error state. This fixes the time gap where 503 was returned caused by recovery_timeout although the backend was ready to handle the requests. (mturk)
update Docs: Seperate deprecated directives in their own table. (rjung)
update Docs: Allow "-" and "_" in worker names. (rjung)
update Allow multiple lines with attributes "balance_workers" and "mount". (rjung)
fix Make jk_is_some_property match more precisely. (rjung)
update JkStatus: Make refresh interval changeable. (rjung)
fix JkStatus: Adjust display of recover time wrt. global maintenance. (rjung)
update LB: Resetting worker state from OK to NA, if worker has been idle too long. (rjung)
fix Avoid compiler warnings concerning the use of lb_*_type arrays. Use functions instead. (rjung)
update Added %R JkRequestLogFormat option for Apache 1 and Apache 2. (mturk)
update Allow changing jvm Route from status manager. (mturk)
fix Do not retun 400 if Tomcat fails in the midle of the post request. Return 500 insted. (mturk)
update LB: Combine ok/error/recovering/busy runtime states into a single scalar. (rjung)
update LB: Combine active/disabled/stopped configuration states into a single scalar. (rjung)
update LB: Add several Apache notes to enable standard logging for load balancer results. (rjung)
update LB: Reorganisation of the main load balancer service loop. (rjung)
update Implement hierarchical worker configuration via attribute "reference". (rjung)
update Log deprecated properties. (rjung)
fix IIS: Fix simple_rewrite for the cases where the rewritten url is larger then the original one. (mturk)
update New JkOption "DisableReuse" to disable connection persistence. (jim)
update LB: Move sessionid retrieval out of get_most_suitable_worker into service. (rjung)
update Code cleanup for all service methods (use TRACE, JK_LOG_NULL_PARAMS, null pointer checks). (rjung)
update JKSTATUS: add refresh link. No refresh for updates. Redirect to list view after update. (rjung)
update Add new hook add_log_items into servers. (rjung)
update APACHE httpd: Rename apache logging notes. (rjung)
update LB: Rename lock and method constants. Add constants for defaults. (rjung)
fix Default log level should be INFO and not DEBUG. Default log level should be the same for all server types. (rjung)
fix Make rewrite_rule_map and log_level as non mandatory directives for isapi_redirect. (mturk)
fix 40107: Rewrite is_socket_connected function. Non blocking socket is not used any more. (mturk)
update Allow building with VS2005 without too many warnings. (mturk)
fix Decide by MMN, which piped log API we should use. mod_jk 1.2.18 broke compilation with Apache 1.3 pre 1.3.28. (rjung)
Changes between 1.2.17 and 1.2.18
Native
fix Using socklen_t in getsockopt. Also introducing jk_sock_t. (mturk)
update Allow recovery wait time below 60 seconds (new minimum is 1 second). (mturk)
Changes between 1.2.16 and JK 1.2.17
Native
fix Fix hanging jk status worker when certain attributes are being updated due to double locking. (rjung)
update Allow JkMount to behave like uriworkermap.properties by parsing pipe symbol as two directive marker. (mturk)
Changes between 1.2.15 and JK 1.2.16
Native
update Added simple rewrite capability for IIS. Although simple it will fulfill most needs. (mturk)
update Added RECOVER_ABORT_IF_CLIENTERROR recovery_option that closes the connection if client connection is broken during the request. (mturk)
update Renamed cache_timeout directive to connection_pool_timeout. (mturk)
update Added connection_pool_minsize directive. (mturk)
update Deprecate recycle_timeout directive. (mturk)
update Corrected some HTML syntax bugs in output of status worker. (rjung)
update Added the refresh=n parameter to the status worker. It will update the display every n seconds. (rjung)
update Balancer: Add attribute distance to balanced workers to express preferences between workers. (rjung)
update Balancer: Add attribute jvm_route to balanced workers to be able to use the same target in different balancers. (rjung)
update Status: Add lb_mult to status. (rjung)
update Balancer: Make different balancing strategies work in a similar way (use lb_value, use decay during global maintenance, use integer factors for weights. (rjung)
update Balancer: Improve locking. (rjung)
update Balancer: Workers start slower after recovering. (rjung)
update Balancer: Make different balancing strategies work in a similar way (use lb_value, use decay during global maintenance, use integer factors lb_mult for weights). (rjung)
update Balancer: Move recovery check to global maintenance. (rjung)
update Balancer: Add global maintenance method, that is called in only one process. (rjung)
update Extend our use of autoconf to find a 32Bit and a 64Bit unsigned type and their printf formats. (rjung)
update Logging: piped loggers for JkLogFile and Apache 1.3. (rjung)
update Logging: Add PID to log lines for each log level apart from REQUEST. (rjung)
update Logging: flush buffered logs to keep lines in correct order. Output final newline together with log message. (rjung)
update Reducing shm size. (rjung)
update Only log removing of old worker, when we actually do it. (rjung)
fix 37469: Fix shared memory close for forked childs. The shared memory will be closed by the parent process. (mturk)
fix 37332: Fix potential misuse of buffer length with snprintf functions. (mturk)
fix 38859: Protect mod_jk against buggy or malicious AJP servers in the backend. Patch provided by Ruediger Pluem. (mturk)
fix 38889: Use worker map sorting depending on the path elements, to comply with Servlet spec. Patch provided by Steve Revilak. (mturk)
update 36138: Added Busyness lb method. Patch provided by Chris Lamprecht. (mturk)
fix Fix pessimistic locking mode. The patch correctly handles the burst load, by syncing the access to the shared memory data. (mturk)
fix 38806: Reclycle worker even if it is disabled. This fixes hot-standby workers in error state. (mturk)
fix 37167: Allow building with BSD-ish like make. (mturk)
fix ISAPI plugin (isapi_redirect.dll) did not provide correct request data for IIS to include in the IIS log. (markt)
Changes:
Tomcat 5.5.20 (fhanik)
Catalina
fix Fix logic error in UserDatbaseRealm.getprincipal() that caused user roles assigned via groups to be ignored. (markt)
Jasper
fix 31804: Unnested tags within a tag file are now configured with the Tag represented by the containing tag file as their parent tag. (markt)
fix 33356: Tag attributes that contained $ followed by 1 or more non-special characters and then a { character caused an exception. (markt)
fix 33407: The string \$ in template text was reduced to $ when the isELIgnored page directive was set to true. (markt)
Tomcat 5.5.19 (fhanik)
General
update Add multi attribute setting to jmx:set JMX remote ant task. Patch contributed by Didier Donsez (pero)
Catalina
fix 30762: Re-fix this bug that was re-introduced by the fix to 37264. (markt)
fix 37588: Fix JNDI realm creation through JMX. Patch contributed by TerryZhou (fhanik)
fix 39704: The use of custom classloaders failed when the context was specified in server.xml. Correction of the fault will require setting the new loader attribute useSystemClassLoaderAsParent to false. (markt)
Coyote
fix 40418: APR Endpoint socket evaluation (remm)
Webapps
fix 31339: Admin app threw exceptions if a name other than Catalina was configured for the Engine. Patch based on a suggestion from Amila Suriarachchi. (markt)
Tomcat 5.5.18 (yoavs)
General
update Change MD5 release signature files to have md5 (lowercase) extension instead of MD5 (uppercase), as suggested by Henk Penning and specified in the ASF release publishing guidelines. (yoavs)
Catalina
fix Fix that ManagerBase increment expireSessions counter at background task two times. (pero)
fix 39406: Fix that StandardSession#getLastAccessedTime() uses correct exception message, suggested by Takayoshi Kimura. (pero)
add 39661: Add documentation on JULI FileHandler properties. (yoavs)
add 39657: Warn (and don't load jar) if JSP API is in webapp classloader repository, as suggested by David Sanchez Crespillo. (yoavs)
add 39674: Support JRockit JVM in service.bat script, as suggested by lizongbo. (yoavs)
fix 39711: Update Loader configuration documentation, as suggested by Stephane Bailliez. (yoavs)
fix 39865: Add Open Office mime types to conf/web.xml. (markt)
fix 38814: Align CGI handling of indexed queries, parameters and POST content with other CGI providers. The changes: only provide parameters on the command line for indexed queries; always provide the query string via the QUERY_STRING environment variable; provide POST content unmodified to stdin; and never call getParameters(). (markt)
fix 34801: Partial fix that adds handling of IOExceptions during long running CGI requests. Based on a patch by Chris Davey. (markt)
fix 39689: Allow single quotes (') and backticks (`) as well as double quotes (") to be used to delimit SSI attribute values. (markt)
fix 40053: Correct application deployment documentation so it agrees with the classloader documentation regarding shared lib and CATALINA_BASE. (markt)
fix 39592: Stop HEAD requests for resources handled by SSI servlet or filter generating stack traces in the logs. (markt)
fix Improve handling of the ';' character in the URL so that it is now allowed if properly %xx encoded. (remm)
Coyote
fix Fix APR endpoint so that the acceptor thread now only processes socket accepts. (remm)
Webapps
fix 39813: Correct handling of new line characters in JMX attributes. Patch provided by R Bramley. (markt)
fix 37781: Make sure that StoreConfig save external referenced war files at context.xml correct. (pero)
fix 39791: Use correct default for useNaming within a Context. (markt)
fix Correctly generate re-direct for admin app index.jsp to prevent login page being displayed twice when cookies are disabled. (markt)
Cluster
fix 39473: Session timeout much shorter than setting at web.xml at cluster environment, suggested by Jin Jiang. (pero)
ikiwiki is a wiki compiler. It converts wiki pages into html pages
suitable for publishing on a website. Unlike many wikis, ikiwiki does
not have its own ad-hoc means of storing page history, and instead
uses an revision control system.
The pkg currently has options for a dependency on svn, which is the
default rcs backend. Support for other backends is included in the
installed pkg, but there are no dependencies in the pkg for them yet.
Trac-0.10.1-ja-1 (Nov 9, 2006)
* Merge trac-0.10.1
* Translate messages into Japanese.
* trac/db/api.py
* trac/notification.py
* Correct some translations.
* templates/timeline.cs
* wiki-default/TracIni
* trac/mimeview/silvercity.py
* Add link to TracJa.
* wiki-default/TracGuide
* Update to current statement.
* README.trac-ja
* wiki-default/TracJa
* bdist's package name revert to `trac` from `trac-ja`,
because some plugins require `trac`'s package name.
* setup.py
Trac 0.10.1 (Nov 8, 2006)
http://svn.edgewall.org/repos/trac/tags/trac-0.10.1
Trac 0.10.1 contains a security fix and a number of bug fixes.
The following list contains only a few highlights:
* Fixed CSRF vulnerability (#4049), reported by Daniel Kahn Gillmor.
* Improved DB connection handling (#3503)
* Tracd no longer tries to resolve client's IP address (#3481).
The complete list of closed tickets can be found here:
http://trac.edgewall.org/query?status=closed&milestone=0.10.1
* install pinger program setuid to make ICMP work; the problem noted by
Heron Gallegos via private mail.
Key changes squid-2.6.STABLE4 to 2.6.STABLE5
* Bug #1776: 2.6.STABLE4 aufs fails to compile if coss isn't enabled
* COSS improvements and cleanups
* Bug #1785: Memory leak in handling of negatively cached objects
* Bug #1780: Incorrect Vary processing in combination with collapsed_forwarding
* Bug #1779: Delay pools fairness when multiple connections compete for bandwidth
* Bug #1796: Assertion error HttpHeader.c:914: "str"
* All comm loops now use the generic event framework
* a number of other minor and cosmetic bugfixes. See the list of squid-2.6.STABLE4 changes and the ChangeLog file for details.
MFSA 2006-67 Running Script can be recompiled
MFSA 2006-66 RSA signature forgery (variant)
MFSA 2006-65 Crashes with evidence of memory corruption (rv:1.8.0.8)
For more info, see http://www.mozilla.com/en-US/firefox/releases/1.5.0.8.html
Mongrel is a fast HTTP library and server for Ruby that is intended
for hosting Ruby web applications of any kind using plain HTTP rather
than FastCGI or SCGI. It is framework agnostic and already supports
Ruby On Rails, Og+Nitro, and Camping frameworks.
Version 7.16.0 (30 October 2006)
Daniel (25 October 2006)
- Fixed CURLOPT_FAILONERROR to return CURLE_HTTP_RETURNED_ERROR even for the
case when 401 or 407 are returned, *IF* no auth credentials have been given.
The CURLOPT_FAILONERROR option is not possible to make fool-proof for 401
and 407 cases when auth credentials is given, but we've now covered this
somewhat more.
You might get some amounts of headers transferred before this situation is
detected, like for when a "100-continue" is received as a response to a
POST/PUT and a 401 or 407 is received immediately afterwards.
Added test 281 to verify this change.
Daniel (23 October 2006)
- Ravi Pratap provided a major update with pipelining fixes. We also no longer
re-use connections (for pipelining) before the name resolving is done.
Daniel (21 October 2006)
- Nir Soffer made the tests/libtest/Makefile.am use a proper variable for all
the single test applications' link and dependences, so that you easier can
override those from the command line when using make.
- Armel Asselin separated CA cert verification problems from problems with
reading the (local) CA cert file to let users easier pinpoint the actual
problem. CURLE_SSL_CACERT_BADFILE (77) is the new libcurl error code.
Daniel (18 October 2006)
- Removed the "protocol-guessing" for URLs with host names starting with FTPS
or TELNET since they are practically non-existant. This leaves us with only
three different prefixes that would assume the protocol is anything but
HTTP, and they are host names starting with "ftp.", "dict." or "ldap.".
Daniel (17 October 2006)
- Bug report #1579171 pointed out code flaws detected with "prefast", and they
were 1 - a too small memory clear with memset() in the threaded resolver and
2 - a range of potentially bad uses of the ctype family of is*() functions
such as isdigit(), isalnum(), isprint() and more. The latter made me switch
to using our own set of these functions/macros using uppercase letters, and
with some extra set of crazy typecasts to avoid mistakingly passing in
negative numbers to the underlying is*() functions.
- With Jeff Pohlmeyer's help, I fixed the expire timer when using
curl_multi_socket() during name resolves with c-ares and the LOW_SPEED
options now work fine with curl_multi_socket() as well.
Daniel (16 October 2006)
- Added a check in configure that simply tries to run a program (not when
cross-compiling) in order to detect problems with run-time libraries that
otherwise would occur when the sizeof tests for curl_off_t would run and
thus be much more confusing to users. The check of course should run after
all lib-checks are done and before any other test is used that would run an
executable built for testing-purposes.
Dan F (13 October 2006)
- The tagging of application/x-www-form-urlencoded POST body data sent
to the CURLOPT_DEBUGFUNCTION callback has been fixed (it was erroneously
included as part of the header). A message was also added to the
command line tool to show when data is being sent, enabled when
--verbose is used.
Daniel (12 October 2006)
- Starting now, adding an easy handle to a multi stack that was already added
to a multi stack will cause CURLM_BAD_EASY_HANDLE to get returned.
- Jeff Pohlmeyer has been working with the hiperfifo.c example source code,
and while doing so it became apparent that the current timeout system for
the socket API really was a bit awkward since it become quite some work to
be sure we have the correct timeout set.
Jeff then provided the new CURLMOPT_TIMERFUNCTION that is yet another
callback the app can set to get to know when the general timeout time
changes and thus for an application like hiperfifo.c it makes everything a
lot easier and nicer. There's a CURLMOPT_TIMERDATA option too of course in
good old libcurl tradition.
Jeff has also updated the hiperfifo.c example code to use this news.
Daniel (9 October 2006)
- Bogdan Nicula's second test case (posted Sun, 08 Oct 2006) converted to test
case 535 and it now runs fine. Again a problem with the pipelining code not
taking all possible (error) conditions into account.
Daniel (6 October 2006)
- Bogdan Nicula's hanging test case (posted Wed, 04 Oct 2006) was converted to
test case 533 and the test now runs fine.
Daniel (4 October 2006)
- Dmitriy Sergeyev provided an example source code that crashed CVS libcurl
but that worked nicely in 7.15.5. I converted it into test case 532 and
fixed the problem.
Daniel (29 September 2006)
- Removed a few other no-longer present options from the header file.
- Support for FTP third party transfers was removed. Here's why:
o The recent multi interface changes broke it and the design of the 3rd party
transfers made it very hard to fix the problems
o It was still blocking and thus nasty for the multi interface
o It was a lot of extra code for a very rarely used feature
o It didn't use the same code as for "plain" FTP transfers, so it didn't work
fine for IPv6 and it didn't properly re-use connections and more
o There's nobody around who's willing to work on and improve the existing
code
This does not mean that third party transfers are banned forever, only that
they need to be done better if they are to be re-added in the future.
The CURLOPT_SOURCE_* options are removed from the lib and so are the --3p*
options from the command line tool. For this reason, I also bumped the
version info for the lib.
Daniel (28 September 2006)
- Reported in #1561470 (http://curl.haxx.se/bug/view.cgi?id=1561470), libcurl
would crash if a bad function sequence was used when shutting down after
using the multi interface (i.e using easy_cleanup after multi_cleanup) so
precautions have been added to make sure it doesn't any more - test case 529
was added to verify.
Daniel (27 September 2006)
- The URL in the cookie jar file is now changed since it was giving a 404.
Reported by Timothy Stone. The new URL will take the visitor to a curl web
site mirror with the document.
Daniel (24 September 2006)
- Bernard Leak fixed configure --with-gssapi-libs.
- Cory Nelson made libcurl use the WSAPoll() function if built for Windows
Vista (_WIN32_WINNT >= 0x0600)
Daniel (23 September 2006)
- Mike Protts added --ftp-ssl-control to make curl use FTP-SSL, but only
encrypt the control connection and use the data connection "plain".
- Dmitriy Sergeyev provided a patch that made the SOCKS[45] code work better
as it now will read the full data sent from servers. The SOCKS-related code
was also moved to the new lib/socks.c source file.
Daniel (21 September 2006)
- Added test case 531 in an attempt to repeat bug report #1561470
(http://curl.haxx.se/bug/view.cgi?id=1561470) that is said to crash when an
FTP upload fails with the multi interface. It did not, but I made a failed
upload still assume the control connection to be fine.
Daniel (20 September 2006)
- Armel Asselin fixed problems when you gave a proxy URL with user name and
empty password or no password at all. Test case 278 and 279 were added to
verify.
Daniel (12 September 2006)
- Added docs/examples/10-at-a-time.c by Michael Wallner
- Added docs/examples/hiperfifo.c by Jeff Pohlmeyer
Daniel (11 September 2006)
- Fixed my breakage from earlier today so that doing curl_easy_cleanup() on a
handle that is part of a multi handle first removes the handle from the
stack.
- Added CURLOPT_SSL_SESSIONID_CACHE and --no-sessionid to disable SSL
session-ID re-use on demand since there obviously are broken servers out
there that misbehave with session-IDs used.
- Jeff Pohlmeyer presented a *multi_socket()-using program that exposed a
problem with it (SIGSEGV-style). It clearly showed that the existing
socket-state and state-difference function wasn't good enough so I rewrote
it and could then re-run Jeff's program without any crash. The previous
version clearly could miss to tell the application when a handle changed
from using one socket to using another.
While I was at it (as I could use this as a means to track this problem
down), I've now added a 'magic' number to the easy handle struct that is
inited at curl_easy_init() time and cleared at curl_easy_cleanup() time that
we can use internally to detect that an easy handle seems to be fine, or at
least not closed or freed (freeing in debug builds fill the area with 0x13
bytes but in normal builds we can of course not assume any particular data
in the freed areas).
Daniel (9 September 2006)
- Michele Bini fixed how the hostname is put in NTLM packages. As servers
don't expect fully qualified names we need to cut them off at the first dot.
- Peter Sylvester cleaned up and fixed the getsockname() uses in ftp.c. Some
of them can be completetly removed though...
Daniel (6 September 2006)
- Ravi Pratap and I have implemented HTTP Pipelining support. Enable it for a
multi handle using CURLMOPT_PIPELINING and all HTTP connections done on that
handle will be attempted to get pipelined instead of done in parallell as
they are performed otherwise.
As a side-effect from this work, connections are now shared between all easy
handles within a multi handle, so if you use N easy handles for transfers,
each of them can pick up and re-use a connection that was previously used by
any of the handles, be it the same or one of the others.
This separation of the tight relationship between connections and easy
handles is most noticable when you close easy handles that have been used in
a multi handle and check amount of used memory or watch the debug output, as
there are times when libcurl will keep the easy handle around for a while
longer to be able to close it properly. Like for sending QUIT to close down
an FTP connection.
This is a major change.
Daniel (4 September 2006)
- Dmitry Rechkin (http://curl.haxx.se/bug/view.cgi?id=1551412) provided a
patch that while not fixing things very nicely, it does make the SOCKS5
proxy connection slightly better as it now acknowledges the timeout for
connection and it no longer segfaults in the case when SOCKS requires
authentication and you did not specify username:password.
Daniel (31 August 2006)
- Dmitriy Sergeyev found and fixed a multi interface flaw when using asynch
name resolves. It could get stuck in the wrong state.
Gisle (29 August 2006)
- Added support for other MS-DOS compilers (desides djgpp). All MS-DOS
compiler now uses the same config.dos file (renamed to config.h by
make). libcurl now builds fine using Watcom and Metaware's High-C
using the Watt-32 tcp/ip-stack.
Daniel (29 August 2006)
- David McCreedy added CURLOPT_SOCKOPTFUNCTION and CURLOPT_SOCKOPTDATA to
allow applications to set their own socket options.
Daniel (25 August 2006)
- Armel Asselin reported that the 'running_handles' counter wasn't updated
properly if you removed a "live" handle from a multi handle with
curl_multi_remove_handle().
Daniel (22 August 2006)
- David McCreedy fixed a remaining mistake from the August 19 TYPE change.
- Peter Sylvester pointed out a flaw in the AllowServerConnect() in the FTP
code when doing pure ipv6 EPRT connections.
Daniel (19 August 2006)
- Based on a patch by Armel Asselin, the FTP code no longer re-issues the TYPE
command on subsequent requests on a re-used connection unless it has to.
- Armel Asselin fixed a crash in the FTP code when using SINGLECWD mode and
files in the root directory.
- Andrew Biggs pointed out a "Expect: 100-continue" flaw where libcurl didn't
send the whole request at once, even though the Expect: header was disabled
by the application. An effect of this change is also that small (< 1024
bytes) POSTs are now always sent without Expect: header since we deem it
more costly to bother about that than the risk that we send the data in
vain.
Daniel (9 August 2006)
- Armel Asselin made the CURLOPT_PREQUOTE option work fine even when
CURLOPT_NOBODY is set true. PREQUOTE is then run roughly at the same place
in the command sequence as it would have run if there would've been a
transfer.
Daniel (8 August 2006)
- Fixed a flaw in the "Expect: 100-continue" treatment. If you did two POSTs
on a persistent connection and allowed the first to use that header, you
could not disable it for the second request.
Daniel (7 August 2006)
- Domenico Andreolfound a quick build error which happened because
src/config.h.in was not a proper duplcate of lib/config.h.in which it
should've been and this was due to the maketgz script not doing the cp
properly.
Firefox 2 is the next generation release of the award-winning Firefox web
browser from Mozilla.
What's New in Firefox 2
* Visual Refresh: Firefox 2's theme and user interface have been updated to
improve usability without altering the familiarity of the browsing
experience.
* Built-in phishing protection: Phishing Protection warns users when they
encounter suspected Web forgeries, and offers to return the user to their
home page. Phishing Protection is turned on by default, and works by checking
sites against either a local or online list of known phishing sites. This
list is automatically downloaded and regularly updated when the Phishing
Protection feature is enabled.
* Enhanced search capabilities: Search term suggestions will now appear as
users type in the integrated search box when using the Google, Yahoo! or
Answers.com search engines. A new search engine manager makes it easier to
add, remove and re-order search engines, and users will be alerted when
Firefox encounters a website that offers new search engines that the user may
wish to install.
* Improved tabbed browsing: By default, Firefox will open links in new tabs
instead of new windows, and each tab will now have a close tab button. Power
users who open more tabs than can fit in a single window will see arrows on
the left and right side of the tab strip that let them scroll back and forth
between their tabs. The History menu will keep a list of recently closed
tabs, and a shortcut lets users quickly re-open an accidentally closed tab.
* Resuming your browsing session: The Session Restore feature restores windows,
tabs, text typed in forms, and in-progress downloads from the last user
session. It will be activated automatically when installing an application
update or extension, and users will be asked if they want to resume their
previous session after a system crash.
* Previewing and subscribing to Web feeds: Users can decide how to handle Web
feeds (like this one), either subscribing to them via a Web service or in a
standalone RSS reader, or adding them as Live Bookmarks. My Yahoo!, Bloglines
and Google Reader come pre-loaded as Web service options, but users can add
any Web service that handles RSS feeds.
* Inline spell checking: A new built-in spell checker enables users to quickly
check the spelling of text entered into Web forms (like this one) without
having to use a separate application.
* Live Titles: When a website offers a microsummary (a regularly updated
summary of the most important information on a Web page), users can create a
bookmark with a "Live Title". Compact enough to fit in the space available to
a bookmark label, they provide more useful information about pages than
static page titles, and are regularly updated with the latest information.
There are several websites that can be bookmarked with Live Titles, and even
more add-ons to generate Live Titles for other popular websites.
* Improved Add-ons manager: The new Add-ons manager improves the user interface
for managing extensions and themes, combining them both in a single tool.
* JavaScript 1.7: JavaScript 1.7 is a language update introducing several new
features such as generators, iterators, array comprehensions, let
expressions, and destructuring assignments. It also includes all the features
of JavaScript 1.6.
* Extended search plugin format: The Firefox search engine format now supports
search engine plugins written in Sherlock and OpenSearch formats and allows
search engines to provide search term suggestions.
* Updates to the extension system: The extension system has been updated to
provide enhanced security and to allow for easier localization of extensions.
* Client-side session and persistent storage: New support for storing
structured data on the client side, to enable better handling of online
transactions and improved performance when dealing with large amounts of
data, such as documents and mailboxes. This is based on the WHATWG
specification for client-side session and persistent storage.
* SVG text: Support for the svg:textpath specification enables SVG text to
follow a curve or shape.
Firefox 2 is the next generation release of the award-winning Firefox web
browser from Mozilla.
What's New in Firefox 2
* Visual Refresh: Firefox 2's theme and user interface have been updated to
improve usability without altering the familiarity of the browsing
experience.
* Built-in phishing protection: Phishing Protection warns users when they
encounter suspected Web forgeries, and offers to return the user to their
home page. Phishing Protection is turned on by default, and works by checking
sites against either a local or online list of known phishing sites. This
list is automatically downloaded and regularly updated when the Phishing
Protection feature is enabled.
* Enhanced search capabilities: Search term suggestions will now appear as
users type in the integrated search box when using the Google, Yahoo! or
Answers.com search engines. A new search engine manager makes it easier to
add, remove and re-order search engines, and users will be alerted when
Firefox encounters a website that offers new search engines that the user may
wish to install.
* Improved tabbed browsing: By default, Firefox will open links in new tabs
instead of new windows, and each tab will now have a close tab button. Power
users who open more tabs than can fit in a single window will see arrows on
the left and right side of the tab strip that let them scroll back and forth
between their tabs. The History menu will keep a list of recently closed
tabs, and a shortcut lets users quickly re-open an accidentally closed tab.
* Resuming your browsing session: The Session Restore feature restores windows,
tabs, text typed in forms, and in-progress downloads from the last user
session. It will be activated automatically when installing an application
update or extension, and users will be asked if they want to resume their
previous session after a system crash.
* Previewing and subscribing to Web feeds: Users can decide how to handle Web
feeds (like this one), either subscribing to them via a Web service or in a
standalone RSS reader, or adding them as Live Bookmarks. My Yahoo!, Bloglines
and Google Reader come pre-loaded as Web service options, but users can add
any Web service that handles RSS feeds.
* Inline spell checking: A new built-in spell checker enables users to quickly
check the spelling of text entered into Web forms (like this one) without
having to use a separate application.
* Live Titles: When a website offers a microsummary (a regularly updated
summary of the most important information on a Web page), users can create a
bookmark with a "Live Title". Compact enough to fit in the space available to
a bookmark label, they provide more useful information about pages than
static page titles, and are regularly updated with the latest information.
There are several websites that can be bookmarked with Live Titles, and even
more add-ons to generate Live Titles for other popular websites.
* Improved Add-ons manager: The new Add-ons manager improves the user interface
for managing extensions and themes, combining them both in a single tool.
* JavaScript 1.7: JavaScript 1.7 is a language update introducing several new
features such as generators, iterators, array comprehensions, let
expressions, and destructuring assignments. It also includes all the features
of JavaScript 1.6.
* Extended search plugin format: The Firefox search engine format now supports
search engine plugins written in Sherlock and OpenSearch formats and allows
search engines to provide search term suggestions.
* Updates to the extension system: The extension system has been updated to
provide enhanced security and to allow for easier localization of extensions.
* Client-side session and persistent storage: New support for storing
structured data on the client side, to enable better handling of online
transactions and improved performance when dealing with large amounts of
data, such as documents and mailboxes. This is based on the WHATWG
specification for client-side session and persistent storage.
* SVG text: Support for the svg:textpath specification enables SVG text to
follow a curve or shape.
Firefox 2 is the next generation release of the award-winning Firefox web
browser from Mozilla.
What's New in Firefox 2
* Visual Refresh: Firefox 2's theme and user interface have been updated to
improve usability without altering the familiarity of the browsing
experience.
* Built-in phishing protection: Phishing Protection warns users when they
encounter suspected Web forgeries, and offers to return the user to their
home page. Phishing Protection is turned on by default, and works by checking
sites against either a local or online list of known phishing sites. This
list is automatically downloaded and regularly updated when the Phishing
Protection feature is enabled.
* Enhanced search capabilities: Search term suggestions will now appear as
users type in the integrated search box when using the Google, Yahoo! or
Answers.com search engines. A new search engine manager makes it easier to
add, remove and re-order search engines, and users will be alerted when
Firefox encounters a website that offers new search engines that the user may
wish to install.
* Improved tabbed browsing: By default, Firefox will open links in new tabs
instead of new windows, and each tab will now have a close tab button. Power
users who open more tabs than can fit in a single window will see arrows on
the left and right side of the tab strip that let them scroll back and forth
between their tabs. The History menu will keep a list of recently closed
tabs, and a shortcut lets users quickly re-open an accidentally closed tab.
* Resuming your browsing session: The Session Restore feature restores windows,
tabs, text typed in forms, and in-progress downloads from the last user
session. It will be activated automatically when installing an application
update or extension, and users will be asked if they want to resume their
previous session after a system crash.
* Previewing and subscribing to Web feeds: Users can decide how to handle Web
feeds (like this one), either subscribing to them via a Web service or in a
standalone RSS reader, or adding them as Live Bookmarks. My Yahoo!, Bloglines
and Google Reader come pre-loaded as Web service options, but users can add
any Web service that handles RSS feeds.
* Inline spell checking: A new built-in spell checker enables users to quickly
check the spelling of text entered into Web forms (like this one) without
having to use a separate application.
* Live Titles: When a website offers a microsummary (a regularly updated
summary of the most important information on a Web page), users can create a
bookmark with a "Live Title". Compact enough to fit in the space available to
a bookmark label, they provide more useful information about pages than
static page titles, and are regularly updated with the latest information.
There are several websites that can be bookmarked with Live Titles, and even
more add-ons to generate Live Titles for other popular websites.
* Improved Add-ons manager: The new Add-ons manager improves the user interface
for managing extensions and themes, combining them both in a single tool.
* JavaScript 1.7: JavaScript 1.7 is a language update introducing several new
features such as generators, iterators, array comprehensions, let
expressions, and destructuring assignments. It also includes all the features
of JavaScript 1.6.
* Extended search plugin format: The Firefox search engine format now supports
search engine plugins written in Sherlock and OpenSearch formats and allows
search engines to provide search term suggestions.
* Updates to the extension system: The extension system has been updated to
provide enhanced security and to allow for easier localization of extensions.
* Client-side session and persistent storage: New support for storing
structured data on the client side, to enable better handling of online
transactions and improved performance when dealing with large amounts of
data, such as documents and mailboxes. This is based on the WHATWG
specification for client-side session and persistent storage.
* SVG text: Support for the svg:textpath specification enables SVG text to
follow a curve or shape.
Changes in 1.3.0:
* All request and response headers are now treated case-insensitively,
per RFC 2616 (bug #1045, bug #4367).
* Values of multiple response headers with the same name are combined
into a comma-separated string per RFC 2616 (bug #1045)
* Generate proper closing boundary for multipart/form-data requests,
per RFC 1521 (bug #4397)
* magic_quotes_runtime directive is switched off when performing the
request since it may break file uploads and chunked responses (bug #4543)
* Response::_readChunked() will finish on zero-length chunk rather than
socket eof (patch from bug #3037)
* Added HTTP_Request::setBody() method, deprecated addRawPostData() due to
misleading name. The request body will be sent with all request methods
except those that explicitly forbid this (e.g. TRACE). Data set via
addPostData() / addFile() will only be sent with POST (see request #4716)
Changes in 1.2.4:
* Notice was raised when processing a response containing secure
cookies (bug #2741)
* Warning was raised when processing a response with empty body and
chunked Transfer-encoding (bug #2792)
* Improved inline documentation on constructor parameters (bug #2751)
Adresses PR pkg/34469 by Martin Wilke
Changes in 1.2.3:
* Added setAttribute() method (backport from HTML_Common2)
* Added possibility to set the charset parameter for htmlspecialchars()
via static HTML_Common::charset() method (see bug #2410)
* Properly document getAttribute() method (bug #5704), fix PHPDoc comments
for several other methods
Changes in 1.2.2:
- fixed bug #3948 (semicolon after case in switch)
- fixed bug #3953 (outdated inline docs for a private function)
- updated some other inline docs for private functions
Adressess PR pkg/34468 by Martin Wilke
- fix badly out of date PLIST for solaris
- add missing response of 'n' to the install.sh script to avoid installing
some xpm's in /usr/share/....
Opera seems to build, install, package, and run ok on solaris 9/sparc now.
talking to ipv4 addresses using ipv6 addresses isn't allowed, which is
the default on NetBSD. Patch to use a v4 socket when talking to an ipv4
ldap server. Fixes my PR 33511.
seamonkey/firefox/sunbird have the same code so make the same patch.
OKed ghen. Bump PKGREVISION.
Changes since 0.9.4:
- Advanced diff support
- InterWiki and InterTrac support
- Improved modularity (database and version control backends as third-party
plugins, with an experimental mysql backend)
- Improved notification system
- Support for spam protection
- WSGI used as web server protocol
- Lots of minor improvements in Wiki syntax, to the Wiki and to the
Ticket subsystem (with exports in CSV or RSS format)
Nvu is a complete Web Authoring System to rival programs like FrontPage
and Dreamweaver. Nvu (which stands for "new view") makes managing a web
site a snap. Now anyone can create web pages and manage a website with
no technical expertise or knowledge of HTML.
* WYSIWYG editing of pages, making web creation as easy as typing a
letter with your word processor.
* Integrated file management via FTP. Simply login to your web site and
navigate through your files, editing web pages on the fly, directly
from your site.
* Reliable HTML code creation that will work with all of today's most
popular browsers.
* Jump between WYSIWYG Editing Mode and HTML using tabs.
* Tabbed editing to make working on multiple pages a snap.
* Powerful support for forms, tables, and templates.
repositories. It generates templatized HTML to present navigable directory,
revision, and change log listings. It can display specific versions of files as
well as diffs between those versions. Basically, ViewVC provides the bulk of the
report-like functionality you expect out of your version control tool, but much
more prettily than the average textual command-line program output.
duplicates process resource limits, which already provide necessary
"safety net" protection against rogue scripts
bump PKGREVISION for this
adressess PR pkg/32007 by "pancake"
also remove --enable-track-vars, since that configure argument
is long gone from PHP
August is a very simple, free HTML editor for the UNIX platform.
It is a non-WYSIWYG editor like Aswedit or Hotdog. It has buttons
to insert standard HTML tags and other common simple text editor
commands.
August is written with the Tcl/TK scripting language and graphical
toolkit. It's distributed as a single script, which means that if
you know Tcl/Tk you can very easily customize August yourself.
(This is old and out-dated but I am loking for something
that will be real easy for children to use.)
Trac-0.10-ja-1 (Oct 17, 2006)
* Based on Trac 0.10 'Zengia'
* Translate messages into Japanese.
* templates/*.cs
* trac/**/*.py
* wiki-default/[A-Z]*
* wiki-macros/*.py
* Add new files or new paragraphs for description our work.
* COPYING.trac-ja
* README.trac-ja
* templates/footer.cs
* trac/About.py
* wiki-default/TracJa
* wiki-default/TracTermsJa
* Change parameters for our distribution.
* MANIFEST.in
* setup.py
* Change default datetime format.
* trac/Timeline.py
* trac/log.py
* trac/util/datefmt.py
* Change treatments for WikiMacros's Help and TracPlugins's Description as
not Unicode binary.
* trac/About.py
* trac/wiki/macros.py
Trac 0.10 'Zengia' (Sep 28, 2006)
http://svn.edgewall.org/repos/trac/tags/trac-0.10
Trac 0.10 contains a great number of new features, improvements and
bug fixes. The following list contains only a few highlights:
* Support for spam protection.
* Advanced diff support.
* InterWiki and InterTrac support.
* Improved notification system.
* WSGI Used as web server protocol.
A more complete list of new features can be found in the RELEASE file.
The complete list of closed tickets can be found here:
http://trac.edgewall.org/query?status=closed&milestone=0.10
from pkgsrc-wip. Thanks to marmfield and obache.
Joomla! is one of the most powerful Open Source Content
Management Systems on the planet. It is used all over
the world for everything from simple websites to complex
corporate applications. Joomla! is easy to install,
simple to manage, and reliable.
Patch provided by Martin Wilke via PR 34339.
0.31 2006-07-11
- Exactly 0.30 but now the Build.PL creates a "traditional"
Makefile.PL. This fixes the problem that the generated "passthrough"
Makefile.PL was requiring Apache::TestMB, because it's available on
my system.
0.30 2006-07-10
- Exactly like 0.29 but does not declare a "build_requires" dependency
on Apache::TestMB. Declaring this dependency causes CPAN.pm (and
probably CPANPLUS) to try and install Apache::Test, which may not
always install cleanly. If you do have it already installed, then it
will be used to run the live tests.
0.29 2006-06-09
- When not running under mod_perl, Apache::Session::Wrapper simply did
not even try to load CGI::Cookie to generate cookies. Patch by Derek
Poon.
- When running under mod_perl 1 without Apache::Request, an exception
was generated when trying to send a cookie.
- Apache::Session::Wrapper now only checks for err_headers_out and
headers_out on the header_object, since this works for both mod_perl
1 and 2, as well as Mason's FakeApache object.
- As of version CGI.pm 3.16, CGI::Cookie has a bake() method, but now
Apache::Session::Wrapper explicitly will not call it, because if
you're not running under mod_perl, it ends up calling print() to
send the cookie header when it is called, which may not be what a
user of this module wants. Patch by Derek Poon.
0.28 2006-05-23
- Allow a session_id parameter to the constructor, to force the use of
a particular existing session.
- Fixed a bug where failing to create a new session was ignored if
allow_invalid_id was true.
- Detect very weird case where tying to tie to Apache::Session
succeeds but the tied hash has no _session_id key. This now throws
an exception.
- Fixed bug when the header_object ->can('header_out') but this method
does not return an object, as with HTML::Mason::FakeApache. Reported
by Hans Dieter.
- The logic to load an appropriate cookie class if the class was
already loaded and an exception had previously been thrown by an
unrelated class.
- Added a way to register session subclass via RegisterClass() and
RegisterFlexClass(), to allow people to use any session subclass
they want without needing explicit support in
Apache::Session::Wrapper.
0.27 not released
- This was a version used internally at Socialtext, but never
released.
0.26 2005-09-20
- Finally should work properly under both mp1 and mp2. Patches and
tests by Daisuke Maki.
- No longer depends on Apache::Cookie or Apache2::Cookie, but it will
use them if it can instead of CGI::Cookie.
0.25 2005-08-14
- Silenced a warning that could occur when using session length
cookies under mod_perl.
0.24 2005-08-01
- Optional parameters for store modules were not handled properly when
using Flex as the session class. Added some tests. Reported by
Gavin Carr.
0.23 2005-07-26
- If two sets of valid parameters for a class shared a parameter, an
error would be thrown if you used the second set, even if it was
complete. Reported by Victor Felix.
0.22 2005-07-18
- Another fix for mod_perl2, this one from Jonas.
0.21 2005-06-20
- The fix for mod_perl2 caused a new cookie to be sent for each
request under mod_perl 1. I love it!
0.20 2005-06-08
- Fix to make getting cookies work under mod_perl2. Reported by
Baldvin Kovacs.
Patch provided by Martin Wilke via PR 34336.
Version: 3.10
- Bug Fix: when copying user from prev request, check that $r->prev
is defined, not just that $r->is_initial_request is true.
Version: 3.09
- POD doc fixes.
- MP2: remove _check_request_req() - this was only necessary when
running under both MP1 and MP2. Package name change eliminates the
need for this.
- test suite converted to Test::More style test suites.
- descriptive test descriptions added
- make login() stash credentials in $r->pnotes("${AuthName}Creds") so
that the login form can access the user-supplied credentials if the
login fails.
- bug fix: use of Apache2::URI::unescape_url() does not handle
'+' to ' ' conversion. This caused problems for credentials
that contain spaces.
- MP2: remove mod_perl features from "use mod_perl2" line. This is
no longer supported by mod_perl2.
- MP2: _get_form_data() - switch to CGI.pm to handle form data (fixes
several form data handling bugs)
- In a subrequest, copy $r->prev->user to $r->user (or r->connection->user
for MP1).
- remove Apache2::AuthCookie::Util - no longer necessary
- multi-valued form fields are now handled properly in POST -> GET conversion
- MP2: require CGI.pm 3.12 or later
Version: 3.08
- fix "authorize user" error log that was missing a debug level check
(thanks Barry)
- fix test cases 3, 6, 18 for Win32
- clean up t/real.t
Version: 3.07
*** mod_perl2 users: THIS RELEASE IS INCOMPATIBLE WITH PAST RELEASES ***
*** If you are running mod_perl2, you must update to at least ***
*** mod_perl 2.0.0 RC5. The mod_perl2 version of AuthCookie has been ***
*** renamed to Apache2::AuthCookie ***
** MP2: RENAME AuthCookie.pm.mp2 to Apache2::AuthCookie.
- MP2: Update module, and tests for mod_perl 2.0.0 RC5. mod_perl2 users
MUST use Apache2::AuthCookie now.
- Require Apache::Test 1.22
- Add support for ${auth_name}SessionTimeout configuration paramter
which will re-issue the ticket with the expires parameter set to the
value of this configuration setting for each request. This is useful for
idle-timeout.
- POD fixes.
- MP2: fix uninitialized warnings if no POST/GET data (RT 11371)
- make sure recognize_user() returns an Apache constant in all cases.
Returns DECLINED in cases where we were returning undef before.
(Thanks Vivek)
- Add support for MS HttpOnly cookie property.
Changes:
Quanta Plus
* Avoid growing quantarc and causing instability.
* Fixed a crash when navigating PHP documents via
"Document Structure"/"Functions"
* Fix Save As behavior
* dd some more special characters to the list
* Fix crash in CSS editor.
* Don't crash when closing a document in VPL mode
* Fix crash when copying to clipboard inside VPL.
* Show the correct column number if tabs are used in the document.
* Only one upload dialog can be visible at any time.
* Do not show Find in Files menu if KFileReplace is not installed.
* Fix a crash when using Close All.
* Allow logging to files outside of project directory - don't send
closing events for untitled, unmodified documents.
* Respect the order of items in the .docrc.
* Fix crash when creating project through slow links.
* Really abort if a remote directory cannot be created.
* Fix automatic updating of closing tags.
* Accept float numbers for length values in the CSS editor
* Make CSS completion work inside style attributes.
* Improve usability of the File Changed dialog.
* Handle correctly the escaped backslashes inside strings.
* Improve mimetype and extension based searching for a DTEP that
can handle the currently opened file.
Kommander
* Add initialization/destroy for Wizard. Use setEnabled() to
enable/disable Finish button.
* Improve the integrated text editor a lot by using the KTextEditor
interface (katepart) for editing Kommnader text. This means syntax
highlighting, improved undo/redo, possibility to have line number
bar, etc.
* Fix crash on exit for the editor.
Rails is a full-stack framework for developing database-backed web
applications according to the Model-View-Control pattern. From the
Ajax in the view, to the request and response in the controller, to
the domain model wrapping the database, Rails gives you a pure-Ruby
development environment. To go live, all you need to add is a
database and a web server.
This package contained several Makefile.am patches but then proceeded to
ignore all of them by touching all of the Makefile.in's. Unfortunately
those patches were there for a reason!
Correctly packages on solaris now.
Changes since 0.9.1:
* Do not convert driver options to strings (#4499)
* Make ActiveWebService::Struct type reloadable
* Fix scaffolding action when one of the members of a structural type has
date or time type
* Remove extra index hash when generating scaffold html for parameters of
structural type #4374 [joe@mjg2.com]
* Fix Scaffold Fails with Struct as a Parameter #4363 [joe@mjg2.com]
* Fix soap type registration of multidimensional arrays (#4232)
* Fix that marshaler couldn't handle ActiveRecord models defined in a
different namespace (#2392).
* Fix that marshaler couldn't handle structs with members of ActiveRecord
type (#1889).
* Fix that marshaler couldn't handle nil values for inner structs (#3576).
* Fix that changes to ActiveWebService::API::Base required restarting of
the server (#2390).
* Fix scaffolding for signatures with :date, :time and :base64 types
(#3321, #2769, #2078).
* Fix for incorrect casting of TrueClass/FalseClass instances (#2633,
#3421).
* Fix for incompatibility problems with SOAP4R 1.5.5 (#2553) [Kent Sibilev]
* Update from LGPL to MIT license as per Minero Aoki's permission. [Marcel
Molina Jr.]
* Rename Version constant to VERSION. #2802 [Marcel Molina Jr.]
* Fix that XML-RPC date/time values did not have well-defined behaviour
(#2516, #2534). This fix has one caveat, in that we can't support
pre-1970 dates from XML-RPC clients.
Changes:
New
- skipping designated URL in spider. Use options to set the spider.
- auto update menu and periodic check for update (Windows and Linux
platform only).
Fix
- the use of new external library caused slower performance of proxy.
Restored to older library.
with small modifications;
- don't change order of find(1)'s command line option.
- adding VARBASE, ZOPE3_GROUP and ZOPE3_USER to BUILD_DEFS.
Most Important Changes Since Zope 3.2
-------------------------------------
- Provided a new component registry API that allows multiple
component registries to be combined more flexibly than before.
See 'zope.component.interfaces.IComponentRegistry' for more
information.
- Greatly simplified local-component registration.
See 'zope.component.interfaces.IComponentRegistry' for more
information.
- Moved many packages out of zope.app to make them easier to use
outside of Zope.
- Change the session credentials plugin to make it configurable
in which fields it looks for the credentials.
- Added a new API for collating text. You can now adapt
a locale to 'zope.i18n.interfaces.ILocales.ICollator'. You can
then use that to sort strings, such as menu entries, in a
locale-specific fashion.
- A new 'zope.annotation.factory' helper function that makes
it easier to create annotations. Also added a README in
'zope.annotation' which explains how to use it.
- Added a more complete set of widgets for fields that use
iterable sources. These widgets now mirror the set provided
by vocabulary-based fields.
- Added a cleaner and more robust API to testbrowser for setting
file-upload data.
- Deprecated several ZCML directives:
* factory
* vocabulary
* content (as an alias to the class directive)
* modulealias
* renderer:renderer
- The 'browser:layer' directive and the 'ILayer' interface
has been deprecated. Registering layers has become obsolete,
layers should be created as interfaces extending
'IBrowserRequest'.
- The 'browser:skin' directive has been deprecated. Skins
should be created as interfaces extending 'IBrowserRequest'
and can be registered using a simple 'utility' directive.
- The 'ISkin' interface has been renamed to 'IBrowserSkinType'.
For a complete list of changes see the 'CHANGES.txt' file.
Makefile-seamonkey.common, modelled after firefox and thunderbird.
www/seamonkey and www/seamonkey-gtk1 test-built by me on i386.
www/seamonkey, www/seamonkey-gtk1, mail/thunderbird, mail/thunderbird-gtk1
and time/sunbird by <oster> on amd64, thanks!
Fixes PR pkg/34622
Changes to squid-2.6.STABLE4 (Sep 22 2006)
- Bug #1736: Missing Italian translation of ERR_TOO_BIG error page
- Windows port enhancement: added native exception handler with signal emulation
- Fix the %un log_format tag again. Got broken in 2.6.STABLE2
- Fix Squid crash when using %a in ERR_INVALID_REQ and ERR_INVALID_URL error messages.
- Bug #212: variable %i always 0.0.0.0 in many error pages
- Bug #1708: Ports in ACL accepts characters and out of range
- Bug #1706: Squid time acl accepts invalid time range.
- Fix another harmless fake_auth compiler warning on gcc 4.1.1 x86
- Fix an harmless snmp_core.c compiler warning on gcc 4.1.1 x86
- Bug #1744: squid-2.6.STABLE3 - fakeauth_auth crashing on certain requests
- Bug #1746: Harmless off by one overrun in ncsa_auth md5 password validation
- Bug #1598: start_announce cannot be disabled
- Periodically flush cache.log to disk when "buffered_logs on" is set
- Numerous COSS improvements and fixes
- Windows port: merge of MinGW support
- Windows port: Merged Windows threads support into aufs
- Bug #1759: Windows port cachemgr.cgi attempts to write to file system root directory
- Numerous portability fixes
- Various minor statistics cleanup on 64-bit hosts with more than 4GB of memory
- Bug #1758: HEAD on ftp:// URLs always returned 200 OK.
- Bug #1760: FTP related memory leak
- Bug #1770: WCCP2 weighted assignment
- Bug #1768: Redundant DNS PTR lookups
- Bug #1696: Add support for wccpv2 mask assignment
- Bug #1774: ncsa_auth support for cramfs timestamps
- Bug #1769: near-hit and filedescriptor usage missing in SNMP MIB
- Bug #1725: cache_peer login=PASS documentation somewhat confusing
- Bug #1590: Silence those ETag loop warnings
- Bug #1740: Squid crashes on certain malformed HTTP responses
- Bug #1699: assertion failed: authenticate.c:836: "auth_user_request != NULL"
- Improve error reporting on unexpected CONNECT requests in accelerator mode
- Cosmetic change to increase cache.log detail level on invalid requests
- Bug #1229: http_port and other directives accept invalid ports
- Reject http_port specifications using both transparent and accelerator options
- Cosmetic cleanup to not dump stacktraces on configuration errors
the corresponding buildlinks have to be present as well.
Get the option libwww was built with to decide whether to do that.
Inspired by and fixing PR 28412.
The SeaMonkey project is a community effort to deliver production-quality
releases of code derived from the application formerly known as "Mozilla
Application Suite". Whereas the main focus of the Mozilla Foundation is on
Mozilla Firefox and Mozilla Thunderbird, our group of dedicated volunteers
works to ensure that you can have "everything but the kitchen sink" (a web
browser, mail client, HTML composer, address book, IRC client and calendar),
and have it stable enough for corporate use.
This packages provides the necessary infrastructure for downloading nightly
builds of various Mozilla products (seamonkey, thunderbird, firefox).
This release fixes several security vulnerabilities as reported in
Adobe Vulnerability APSB06-11. Multiple input validation errors
have been identified that could lead to the potential execution of
arbitrary code, such as that delivered from a remote location via
the user's Web browser. Updating is strongly recommended.
MFSA 2006-64 Crashes with evidence of memory corruption (rv:1.8.0.7)
MFSA 2006-63 JavaScript execution in mail via XBL
MFSA 2006-61 Frame spoofing using document.open()
MFSA 2006-60 RSA Signature Forgery
MFSA 2006-59 Concurrency-related vulnerability
MFSA 2006-57 JavaScript Regular Expression Heap Corruption
For more info, see http://www.mozilla.org/projects/seamonkey/releases/seamonkey1.0.5/
===============
Epiphany 2.16.0
===============
Contributors:
Johannes Berg, Wouter Bolsterlee, Luca Ferretti, Crispin Flowerday,
Thomas de Grenier de Latour, Michael Hofmann, Nguyễn Thái Ngọc Duy,
Kjartan Maraas, Victor Osadci, Christian Persch, Frederic Peters,
Celso Pinto, Jean-François Rameau, René Stadler, Diego Escalante Urrelo
Documentation:
Victor Osadci
Translations:
Ales Nyakhaychyk (be), Rostislav "zbrox" Raykov (bg), Progga (bn_IN),
Progga (bn), Gil Forcada (ca), Jakub Friedl (cs), Hendrik Richter (de),
"Last-Translator: Mindu Dorji\n" (dz), Kostas Papadimas (el),
Crispin Flowerday (en_GB), Francisco Javier F. Serrador (es),
Ivar Smolin (et), Iñaki Larrañaga Murgoitio (eu), Ilkka Tuohela (fi),
Robert-André Mauchin (fr), Ignacio Casal Quinteiro (gl), Ankit Patel (gu),
Rajesh Ranjan (hi), Gabor Kelemen (hu), Mohammad DAMT (id),
Satoru SATOH (ja), Vladimer Sichinava (ka), Changwoo Ryu (ko),
Žygimantas Beručka (lt), Raivis Dejus (lv), Fanomezana Rajaonarisoa (mg),
Jovan Naumovski (mk), Ani Peter (ml), Badral (mn), Rahul Bhalerao (mr),
Kjartan Maraas (nb), Shyam Krishna Bal (ne), Reinout van Schouwen (nl),
Åsmund Skjæveland (nn), Subhransu Behera (or), Artur Flinta (pl),
Licio Fernando Nascimento da Fonseca (pt_BR), Duarte Loreto (pt),
Nickolay V. Shmyrev (ru), Matic Žgur (sl), Laurent Dhima (sq),
Daniel Nylander (sv), Theppitak Karoonboonyanan (th), Baris Cicek (tr),
Maxim Dziumanenko (uk), Clytie Siddall (vi), Funda Wang (zh_CN),
Woodman Tuen (zh_HK, zh_TW)
Documentation translations:
Francisco Javier F. Serrador (es), Inaki Larranaga (eu),
Christophe Bliard (fr), Takeshi AIHANA (ja), Nickolay V. Shmyrev (ru),
Daniel Nylander (sv), Maxim Dziumanenko (uk)
================
Epiphany 2.15.92
================
Contributors to this release:
Kjartan Maraas, Christian Persch, Jean-François Rameau.
Translations updates:
Rostislav "zbrox" Raykov (bg), Gil Forcada (ca), Hendrik Richter (de),
Mindu Dorji (dz), Kostas Papadimas (el), Francisco Javier F. Serrador (es),
Ivar Smolin (et), Ilkka Tuohela (fi), Ankit Patel (gu), Gabor Kelemen (hu),
Mohammad DAMT (id), Satoru SATOH (ja), Changwoo Ryu (ko),
Žygimantas Beručka (lt), Jovan Naumovski (mk), Badral (mn),
Rahul Bhalerao (mr), Kjartan Maraas (nb), Reinout van Schouwen (nl),
Subhransu Behera (or), Artur Flinta (pl), Nickolay V. Shmyrev (ru),
Matic Žgur (sl), Daniel Nylander (sv), Theppitak Karoonboonyanan (th),
Baris Cicek (tr), Maxim Dziumanenko (uk), Clytie Siddall (vi),
Funda Wang (zh_CN).
================
Epiphany 2.15.91
================
Changes:
* Spell check support using the gecko 'spellchecker' extension.
No corrections context menu or language switching yet. The default
dictionary is based on applicable locale names.
* Add page security info dialogue from Certificates extension.
* Drop libgnomeprint[ui] and use gtk printing. Add our options in
a custom tab in the print dialogue. Print settings and page setup
persist now.
* Add methods to EphyNode to set typed properties. This change improves the
Python API so it should be easy now to play with bookmarks.
Add https and ftp local bookmarks. Based on a patch by Celso Pinto,
bug #330679.
Bug fixes:
* Misc fixes: #337913, #312869, #345934, #346662, #339548, #347022,
#344848, #343592.
* Add a way to turn off password remembering. Bug #332374.
* Don't crash when adding zeroconf bookmarks while bookmarks are locked
down. Bug #341379.
* Fix middle-click and ctrl-enter in the location entry autocompletion
drop-down. Bug #345934, based on a patch by johannes@sipsolutions.net.
* Make the crash recovery dialog appear on the taskbar.
Fixes bug #345010.
* copy history over when opening link in new tab/win using
context menu. Fixes bug #340742, patch by René Stadler.
* Don't crash on error from zeroconf bookmarks. Fixes bug #343922.
* Don't set cookies from favicon downloads. Bug #337835.
* Allow cookie list to be sorted. (fixes#337845)
* Fix crash when moving zoom widget on toolbar (#338682)
* Display the find bar for "Find Next" and "Find Previous"
if it wasn't visible already. Entry focus is handlded
with care so that use cases like incremental search work
as expected. Fixes bug #333020.
* Remove Shift+Ctrl+T accelerator, it was pressed accidentally
too often and people would lose their toolbars. Bug #328783.
Documentation:
* Manpage update from Victor Osadci.
Contributors to this release:
Johannes Berg, Nguyễn Thái Ngọc Duy, Luca Ferretti,
Crispin Flowerday, Victor Osadci, Christian Persch,
Frederic Peters , Celso Pinto, Jean-François Rameau,
René Stadler, Diego Escalante Urrelo.
Documentation translations:
Francisco Javier F. Serrador (es), Daniel Nylander (sv), Vitaly Kormilov (ru).
Translations:
Ales Nyakhaychyk (be), Rostislav "zbrox" Raykov (bg), Gil Forcada (ca),
Jakub Friedl (cs), Hendrik Richter (de), Mindu Dorji (dz),
Kostas Papadimas (el), Crispin Flowerday (en_GB),
Francisco Javier F. Serrador (es), Priit Laes (et),
Iñaki Larrañaga Murgoitio (eu), Ilkka Tuohela (fi),
Christophe Merlet (RedFox) (fr), Ankit Patel (gu), Satoru SATOH (ja),
Changwoo Ryu (ko), Jovan Naumovski (mk), Øivind Hoel (nb),
Reinout van Schouwen (nl), Daniel Nylander (sv),
Theppitak Karoonboonyanan (th), Maxim Dziumanenko (uk), Funda Wang (zh_CN).
===============
Epiphany 2.15.4
===============
No news available.
===============
Epiphany 2.15.3
===============
No news available.
===============
Epiphany 2.15.2
===============
NOTE: This release drops support for mozilla 1.7. Only Gecko versions 1.8
(firefox >= 1.5 and xulrunner >= 1.8) and trunk are now supported.
Contributors to this release:
Wouter Bolsterlee, Thomas de Grenier de Latour, Michael Hofmann,
Christian Persch and Celso Pinto
Documentation:
Victor Osadci
Translations:
Rostislav "zbrox" Raykov (bg), Francisco Javier F. Serrador (es),
Ivar Smolin (et), Ankit Patel (gu), Fanomezana Rajaonarisoa (mg),
Øivind Hoel (nb) and Clytie Siddall (vi)
===============
Epiphany 2.15.1
===============
No news available.
Django is a high-level Python Web framework that encourages rapid development
and clean, pragmatic design. Django was designed to make common Web-development
tasks fast and easy.
2005-09-25 Ville Skyttä <scop@FreeBSD.org>
* Release 3.0.6.
* README: CVS home page has moved to http://www.nongnu.org/cvs/
2005-08-26 Ville Skyttä <scop@FreeBSD.org>
* cvsweb.cgi: Allow the "content-type" CGI param to contain "+".
[Submitted by: <charles.buysschaert@advalvas.be>]
2005-06-19 Ville Skyttä <scop@FreeBSD.org>
* cvsweb.conf: Spelling fixes.
[Submitted by: Zafer Aydogan <zafer@gmx.org>,
Jonathan Noack <noackjr@alumni.rice.edu>]
2005-05-06 Ville Skyttä <scop@FreeBSD.org>
* cvsweb.cgi (printLog): Improve presentation of the "Diff to ..."
lines, thanks to Jerry Nairn for pointing this out.
2005-04-11 Ville Skyttä <scop@FreeBSD.org>
* cvsweb.cgi (human_readable_diff): Try harder to output sane
revision numbers when rcsdiff produced no output.
[Submitted by: Jerry Nairn <jpnairn@gmail.com>,
Jon Noack <noackjr@alumni.rice.edu> (modified)]
Thu Jul 27 04:53:01 CEST 2006 mikulas:
Fixed pagedown and search bugs in braille terminal introduced in
links-2.1pre20
Sun Jul 16 16:35:54 cet 2006 mikulas:
Link to "" redirects to current file rather than current directory
(fixes some forms)
Sun Jul 16 00:08:30 cet 2006 mikulas:
Better ftp directory parsing (process correctly file names starting with
year)
Sat Jul 15 16:37:36 MET 2006 user:
Bigger default textarea
Mon Jul 10 22:53:09 MET DST 2006 mikulas:
Use pkg-config to search for libpng and pcre
Tue Jun 27 23:50:43 cet 2006 mikulas:
Fixed display of multiple consecutive spaces when searching
Tue Jun 27 23:14:35 cet 2006 mikulas:
View as space when searching
Sun Jun 18 16:11:57 MET 2006 user:
Command "kill background connections" aborts also keepalive connections
Sat Jun 17 21:43:01 cet 2006 mikulas:
Removed SDL support until someone fixes it.
Remaining bugs:
palette not installed with 256-color svgalib support
drawing doesn't synchronize with softcursor (seen on svgalib)
stupid keyboard handling (SDL has the ability to query
operating system keymap and translate keys to unicode
but this driver didn't use it)
doesn't support virtual devices with Alt-1 ... Alt-0, like
svgalib and framebuffer
reportedly crashes with sdl-1.2.10
If you want SDL support continued, take file sdl.c from previous
version of links, fix the above issues and resubmit it.
Sat Jun 17 21:08:04 cet 2006 mikulas:
Fixed exponential memory consumption with table cell colspan/rowspan
Sat Jun 17 20:30:49 cet 2006 mikulas:
Do not try to interpret <script src=...> if server returns HTTP error
Sat Jun 10 23:52:00 cet 2006 mikulas:
Decode %AB sequences in position tags
Fri Jun 9 18:32:55 cet 2006 mikulas:
Accept broken meta refresh tags (fixes www.seznam.cz)
Fri Jun 9 02:14:42 MET 2006 user:
Shift-Q exits without question
Sat Jun 3 21:47:19 cet 2006 mikulas:
Fixed a bug that <body onload=...> was not processed when there were no
other scripts on that page
Sat Jun 3 19:31:35 CEST 2006 mikulas:
Fixed crash in javascript regular expressions
Wed May 31 18:25:32 CEST 2006 mikulas
Fixed mouse in Cygwin
Allowed to run in xterm or rxvt in Cygwin
Changes since 1.3.21:
Galeon 2.0 is now formally out. So we don't need to tell you how 1.3.x
is actually stable anymore. :-)
2.0.1 "Look what we found."
- Works with Mozilla 1.7.5+, Seamonkey 1.0+, Firefox 1.0.x and 1.5+, and
xulrunner 1.8+.
- Find toolbar ported from Epiphany. TypeAheadFind now works properly
with firefox.
- Bug fixes: 325501, 322668, 326813.
2.0.0 "One for the road."
- Works with mozilla 1.7.5+, 1.8a3 and up; Firefox 1.0.x and 1.5
- Embedded http error message pages. (If mozilla support them)
- Security Device Manager button in security prefs.
- Delete key works in Personal Data Manager.
- Support for multimedia keyboard keys like Back and Forward.
- Other bug fixes. (http://tinyurl.com/7zqb7)
flup is a collection of modules for the Python Web Server Gateway
Interface, including support for AJP 1.3, FastCGI and SCGI. It also
offers a basic middleware.
config.layout file instead of CONFIGURE_ARGS, to avoid defining things
twice. No actual change, since the paths are still the same.
Added all necessary variables to BUILD_DEFS, as reported by pkglint.
HTTP::Lite is a stand-alone lightweight HTTP/1.1 implementation
for perl. It is not intended as a replacement for the fully-features
LWP module. Instead, it is intended for use in situations where
it is desirable to install the minimal number of modules to achieve
HTTP support, or where LWP is not a good candidate due to CPU
overhead, such as slower processors. HTTP::Lite is also significantly
faster than LWP.
This release address a series of locally exploitable security problems
discovered since PHP 4.4.3. All PHP users are encouraged to upgrade to this
release as soon as possible.
This release provides the following security fixes:
* Added missing safe_mode/open_basedir checks inside the error_log(),
file_exists(), imap_open() and imap_reopen() functions.
* Fixed overflows inside str_repeat() and wordwrap() functions on 64bit systems.
* Fixed possible open_basedir/safe_mode bypass in cURL extension.
* Fixed overflow in GD extension on invalid GIF images.
* Fixed a buffer overflow inside sscanf() function.
* Fixed memory_limit restriction on 64 bit system.
Major changes compared to Horde 3.1.2 are:
* Security Fixes
- Closed an XSS problem in index.php and improved protection against
phishing attempts.
* Bugfixes and improvements
- Added Kolab group ACL support.
- Improved import of date and time fields.
- Fixed synchronization support.
- Updated Catalan, German and Slovenian translations.
The full list of changes (from version 3.1.2) can be viewed here:
http://cvs.horde.org/diff.php/horde/docs/CHANGES?r1=1.515.2.252&r2=1.515.2.261&ty=h
to fix https:// URLs broken with update of security/p5-IO-Socket-SSL
to 0.997 - behaviour was a null socket object returned in LWP::Agent
which was a joy to track down. Remember: "hidden perl dependencies
can expose you to perl code which may make your eyes bleed"
RFC 2865 RADIUS Servers.
Features:
* Supports popular RADIUS Servers including OpenRADIUS, FreeRADIUS and
commercial servers.
* Distributed Authentication Cache using apr_memcache.
* Local Authentication Cache using DBM.
* Uses standard HTTP Basic Authentication, unlike mod_auth_radius which uses
cookies for sessions.