0.6.6.6 -- 20020603 + Solaris porting
+ Sparc architecture support even for all other OSes
+ Windows 9X porting (developed by tavi)
+ Increased the speed of arp storm under windows (developed by tavi)
+ Added the ability to bind a port on which ettercap
forwards the sniffed trafic (press 'B' from the sniffing interface)
+ The -H option now supports range ip
(i.e. 192.168.1-5.10-20,30-40,50,100-150)
+ NEW PLUGIN:
- lamia (become root of a switches spanning tree)
+ Windows installer now have a nice splash screen ;)
+ Updated the passive OS fingerprint database (825 records)
!! Fixed the pthread_join problem under MacOSX
!! Fixed the -w options (openssl path related bug)
!! Fixed the conflicting options -Y and -a
!! Fixed the FindIface function under BSD
0.6.5 -- 20020423 + Windows (CYGWIN) porting
+ Dumping to tcpdump file format is now supported (-Y option)
+ New OffLine sniffing from tcpdump like files (-T option)
+ Sniffing from command line now capture UDP+TCP packet by default
- Changed the -t (--linktype option) to -g
+ Added the -t (--proto option) to sniff only that protocol in simple mode
+ Logging engine doesn't log the same user/pass/ip twice (as requested by Gushterul)
+ Under *BSD and MacOSX ettercap now uses only one bpf
+ Added the -J options (onlyposion) to allow multitarget arp sniffing
+ USER and PASS may have a length of 50 chars
+ NEW PLUGIN :
- roper (Tries to stop ISAKMP for IPSEC traffic)
+ NEW password collector for:
- QUAKE 3 (rcon command) (developed by LnZ)
- ICQ v7 (developed by LnZ)
- MSN (the pass is an MD5 hash)
- YMSG (the pass in in UNIX MD5 format) (as requested by tavi)
+ DISSECTORS enhanced: HTTPS - IMAP - NAPSTER (opennap) - IRC
+ PLUGIN enhanced:
- leech (now it rearps the victim after isolation)
+ Updated the passive OS fingerprint database (762 records)
+ Updated the active OS fingerprint database
nmap-os-fingerprints,v 1.77 2002/03/20 05:42:48 fyodor
+ DOCUMENTATION translated in Polish and Dutch
+ Added the 'cvs' target to the Makefile
!! Fixed an ntohs() problem in the phantom plugin
!! Fixed a bug in the SMB dissector dealing with unicode user and password
!! Better handling of CTRL+C
!! Fixed a bug in doppleganger
!! Fixed a bug the the dlsym on OpenBSD 3.0 (plugin related)
!! Fixed the visualization of password with length > 13
!! Fixed a bug in the handling of debug file
!! Fixed the "not scrolling" JOINED visualization
Changes :
Net::SMTP - Use Authen::SASL to do auth
Net::SMTP - Minor change to address sanitize code, mainly to allow <>
Net::FTP - Minor change to pattern to extract unique filename from
server response
bugs discoverd in version 0.9.3 including these four potential
security problems:
- The SMB dissector could potentially dereference a NULL pointer in two cases.
- The X11 dissector could potentially overflow a buffer while parsing keysyms.
- The DNS dissector could go into an infinite loop while reading a malformed
packet.
- The GIOP dissector could potentially allocate large amounts of memory.
programmable, interactive system well-suited to the construction of
text-based adventure games, conferencing systems, and other collaborative
software. Provided by Ben Collver <collver@linuxfreemail.com>.
Together with the previous commits, this closes his PR pkg/13073.
library, and socks5's shared library is renamed to prevent packages from
picking it up by accident (so all 11 packages which respect USE_SOCKS
currently always link against a static socks library).
Update supplied by David Rankin (to version 1.5.2) in pkg/15642
further updated to 1.5.3.1 by me.
Changes since the old umich version (and netatalk-asun) are numerous
bug fixes, cleanups and new features and its actively being maintained.
User visible changes include:
- enable case insensitive fnmatch(3)ing for hostname globs in ftpusers(5)
- add 'denyquick' ftpd.conf(5) keyword
- add 'private' ftpd.conf(5) keyword
- use "advertise" in docco
User visible fixes:
- reject SIZE requests for ASCII files > 10KB long
- fixes for mlsd/mlst standards conformance
- fix passive transfers for various web browsers
- various glob(3) fixes
- don't log xferlog-style entries if the transfer didn't start
- fix skey password challenge
- don't try and use the motd directive if it's not set
GNet is a simple network library. It is written in C, object-oriented,
and built upon GLib. It is intended to be small, fast, easy-to-use,
and easy to port. GNet comes with documentation and examples.
rsync 2.5.5 "Snowy River" (2 April 2002)
ENHANCEMENTS:
* With --progress, when a transfer is complete show the time taken;
otherwise show expected time to complete. (Cameron Simpson)
* Make "make install-strip" works properly, and "make install"
accepts a DESTDIR variable for help in building binary packages.
(Peter Breitenlohner, Greg Louis)
* If configured with --enable-maintainer-mode, then on receipt of
a fatal signal rsync will try to open an xterm running gdb,
similarly to Samba's "panic action" or GNOME's bug-buddy.
(Martin Pool)
BUG FIXES:
* Fix situation where failure to fork (e.g. because out of process
slots) would cause rsync to kill all processes owned by the
current user. Yes, really! (Paul Haas, Martin Pool)
* Fix test suite on Solaris. (Jos Backus, Martin Pool)
* Fix minor memory leak in socket code. (Dave Dykstra, Martin
Pool.)
* Fix --whole-file problem that caused it to be the default even
for remote connections. (Martin Pool, Frank Schulz)
* Work around bug in Mac OS X mkdir(2), which cannot handle
trailing slashes.
<http://www.opensource.apple.com/bugs/X/BSD%20Kernel/2734739.html>
(Martin Pool)
* Improved network error handling. (Greg A. Woods)
interface as well as with others. If you're using "pppd" and want to be
able to use trafshow to see what's going on on this interface,
you want to update.
Bumb PKGREVISION
ftp.proxy is a proxy server for a subset of the file tranfer protocol
described in RFC 959. It forwards traffic between a client and a
server without looking too much if both hosts do real FTP. The FTP
server can be either given on the command line or supplied by the
client.
It starts from inetd(8).
number rollbacks)
- wildcards bug fixed
- AA bit for class ANY bug fixed
- minor coredumps with really broken zones in zonec fixed
- linux & SunOS port
- New translation : norwegian. Contributed by Kurt Inge Sm\xe5dal /
EasyISP.org <kurt@easyisp.org> .
- The server now compiles and runs on OpenBSD/Sparc64 and HPUX.
- Minor fixes and cleanups were made.
- The good'ol poweredby.jpg logo has been replaced by pure-ftpd.png, the
new official logo contributed by Gabriele Vinci <gabriele@pronto.it> .
Based on changes by Dawid Szymanski <dawszy@arhea.net> in PR 16585
Upclient is a program that keeps track of your server
uptime, and lets you compare it with the uptime of other
(similar) hosts. It consists of two parts, a client- and a
serverpart. The client runs on your server and sends the
uptime every few minutes to the server. The server
collects all data in a table on this site.
Package re-added after the service formerly offered by uptimes.net
is now again online as http://www.wonko.com/
Upclient is a program that keeps track of your server
uptime, and lets you compare it with the uptime of other
(similar) hosts. It consists of two parts, a client- and a
serverpart. The client runs on your server and sends the
uptime every few minutes to the server. The server
collects all data in a table on this site.
Package re-added after the service formerly offered by uptimes.net
is now again online as http://www.wonko.com/
WHAT'S NEW IN Samba 2.2.4 - 2nd May 2002
=========================================
This is the latest stable release of Samba. This is the version that all
production Samba servers should be running for all current bug-fixes.
There have been several fixes and internal enhancements which include:
* More/better SPOOLSS printing functionality for Windows
NT/2k/XP clients.
* Several fixes relating to serving PC database files such
as (Access and FoxPro) from a Samba file share.
* Several improves in Samba's VFS layer which can be seen
in the inclusion of a "Recycle Bin" vfs module. See
examples/VFS/README for more details on this.
* Addition of a tool (tdbbackup) for backup/restore of Samba's
tdb's
* Continued improvements to winbind for greater scalability
and stability
* Several fixes related to Samba's MS-DFS support
* Rpcclient's various printer commands now work (again)
New/Changed parameters in 2.2.4
--------------------------------
For more information on these parameters, see the man pages for
smb.conf(5).
Added/changed parameters
------------------------
* csc policy
* inherit acls
* nt status support
* lock spin count
* lock spin time
* pid directory
* winbind use default domain
Depreciated parameters
----------------------
The following parameters have been marked as depreciated
and will be removed in Samba 3.0
* postscript
* printer driver
* printer driver file
* printer driver location
Removed Parameters
------------------
none
Changes in 2.2.4
----------------
See the cvs log for SAMBA_2_2 for more details
1) added -c option to smbpasswd
2) reworked smbpasswd internal command line option parsing
3) small various bug fixes to experimental pdb_tdb.c
4) Enforce spoolss RPCs based on the access granted at PrinterOpen()
5) Added missing access checks to [add/delete/set]form
6) Compile fixes for pam_smbpass
7) fix smbd crash when netbios session request fails from
spoolss_connect_to_client().
8) fixed logic bug that prevent SetPrinter() from storing devmode
9) Removed extra get_printer_snum() calls from set_printer_hnd_name()
10) fix joining domain on big endian machine when using -U to smbpasswd
11) allow command line arg to override smb.conf log level
12) continue to retry to register 1b name with wins server if there is an old IP there
13) fix smbclient print crash bug
14) 9x pnp fix when the config file and driver file are different
15) force testparm to print the correct value for log level
16) fix swat to show full log level info
17) fix server GetPrinterData() fields to be more sensible
18) fix logic error in SetPrinterDataEx()
19) Only set smb_read_error if not already set
20) Fix string returns that require unicode
21) Merge of printing performance fixes from appliance
22) lpq parsing fixes
23) Back port tridge's xcopy /o fix from HEAD
24) Fix the printer change notify code (unfinished)
25) Patch for Domain users not showing up
26) Fixed SetPrinterData(magic key) to support zero length DEVMODE
27) Ensure that all methods of looking up and connecting to DC's work
using identical logic.
28) Merge in the mutex code to stop multiple domain logon failure
29) Ignore 0/0 lock
30) Fix winbindd to respect command line debuglevel as nmbd/smbd
31) Update with tdbbackup from HEAD
32) Fix for typo on solaris nss
33) Merge in the locking changes from HEAD
34) Added POSIX ACL layer into the vfs
35) Fix the returning of domain enum
36) Fix the generation of the MACHINE.SID file into the secrets.tdb.
37) Enable test for -rdynamic when building binaries
38) Remove the "stat open" code - make it inline
39) Fix the mp3 rename bug
40) Fix for Explorer DFS problems on older Windows 9X machines
41) implement OpenPrinter() opnum == 0x01
42) Matched W2K *insane* open semantics....
43) small fix that will prevent the "failed to marshall
R_NET_SAMLOGON" message in the logs
42) don't do checking of local passdb in smbpasswd if using -r option
43) fix "smbpasswd -j DOMAIN -r * -U Admin%XXXX" so that it doesn't
try to connect to a server named '*'
44) merge rpcclient code from HEAD
45) Ensure MACHINE.SID update done before child spawns
46) Fix the bad path errors for mkdir so mkdir \a\b\c\d works
47) Removed --with-vfs - always built if available
48) Fixed psec for 2.2
49) Fixed the handle leak in the connection management code
50) fix disable spoolss after the switch to nt status codes
51) Added Shirish's client side caching policy change
52) Honor the specversion when parsing the the DEVICEMODE
53) fix parsing bug when DEVICEMODE's private data does not end
on a 4 byte boundary
54) do not idle an smbd when there is an open pipe
55) when a new driver is added to a Samba server, cycle through
all printers and bump the change_id for each one bound to the driver
56) allow smbclient to work with a FIFO as well (needed for KDE
ioslave)
57) various updates to pdb_nisplus.c
58) many small documentation updates
59) removed many compiler warnings
Known Bugs
----------
* Under certain conditions when serving the MS Access 2000
executable file and an Access database from a Samba share,
it is possible to experience data corruption. This pug does
does occur when the database is served from a Samba file share
but the Access *.exe is stored on the client's local file system.
The exact reason for this bug is unknown at this time.
--- 9.2.1 released ---
1271. [port] win32: a make file contained absolute version specific
references.
1269. [bug] Missing masters clause was not handled gracefully.
[RT #2703]
1244. [bug] Receiving a TCP message from a blackhole address would
prevent further messages being received over that
interface.
1178. [bug] Follow and cache (if appropriate) A6 and other
data chains to completion in the additional section.
--- 9.2.1rc2 released ---
1240. [bug] It was possible to leak zone references by
specifying an incorrect zone to rndc.
1239. [bug] Under certain circumstances named could continue to
use a name after it had been freed triggering
INSIST() failures. [RT #2614]
1238. [bug] It is possible to lockup the server when shutting down
if notifies are being processed. [RT #2591]
1237. [bug] nslookup: "set q=type" failed.
1236. [bug] dns_rdata{class,type}_fromtext() didn't handle non
NULL terminated text regions. [RT #2588]
1232. [bug] unix/errno2result() didn't handle EADDRNOTAVAIL.
1231. [port] HPUX 11.11 recvmsg() can return spurious EADDRNOTAVAIL.
1230. [bug] isccc_cc_isreply() and isccc_cc_isack() were broken.
1229. [bug] named would crash if it received a TSIG signed
query as part of an AXFR response. [RT #2570]
1228. [bug] 'make install' did not depend on 'make all'. [RT #2559]
1227. [bug] dns_lex_getmastertoken() now returns ISC_R_BADNUMBER
if a number was expected and some other token was
found. [RT#2532]
1222. [bug] Specifying 'port *' did not always result in a system
selected (non-reserved) port being used. [RT #2537]
1221. [bug] Zone types 'master', 'slave' and 'stub' were not being
compared case insensitively. [RT #2542]
1218. [bug] Named incorrectly returned SERVFAIL rather than
NOTAUTH when there was a TSIG BADTIME error. [RT #2519]
1216. [bug] Multiple server clauses for the same server were not
reported. [RT #2514]
1215. [port] solaris: add support to ifconfig.sh for x86 2.5.1
1214. [bug] Win32: isc_file_renameunique() could leave zero length
files behind.
1212. [port] libbind: 64k answer buffers were causing stack space
to be exceeded for certian OS. Use heap space instead.
1211. [bug] dns_name_fromtext() incorrectly handled certain
valid octal bitlabels. [RT #2483]
1210. [bug] libbind: getnameinfo() failed to lookup IPv4 mapped /
compatible addresses. [RT #2461]
1208. [bug] dns_master_load*() failed to log a error message if
an error was detected when parsing the ownername of
a record. [RT #2448]
--- 9.2.1rc1 released ---
1207. [bug] libbind: getaddrinfo() could call freeaddrinfo() with
an invalid pointer.
1206. [bug] SERVFAIL and NOTIMP responses to an EDNS query should
trigger a non-EDNS retry.
1205. [bug] OPT, TSIG and TKEY cannot be used to set the "class"
of the message. [RT #2449]
1204. [bug] libbind: res_nupdate() failed to update the name
server addresses before sending the update.
1201. [bug] Require that if 'callbacks' is passed to
dns_rdata_fromtext(), callbacks->error and
callbacks->warn are initialized.
1200. [bug] Log 'errno' that we are unable to convert to
isc_result_t. [RT #2404]
1198. [bug] OPT printing style was not consistant with the way the
header fields are printed. The DO bit was not reported
if set. Report if any of the MBZ bits are set.
1197. [bug] Attempts to define the same acl multiple times were not
detected.
1196. [contrib] update mdnkit to 2.2.3.
1195. [bug] Attempts to redefine builtin acls should be caught.
[RT #2403]
1194. [bug] Not all duplicate zone definitions were being detected
at the named.conf checking stage. [RT #2431]
1193. [bug] Best effort parsing didn't handle packet truncation.
1191. [bug] A dynamic update removing the last non-apex name in
a secure zone would fail. [RT #2399]
1189. [bug] On some systems, malloc(0) returns NULL, which
could cause the caller to report an out of memory
error. [RT #2398]
1188. [bug] Dynamic updates of a signed zone would fail if
some of the zone private keys were unavailable.
1186. [bug] isc_hex_tobuffer(,,length = 0) failed to unget the
EOL token when reading to end of line.
1185. [bug] libbind: don't assume statp->_u._ext.ext is valid
unless RES_INIT is set when calling res_*init().
1184. [bug] libbind: call res_ndestroy() if RES_INIT is set
when res_*init() is called.
1183. [bug] Handle ENOSR error when writing to the internal
control pipe. [RT #2395]
1182. [bug] The server could throw an assertion failure when
constructing a negative response packet.
1176. [doc] Document that allow-v6-synthesis is only performed
for clients that are supplied recursive service.
[RT #2260]
1175. [bug] named-checkzone failed to call dns_result_register()
at startup which could result in runtime
exceptions when printing "out of memory" errors.
[RT #2335]
1174. [bug] Win32: add WSAECONNRESET to the expected errors
from connect(). [RT #2308]
1173. [bug] Potential memory leaks in isc_log_create() and
isc_log_settag(). [RT #2336]
1172. [doc] Add CERT, GPOS, KX, NAPTR, NSAP, PX and TXT to
table of RR types in ARM.
1170. [bug] Don't attempt to print the token when a I/O error
occurs when parsing named.conf. [RT #2275]
1168. [bug] Empty also-notify clauses were not handled. [RT #2309]
1167. [contrib] nslint-2.1a3 (from author).
1166. [bug] "Not Implemented" should be reported as NOTIMP,
not NOTIMPL. [RT #2281]
1165. [bug] We were rejecting notify-source{-v6} in zone clauses.
1164. [bug] Empty masters clauses in slave / stub zones were not
handled gracefully. [RT #2262]
1162. [bug] The allow-notify option was not accepted in slave
zone statements.
1161. [bug] named-checkzone looped on unbalanced brackets.
[RT #2248]
1160. [bug] Generating Diffie-Hellman keys longer than 1024
bits could fail. [RT #2241]
1156. [port] The configure test for strsep() incorrectly
succeeded on certain patched versions of
AIX 4.3.3. [RT #2190]
1154. [bug] Don't attempt to obtain the netmask of a interface
if there is no address configured. [RT #2176]
1152. [bug] libbind: read buffer overflows.
1144. [bug] rndc-confgen would crash if both the -a and -t
options were specified. [RT #2159]
1142. [bug] dnssec-signzone would fail to delete temporary files
in some failure cases. [RT #2144]
1141. [bug] When named rejected a control message, it would
leak a file descriptor and memory. It would also
fail to respond, causing rndc to hang.
[RT #2139, #2164]
1140. [bug] rndc-confgen did not accept IPv6 addresses as arguments
to the -s option. [RT #2138]
1136. [bug] CNAME records synthesized from DNAMEs did not
have a TTL of zero as required by RFC2672.
[RT #2129]
1125. [bug] rndc: -k option was missing from usage message.
[RT #2057]
1124. [doc] dig: +[no]dnssec, +[no]besteffort and +[no]fail
are now documented. [RT #2052]
1123. [bug] dig +[no]fail did not match description. [RT #2052]
1109. [bug] nsupdate accepted illegal ttl values.
1108. [bug] On Win32, rndc was hanging when named was not running
due to failure to select for exceptional conditions
in select(). [RT #1870]
1081. [bug] Multicast queries were incorrectly identified
based on the source address, not the destination
address.
1072. [bug] The TCP client quota could be exceeded when
recursion occurred. [RT #1937]
1071. [bug] Sockets listening for TCP DNS connections
specified an excessive listen backlog. [RT #1937]
1070. [bug] Copy DNSSEC OK (DO) to response as specified by
draft-ietf-dnsext-dnssec-okbit-03.txt.
1014. [bug] Some queries would cause statistics counters to
increment more than once or not at all. [RT #1321]
1012. [bug] The -p option to named did not behave as documented.
988. [bug] 'additional-from-auth no;' did not work reliably
in the case of queries answered from the cache.
[RT #1436]
995. [bug] dig, host, nslookup: using a raw IPv6 address as a
target address should be fatal on a IPv4 only system.
jvm supported by pkgsrc (such as the blackdown jdk on powerpc), not just
the sun jvm on i386.
If user is using a java-1.1 jdk (pkgsrc/lang/jdk or kaffe), pull in swing
from the swing package.
Changes:
* Updated translations
* Updated English manual and translated it to Portuguese
* Fixed bugs:
- When checking if the user could write to a certain
directory all the groups the user was in where not
checked so it was possible to write while the application
said otherwise.
- Spec file rewrote to be more correct, thanks to Gregory
Leblanc <gleblanc@linuxweasel.com>
XNap is a Java file sharing client. It is powerful, easy to use, and
efficient. Features include fetching a server list from Napigator,
connecting to multiple OpenNap servers, doing multiple concurrent
searches, and automatic downloading. You can view your MP3 files and
play them conveniently from within XNap. It also provides a
commandline interface for use on a terminal.
Contributed by ben@wongs.net in PR 16528
provided by Thomas Klausner.
Diffs from previous version:
2002-03-20 Michael Meeks <michael@ximian.com>
* configure.in: copy the autoconf macro into here so we
can rely on it not changing across autoconf versions.
2002-03-11 Michael Meeks <michael@ximian.com>
* src/IIOP/giop-msg-buffer.c
kill #define writev mess.
(giop_send_buffer_write): handle EINTR, handle EAGAIN
correctly, handle short writev's correctly, test
thorougly.
* src/ORBitutil/compat.c (g_writev): kill this
abomination.
2002-02-11 Sebastian Wilhelmi <wilhelmi@ira.uka.de>
* src/orb/allocators.h, src/orb/allocators.c (ORBit_alloc_2,
ORBit_free): Make the free marker really always sit directly in
front of the memory block, not at some random lower position.
2002-02-09 Elliot Lee <sopwith@redhat.com>
* src/ORBitutil/os-feature-alloca.h: Don't redefine alloca if it is already defined.
2002-01-27 Darin Adler <darin@bentspoon.com>
* test/everything/Makefile.am: Added -lm -- can't build without it.
2002-01-25 Mark McLoughlin <mark@skynet.ie>
* configure.in: (AC_CHECK_ALIGNOF): error out if an alignment
is found to be zero.
Thomas thought that the modification to src/IIOP/giop-msg-buffer.c to
"kill #define writev mess" might mean that we could drop the
NetBSD-specific wrapper for writev(2), but sadly this isn't so -
configure undefines HAVE_LIMITED_WRITEV on NetBSD, and rightly so,
since IOV_MAX (1024) iovecs can be written, not 50. However, we still
have the basic "attempt to send more than IOV_MAX iovecs and you get
EINVAL" problem with our writev(2) implementation.
enhancement and bug fixes made since the 2.4.4 release. A complete
list of change can be found here: http://lftp.yar.ru/news.html
The update is based on fixes provided by Michal Pasternak in PR pkg/16125.
* most code reviewed with help of splint
* introduce new option handling (in/out/action)
- old options are still supported, no plans to remove this
support in next releases
* some automagically handling relating to
- input
- output
- action
if not extra specified
* add more conversions, also add more support of IPv4 addresses
* the address information option (-i) now shows also
- IPv4 registries (by using included current IPv4 CIDR table)
- IPv6 registries
- OUI (vendor) of NIC, if EUI-48/64 is a global one
* an example CGI frontend called "ipv6calcweb.cgi" to display
information about a REMOTE_ADDR on a webpage
- See e.g. http://ipv6.aerasec.de/index2.html for what can be
displayed
- Currently supported languages: en, de
the version of ucd-snmp. Therefore, adjust the wildcard dependencies in
dependents to match exactly (barring "nb" version changes), and bump the
dependent's "nb" versions to reflect the change in dependencies. Otherwise,
an "ethereal" binary package (for example) built against ucd-snmp-4.2.4
will happily install against ucd-snmp-4.2.3nb1, but will fail at run-time
with, ``shared object "libucdsnmp-0.4.2.3.so" not found.''
* added NO_PACKAGE as this must be built for each host
Changes since 1.1.6:
- Added new switch to ipastat(8): -x, treat rule names as POSIX
regular expressions
- Added new switch to ipastat(8): -p <time-back>
- Added new switch to ipastat(8): -k, assume that 1k is equal to 1000 bytes
- Now it is possible to use abbreviated month names in -i and -I options
in ipastat(8)
- Now it is possible to run from the ipa(8)'s command line commands from
"reach" and "expire" sections
- Added new section "include" and new parameter "debug_include" to
the configuration file, also two switches "-tt" for ipa(8) have new sense
- bug fixes
A. Woods <woods@planix.com> with some modifications by me. Changes are:
- better support for building optional plugin packages
- install no longer overwrites existing config files
- sample config files are installed in share/examples
- build no longer fails if not done as root
- appropriate netsaint users and groups are now created
- no longer installs one-time setup script in sbin
- daemon logo
<mipam@ibb.net>. From the release notes:
1.8.4 and 1.8.5 both had bugs that were found right as we were ready
to do a full release and represented good midway points but 1.8.6
should be the stable target.
Changes include:
* The ICMP decoders have been rewritten.
* (This is a summary of recent changes -- not all mine)
* Fixed stream4 offset initialization
* Double Open of snort log file
* Lots of new rules
* Fatal error on problems other than -> and <>
* Fixed stream4 several low memory conditions
* Error checking in stream4/frag2 argument parsing
* snort-db schema updates to 1.05
* --with-pcap-includes should now look at specified pcap
* packet statistics now should be more accurate with regards to lost
frags
* double PID file write
* S4 alignment problems on SPARC fixed ( rpc_decode still has SPARC
alignment errors )
* new snmptrap code
* documentation updates
* Stability fixes in frag2
* SEQ / ACK checking should be correct
* Reassembled packets with stream4 will now also be inspected when
using -z est
* ip fragments are now calculated correctly
* rule headers correctly matched
( multiple CIDR performance greatly increased )
Ettercap is a multipurpose sniffer/interceptor/logger for switched LAN. It
supports active and passive dissection of many protocols (even ciphered ones)
and includes many features for network and host analysis.
Submitted by Niilo Kajander <nk@bsdirc.net> in PR 16091
This new version fixes some (unnamed, sorry) bugs.
The main rationale for the upgrade is to get rid of the dependency on
kth-krb4 for NetBSD>=1.5 systems. For older systems, we provide full
functionality via (a now buildlinked) kth-krb4.
- IPv6 transport support added by Jun-ichiro itojun Hagino (Use -DINET6)
- Makefile modified for easier compile time configuration
- EDNS(0) bug fixed
- Default database changed to all lowercase, red-black tree to make nsd
DNSSEC ready
- REQUIREMENTS are cleaned up and updated
- Signal names changed in nsdc.sh.in
- Default compile options dont include -DMIMIC_BIND8
private mail -- thanks!)
Changes are:
* Fixed stream4 offset initialization
* Double Open of snort log file
* Lots of new rules
* Fatal error on problems other than -> and <>
* Fixed stream4 several low memory conditions
* Error checking in stream4/frag2 argument parsing
* snortdb schema updates to 1.05
* --with-pcap-includes should now look at specified pcap
* packet statistics now should be more accurate with regards to
lost packets werwerwerwerwer
* double PID file write
* S4 alignment problems on Sparc fixed
* new snmptrap code
* documentation updates
* Stability fixes in frag2
on a malformed conditional (when PKG_JVM is not set). Also add a dummy
entry for PKG_JVM on non-{i386,powerpc} platforms. This lets you still
do things like 'make show-var VARNAME=PKGNAME' even on unsupported platforms.
Highlights of changes since 1.7:
* bugfixes
* new progress bar indicator
* breath-first recursive descent
* host directories contain port information if the server is at a
non-standard port
full list:
http://cvs.sunsite.dk/viewcvs.cgi/wget/NEWS?rev=WGET_1_8&content-type=text/plain
Provided by michal@pasternak.w.lub.pl in pkg/16124
--- 9.2.1rc2 released ---
1240. [bug] It was possible to leak zone references by
specifying an incorrect zone to rndc.
1239. [bug] Under certain circumstances named could continue to
use a name after it had been freed triggering
INSIST() failures. [RT #2614]
1238. [bug] It is possible to lockup the server when shutting down
if notifies are being processed. [RT #2591]
1237. [bug] nslookup: "set q=type" failed.
1236. [bug] dns_rdata{class,type}_fromtext() didn't handle non
NULL terminated text regions. [RT #2588]
1232. [bug] unix/errno2result() didn't handle EADDRNOTAVAIL.
1231. [port] HPUX 11.11 recvmsg() can return spurious EADDRNOTAVAIL.
1230. [bug] isccc_cc_isreply() and isccc_cc_isack() were broken.
1229. [bug] named would crash if it received a TSIG signed
query as part of an AXFR response. [RT #2570]
1228. [bug] 'make install' did not depend on 'make all'. [RT #2559]
1227. [bug] dns_lex_getmastertoken() now returns ISC_R_BADNUMBER
if a number was expected and some other token was
found. [RT#2532]
1222. [bug] Specifying 'port *' did not always result in a system
selected (non-reserved) port being used. [RT #2537]
1221. [bug] Zone types 'master', 'slave' and 'stub' were not being
compared case insensitively. [RT #2542]
1218. [bug] Named incorrectly returned SERVFAIL rather than
NOTAUTH when there was a TSIG BADTIME error. [RT #2519]
1216. [bug] Multiple server clauses for the same server were not
reported. [RT #2514]
1215. [port] solaris: add support to ifconfig.sh for x86 2.5.1
1214. [bug] Win32: isc_file_renameunique() could leave zero length
files behind.
1212. [port] libbind: 64k answer buffers were causing stack space
to be exceeded for certian OS. Use heap space instead.
1211. [bug] dns_name_fromtext() incorrectly handled certain
valid octal bitlabels. [RT #2483]
1210. [bug] libbind: getnameinfo() failed to lookup IPv4 mapped /
compatible addresses. [RT #2461]
1208. [bug] dns_master_load*() failed to log a error message if
an error was detected when parsing the ownername of
a record. [RT #2448]
Prevent check_disk from reporting that procfs and kernfs are 100% full.
Beautify configure output to DTRT on NetBSD (not a functional change).
From PR pkg/16062 submitted by Murray Armfield <murray@river-styx.org>
with some modifications by yours truly.
- optional MySQL support (set PURE_FTPD_USE_MYSQL=YES in mk.conf)
Changes since 1.0.9:
- *reply() functions rewritten from scratch: simpler code, no more recursivity
- Accept '..' in file names in fakexlate()
- Use addreply_noformat() whenever possible (speedup)
- New switch : -Z (--customerproof) . Right now, it adds | 0600 or | 0700
to chmod commands to avoid users locking their own files. Additionnaly, we
now try a traditionnal chmod() call if fchmod() fails. There's a race here,
but no security trouble to fear.
- Spec file fixes
- PureDB binary search could fail with -1 as a slot number - fixed
by Murray Armfield <murray@river-styx.org>. This is part of the netsaint
update to 0.0.7, please see the update for netsaint-base to 0.0.7 for an
overview of changes.
Armfield <murray@river-styx.org>. This is part of the netsaint update
to 0.0.7. Please see the previous commit message on netsaint-0.0.7 for
a summary of changes.
Murray Armfield <murray@river-styx.org>, thanks!
Changes include:
- several new CGIs
- WAP interface
- forced service checks
- acks w/o notifications
- custom intervals for notification escalations
- passive check submissions via web interface
- auto-save of retention data
- extended service information
- scheduled downtime
- service dependencies
- flap detection
- aggregated status updates
- new macros
- user-supplied coordinates in status map
- minor bug fixes and tuning
- add support for Xsense Aero
- add support for Alcatel Speedtouch Pro
- do authentication when either the login or password are defined.
- fix parsing of web status pages
Updated contributed by Amitai Schlair <schmonz@schmonz.com> in private mail.
calls writev(2). Some of the applications which use ORBit, such as
oaf, can send 1214 iovecs, which is slightly more than IOV_MAX. Add a
wrapper for writev(2), to check the number of iovecs passed to writev,
and loop, sending MIN(IOV_MAX, count) until the iovecs have all been
written.
This version fixes problems in the SNMP and LDAP dissectors revealed by
the PROTOS test suite. The SCTP checksum code for CRC32C was updated to
match the new (version 3) draft specification. Additionally, the layout
of the capture dialog was vastly improved.
NCP type 0x2222 packet type support was added to the randpkt utility, and
a script to recreate packets from core dumps (pkt-from-core.py) was added
to the source distribution.
SNA over Ethernet and HiPath HDLC support was added. Dissectors receiving
updates include 802.11w, 802.11, AARP, AFS, ARP, COPS, DCE RPC, EAP/EAPOL,
GIOP, ICQ, iSCSI/SCSI, ISIS, LAPD, LDAP, M3UA, NBNS, NDMP, OSPF, Q.931,
RADIUS, Raw IP, RX, SDB, SMB, SNMP, SSL, TCP, TPKT, UCP, WSP, and YP.
Support for the AiroPeek and pflog file formats was also enhanced.
--- 9.2.1rc1 released ---
1207. [bug] libbind: getaddrinfo() could call freeaddrinfo() with
an invalid pointer.
1206. [bug] SERVFAIL and NOTIMP responses to a EDNS should trigger
a non-EDNS retry.
1205. [bug] OPT, TSIG and TKEY cannot be used to set the "class"
of the message. [RT #2449]
1204. [bug] libbind: res_nupdate() failed to update the name
server addresses before sending the update.
1201. [bug] Require that if 'callbacks' is passed to
dns_rdata_fromtext(), callbacks->error and
callbacks->warn are initialized.
1200. [bug] Log 'errno' that we are unable to convert to
isc_result_t. [RT #2404]
1198. [bug] OPT printing style was not consistant with the way the
header fields are printed. The DO bit was not reported
if set. Report if any of the MBZ bits are set.
1197. [bug] Attempts to define the same acl multiple times were not
detected.
1196. [contrib] update mdnkit to 2.2.3.
1195. [bug] Attempts to redefine builtin acls should be caught.
[RT #2403]
1194. [bug] Not all duplicate zone definitions were being detected
at the named.conf checking stage. [RT #2431]
1193. [bug] Best effort parsing didn't handle packet truncation.
1191. [bug] A dynamic update removing the last non-apex name in
a secure zone would fail. [RT #2399]
1189. [bug] On some systems, malloc(0) returns NULL, which
could cause the caller to report an out of memory
error. [RT #2398]
1188. [bug] Dynamic updates of a signed zone would fail if
some of the zone private keys were unavailable.
1186. [bug] isc_hex_tobuffer(,,length = 0) failed to unget the
EOL token when reading to end of line.
1185. [bug] libbind: don't assume statp->_u._ext.ext is valid
unless RES_INIT is set when calling res_*init().
1184. [bug] libbind: call res_ndestroy() if RES_INIT is set
when res_*init() is called.
1183. [bug] Handle ENOSR error when writing to the internal
control pipe. [RT #2395]
1182. [bug] The server could throw an assertion failure when
constructing a negative response packet.
1176. [doc] Document that allow-v6-synthesis is only performed
for clients that are supplied recursive service.
[RT #2260]
1175. [bug] named-checkzone failed to call dns_result_register()
at startup which could result in runtime
exceptions when printing "out of memory" errors.
[RT #2335]
1174. [bug] Win32: add WSAECONNRESET to the expected errors
from connect(). [RT #2308]
1173. [bug] Potential memory leaks in isc_log_create() and
isc_log_settag(). [RT #2336]
1172. [doc] Add CERT, GPOS, KX, NAPTR, NSAP, PX and TXT to
table of RR types in ARM.
1170. [bug] Don't attempt to print the token when a I/O error
occurs when parsing named.conf. [RT #2275]
1168. [bug] Empty also-notify clauses were not handled. [RT #2309]
1167. [contrib] nslint-2.1a3 (from author).
1166. [bug] "Not Implemented" should be reported as NOTIMP,
not NOTIMPL. [RT #2281]
1165. [bug] We were rejecting notify-source{-v6} in zone clauses.
1164. [bug] Empty masters clauses in slave / stub zones were not
handled gracefully. [RT #2262]
1162. [bug] The allow-notify option was not accepted in slave
zone statements.
1161. [bug] named-checkzone looped on unbalanced brackets.
[RT #2248]
1160. [bug] Generating Diffie-Hellman keys longer than 1024
bits could fail. [RT #2241]
1156. [port] The configure test for strsep() incorrectly
succeeded on certain patched versions of
AIX 4.3.3. [RT #2190]
1154. [bug] Don't attempt to obtain the netmask of a interface
if there is no address configured. [RT #2176]
1152. [bug] libbind: read buffer overflows.
1144. [bug] rndc-confgen would crash if both the -a and -t
options were specified. [RT #2159]
1142. [bug] dnssec-signzone would fail to delete temporary files
in some failure cases. [RT #2144]
1141. [bug] When named rejected a control message, it would
leak a file descriptor and memory. It would also
fail to respond, causing rndc to hang.
[RT #2139, #2164]
1140. [bug] rndc-confgen did not accept IPv6 addresses as arguments
to the -s option. [RT #2138]
1136. [bug] CNAME records synthesized from DNAMEs did not
have a TTL of zero as required by RFC2672.
[RT #2129]
1125. [bug] rndc: -k option was missing from usage message.
[RT #2057]
1124. [doc] dig: +[no]dnssec, +[no]besteffort and +[no]fail
are now documented. [RT #2052]
1123. [bug] dig +[no]fail did not match description. [RT #2052]
1109. [bug] nsupdate accepted illegal ttl values.
1108. [bug] On Win32, rndc was hanging when named was not running
due to failure to select for exceptional conditions
in select(). [RT #1870]
1081. [bug] Multicast queries were incorrectly identified
based on the source address, not the destination
address.
1072. [bug] The TCP client quota could be exceeded when
recursion occurred. [RT #1937]
1071. [bug] Sockets listening for TCP DNS connections
specified an excessive listen backlog. [RT #1937]
1070. [bug] Copy DNSSEC OK (DO) to response as specified by
draft-ietf-dnsext-dnssec-okbit-03.txt.
1014. [bug] Some queries would cause statistics counters to
increment more than once or not at all. [RT #1321]
1012. [bug] The -p option to named did not behave as documented.
988. [bug] 'additional-from-auth no;' did not work reliably
in the case of queries answered from the cache.
[RT #1436]
995. [bug] dig, host, nslookup: using a raw IPv6 address as a
target address should be fatal on a IPv4 only system.
changes from 1.2 to 1.3, to quote feico's message:
>It does add little functionality over version 1.2, but the code
>quality is a lot higher and many bugs/misfeatures and loose ends
>have been fixed.
<shell@shellhung.org>.
Notable changes since version 1.0901:
- Net::FTP::I Don't call sysread multiple times after calling select() as it
may block.
- Net::POP3 Patches from Ville Skytta for various cleanup and use Digest::MD5.
- Net::Cmd, Net::NNTP, Net::POP3, Net::SMTP
Add support for returning tied filehandles from some operations.
- Net::FTP Allow tied handles to be passed to get/put.
- Net::Cmd Pod changes from Robin Barker.
- Net::FTP Don't do EBCDIC translation on a binary transfer.
- Net::FTP Fix docs for anonymous login.
- Net::SMTP Support binding to a local port/address
- Net::Netrc Support exscaping in the netrc file.
*5.0.pre2 (beta release)*
NOTE WELL: this release is an beta release. Please let us know
immediately about any bugs you find so we can fix them before the
real 5.0 releas.
New:
- Much of the agent internals were completely rewritten and sports
a new module API to make your life easier. See the
agent/mibgroup/testhandler.c file for example code that makes
use of some of the new functionality.
(Also see http://www.net-snmp.org/tutorial/new-agent/ which has
some incomplete documentation)
- The agent supports multiple SNMPv3 contexts and mib modules can
now register themselves under different contexts. (see the -n
option in the snmpcmd manual page for details on specifying
context strings in requests)
- The proxy code has been completely rewritten and now supports
the use of SNMPv3 contexts to help select which proxied host you
wish to talk to.
- All the tools take --configToken=value options now. (see -H
output from any command for what configTokens it accepts)
- All the tools can speak over many different transport layers
now, including UDP/TCP (ipv4 and ipv6), AAL5pvc, and IPX. See
./configure --help for details on enabling them.
Note: the -p and -T flags to all the applications have been
removed. Use hostname strings like "tcp:localhost:9999"
instead. See the snmpcmd manual page for details.
- snmptrapd now acts as an agentx subagent and implements portions
of the NOTIFICATION-LOG-MIB.
- kerberos authenticated and encrypted SNMPv3 is now possible.
See ./configure --help for details on enabling the ksm security module.
- The AgentX subagent protocol implementation has many new
features and fixes.
- mib2c was completely rewritten and has a much improved
configuration file specification.
- A "net-snmp-config" script will get installed which can report
how the various tools were built (which libraries they were
linked against, etc).
- new perl specific configure options --with-perl-modules &
--enable-embedded-perl. See ./configure --help for details.
- The beginnings of some new Perl modules (alpha level quality)
are in the perl directory, including:
- NetSNMP::agent which allows perl scripts to become net-snmp
master or subagents
- AnyData::SNMP is available that implements a perl DBI
interface to map SQL commands to SNMP. Included is a "snmpsh"
shell where SQL commands can be typed, aliases created, etc.
See the perl/AnyData_SNMP/INSTALL file for details.
- Beginning (alpha level quality) support for embedding perl
subroutines directly within the net-snmp agent.
- Much of the code is getting documented with "doxygen" style
documentation. Run "make docs" if you have doxygen installed.
- RMON support is available. See agent/mibgroup/Rmon/README for details.
all dependencies on packages depending on "png" which contain shared
libraries, all for the (imminent) update to the "png" package.
[List courtesy of John Darrow, courtesy of "bulk-build".]
- Additional fix for zlib double-free bug. (Martin Pool, Andrew
Tridgell) (CVE CAN-2002-0059)
- Merge in changes from zlib 1.1.3 to zlib 1.1.4. (Jos Backus)
(Note that rsync still uses a custom version of zlib; you can
not just link against a system library. See zlib/README.rsync)
- Additional test cases for --compress. (Martin Pool)
v0.49 Fix compilation problems on several platforms.
v0.48 Draw names in red (GTK) or bold (Curses) if host doesn't
respond.
v0.47 Fixed a (believed-) non-exploitable bufferoverflow.
Thanks Damian.
v0.46 Included patch to be able to specify outgoing interface
address.
v0.45 People are pressuring me to release new versions with their
changes. That's fine. Now this version just adds dynamic
switching between numeric / dns names, and some minor
stuff I forgot. This release serves as a code-sycn-release.
new version with even more new stuff in about two weeks!
I'm afraid I don't know how to fix the MaxOS-X compilation
problems in the source. Help wanted...
v0.44 David Stone adds the "last" column to the gtk version.
v0.43 Compile fixes.
- Make sure that supplementary groups are removed from a server
process after changing uid and gid. (Ethan Benson) (Debian bug
#132272, CVE CAN-2002-0080)
- Fix zlib double-free bug. (Owen Taylor, Mark J Cox) (CVE
CAN-2002-0059)
- Fixed problem that in many cases caused the error message
unexpected read size of 0 in map_ptr
and resulted in the wrong data being copied.
- Fixed compilation errors on some systems caused by the use of
"unsigned int64" in rsync.h.
- Fixed problem on systems such as Sunos4 that do not support realloc
on a NULL pointer; error was "out of memory in flist_expand".
- Fix for rsync server processes hanging around after the client
unexpectedly disconnects. (Colin Walters) (Debian bug #128632)
- Cope with BSD systems on which mkdir() will not accept a trailing
slash.
- Merge in changes from zlib 1.1.2 to zlib 1.1.3. (Note that
rsync still uses a custom version of zlib; you can not just link
against a system library. See zlib/README.rsync)
- Command to initiate connections is only shown with -vv, rather
than -v as in 2.5.2. Output from plain -v is more similar to
what was historically used so as not to break scripts that try
to parse the output.
- Added --no-whole-file and --no-blocking-io options (Dave Dykstra)
- Made the --write-batch and --read-batch options actually work
and added documentation in the man page (Jos Backus)
- If the daemon is unable to fork a child to accept a connection,
print an error message. (Colin Walters)
20020227/PB:
libipv6addr.c: fixed a bug in ipv6addr_setoctett.c regarding num limit (oops..)
ipv6calc.c: move structure definitions to...
libmac.h: add related structure definition ipv6calc.c
libipv6addr.h: add related structure definition from ipv6calc.c
libipv4addr.*: new for handling IPv4 addresses
ipv4_to_6to4addr.*: new for handling conversion IPv4 -> IPv6to4
librfc3056.*: library for conversion IPv4 -> IPv6to4
libipv6calc.c: fix array index bug of compat[] (oops..)
tag release 0.39
20020226/PB:
add original getopt tarball into samplecode, fill related READMEs
tag release 0.38
20020224/PB:
move nibble string function to librfc1886
minor fixes
restore original samplecode files and remove CVS id to prevent CVS changes
add original getopt code to samplecode
tag release 0.37
20020224/PB:
minor Makefile fixes
fix getopt Makefile
minor cosmetic fix in test script
cosmetic cleanups
some code cleanup and minor redesign, some optimizing
fixes stupid help call bugs
format options can be used now in more functions
add support of "printstart" and "printend" in "ip6int", "bitstring"
extend "showinfo", add "machine_readable" for easier postprocessing
20020223/PB:
complete limited support of bistring labels
change examples to 6bone dummy address (3ffe:ffff:...)
add a trailling dot on ip6.[int|arpa] output
migrate getopt patch for OpenBSD submitted by Vladimir Kotal <vlada at openbsd dot cz>
minor Makefile fixes
tag release 0.37pre1
Pure-FTPd is a free (GPL), secure, production-quality and standard-conformant
FTP server based upon Troll-FTPd. It doesn't provide useless bells and whistles,
but focuses on efficiency and ease of use. It provides simple answers to common
needs, plus unique useful features for personal users as well as hosting
providers.
Provided by Dawid Szymanski <dawszy@arhea.net> in PR/15762,
slightly modified by me.
* Lose the source port check on incoming packets
* (x)ntpdc compatibility patch
* Virtual IP improvements
* ntp_loopfilter fixes and improvements
* ntpdc improvements
* GOES refclock fix
* JJY driver
* bsdi port fixes
* HP MPE/iX port
* Win/NT port upgrade
* Dynix PTX port fixes
* Document conversion from CVS to BK
* readline support for ntpq
Patch submitted by Lubomir Sedlacik <salo@xtrmntr.org> in private mail.
Changes since 0.19:
0.36: - fix bug relating to ipv6calc.h (changes now in ipv6calc.h.in)
- start preparation for implementing bitstring conversions
0.35: - add new options: --addr_to_ip6arpa|-a
does the same like --addr_to_ip6int|-r, but ends with "ip6.arpa"
instead of "ip6.int"
- addr_to_ip6int now understands "--uppercase|--lowercase"
0.34: - use now "-lcrypto" instead of full defined lib name
- update "COPYING" to current GPLv2, add "LICENSE" with some comments
to make Debian people happy
- add both in spec file
- showinfo now understands "solicited-node link-local multicast",
"ISATAP", SLA on 6bone addresses
- input now understands also "ISATAP" addresses
- Change version numbering to autoconf/configure
- Extend "showinfo" a little bit
- Fix missing scope initialization "base85_to_ipv6addr"
bug found by Greg Daley <greg.daley # eng.monash.edu.au>
- changed: libipv6addr.c/ipv6addr_clear
librfc1924.c/base85_to_ipv6addrstruct
0.28: - Refixing compiling on BSD
- Add a forgotten include in "eui64_to_privacy.c"
0.27: - Migrate files used from Linux kernel for address type resolution
to libipv6addr.*
- add some extended tests (still not catch all)
- "--showinfo" now rudimentary works
0.26: - Create wrapper functions to be independend of byte order storage
in structure "in6_addr"
- "--eui64_to_privacy" now calculate expected results
- Begin of splitting "ipv6calc.h" into several smaller header files
- Some code cleanup
0.25: - Restructure central address structure to use "in6_addr" struct
- Some code cleanup
0.24: - Add option "--eui64_to_privacy" to calculate pseudo random suffices
(experimental, result is not verified)
- Add option "--showinfo" (experimental, not finnished)
- Add option "-d|--debug value"
- Partially new debug code
0.23: - Fix permissions of doc files in spec file
0.22: - ANSI compiling cleanup
- Cleanup special types to ANSI types
0.21: - Fix typo (strings.h -> string.h) at ifinet6_to_compressed.c
0.20: - Activate "--printsuffix" + "--printprefix" for
"--addr_to_uncompressed"
- Change format of "--mac_to_eui64" to described one (now without prefix)
Summary of changes:
- removal of USE_GTEXINFO
- addition of mk/texinfo.mk
- inclusion of this file in package Makefiles requiring it
- `install-info' substituted by `${INSTALL_INFO}' in PLISTs
- tuning of mk/bsd.pkg.mk:
removal of USE_GTEXINFO
INSTALL_INFO added to PLIST_SUBST
`${INSTALL_INFO}' replace `install-info' in target rules
print-PLIST target now generate `${INSTALL_INFO}' instead of `install-info'
- a couple of new patch files added for a handful of packages
- setting of the TEXINFO_OVERRIDE "switch" in packages Makefiles requiring it
- devel/cssc marked requiring texinfo 4.0
- a couple of packages Makefiles were tuned with respect of INFO_FILES and
makeinfo command usage
See -newly added by this commit- section 10.24 of Packages.txt for
further information.
