* Remove ssl option, and add gnutls and openssl options.
The default is openssl like before.
* All security patches are included in upstream's tar ball.
* Remove ac_cv_func_sigsetjmp=yes line, because not defined now.
Tested on NetBSD/i386 4.0.1, 5.1 5.99.56.
Changelog:
* Changes in Wget 1.13.4
** Now --version and --help work again.
** Fix a build error on solaris 10 sparc.
** Now --timestamping and --continue work well together.
** Return a network failure when FTP downloads fail and --timestamping
is specified.
* Changes in Wget 1.13.3
** Support HTTP/1.1
** Now by default the GNU TLS library for secure connections, instead of
OpenSSL.
** Fix some portability issues.
** Handle properly malformed status line in a HTTP response.
** Ignore zero length domains in $no_proxy.
** Set new cookies after an authorization failure.
** Exit with failure if -k is specified and -O is not a regular file.
** Cope better with unclosed html tags.
** Print diagnostic messages to stderr, not stdout.
** Do not use an additional HEAD request when --content-disposition is used,
but use directly GET.
** Report the average transfer speed correctly when multiple URL's are specified
and -c influences the transferred data amount.
** GNU TLS backend works again.
** Now --timestamping and --continue works well together.
** By default, on server redirects, use the original URL to get the
local file name. Close CVE-2010-2252. This introduces a
backward-incompatibility; any script that relies on the old
behaviour must use --trust-server-names.
** Fix a problem when -k is used and some URLs are specified trough
CSS.
** Convert correctly URLs that need to be encoded to local files when following
links.
** Use persistent connections with proxies supporting them.
** Print the total download time as part of the summary for recursive downloads.
** Now it is possible to specify a different startup configuration file trough
the --config option.
** Fix an infinite loop with the error '<filename> has sprung into existence'
on a network error and -nc is used.
** Now --adjust-extension does not modify the file extension if the file ends
in .htm.
** Support HTTP/1.1 307 redirects keep request method.
** Now --no-parent doesn't fetch undesired files if HTTP and HTTPS are used
by the same host on different pages.
** Do not attempt to remove the file if it is not in the accept rules but
it is the output destination file.
** Introduce `show_all_dns_entries' to print all IP addresses corresponding to
a DNS name when it is resolved.
Pkgsrc changes:
o Sync PLIST, additional man page installed.
Upstream changes:
1.6.11 2011-09-29
* bugfix #394: Fix socket leak on errors
* bugfix #392: Apex only and percentage checks for ldns-verify-zone
(thanks Miek Gieben)
* bugfix #398: Allow NSEC RRSIGs before the NSEC3 in ldns-verify-zone
* Fix python site package path from sitelib to sitearch for pyldns.
* Fix python api to support python2 and python3 (thanks Karel Slany).
* bugfix #401: Correction of date/time functions algorithm and
prevention of an infinite loop therein
* bugfix #402: Correct the minimum and maximum number of rdata fields
in TSIG. (thanks David Keeler)
* bugfix #403: Fix heap overflow (thanks David Keeler)
* bugfix #404: Make parsing APL strings more robust
(thanks David Keeler)
* bugfix #391: Complete library assessment to prevent assertion errors
through ldns_rdf_size usage.
* Slightly more specific error messaging on wrong number of rdata
fields with the LDNS_STATUS_MISSING_RDATA_FIELDS_RRSIG and
LDNS_STATUS_MISSING_RDATA_FIELDS_KEY result codes.
* bugfix #406: More rigorous openssl result code handling to prevent
future crashes within openssl.
* Fix ldns_fetch_valid_domain_keys to search deeper than just one level
for a DNSKEY that signed a DS RR. (this function was used in the
check_dnssec_trace nagios module)
* bugfix #407: Canonicalize TSIG dnames and algorithm fields
* A new output specifier to accommodate configuration of what to show
in comment texts when converting host and/or wire-format data to
string. All conversion to string and printing functions have a new
version that have such a format specifier as an extra argument.
The default is changed so that only DNSKEY RR's are annotated with
an comment show the Key Tag of the DNSKEY.
* Fixed the ldns resolver to not mark a nameserver unreachable when
edns0 is tried unsuccessfully with size 4096 (no return packet came),
but to still try TCP. A big UDP packet might have been corrupted by
fragments dropping firewalls.
* Update of libdns.vim (thanks Miek Gieben)
* Added the ldnsx Python module to our contrib section, which adds even
more pythonisticism to the usage of ldns with Python. (Many thanks
to Christpher Olah and Paul Wouters)
The ldnsx module is automatically installed when --with-pyldns is
used with configuring, but may explicitly be excluded with the
--without-pyldnsx option to configure.
* bugfix #410: Fix clearing out temporary data on stack in sha2.c
* bugfix #411: Don't let empty non-terminal NSEC3s cause
assertion failure.
Changelog:
aria2 1.13.0
============
Release Note
------------
This release fixed libgcrypt version check error. Several command line
options were added. For details of each new option, read changes
below. aria2 now returns error response if RPC request parameter has
wrong type. For MinGW32 build, Unicode filenames support was added.
From this release, aria2 uses libnettle and libgmp by default instead
of libgcrypt. If you want to use libgcrypt, use configure options
--without-libnettle --with-libgcrypt.
Changes
-------
* Check libgcrypt version is greater or equal to required version.
This will fixes Debian bug#642989.
* Added --piece-length option. This option sets a piece length for
HTTP/FTP downloads. This is the boundary when aria2 splits a
file. All splits occur at multiple of this length. This option will
be ignored in BitTorrent downloads. It will be also ignored if
Metalink file contains piece hashes.
* Throw exception if parameter has wrong type in RPC method.
Formally, depending on the method implementation, this kind of
error is just ignored and parameter is skipped. Now aria2 responds
error for these cases. The required parameter checking is also
reworked along with this change.
* Cleanup log message for binding server socket.
* Recognize tab as white space before option in -i list.
* Added geom parameter to --stream-piece-selector option. If 'geom'
is given, at the beginning aria2 selects piece which has minimum
index like 'inorder', but it exponentially increasingly keeps space
from previously selected piece. This will reduce the number of
establishing connection and at the same time it will download the
beginning part of the file first. This will be useful to view movie
while downloading it.
* Added completedLength response key in aria2.getFiles RPC method
* Added #checksum help tag.
* Added --checksum option. Added --checksum=TYPE=DIGEST option. This
option sets checksum. TYPE is hash type. The supported hash type is
listed in "Hash Algorithms" in "aria2c -v". DIGEST is hex digest.
For example, setting sha-1 digest looks like this:
sha-1=0192ba11326fe2298c8cb4de616f4d4140213838 This option applies
only to HTTP(S)/FTP downloads.
* Added --hash-check-only opiton. Added --hash-check-only opiton.
If true is given, after hash check using --check-integrity option,
abort download whether or not download is complete. The default
value is false.
* Added --download-result option. Added --download-result=OPT
option. This option changes the way "Download Results" is
formatted. If OPT is 'default', print GID, status, average download
speed and path/URI. If multiple files are involved, path/URI of
first requested file is printed and remaining ones are omitted. If
OPT is 'full', print GID, status, average download speed,
percentage of progress and path/URI. The percentage of progress and
path/URI are printed for each requested file in each row.
* Added --rpc-allow-origin-all option. This option adds
Access-Control-Allow-Origin header field with value '*' to the RPC
response.
* Ignore --out option supplied in command-line if -i is used. You
can still use out option in the text file specified in -i.
* Disable SSLv2 by default and optimize memory usage.
Patch from Cristian Rodríguez.
* Added libnettle and libgmp support. libnettle and libgmp is used
by default. Old implementation uses libgcrypt as default. If more
and more Linux distributions offer libnettle linked GnuTLS, then
this change decrease library dependency against libgcrypt and
libgpg-error. The current library detection for libnettle and
libgmp is very simple, just use AC_SEARCH_LIBS.
util::generateRandomData() was written using SimpleRandomizer, thus
no external library dependency from this function.
* In MinGW32, open file with UNICODE filename and print them in ANSI.
Changes from previous:
0.54 Sat Mar 21 21:23:32 BST 2011
- Fix for a naked qw() warning (patch by David Wheeler)
- Fixed path issues (patch by Pavel Karoukin)
*WARNING* THIS MIGHT BREAK EXISTING APPS *WARNING*
- Author and development information changes
0.53 Tue Mar 30 15:24:19 BST 2010
- fix authenticated urls to work with EU buckets (patch by Edmund
von der Burg)
- tiny POD fix (patch by Frank Wiegand)
- add an exists method to Net::Amazon::S3::Client (suggested by
David Golden)
- fix max_keys when listing buckets (spotted by Andrew Bryan)
- add content_encoding to Net::Amazon::S3::Object (suggested
by Egor Korablev)
- update s3cl: You need to use the module before you use it,
added the mkbucket command, now you can run the help without
your AWS secret key, add docs about the env variables you need
to run s3cl (patches by Jesse Vincent)
0.52 Thu Jul 2 09:17:11 BST 2009
- increase version prerequisites for some modules so that they
are known to work
0.51 Tue May 19 08:31:59 BST 2009
- use MooseX::Types::DateTimeX so that we work with latest Moose
(noticed by Ted Zlatanov)
* Old quvi package splits into 3 packages, quvi, libquvi, and libquvi-scripts.
Changelog:
0.4.0 Wed Oct 05 2011 Toni Gundogdu
Changes:
- Split from "quvi", new repo at <http://repo.or.cz/w/quvi-tool.git>
- Make --category-all new default (prev. --category-http)
- Extend --exec to support %t, page title (#41)
- Remove deprecated "--format (help|list)"
- Remove deprecated "--no-shortened"
- Remove deprecated "--old"
For earlier notes, see <http://repo.or.cz/w/quvi.git/blob/HEAD:/NEWS>.
The quvi is a command line tool for parsing video download links. It
supports Youtube and other similar video websites. libquvi is a
library for parsing video download links with C API. It is written in
C and intended to be a cross-platform library.
You can see the list of supported sites from 'quvi --support'.
This package provides library for quvi.
The quvi is a command line tool for parsing video download links. It
supports Youtube and other similar video websites. libquvi is a
library for parsing video download links with C API. It is written in
C and intended to be a cross-platform library.
You can see the list of supported sites from 'quvi --support'.
This package contains lua scripts for libquvi.
adjust Makefile to avoid/fix problems found by dholland
Upstream changelog:
Changes from 4.3.4 -> 4.3.5 (9 Sep 2011)
========================================
* rev 6754
* Fix crash in CGI generating the "info" status column.
* Fix broken handling of IGNORE for log-file analysis.
* Fix broken clean-up of obsolete cookies (no user impact).
* Devmon RRD handler: Fix missing initialisation, which
might cause crashes of the RRD handler.
* Fix crashes in xymond caused by faulty new library for
storing cookies and host-information.
* Fix memory corruption/crash in xymond caused by logging
of multi-source statuses.
* New "delayred" and "delayyellow" definitions for a host
can be used to delay change to a yellow/red status for
any status column (replaces the network-specific "badFOO"
definitions).
* analysis.cfg and alerts.cfg: New DISPLAYGROUP setting to
select hosts by the group/group-only/group-except text.
* New HOSTDOCURL setting in xymonserver.cfg. Replaces the
xymongen "--docurl" and "--doccgi" options, and is used
by all tools.
* xymond_history option to control location of PID file.
* Critical Systems view: Optionally show eventlog for the
hosts present on the CS view.
* Critical Systems view: Multiple --config options can
now be used, to display critical systems from multiple
configurations on one page.
* Detailed status display: Speedup by no longer having to
load the hosts.cfg file.
* xymongen and xymonnet: Optionally load the hosts.cfg
from xymond instead of having to read the file.
Changes from 4.3.3 -> 4.3.4 (1 Aug 2011)
========================================
* rev 6722
* Fix crashes and data corruption in Xymon worker modules
(xymond_client, xymond_rrd etc) after handling large
messages.
* Fix xymond lock-up when renaming/deleting hosts
* Fix xymond cookie lookup mechanism
* Webpages: Add new HOSTPOPUP setting to control what values from
hosts.cfg are displayed as a "comment" to the hostname (either
in pop-up's or next to the hostname).
* Fix xymond_client crash if analysis.cfg contains invalid configuration
entries, e.g. expressions that do not compile.
* Fix showgraph CGI crash when legends contain colon.
* xymonnet: Include hostname when reporting erroneous test-spec
* CGI utils: Multiple potential security fixes involving buffer-
overruns when generating responses.
* CGI utils: Fix crash when invoked with HTTP "HEAD"
* CGI utils: Fix crashes on 64-bit platforms due to missing prototype
of "basename()" function.
* svcstatus CGI: Dont crash if history log is not a file.
* Critical systems view CGI: Cross-site scripting fix
* Fix recovery-messages for alerts sent to a GROUP
* RRD "memory" status handler now recognizes the output from the
bb-xsnmp.pl module (for Cisco routers).
* Web templates modified so the menu CSS can override the default
body CSS.
* Acknowledge web page now allows selecting minutes/hours/days
* Enable/Disable webpage enhanced, so when selecting multiple hosts
the "Tests" column only lists the tests those hosts have.
Changes from 4.3.2 -> 4.3.3 (6 May 2011)
========================================
* rev6684
* SECURITY FIX: Some CGI parameters were used to construct
filenames of historical logfiles without being sanitized,
so they could be abused to read files on the webserver.
* SECURITY FIX: More cross-site scripting vulnerabilities.
* Remove extra "," before "History" button on status-view
* Critical view: Shring priority-column to 10% width
* hosts.cfg loader: Check for valid IP spec (nibbles in
0-255 range). Large numbers in a nibble were accepted,
triggering problems when trying to ping the host.
* Alert macros no longer limited to 8kB
- use the right environment variable to pass the rrdtool location;
- remove some stray commas from the NetBSD build config;
- make the toplevel configure script stop on error.
0.11 (2005-08-18)
Changes by Wojtek Kaniewski <wojtekka@toxygen.net>:
- changed license to GPL version 2. There was no license information before
which caused confusion. Code by Tomasz Lipski <lemur@irc.pl> and awayzzz
<awayzzz@digibel.org> had to be removed, because their e-mail addresses
were dead and googling for them gave no useful information. The missing
features have been rewritten from scratch. If any offending code is still
here, please let me know. I've done my best, but I haven't used any
version control 5 years ago.
- changed e-mail address.
Changes by Ramunas Lukosevicius <lukoramu@parok.lt>
- fixed source mapping bug,
- SIGHUP reloads map file.
0.10 (2003-06-12)
Changes by Wojtek Kaniewski <wojtekka@irc.pl>:
- major code cleanup,
- select() before accept(), so 6tunnel won't hang on sys_socketcall.
- fixed losing data under heavy load, when write() didn't send all
data. unsent data is stored in a buffer,
- autoconf,
- supports pid file (idea by misio <monster@qm.pl>).
