Include a bugfix for lisp_LISP independently discovered by me that has
been pulled up to the automake-1-4 branch of automake cvs.
Changes are:
New in 1.4-p5:
* Allow AM_PROG_LIBTOOL again.
* Diagnose AC_CONFIG_HEADERS the same as AC_CONFIG_HEADER.
* Display distributed file list correctly in usage message.
* Allow numbers in macro names.
* Bugfixes.
New in 1.4-p4:
* Deal with configure.ac as well as configure.in -- this time for real!
* The version numbering system now allows three point version numbers,
such as 1.4.4, without thinking they are alpha release numbers.
New in 1.4-p3:
* Deal with configure.ac as well as configure.in.
* Don't complain if `version.texi' is included in multiple places.
New in 1.4-p2:
* Deal with AC_CONFIG_FILES from autoconf-2.50.
* Improvements to f77 support.
* DESTDIR now works for script targets.
* distcheck-hook works correctly.
New in 1.4-p1:
* The version numbering system now allows fork identifiers (such as
the p1 in this version of automake).
* Cope gracefully with various versions of libtool which may or may not
require ltconfig, ltcf-c.sh, ltcf-cxx.sh or ltcf-gcj.sh.
* Bugfixes.
* SNMP alerts
* IDMEF XML output (the Silicon Defense plugin is integrated into
the main codebase now)
* Limited regex support in the rules language
* New packet counters for stream4 and frag2
* New normalization mode for http_decode
provided by Luke Mewburn <lukem@wasabisystems.com> with modifications by
me to allow running on older NetBSD systems (so any errors in the script
are mine alone).
* Changes in bgpd
** Fix "^$" community list bug.
** Below command's Address Family specific configurations are added
nexthop-self
route-reflector-client
route-server-client
soft-reconfiguration inbound
* Changes in zebra
** Treat kernel type routes as EGP routes.
a framework to allow networking applications to discover the existence,
location, and configuration of networked services in enterprise networks.
The OpenSLP project is an effort to develop an open-source implementation of
Service Location Protocol suitable for commercial and non-commercial
application.
set FOO_CONFIG=${BUILDLINK_CONFIG_WRAPPER.foo} in both CONFIGURE_ENV and
MAKE_ENV. We remove the check for GNU_CONFIGURE because if a package
Makefile includes the buildlink.mk file, then it most likely wants to use
the config script wrappers as well. Change suggested by Hubert Feyrer
(hubertf) and Tomasz Luchowski (zuntum).
scripts need for the nmbd and smbd programs to always start in daemom-mode,
which is why the "-D" flag was set via command_args in the scripts
themselves. Any additional options should be passed in through the
{nmbd,smbd}_flags settings in /etc/rc.conf. Add comments to reflect this
in the scripts.
The error reported by the PR author is most likely due to either installing
these scripts with ".sh" extensions, which is not how these are installed
into the ${PREFIX}/etc/rc.d and is definitely wrong, or in directly
sourcing these files from an rc.local script, which is again, definitely
wrong.
from the "ChangeLog" file below). Also, this NetBSD package now installs the
HTML docs into "/usr/pkg/share/doc/html".
* ntpd/refclock_oncore.c (oncore_start): Set pps_enable=1, just
like the atom driver does.
From: reg@dwf.com
* ntpd/refclock_nmea.c (nmea_ppsapi): Set pps_enable=1, just like
the atom driver does.
From: Scott Allendorf <sca@newton.physics.uiowa.edu>
* ntpd/ntp_config.c (getconfig): CONF_CLOCK_PANIC was using the
wrong config flag.
From: <justin_forrester@hp.com>
Most important changes:
o added user-land programs: kalog, aklog, arla-cli
o improved user-land programs: vos, bos, pts, etc.
o added man pages
o security fix (in rx)
o and tons of bug fixes
I included a start script to be placed under /etc/rc.d.
Samba 2.0.x (2.0.10) has functionality that is missing from the Samba 2.2.x
releases, one of which is an operational "share modes" directive.
According to the Samba mailing lists, there isn't a way in 2.2.x to do
what "share modes = No" did in 2.0.x, so revive an older, stable release
of Samba that does contain the missing functionality. Setting the share
mode on a service is necessary only to get certain legacy MS-DOS
applications working in a multi-user environment.
yale-tftpd is an improved (but slightly incompatible until you configure it)
tftpd server. It has a powerful and configurable security setup and is well
suited for people who want to boot network devices using their system as a
TFTP server.
This package consists of two programs, collectively termed "6's Spiffy
AudioGalaxy Query Tool."
AudioGalaxy is a Napster-like music sharing server accessible at
http://www.audiogalaxy.com.
The core program is the query tool itself, "ag." ag accepts an AudioGalaxy
search query (that is, anything that you might type into AudioGalaxy's
search engine), runs the query for you, selects the first couple of results
returned by the search (the exact number of results selected per search is
configurable) and queues them for download, using the "Choose Versions"
feature of AudioGalaxy to try to get a minimum (also configurable) bitrate
for your downloads.
directly by patching the script. This causes LDFLAGS to be reset properly
before checking for gettext(), which now succeeds and causes the locale
files to be built. Remove USE_LIBINTL as unnecessary. Tested on
NetBSD-1.5W/i386 and NetBSD-1.5.1/mac68k.
* Multiple server/account management
* Search history
* Bandwidth limiting
* Ability to specify multiple share directories
* Many internal improvements
* Vorbis file sharing support
* MPEG/AVI file sharing support
* Added file type to search criteria
* Updated Browse OpenNAP dialog
* Fixed Safe Exit option
* Added an option to execute a program after a successful download
* Fixed a potentially exploitable remote segmentation fault concerning
uploads
* SOCKS5 support should (hopefully) be fixed now
* Timestamped events
* Many bug fixes
BUILDLINK_PREFIX.<pkgname>. This allows buildlink to find X11BASE packages
regardless of whether they were installed before or after xpkgwedge was
installed. Idea by Alistair Crooks <agc@pkgsrc.org>.
- from www.ethereal.com
New dissectors include Appletalk Data Stream Interface, AUTH_DES,
DVMRP, GIOP, Gnutella, iSCSI, ISUP, M2PA, MP-BGP message, MSDP,
MTP3, PAP, PIMv1, RFC 2250 MPEG1, and for you gamers, QuakeWorld
and Quake II. Many other dissectors were updated and bug-fixed.
WHATS NEW IN Samba 2.2.1a: 11th July 2001
==========================================
This is the latest stable release of Samba. This is the version that all
production Samba servers should be running for all current bug-fixes.
This is a minor bugfix release for 2.2.1, *NOT* security related.
1). 2.2.1 had a bug where using smbpasswd -m to add a Windows NT or
Windows2000 machine into a Samba hosted PDC would fail due to our
stricter user name checking. We were disallowing user names
containing '$', which is needed when using smbpasswd to add a
machine into a domain. Automatically adding machines (using the
native Windows tools) into a Samba domain worked correctly.
2.2.1a fixes this single problem.
New/Changed parameters in 2.2.1
-------------------------------
Added parameters.
-----------------
obey pam restrictions
When Samba is configured to use PAM, turns on or off Samba checking
the PAM account restrictions. Defaults to off.
pam password change
When Samba is configured to use PAM, turns on or off Samba passing
the password changes to PAM. Defaults to off.
large readwrite
New option to allow new Windows 2000 large file (64k) streaming
read/write options. Needs a 64 bit underlying operating system
(for Linux use kernel 2.4 with glibc 2.2 or above). Can improve performance
by 10% with Windows 2000 clients. Defaults to off. Not as tested
as some other Samba code paths.
hide unreadable
Prevents clients from seeing the existance of files that cannot
be read. Off by default.
enhanced browsing
Turn on/off the enhanced Samba browing functionality (*1B names).
Default is "on". Can prevent eternal machines in workgroups when
WINS servers are not synchronised.
Removed parameters.
-------------------
domain groups
domain admin users
domain guest users
Changes in 2.2.1
-----------------
1). "find" command removed for smbclient. Internal code now used.
2). smbspool updates to retry connections from Michael Sweet.
3). Fix for mapping 8859-15 characters to UNICODE.
4). Changed "security=server" to try with invalid username to prevent
account lockouts.
5). Fixes to allow Windows 2000 SP2 clients to join a Samba PDC.
6). Support for Windows 9x Nexus tools to allow security changes from Win9x.
7). Two locking fixes added. Samba 2.2.1 now passes the Clarion network
lock tester tool for distributed databases.
8). Preliminary support added for Windows 2000 large file read/write SMBs.
9). Changed random number generator in Samba to prevent guess attacks.
10). Fixes for tdb corruption in connections.tdb and file locking brlock.tdb.
smbd's clean the tdb files on startup and shutdown.
11). Fixes for default ACLs on Solaris.
12). Tidyup of password entry caching code.
13). Correct shutdowns added for send fails. Helps tdb cleanup code.
14). Prevent invalid '/' characters in workgroup names.
15). Removed more static arrays in SAMR code.
16). Client code is now UNICODE on the wire.
17). Fix 2 second timstamp resolution everywhere if dos timestamp set to yes.
18). All tdb opens now going through logging function.
19). Add pam password changing and pam restrictions code.
20). Printer driver management improvements (delete driver).
21). Fix difference between NULL security descriptors and empty
security descriptors.
22). Fix SID returns for server roles.
23). Allow Windows 2000 mmc to view and set Samba share security descriptors.
24). Allow smbcontrol to forcibly disconnect a share.
25). tdb fixes for HPUX, OpenBSD and other OS's that don't have a coherent
mmap/file read/write cache.
26). Fix race condition in returning create disposition for file create/open.
27). Fix NT rewriting of security descriptors to their canonical form for
ACLs.
28). Fix for Samba running on top of Linux VFAT ftruncate bug.
29). Swat fixes for being run with xinetd that doesn't set the umask.
30). Fix for slow writes with Win9x Explorer clients. Emulates Microsoft
TCP stack early ack specification error.
31). Changed lock & persistant tdb directory to /var/cache/samba by default on
RedHat and Mandrake as they clear the /var/lock/samba directory on reboot.
refinements since 4.0.99k, a new feature -- an experimental
"huff-n-puff" filter (optionally enabled in /etc/ntp.conf) -- which
discards samples with the highest delays, and new drivers for:
Forum Graphic GPS, WWV/H, Heath GC-100 II, HOPF serial and PCI,
ONCORE, ulink331.
Drop the packages's requirement for GNU readline. It turns out
that command line editing in "ntpq" is not all that useful, as
you can alway let your shell recall "ntpq -c <command>".
Changes:
o several new options in config file revelant when sending messages to Plus phones;
now supports ICQ gateway, too
o yet another change in Era handling code
o improved way to parse email address from both environment variables and config file
o improved hostname detection code
* converted to use buildlink.mk files
* simplified patch-aa
--- 9.1.3 released ---
--- 9.1.3rc3 released ---
911. [bug] Fail gracefully with multiple hint zones. [RT #1433]
910. [port] Some pre-RFC2133 IPv6 implementations do not define
IN6ADDR_ANY_INIT. [RT #1416]
--- 9.1.3rc2 released ---
904. [bug] The server would leak memory if attempting to use
an expired TSIG key. [RT #1406]
903. [bug] dig should not crash when receiving a TCP packet
of length 0.
902. [bug] The -d option was ignored if both -t and -g were also
specified.
901. [cleanup] The man pages no longer have empty lines outside of
literal blocks.
898. [bug] "dig" failed to set a nonzero exit status
on UDP query timeout. [RT #1323]
894. [bug] When using the DNSSEC tools, a message intended to warn
when the keyboard was being used because of the lack
of a suitable random device was not being printed.
892. [bug] The server could attempt to refresh a zone that
was being loaded, causing an assertion failure.
[RT #1335]
891. [bug] Return an error when a SIG(0) signed response to
an unsigned query is seen. This should actually
do the verification, but it's not currently
possible. [RT #1391]
888. [bug] Don't die when using TKEY to delete a nonexistent
TSIG key. [RT #1392]
860. [interop] Drop cross class glue in zone transfers.
852. [bug] Handle responses from servers which do not
now about IXFR.
850. [bug] dns_rbt_findnode() would not find nodes that were
split on a bitstring label somewhere other than in
the last label of the node. [RT #1351]
705. [port] Work out resource limit type for use where rlim_t is
not available. [RT #695]
704. [port] RLIMIT_NOFILE is not available on all platforms.
703. [port] sys/select.h is needed on older platforms. [RT #695]
--- 9.1.3rc1 released ---
831. [bug] The configure script tried to determine
endianness before making its final decision on
which C compiler to use, causing Solaris/x86
systems with gcc to be incorrectly identified
as big-endian. [RT #1315]
827. [bug] When an IXFR protocol error occurs, the slave
should retry with AXFR.
826. [bug] Some IXFR protocol errors were not detected.
825. [bug] zone.c:ns_query() detached from the wrong zone
reference. [RT #1264]
824. [bug] Correct line numbers reported by dns_master_load().
[RT #1263]
822. [bug] Sending nxrrset prerequisites would crash nsupdate.
[RT #1248]
806. [bug] DNS_R_SEENINCLUDE was failing to propagate back up
the calling stack to the zone maintence level, causing
zones to not reload when an included file was touched
but the top-level zone file was not.
771. [cleanup] TSIG errors related to unsynchronized clocks
are logged better. [RT #919]
734. [bug] An attempt to re-lock the zone lock could occur if
the server was shutdown during a zone tranfer.
[RT #830]
712. [bug] Sending a large signed update message caused an
assertion failure. [RT #718]
669. [bug] dnssec-keygen now makes the public key file
non-world-readable for symmetric keys. [RT #403]
big enough, resulting into overwriting of stack variables making wmnet
core dump because of segfault. Increase buffer size to avoid that.
Bump to 1.06nb2.
so remove it from package Makefiles. Also move the inclusion of the
buildlink.mk files to the end of the Makefile to just before bsd.pkg.mk
to ensure that any Makefile settings occur before the buildlink.mk files.
This is quite a different package from pkgsrc/devel/p5-LDAP; this one
doesn't require the mozilla ldapsdk, and also seems to be the 'standard'
LDAP interface these days.
WHATS NEW IN Samba 2.2.0a: 23rd June 2001
==========================================
SECURITY FIX
============
This is a security bugfix release for Samba 2.2.0. This release provides the
following two changes *ONLY* from the 2.2.0 release.
1). Fix for the security hole discovered by Michal Zalewski (lcamtuf@bos.bindview.com)
and described in the security advisory below.
2). Fix for the hosts allow/hosts deny parameters not being honoured.
No other changes are being made for this release to ensure a security fix only.
For new functionality (including these security fixes) download Samba 2.2.1
when it is available.
The security advisory follows :
IMPORTANT: Security bugfix for Samba
------------------------------------
June 23rd 2001
Summary
-------
A serious security hole has been discovered in all versions of Samba
that allows an attacker to gain root access on the target machine for
certain types of common Samba configuration.
The immediate fix is to edit your smb.conf configuration file and
remove all occurances of the macro "%m". Replacing occurances of %m
with %I is probably the best solution for most sites.
Details
-------
A remote attacker can use a netbios name containing unix path
characters which will then be substituted into the %m macro wherever
it occurs in smb.conf. This can be used to cause Samba to create a log
file on top of an important system file, which in turn can be used to
compromise security on the server.
The most commonly used configuration option that can be vulnerable to
this attack is the "log file" option. The default value for this
option is VARDIR/log.smbd. If the default is used then Samba is not
vulnerable to this attack.
The security hole occurs when a log file option like the following is
used:
log file = /var/log/samba/%m.log
In that case the attacker can use a locally created symbolic link to
overwrite any file on the system. This requires local access to the
server.
If your Samba configuration has something like the following:
log file = /var/log/samba/%m
Then the attacker could successfully compromise your server remotely
as no symbolic link is required. This type of configuration is very
rare.
The most commonly used log file configuration containing %m is the
distributed in the sample configuration file that comes with Samba:
log file = /var/log/samba/log.%m
in that case your machine is not vulnerable to this attack unless you
happen to have a subdirectory in /var/log/samba/ which starts with the
prefix "log."
Credit
------
Thanks to Michal Zalewski (lcamtuf@bos.bindview.com) for finding this
vulnerability.
New Release
-----------
While we recommend that vulnerable sites immediately change their
smb.conf configuration file to prevent the attack we will also be
making new releases of Samba within the next 24 hours to properly fix
the problem. Please see http://www.samba.org/ for the new releases.
Please report any attacks to the appropriate authority.
The Samba Team
security@samba.org
This is pconsole, the parallel console tool. pconsole was meant as an
interactive administrative shell tool for clusters.
pconsole allows you to connect to each node of your cluster simultaneously,
and you can type your administrative commands in a specialized window that
'multiplies' the input to each of the connections you have opened.
pconsole is best run from within X Windows, although it is possible to
employ it without X (in console mode) as well.
You need to install pconsole on only 1 machine in the cluster, this would
usually be your central administrative node.
pconsole makes use of ssh if possible.
FOO_REQD=1.0 being converted to foo>=1.0, one can now directly specify
the dependency pattern as FOO_DEPENDS=foo>=1.0. This allows things like
JPEG_DEPENDS=jpeg-6b, or fancier expressions like for postgresql-lib.
Change existing FOO_REQD definitions in Makefiles to FOO_DEPENDS.
Changes include:
4.2.1.23, Released Sunday 17 June 2001, changes:
Fixed compilation error in stats-sol.c
4.2.1.22, Released Saturday 16 June 2001, changes:
Darwin / MacOS X support
BeOS support
Improved Irix support
BSD idle-time-submit(tm) support
New SendCPULevel option (BSD, Solaris & Irix only)
Debian init.d script
Alternative to the upchk script added
Fixed compilating error when using the NR_LINUX_UPTIME_WRAPAROUNDS
That's all folks!
Notable changes in reverse order (newest on top):
* mrtg_lib had broken scanning for Ip tables in populateconfcache
this caused reference by IP to break
* new option for mrtg --logging replaces $main::debugfile from 2.9.13.
It can be set to a file which will take all mrtg output. On Win32 it can
also be set to 'eventlog' which will make all mrtg output go to the
eventlog.
* snmpv2 regexp did not match in cfgmaker
* fix for indexmakers extension feature
* improved mrtg logfile format description
* require perl 5.005 for mrtg_lib
* populateconfcache steps across non existing tables gracefully
* in mrtg, handle bigint more carefully and remove excess + from results
as some perls seem to crash on them ...
* check if gd was linked with jpeg and even freetype ...
* if $main::debugfile is set to a writeable filename, all output form mrtg
will go there (Firedeamon Suggenstion)
* SNMP_Session 0.86 added ... lenient_source_port_matching replaces the ad hoc
only_ip_address_matching from mrtg 2.9.11 ... AS/400 folks beware
* added --section=portname to indexmaker
* try to fix IsCounterBroken test in cfgmaker ... just cant find any broken
coutners to test this :-(
* fix for broken --dns-domain in cfgmaker
* fix for broken RouterUptime[] configurable
* fix for broken snmp with returns negative numbers for counters ...
* integrated my SNMP_utils changes into the real thing.
* make sure cfgmaker puts now raw < or > into the PageTop tag
* properly integrated ytics support in rateup
* properly deal with target math resulting in non integer data even when
logging to rateup which can not deal with floats.
* cleanup of rateup.c and some new options -b -a -o -i
* new options for mrtg noborder, noarrow, noi, noo, nobanner and nolegend
check reference.pod for docs.
* generator meta tag to html pages
* add 'only_ip_address_matching' feature to SNMP_Session. We are
more libaral when accepting snmp responses now.
* be more tolerant with external scripts input
* added feature to SNMP_utils: If first snmp var name is a HASH pointer,
the hash contents is used to set snmp options on the connection
* handle descriptions with & in cfgmaker
* added SnmpOptions: command to mrtg.cfg lanuage ... It allows
to set Snmp Options as available in SNMP_Session. Check the reference.txt file.
* test for availability of ifHCInOctets when running cfgmaker for v2 targets
* fixed indexmake image path for situations with Directories
* added option --prefix to indexmaker for people keeping thier index
somewhere else than default.
* honor background option in cfg file for indexmaker pages
* fixed warning in indexmaker (Use of uninitialized value in concatenation <.>
at indexmaker line 174)
* when the integer option was specified, there was still a .x printed in the summary area ...
* mrtg will now timestamp any warning and error message it emits
* fixed threshold processing ... IT REALY WORKS NOW! ...
**** Incompatible CHANGE ****************
ThreshProgOK now gets the same
commandline arguments as the normal ThreshProg ...
**** Incompatible CHANGE ****************
* configurable confcache (.ok) file location
* add <meta http-equiv="Cache-Control" content="no-cache">
to html files as this seems to be more understandable than "Pragma" content="no-cache"
vsftpd is an FTP server, or daemon. The "vs" stands for Very Secure. Obviously
this is not a guarantee, but a reflection that I have written the entire
codebase with security in mind, and carefully designed the program to be
resilient to attack.
Recent evidence suggests that vsftpd is also extremely fast (and this is
before any explicit performance tuning!) In tests against wu-ftpd, vsftpd
was always faster, supporting over twice as many users in some tests.
Package provided by Jacek Latos <vaneth@krasnik.org> in pkg/13208;
minor modifications by me.
entry to prevent finding libncurses and unnecessary patches to configure
script to handle SSL location and probing libcups. Also use FILES_SUBST
instead of repeating a sed script throughout the Makefile.
Changes:
merged changes from axfr-get.html into axfr-get.8:
http://cr.yp.to/djbdns/doc.tar.gz
added contributed man-page tinydns-edit.8, thanks Jonathan de Boyne Pollard.
o modify patch-aa to match my current taste:
don't remove CFLAGS line, just change '=' to '+=' and remove -O switch
o don't hack install target in ipw's Makefile any longer, it's easier to
install binary in do-install target in pkg's Makefile (we already have
the post-install target as it installs README file, so I hope it's ok)
--- 9.2.0a2 released ---
899. [bug] lib/dns/soa.c failed to compile on many platforms
due to inappropriate use of a void value.
[RT #1372, #1373, #1386, #1387, #1395]
898. [bug] "dig" failed to set a nonzero exit status
on UDP query timeout. [RT #1323]
897. [bug] A config.guess update changed the system identification
string of UnixWare systems; configure now recognizes
the new string.
896. [bug] If a configuration file is set on named's command line
and it has a relative pathname, the current directory
(after any possible jailing resulting from named -t)
will be prepended to it so that reloading works
properly even when a directory option is present.
895. [func] New function, isc_dir_current(), akin to POSIX's
getcwd().
894. [bug] When using the DNSSEC tools, a message intended to warn
when the keyboard was being used because of the lack
of a suitable random device was not being printed.
893. [func] Removed isc_file_test() and added isc_file_exists()
for the basic functionality that was being added
with isc_file_test().
892. [placeholder]
891. [bug] Return an error when a SIG(0) signed response to
an unsigned query is seen. This should actually
do the verification, but it's not currently
possible. [RT #1391]
890. [cleanup] The man pages no longer require the mandoc macros
and should now format cleanly using most versions of
nroff, and HTML versions of the man pages have been
added. Both are generated from DocBook source.
889. [port] Eliminated blank lines before .TH in nroff man
pages since they cause problems with some versions
of nroff. [RT #1390]
888. [bug] Don't die when using TKEY to delete a nonexistent
TSIG key. [RT #1392]
887. [port] Detect broken compilers that can't call static
functions from inline functions. [RT #1212]
866. [func] Close debug only file channels when debug is set to
zero. [RT #1246]
865. [bug] The new configuration parser did not allow
the optional debug level in a "severity debug"
clause of a logging channel to be omitted.
This is now allowed and treated as "severity
debug 1;" like it does in BIND 8.2.4, not as
"severity debug 0;" like it did in BIND 9.1.
[RT #1367]
864. [cleanup] Multithreading is now enabled by default on
OSF1, Solaris 2.7 and newer, AIX, IRIX, and HP-UX.
863. [bug] If an error occurred while an outgoing zone transfer
was starting up, the server could access a domain
name that had already been freed when logging a
message saying that the transfer was starting.
[RT #1383]
862. [bug] Use after realloc(), non portable pointer arithmetic in
grmerge().
861. [port] Add support for Mac OS X, by making it equivalent
to Darwin. This was derived from the config.guess
file shipped with Mac OS X. [RT #1355]
860. [func] Drop cross class glue in zone transfers.
859. [bug] Cache cleaning now won't swamp the CPU if there
is a persistent overlimit condition.
858. [func] isc_mem_setwater() no longer requires that when the
callback function is non-NULL then its hi_water
argument must be greater than its lo_water argument
(they can now be equal) or that they be non-zero.
857. [cleanup] Use ISC_MAGIC() to define all magic numbers for
structs, for our friends in EBCDIC-land.
856. [func] Allow partial rdatasets to be returned in answer and
authority sections to help non-TCP capable clients
recover from truncation. [RT #1301]
855. [bug] Stop spurious "using RFC 1035 TTL semantics" warnings.
854. [bug] The config parser didn't properly handle config
options that were specified in units of time other
than seconds. [RT #1372]
853. [bug] configure_view_acl() failed to detach existing acls.
[RT #1374]
852. [bug] Handle responses from servers which do not know
about IXFR.
851. [cleanup] The obsolete support-ixfr option was not properly
ignored.
--- 9.2.0a1 released ---
850. [bug] dns_rbt_findnode() would not find nodes that were
split on a bitstring label somewhere other than in
the last label of the node. [RT #1351]
849. [func] <isc/net.h> will ensure INADDR_LOOPBACK is defined.
848. [func] A minimum max-cache-size of two megabytes is enforced
by the cache cleaner.
847. [func] Added isc_file_test(), which currently only has
some very basic functionality to test for the
existence of a file, whether a pathname is absolute,
or whether a pathname is the fundamental representation
of the current directory. It is intended that this
function can be expanded to test other things a
programmer might want to know about a file.
846. [func] A non-zero 'param' do dst_key_generate() when making an
hmac-md5 key means that good entropy is not required.
845. [bug] The access rights on the public file of a symmetric
key are now restricted as soon as the file is opened,
rather than after it has been written and closed.
844. [func] <isc/net.h> will ensure INADDR_LOOPBACK is defined,
just as <lwres/net.h> does.
843. [func] If no controls statement is present in named.conf,
or if any inet phrase of a controls statement is
lacking a keys clause, then a key will be automatically
generated by named and an rndc.conf-style file
named named.key will be written that uses it. rndc
will use this file only if its normal configuration
file, or one provided on the command line, does not
exist.
842. [func] 'rndc flush' now takes an optional view.
841. [bug] When sdb modules were not declared threadsafe, their
create and destroy functions were not serialized.
840. [bug] The config file parser could print the wrong file
name if an error was detected after an included file
was parsed. [RT #1353]
839. [func] Dump packets for which there was no view or that the
class could not be determined to category "unmatched".
838. [port] UnixWare 7.x.x is now suported by
bin/tests/system/ifconfig.sh.
837. [cleanup] Multithreading is now enabled by default only on
OSF1, Solaris 2.7 and newer, and AIX.
836. [func] Upgraded libtool to 1.4.
835. [bug] The dispatcher could enter a busy loop if
it got an I/O error receiving on a UDP socket.
[RT #1293]
834. [func] Accept (but warn about) master files beginning with
an SOA record without an explicit TTL field and
lacking a $TTL directive, by using the SOA MINTTL
as a default TTL. This is for backwards compatibility
with old versions of BIND 8, which accepted such
files without warning although they are illegal
according to RFC1035.
833. [cleanup] Moved dns_soa_*() from <dns/journal.h> to
<dns/soa.h>, and extended them to support
all the integer-valued fields of the SOA RR.
832. [bug] The default location for named.conf in named-checkconf
should depend on --sysconfdir like it does in named.
[RT #1258]
831. [placeholder]
830. [func] Implement 'rndc status'.
829. [bug] The DNS_R_ZONECUT result code should only be returned
when an ANY query is made with DNS_DBFIND_GLUEOK set.
In all other ANY query cases, returning the delegation
is better.
828. [bug] The errno value from recvfrom() could be overwritten
by logging code. [RT #1293]
827. [bug] When an IXFR protocol error occurs, the slave
should retry with AXFR.
826. [bug] Some IXFR protocol errors were not detected.
825. [bug] zone.c:ns_query() detached from the wrong zone
reference. [RT #1264]
824. [bug] Correct line numbers reported by dns_master_load().
[RT #1263]
823. [func] The output of "dig -h" now goes to stdout so that it
can easily be piped through "more". [RT #1254]
822. [bug] Sending nxrrset prerequisites would crash nsupdate.
[RT #1248]
821. [bug] The program name used when logging to syslog should
be stripped of leading path components.
[RT #1178, #1232]
820. [bug] Name server address lookups failed to follow
A6 chains into the glue of local authoritative
zones.
819. [bug] In certain cases, the resolver's attempts to
restart an address lookup at the root could cause
the fetch to deadlock (with itself) instead of
restarting. [RT #1225]
818. [bug] Certain pathological responses to ANY queries could
cause an assertion failure. [RT #1218]
817. [func] Adjust timeouts for dialup zone queries.
816. [bug] Report potential problems with log file accessibility
at configuration time, since such problems can't
reliably be reported at the time they actually occur.
815. [bug] If a log file was specified with a path separator
character (i.e. "/") in its name and the directory
did not exist, the log file's name was treated as
though it were the directory name. [RT #1189]
814. [bug] Socket objects left over from accept() failures
were incorrectly destroyed, causing corruption
of socket manager data structures.
813. [bug] File descriptors exceeding FD_SETSIZE were handled
badly. [RT #1192]
812. [bug] dig sometimes printed incomplete IXFR responses
due to an uninitialized variable. [RT #1188]
811. [bug] Parentheses were not quoted in zone dumps. [RT #1194]
810. [bug] The signer name in SIG records was not properly
downcased when signing/verifying records. [RT #1186]
809. [bug] Configuring a non-local address as a transfer-source
could cause an assertion failure during load.
808. [func] Add 'rndc flush' to flush the server's cache.
807. [bug] When setting up TCP connections for incoming zone
transfers, the transfer-source port was not
ignored like it should be.
806. [bug] DNS_R_SEENINCLUDE was failing to propagate back up
the calling stack to the zone maintence level, causing
zones to not reload when an included file was touched
but the top-level zone file was not.
805. [bug] When using "forward only", missing root hints should
not cause queries to fail. [RT #1143]
804. [bug] Attempting to obtain entropy could fail in some
situations. This would be most common on systems
with user-space threads. [RT #1131]
803. [bug] Treat all SIG queries as if they have the CD bit set,
otherwise no data will be returned [RT #749]
802. [bug] DNSSEC key tags were computed incorrectly in almost
all cases. [RT #1146]
801. [bug] nsupdate should treat lines beginning with ';' as
comments. [RT #1139]
800. [bug] dnssec-signzone produced incorrect statistics for
large zones. [RT #1133]
799. [bug] The ADB didn't find AAAA glue in a zone unless A6
glue was also present.
798. [bug] nsupdate should be able to reject bad input lines
and continue. [RT #1130]
797. [func] Issue a warning if the 'directory' option contains
a relative path. [RT #269]
796. [func] When a size limit is associated with a log file,
only roll it when the size is reached, not every
time the log file is opened. [RT #1096]
795. [func] Add the +multiline option to dig. [RT #1095]
794. [func] Implement the "port" and "default-port" statements
in rndc.conf.
793. [cleanup] The DNSSEC tools could create filenames that were
illegal or contained shell metacharacters. They
now use a different text encoding of names that
doesn't have these problems. [RT #1101]
792. [cleanup] Replace the OMAPI command channel protocol with a
simpler one.
791. [bug] The command channel now works over IPv6.
790. [bug] Wildcards created using dynamic update or IXFR
could fail to match. [RT #1111]
789. [bug] The "localhost" and "localnets" ACLs did not match
when used as the second element of a two-element
sortlist item.
788. [func] Add the "match-mapped-addresses" option, which
causes IPv6 v4mapped addresses to be treated as
IPv4 addresses for the purpose of acl matching.
787. [bug] The DNSSEC tools failed to downcase domain
names when mapping them into file names.
786. [bug] When DNSSEC signing/verifying data, owner names were
not properly downcased.
785. [bug] A race condition in the resolver could cause
an assertion failure. [RT #673, #872, #1048]
784. [bug] nsupdate and other programs would not quit properly
if some signals were blocked by the caller. [RT #1081]
783. [bug] Following CNAMEs could cause an assertion failure
when either using an sdb database or under very
rare conditions.
782. [func] Implement the "serial-query-rate" option.
781. [func] Avoid error packet loops by dropping duplicate FORMERR
responses. [RT #1006]
780. [bug] Error handling code dealing with out of memory or
other rare errors could lead to assertion failures
by calling functions on unitialized names. [RT #1065]
779. [func] Added the "minimal-responses" option.
778. [bug] When starting cache cleaning, cleaning_timer_action()
returned without first pausing the iterator, which
could cause deadlock. [RT #998]
777. [bug] An empty forwarders list in a zone failed to override
global forwarders. [RT #995]
776. [func] Improved error reporting in denied messages. [RT #252]
775. [placeholder]
774. [func] max-cache-size is implemented.
773. [func] Added isc_rwlock_trylock() to attempt to lock without
blocking.
772. [bug] Owner names could be incorrectly omitted from cache
dumps in the presence of negative caching entries.
[RT #991]
771. [cleanup] TSIG errors related to unsynchronized clocks
are logged better. [RT #919]
770. [func] Add the "edns yes_or_no" statement to the server
clause. [RT #524]
769. [func] Improved error reporting when parsing rdata. [RT #740]
768. [bug] The server did not emit an SOA when a CNAME
or DNAME chain ended in NXDOMAIN in an
authoritative zone.
767. [placeholder]
766. [bug] A few cases in query_find() could leak fname.
This would trigger the mpctx->allocated == 0
assertion when the server exited.
[RT #739, #776, #798, #812, #818, #821, #845,
#892, #935, #966]
765. [func] ACL names are once again case insensitive, like
in BIND 8. [RT #252]
764. [func] Configuration files now allow "include" directives
in more places, such as inside the "view" statement.
[RT #377, #728, #860]
763. [func] Configuration files no longer have reserved words.
[RT #731, #753]
762. [cleanup] The named.conf and rndc.conf file parsers have
been completely rewritten.
761. [bug] _REENTRANT was still defined when building with
--disable-threads.
760. [contrib] Significant enhancements to the pgsql sdb driver.
759. [bug] The resolver didn't turn off "avoid fetches" mode
when restarting, possibly causing resolution
to fail when it should not. This bug only affected
platforms which support both IPv4 and IPv6. [RT #927]
758. [bug] The "avoid fetches" code did not treat negative
cache entries correctly, causing fetches that would
be useful to be avoided. This bug only affected
platforms which support both IPv4 and IPv6. [RT #927]
757. [func] Log zone transfers.
756. [bug] dns_zone_load() could "return" success when no master
file was configured.
755. [bug] Fix incorrectly formatted log messages in zone.c.
754. [bug] Certain failure conditions sending UDP packets
could cause the server to retry the transmission
indefinitely. [RT #902]
753. [bug] dig, host, and nslookup would fail to contact a
remote server if getaddrinfo() returned an IPv6
address on a system that doesn't support IPv6.
[RT #917]
752. [func] Correct bad tv_usec elements returned by
gettimeofday().
751. [func] Log successful zone loads / transfers. [RT #898]
750. [bug] A query should not match a DNAME whose trust level
is pending. [RT #916]
749. [bug] When a query matched a DNAME in a secure zone, the
server did not return the signature of the DNAME.
[RT #915]
748. [doc] List supported RFCs in doc/misc/rfc-compliance.
[RT #781]
747. [bug] The code to determine whether an IXFR was possible
did not properly check for a database that could
not have a journal. [RT #865, #908]
746. [bug] The sdb didn't clone rdatasets properly, causing
a crash when the server followed delegations. [RT #905]
745. [func] Report the owner name of records that fail
semantic checks while loading.
744. [bug] When returning DNS_R_CNAME or DNS_R_DNAME as the
result of an ANY or SIG query, the resolver failed
to setup the return event's rdatasets, causing an
assertion failure in the query code. [RT #881]
743. [bug] Receiving a large number of certain malformed
answers could cause named to stop responding.
[RT #861]
CXXFLAGS, and LDFLAGS by the buildlink.mk files so remove the extra
definitions to add them from the package Makefiles. As advised by the
bsd.buildlink.mk file, also ensure that the buildlink.mk files are
included prior to defining any package-specific CFLAGS/LDFLAGS to ensure
that the buildlink directories are at the head of the compiler search
paths.
-I${BUILDLINK}/include through via CPPFLAGS as well as CFLAGS to ensure
that readline/readline.h is found by the configure script. Fixes
pkg/13110 by Jesse Off.
By the means of a DHIS client a host which is assigned a dynamic
IP address (either from its ISP or from DHCP) is able to communicate
with a DHIS server in order to advertise its newly acquired IP
address.
The DHIS server (permanently online) listens to UDP messages from
its clients and authenticates these against its knowledge of keys.
When authentication is successful the DHIS server updates one or
more databases with the newly received IP address for the given
client.
The server then keeps sending, every period of time, check requests
to each of its connected clients. These need to be acknowledged.
If not the server will consider, on an individual basis, that the
client has disconnected and will
again update the databases to an offline state.
Alternativelly the server may receive an OFFLINE_REQ packet from
the client, in which case the DNS record is updated at once and
the online state droped.
were previously enlarged by the sequence: lseek, write, munmap, mmap
and are now enlarged by: munmap, lseek, write, mmap.
The Samba team is already aware of the problem. I expect this patch will
be incorporated in a future release.
linking against installed libraries or finding installed headers except
for those that are explicitly linked into ${BUILDLINK_INCDIR} and
${BUILDLINK_LIBDIR}.
* Don't prototype history functions directly, but use
<readline/history.h> to pull them in. This allows us to use libedit's
readline emulation.
* Add INSTALL/DEINSTALL scripts to handle coda-server and coda-client both
installing coda-setup-ports and codaconfedit.
* Try to remove ${PREFIX}/etc/coda at post-deinstall time.
linking against installed libraries or finding installed headers except
for those that are explicitly linked into ${BUILDLINK_INCDIR} and
${BUILDLINK_LIBDIR}.
* Don't prototype history functions directly, but use
<readline/history.h> to pull them in. This allows us to use libedit's
readline emulation.
* Add INSTALL/DEINSTALL scripts to handle coda-server and coda-client both
installing coda-setup-ports and codaconfedit.
* Try to remove ${PREFIX}/etc/coda at post-deinstall time.
and ${BUILDLINK_LIBDIR} to find headers and libraries. Also find tputs()
in termcap first, before looking in tinfo, curses, then ncurses. Simplify
the PLIST handling by using space-separated list of PLIST files in
PLIST_SRC.
Overview of changes in Ethereal 0.8.18:
* Improvement of 'make clean' targets. (gilbert)
* Added the ethereal capture preferences to the preference file. (Jeff, Guy)
* Fix automake packaging of win32-only files. (gilbert)
* Remove "etypes.h" include from "ipproto.c" (gilbert)
* Tvbuffify the ASN.1 code and the Kerberos, LDAP, and SNMP dissectors. (Guy)
* Get rid of an unused variable, and fix a typo in a comment in packet-ldap.c (Guy)
* packet-snmp.c Fix up a pile of NullTVB uses that were left in the previous checkin. (Guy)
* Assorted cleanups in packet-kerberos.c (Guy)
* packet-vines.c, packet-quake.c, packet-snmp.c, check for disabled protocols and set "pinfo->current_proto" (Guy)
* Assorted ISIS enhancements. (Hannes Gredler)
* When dissecting the ISIS NLPID CLV, use the "nlpid_vals" array to convert NLPID values to protocol names. (Guy)
* In wiretap/buffer.c Fix "data" member of a Buffer structure g_malloc casting (Guy)
* In wiretap/lanalyzer.c Removed g_assert_not_reached and return 0; from lanalyzer_open() loop. (Guy)
* Fix the e-mail address for Joerg Mayer (and remove it from files he wasn't involved with). (Guy)
* Quarterly (or so) update to manuf (Gerald)
* Move the declaration of "ipprotostr()" out of "epan/packet.h" into a new "ipproto.h" header file. (Guy)
* Move the declaration of "etype_vals[]" from "epan/packet.h" to "etypes.h". (Guy,Ed Warnicke)
* Fix to a preferences dialog bug, from <inoue@ainet.or.jp>. (Guy)
* Fix to WTP retransmission indicator dissection (Guy,Olivier Biot)
* packet-bgp.c, packet-bgp.h tvbuffified (Heikki Vatiainen, Guy)
* Add -I/usr/local/include" into CFLAGS because GLib 1.2.9 doesn't any more (Guy)
* WTLS client and trusted key ID handling enhancements (Patrick Wolfe, Guy)
* Tvbuffify packet-yhoo.c (Nathan Neulinger)
* Makefile.nmake pulls in settings from config.nmake (Gram)
* ascend-scanner.l, #define YY_NEVER_INTERACTIVE to avoid reference to isatty() on Win32 (Gram)
* IP fragment reassembly (Ronnie Sahlberg, Guy)
* Fixed problem with nmake compiling lemon.c twice (Gram)
* Check the validity of numbers specified in command-line options. (Guy)
* Add ONC RPC strings to the tree as strings, with a field index (Ronnie Sahlberg, Guy)
* YPPASSWD support (Ronnie Sahlberg, Guy)
* Distribute wtap.def (Gram)
* Include "image/Makefile.nmake" in the distribution tarball. (Guy)
* Fixed up the messages printed for the SSL checks (Guy)
* Have status bar to display nothing, rather than "Text (text)", when a
"proto_tree_add_text()" field is selected. (Ronnie Sahlberg, Guy)
* Cleanup the text item pseudo-field for the '-G' option (Guy)
* Get rid of the FT_-name-to-description filtering in eproto2sgml (Guy)
* DCE RPC updates (Todd Sabin, Guy)
* Cleanup packet-rsvp.c object class-specific types (Guy)
* Added error messages to proto.c for BASE_NONE in FT_INTn & FT_UINTn (hagbard,Guy)
* Added perl script to generate X11 dissector fields (Guy)
* Include "process-x11-fields.pl" and "x11-fields" in the source distribution (Guy)
* Fix up "process-x11-fields" to allow both a base *and* VALS to be specified (Guy)
* Make the X11 fields that correspond to drawable IDs, masks, and the like
display as hex rather than decimal. (Guy)
* packet-x11.c - Use "%u", not "%d", to print unsigned quantities (Guy)
* Add support for comments in "process-x11-fields.pl", and add a copyright
notice/RCS ID/credit to Christophe to "x11-fields" as a comment. (Guy)
* packet-eigrp.c - Put top-level item for a TLV into the protocol tree with a text
value, for display if an exception occurs (Guy)
* KLM support (Ronnie Sahlberg, Guy)
* Put an RCS ID/GPL/copyright notice into the "process-x11-fields.pl" script (Guy)
* tethereal.c - Add a "return 0;" at the end of main() to pacify MSVC 5 (Gram)
* Fix Gerald's e-mail address - (Guy)
* dfilter_expr_dlg.c - Treat BASE_BIN like BASE_DEC for numeric value of value_string (Guy)
* README.developer - Explain BASE_{DEC,HEX,OCT,BIN} a bit more (Guy)
* editcap.c - add return 0; to main routine (Guy)
* TODO - Update the reassembly item to note that IPv4 fragments are now reassembled. (Guy)
* SPRAY support (Ronnie Sahlberg, Guy)
* rquota support completed (Ronnie Sahlberg, Guy)
* When registering numeric fields, check that a base other than BASE_NONE was specified. (Guy)
* Tvbuffification of the IPv6 and ICMPv6 dissectors, and some bug fixes (Heikki Vatiainen, Guy)
* Get rid of NullTVB references. (Guy)
* Get rid of END_OF_FRAME, BYTES_ARE_IN_FRAME references in tvbuffified dissectors. (Guy)
* Move the declarations of IP protocol numbers to "ipproto.h" from "packet-ip.h". (Guy)
* Get rid of unnecessary includes. (Guy)
* Signed vs. unsigned fixes (Joerg Mayer, Guy)
* Tvbuffify the RIPng dissector. (Guy)
* RANAP support (Martin Held, Guy)
* Modbus/TCP support (Riaan Swart, Guy)
* Tvbuffify the Gryphon dissector. (Guy)
* Undefine "isprint()" before re-defining it, to squelch a compiler warning. (Guy)
* Configure.in - Fail if both UCD and CMU SNMP headers are found because of link problem (Guy)
* If the SNMP headers were found but we failed to find "sprint_objid()", fail SNMP config (Guy)
* Make "col_set_str()" and "tvb_reported_length_remaining()" available in plugins. (Guy)
* Get rid of support for non-tvbuffified plugin dissectors. (Guy)
* "-l" command-line option to turn on automatic scrolling in "Update list
of captures in real time" captures (Christian Lacunza, Guy)
* HPUX plugin support using g_module_supported (Guy)
* Added support for DHCP Authentication extensions specified in
draft-ietf-dhc-authentication-16.txt (Ashokn)
* Added support for RSVP Refresh Reduction Extensions -
draft-ietf-rsvp-refresh-reduct-05. (Ashokn)
* Added one-line summary of each RSVP object in the object line. (Ashokn)
* Additional OSPF LSA types and opaque-options flag (Michael Rozhavsky, Guy)
* packet-wtls.c updates (Alexandre P. Ferreira, Guy)
* IPX SAP over IPX EIGRP support, and IP EIGRP authentication updates (Paul Ionescu, Guy)
* PIM enhancements and fixes (Heikki Vatiainen, Guy)
* Support for dissecting XDR arrays (Ronnie Sahlberg, Guy)
* NIS+ support (Ronnie Sahlberg, Guy)
* Additional LDAP checks for invalid packets (Scott Renfro, Guy)
* Better support of timestamps from NetXRay captures (Chris Jepeway, Guy)
* Automake updates for next version of automake (Nathan Neulinger, Guy)
* Updates for the next version of autoconf (Nathan Neulinger, Guy)
* Passive FTP support (Juan Toledo, Guy)
* Fix a text window, scrollbar bug reported by Christopher McAvaney (gerald)
* Updates to OSPF for the changes between drafts 3 and 4 of
* Various ISIS improvements (Jean-Christian Pennetier, Guy)
* osi-util.c Fix postfix error in string generation (Chris Fould, Guy)
* Support for Cisco-proprietary capabilities in BGP (Jian Yu)
Overview of changes in Ethereal 0.8.17:
* Display filter GUI fix (Guy)
* Build fix: use SSL_LIBS if found by configure (Henri Gomez)
* Fix 2 off-by-1 erros in the code that selects a field after
user clicks on a byte in the hex dump (Gilbert)
* Typo fixes to packet-q931.c (Thomas Gimpel)
* Win32 build: create HTML doco (Gilbert)
* Fixes for Lemon compilation (Guy)
* Wiretap file-close fix (Guy)
* Wiretap open() design fix (Guy)
* New dissector: support for CUPS browsing protocol (Charles Levert)
* Wiretap support for Cisco HDLC (Guy)
* New dissector: Cisco HDLC (guy)
* Tvbuffication of MOUNT dissector (Ronnie Sahlberg)
* Tvbuffication of HCLNFSD dissector (Ronnie Sahlberg)
* Memory double-free fix (Guy)
* Change tvb_get_ptr() to return 'const guint8*' (Gilbert, Guy)
* Fix for IEEE 802.11 trying to modify result of tvb_get_ptr() (Guy)
* Update to CUPS (Guy)
* Update to CLNP (Guy)
* Fix for Win32 file renaming (Guy)
* Update to MGCP (Ed Warnicke, Guy)
* Update to STAT dissector (Ronnie Sahlberg)
* Check for NULL in proto_tree_add_* routines (Guy, Jeff)
* Tvbuffication of YPSERV (Ronnie Sahlberg)
* Tvbuffication of BOOTPARAM (Ronnie Sahlberg)
* New dissector: DCE RPC support (Tod Sabin)
* Update to SMB mailslot, browse, pipe (Guy)
* Update to SMB (Guy)
* Add 48.48 PNG of new 3d logo (Gilbert)
* Compiler warning fixes (Guy)
* MS Proxy fix and tvbuffication (Guy, Jeff)
* Move address routines to epan (Ed Warnicke)
* Change "IEE 802.3" Ethernet label (Gilbert)
* New feature: Protocol Hierarchy Statistics (Gilbert, Guy)
* Win32 build: build wiretap as DLL, use WinPcap 2.1 (Gilbert)
* New feature: multiple named data sources (Jeff, Guy)
* Update to Frame Relay (Jeff, Guy)
* New dissector: LMI for frame relay (Jeff)
* New dissector: Wellfleet compression (Jeff)
* Update to WTP (Guy)
* Updates to AFS (Nathan)
* Fix for WCP (Guy, Jeff)
* Back out guint64 handling in wiretap netxray module (Guy)
* Add APi for creating progess dialogues (Guy)
* Tvbuffication of ICQ (Guy)
* GTK-related code fixes (Eduardo Pérez Ureta)
* Update to RX (Nathan)
* Add "-D" flag to tethereal to show list of all network
interfaces (Guy)
* Update to IP: check for small header lengths (Guy)
* Update TPKT (Guy)
* Fix for ICMPv6 crash (Olivier, found by Heikki Vatiainen)
* Fix for "checksum bad" flags in proto_tree in IP, UDP, TCP (Guy)
* Update to PPP (Guy)
* Update to Q.931 (Guy)
* New disector: BACNET (Hartmut Mueller)
* Code movement from dissectors to epan (Ed Warnicke, Guy)
* General code cleaning (Guy)
* Win32: load wpcap.dll at run-time, not load-time (Gilbert)
* Support for "Transparent Ethernet Bridging" (Guy)
* New dissector: GTP (Michal Melerowicz)
* Fix for ISAKMP : check for length of payload (Tim Newsham)
* Win32 build: use NullSoft Installer to provide packaging (Gilbert)
* Win32 build: keep version number in config.nmake, and generate
text files that need that version number (Gilbert)
* Win32 build: wiretap can use zlib (Gilbert)
* Update to SNMP (Guy)
* New dissector: RWALL (Ronnie Sahlberg)
* OSI-over-PPP support, plus fixes to ISIS (Hannes Gredler)
* Updates to SCTP (Michael Tuexen)
* Wiretap: support for Ascend version 7 output (Gerald)
* Fixes to NTP (Joerg Mayer)
* Doco updates (Guy, Gilbert)
* Fix for GTK file selection showing wrong directory in Open/Save As (Gilbert)
* Win32: isprint() hack to keep GTK from not showing characters in hex
dump and follow-tcp-stream window in certain cases (Gilbert)
Use BUILDLINK_INCDIR, BUILDLINK_LIBDIR for locations of linked headers
and libraries. Create a variable BUILDLINK_TARGETS whose value is the
list of build-link targets to execute.
Whatmask is a small C program that lets you easily convert between three common
subnet mask notations.
Notations supported:
Name Example
---------------------------------
CIDR /24
Netmask 255.255.255.0
Wilcard Bits 0.0.0.255
The above notations are all identical. CIDR notation commonly has a "/" in
front of the number (representing the number of bits). Whatmask can accept
these notations with or without a slash. This notation is used more and more
recently. A lot of popular routers and software supprt this notation.
Netmask notation is pretty much the standard old-school way of doing it. It is
supported by most systems (Un*x, Win, Mac, etc.).
Wilcard bits are similar to the netmask, but they are the logical not of the
netmask. This notation is used by a number of popular routers.
