Based on patch sent by Juan RP via PR pkg/20839.
Changes:
Nmap 3.20:
==========
o The random IP input option (-iR) now takes an argument specifying
how many IPs you want to scan (e.g. -iR 1000). Specify 0 for the old
neverending scan behavior.
o Fixed a tricky memory leak discovered by Mugz (mugz@x-mafia.com).
o Fixed output truncation problem noted by Lionel CONS (lionel.cons@cern.ch)
o Fixed a bug that would cause certain incoming ICMP error messages to
be improperly ignored.
Nmap 3.15BETA3:
===============
o Made numerous improvements to the timing behavior of "-T Aggressive"
(same as -T4) scans. It is now recommended for regular use by
impatient people with a fast connection. "-T Insane" mode has also
been updated, but we only recommend that for, well, insane people.
o Made substantial changes to the SYN/connect()/Window scanning
algorithms for improved speeds, especially against heavily filtered
hosts. If you notice any timing problems (misidentified ports,
etc.), please send me the details (including full Nmap output and a
description of what is wrong). Reports of any timing problems with
-T4 would be helpful as well.
o Changed Nmap such that ALL syn scan packets are sent from the port
you specify with -g. Retransmissions used to utilize successively
higher ports. This change has a downside in that some operating
systems (such as Linux) often won't reply to the retransmissions
because they reuse the same connection specifier quad
(srcip:srcport:dstip:dstport). Overall I think this is a win.
o Added timestamps to "Starting nmap" line and each host port scan in
verbose (-v) mode. These are in ISO 8601 standard format because
unlike President Bush, we actually care about International
consensus :).
o Nmap now comes by default in .tar.bz2 format, which compresses about
20% further. You can still find .tgz in the dist directory at
http://download.insecure.org/nmap/dist/?M=D .
o Various other minor bugfixes, new services, fingerprints, etc.
Nmap 3.15BETA2:
===============
o I added support for a brand new "port" that many of you may have
never scanned before! UDP & TCP "port 0" (and IP protocol 0) are now
permitted if you specify 0 explicitly. An argument like "-p -40"
would still scan ports 1-40. Unlike ports, protocol 0 IS now scanned
by default. This now works for ping probes too (e.g., -PS, -PA).
o Applied patch by Martin Kluge (martin@elxsi.info) which adds --ttl
option, which sets the outgoing IPv4 TTL field in packets sent via
all raw scan types (including ping scans and OS detection). The
patch "should work" on Windows, but hasn't been tested. A TTL of 0
is supported, and even tends to work on a LAN:
14:17:19.474293 192.168.0.42.60214 > 192.168.0.40.135: S 3265375623:3265375623(0) win 1024 [ttl 0] (id 35919, len 40)
14:17:19.474456 192.168.0.40.135 > 192.168.0.42.60214: S 2805154856:2805154856(0) ack 3265375624 win 64240 <mss 1460> (DF) (ttl 128, id 49889, len 44)
o Applied patch by Gabriel L. Somlo ( somlo@acns.colostate.edu ) which
extends the multi-ping-port functionality to nonroot and IPv6
connect() users.
o I added a new --datadir command line option which allows you to
specify the highest priority directory for Nmap data files
nmap-services, nmap-os-fingerprints, and nmap-rpc. Any files which
aren't in the given dir, will be searched for in the $NMAPDIR
environmental variable, ~/nmap/, a compiled in data directory
(e.g. /usr/share/nmap), and finally the current directory.
o Fixed Windows (VC++ 6) compilation, thanks to patches from Kevin
Davis (computerguy@cfl.rr.com) and Andy Lutomirski
(luto@stanford.edu)
o Included new Latvian man page translation by
"miscelerious options" (misc@inbox.lv)
o Fixed Solaris compilation when Sun make is used rather than GNU
make. Thanks to Tom Duffy (tduffy@sun.com) for assistance.
o Applied patch from Stephen Bishop (sbishop@idsec.co.uk) which
prevends certain false-positive responses when Nmap raw TCP ping scans
are being run in parallel.
o To emphasize the highly professional nature of Nmap, I changed all
instances of "fucked up" in error message text into "b0rked".
o Fixed a problem with nmap-frontend RPMs that would cause a bogus
/bin/xnmap link to be created (it should only create
/usr/bin/xnmap). Thanks to Juho Schultz
(juho.schultz@astro.helsinki.fi) for reporting the problem.
o I made the maximum number of allowed routes and interfaces allowed
on the scanning machine dynamic rather than hardcoded #defines of 1024
and 128. You never know -- some wacko probably has that many :).
Nmap 3.15BETA1:
===============
o Integrated the largest OS fingerprint DB updates ever! Thanks to
everyone who contributed signatures! New or substantially modified
fingerprints included the latest Windows 2K/XP changes, Cisco IOS
12.2-based routers and PIX 6.3 firewalls, FreeBSD 5.0, AIX 5.1,
OpenBSD 3.2, Tru64 5.1A, IBM OS/400 V5R1M0, dozens of wireless APs,
VOIP devices, firewalls, printers, print servers, cable modems,
webcams, etc. We've even got some mod-chipped Xbox fingerprints
now!
o Applied NetBSD portability patch by Darren Reed
(darrenr@reed.wattle.id.au)
o Updated Makefile to better-detect if it can't make nmapfe and
provide a clearer error message. Also fixed a couple compiler
warnings on some *BSD platforms.
o Applied patch from "Max" (nmap@webwizarddesign.com) which adds the
port owner to the "addport" XML output lines which are printed (only
in verbose mode, I think) as each open port is discovered.
o I killed the annoying whitespace that is normally appended after the
service name. Now it is only there when an owner was found via -sI
(in which case there is a fourth column and so "service" must be
exactly 24 characters).
Nmap 3.10ALPHA9:
================
o Reworked the "ping scan" algorithm (used for any scan except -P0 or
-sL) to be more robust in the face of low-bandwidth and congested
connections. This also improves reliability in the multi-port and
multi-type ping cases described below.
o "Ping types" are no longer exclusive -- you can now do combinations
such as "-PS22,53,80 -PT113 -PN -PE" in order to increase your odds of
passing through strict filters. The "PB" flag is now deprecated
since you can achieve the same result via "PE" and "PT" options.
o Applied patch (with modest changes) by Gabriel L. Somlo
(somlo@acns.colostate.edu), which allows multiple TCP probe ports in
raw (root) mode. See the previous item for an example.
o Fixed a libpcap compilation issue noted by Josef 'Jupp' Schugt
(deusxmachina@webmail.co.za) which relates to the definition (or
lack thereof) of ARPHRD_HDLC (used for Cisco HDLC frames).
o Tweaked the version number (-V) output slightly.
Nmap 3.10ALPHA7:
================
o Upgraded libpcap from version 0.6.2 to 0.7.1. Updated the
libpcap-possiblymodified/NMAP_MODIFICATIONS file to give a much
more extensive list (including diffs) of the changes included
in the Nmap bundled version of Libpcap.
o Applied patch to fix a libpcap alignment bug found by Tom Duffy
(tduffy@sun.com).
o Fixed Windows compilation.
o Applied patch by Chad Loder (cloder@loder.us) of Rapid7 which
fixes OpenBSD compilation. I believe Chad is now the official
OpenBSD Nmap "port" maintainer. His patch also adjusted
random-scan (-iR) to include the recently allocated 82.0.0.0/8
space.
o Fixed (I hope) a few compilation problems on
non-IPv6-enabled machines which were noted by Josef 'Jupp'
Schugt (jupp@gmx.de)
o Included some man page translations which were inadvertently
missed in previous tarballs.
o Applied patch from Matthieu Verbert (mve@zurich.ibm.com) which
places the Nmap man pages under ${prefix}/share/man rather than
${prefix}/man when installed via RPM. Maybe the tarball
install should do this too? Opinions?
o Applied patch from R Anderson (listbox@pole-position.org) which
improves the way ICMP port unreachables from intermediate hosts
are handled during UDP scans.
o Added note to man page related to Nmap US export control. I
believe Nmap falls under ECCN 5D992, which has no special
restrictions beyond the standard export denial to a handful of
rogue nations such as Iraq and North Korea.
o Added a warning that some hosts may be skipped and/or repeated
when someone tries to --resume a --randomize_hosts scan. This
was suggested by Crayden Mantelium (crayden@sensewave.com)
o Fixed a minor memory leak noted by Michael Davis
(mike@datanerds.net).
Nmap 3.10ALPHA4:
================
o Applied patch by Max Schubert (nmap@webwizarddesign.com) which adds
an add-port XML tag whenever a new port is found open when Nmap is
running in verbose mode. The new tag looks like:
<addport state="open" portid="22" protocol="tcp"/>
I also updated docs/nmap.dtd to recognize this new tag.
o Added German translation of Nmap manpage by Marc Ruef
(marc.ruef@computec.ch). It is also available at
http://www.insecure.org/nmap/data/nmap_manpage-de.html
o Includes a brand new French translation of the manpage by Sebastien
Blanchet. You could probably guess that it is available at
http://www.insecure.org/nmap/data/nmap_manpage-fr.html
o Applied some patches from Chad Loder (cloder@loder.us) which update
the random IP allocation pool and improve OpenBSD support. Some
were from the OBSD Nmap patchlist.
o Fixed a compile problem on machines without PF_INET6. Thanks to
Josef 'Jupp' Schugt (deusxmachina@webmail.co.za) for noting this.
Nmap 3.10ALPHA3:
================
o Added --min_parallelism option, which makes scans more aggressive
and MUCH faster in certain situations -- especially against
firewalled hosts. It is basically the opposite of --max_parallelism
(-M). Note that reliability can be lost if you push it too far.
o Added --packet_trace option, which tells Nmap to display all of the
packets it sends and receives in a format similar to tcpdump. I
mostly added this for debugging purposes, but ppl wishing to learn
how Nmap works or for experts wanting to ensure Nmap is doing
exactly what they epect. If you want this feature supported under
Windows, please send me a patch :).
o Fixed a segmentation fault in Idlescan (-sI).
o Made Idlescan timing more conservative when -P0 is specified to
improve accuracy.
o Fixed an infinite-loop condition that could occur during certain
dropped-packet scenarios in an Idle scan.
o Nmap now reports execution times to millisecond precision (rather
than rouding to the nearest second).
o Fixed an infinite loop caused by invalid port arguments. Problem
noted by fejed (fejed@uddf.net).
Nmap 3.10ALPHA2:
================
o Fixed compilation and IPv6 support on FreeBSD (tested on
4.6-STABLE). Thanks to Niels Heinen (niels.heinen@ubizen.com) for
suggestions.
o Made some portability changes based on suggestions by Josef 'Jupp'
Schugt (jupp@gmx.de)
o Fixed compilation and IPv6 support on Solaris 9 (haven't tested
earlier versions).
Nmap 3.10ALPHA1:
================
o IPv6 is now supported for TCP scan (-sT), connect()-style ping
scan (-sP), and list scan (-sL)! Just specify the -6 option and the
IPv6 numbers or DNS names. Netmask notation is not currently
supported -- I'm not sure how useful it is for IPv6, where even petty
end users may be allocated trillions of addresses (/80). If you
need one of the scan types that hasn't been ported yet, give
Sebastien Peterson's patch a try at http://nmap6.sourceforge.net/ .
If there is demand, I may integrate more of that into Nmap.
o Major code restructing, which included conversion to C++ -- so
you'll need g++ or another C++ compiler. I accidently let a C++
requirement slip in a while back and found that almost everyone has
such a compiler. Windows (VC++) users: see the README-WIN32 for new
compilation instructions.
o Applied patch from Axel Nennker (Axel.Nennker@t-systems.com) which
adds a --without-nmapfe option to the configure script. This si
useful if your system doesn't have the proper libraries (eg GTK) or
if you think GUIs are for sissies :).
o Removed arbitrary max_parallelism (-M) limitations, as suggested by
William McVey ( wam@cisco.com ).
o Added DEC OSF to the platforms that require the BSDFIX() macro due
to taking ip length and offset fields in host rather than network byte
order. Suggested by Dean Bennett (deanb@gbtn.net)
o Fixed an debug statement C ambiguity discovered by Kronos
(kronos@kronoz.cjb.net)
Notes:
This is SOAPpy 0.9.8. It contains substantial improvements over the last
release.
1) SOAPpy now uses the standard python
package installation tools. Executing the commands
$ python setup.py build
$ python setup.py install
(the second as root) should install SOAPpy into the appropriate Python
library directory.
2) There has been inconsistency in how SOAPpy library components have been
imported. This new release standardizes on:
from SOAPpy import SOAP
3) See the changelog for further enhancements.
Vcheck is a tool for checking for latest versions of programs at
HTTP and FTP locations given a list of URLs and (Perl-style) regular
expressions to match, and to optionally download them automatically.
Relevant changes since version 1.12:
Net::POP3
- Make more compliant. +OK and -ERR responses do not have to be followed
by a space.
Net::FTP
- Fix unique name extraction to pick up name on initial
Net::Cmd
- Compatibility fix for 5.004
Net::Cmd
- Ensure all debug output is via ->debug_print
Net::FTP
- Allow the user to specify a local address to use for sockets
Net::SMTP
- Avoid extra spaces on the end of the AUTH command
****************************************
* IMPORTANT: Security bugfix for Samba *
****************************************
The SuSE security audit team, in particular Sebastian Krahmer
<krahmer@suse.de>, has found a flaw in the Samba main smbd code which
could allow an external attacker to remotely and anonymously gain
Super User (root) privileges on a server running a Samba server.
This flaw exists in previous versions of Samba from 2.0.x to 2.2.7a
inclusive. This is a serious problem and all sites should either
upgrade to Samba 2.2.8 immediately or prohibit access to TCP ports 139
and 445. Advice created by Andrew Tridgell, the leader of the Samba
Team, on how to protect an unpatched Samba server is given at the end
of this section.
The SMB/CIFS protocol implemented by Samba is vulnerable to many
attacks, even without specific security holes. The TCP ports 139 and
the new port 445 (used by Win2k and the Samba 3.0 alpha code in
particular) should never be exposed to untrusted networks.
* Most important
- Multi server support - connecting to more than one server
- Multi source support - downloading a file from more than one source
* Servers
- Completely new server/network handling - create your own network groups
- Basic IRC support - just create a network with type IRC and add a server there
- Compression support on opennap-ng servers - ./configure --with-zlib
- Thread support - ./configure --with-pthread to get rid of gui freezes
* Library and browse
- Quick search - quickly find files in your library or browses
- New layout - two window view for direcotries and files
- Direct browses handled like uploads - They are bandwidth restricted, you can abort them
- Browses are saved to disc - You can view the files offline and even queue files of offline users for downloading
* Search
- Tree view - Same files, same node
- More options - more power
* Chat
- Lots of right click tokens - Networks, channels, nicknames, files, urls. Try it!
- Limit for chat buffers
* Transfers
- Download layout changes - it is configurable - check prefs
- Download clone detection
- Advanced connection between Lopster users - You can download several segments with one single TCP connection
* Statistic
- New layout - more options for the bandwidth graph (click)
* As always:
- Lots of minor changes, lots of bug fixes
Makefiles simply need to use this value often, for better or for
worse.
(2) Create a new variable FIX_RPATH that lists variables that should
be cleansed of -R or -rpath values if ${_USE_RPATH} is "no". By
default, FIX_RPATH contains LIBS, X11_LDFLAGS, and LDFLAGS, and
additional variables may be appended from package Makefiles.
Patch provided by Quentin Garnier via PR pkg/20668.
Changes:
- The Ethereal 0.9.10 release was packaged improperly(!). This release
fixes the packaging, and adds minor updates and fixes for the following
protocols: AFS, OpenBSD enc(4), RTP, SCSI, SIP, SMPP, SSH
- IA64 support has been improved.
that libtool-base puts down. Also, fix one place in the freeradius code
where a config.h should have been emitted but wasn't.
Also, for NetBSD < 1.6N disable threads as this requires threads and
the posix semaphore headers which pth/etc don't provide and didn't appear
until 1.6N
Many bugfixes and functionality enhancements including:
kdenetwork
KMail
The 'Delete' Action now irrevocably deletes messages. Use 'Move to Trash'
to put messages into the trashcan. (Martin Koller)
Optional columns for the number of unread messages and the total number
of messages in the folder list (Carsten Burghardt)
Custom folder icons (Zack Rusin)
Improved OpenPGP support (Ingo Klöcker):
Allow multiple encryption keys per email address, e.g. for
distribution lists
Allow rereading of keys in the key selection dialog, e.g. after the
user has imported a key.
Allow rechecking of keys in the key selection dialog, e.g. after the
user has signed a key.
PGP/MIME (encryption/signing of attachments, RFC 3156) for GnuPG users
and S/MIME support via plugins (collective effort of Ägypten
<gpa-dev@gnupg.org> and KMail <kmail@kde.org> developers)
Redesign of the identity configuration dialog (Marc Mutz)
Default identity can now be renamed (Marc Mutz)
Identity-dependant default Bcc (Ingo Klöcker)
Optional MIME tree viewer, allowing direct access to all body parts
(attachments) (Karl-Heinz Zimmer)
Custom date format (Zack Rusin)
Improved IMAP support (Carsten Burghardt)
Reorganized menu bar looks more like other KDE applications
(Martin Koller, Marc Mutz)
Support for decoding uuencoded attachments (Marc Mutz)
Custom hostname to send to the SMTP server (Aaron Seigo)
Improved 'Reply to Mailing-List' (Marc Mutz)
Separate the 'New Message' action and the 'Post to Mailing-List' action.
This means with 'New Message' the To: field of the new message will no
longer be filled automatically with the mailing list's posting address
if the currently selected folder is associated with a mailing list.
(Ingo Klöcker)
Improved support for RTL languages esp. Hebrew (Diego Iastrubni, Meni Livne)
Allow the user to enable HTML rendering temporarily for HTML only
messages (Ingo Klöcker)
Optionally show the encryption/signature status of messages in the
message list (Kalle Dalheimer)
Optional popup after dragging a message onto a folder (Zack Rusin)
Five fixed layouts for the main window (Karl-Heinz Zimmer)
Send separately encrypted messages to Bcc recipients because else all
recipients could deduce the Bcc recipients from the keys that were used
for encryption (Steffen Hansen)
Configurable default domain for sending (Ingo Klöcker)
Don't check spelling of quoted text, urls or email addresses (Dave Corrie)
New 'Add to Addressbook' action which doesn't open the addressbook when
you add an email address to it. Use 'Open in Addressbook' if you want to
add more information to a new address. (Cornelius Schumacher)
IMAP accounts are now top level elements in the folder list (Carsten
Burghardt)
Configurable timeout for when the selected message will be marked as
read (Tobias Koenig)
Tips of the Day (Marc Mutz)
Show progress dialog on exit so that the user sees that KMail is still
doing something although all windows have already been closed (Waldo
Bastian, Carsten Pfeiffer)
Use KNotify to play an arbitrary sound on new mail arrival (Till Krech)
Configurable alternative background color for the message list
(Waldo Bastian)
Display folder path in window caption (Carsten Burghardt)
KNode
Added "Find in Article..." command.
Added "Mark Last as Unread..." command.
Bug- and Stability fixes.
Korn now supports APOP accounts.
NEW IN KDE: Desktop Sharing (KRfb). KRfb is a VNC-compatible server to
share KDE desktops.
NEW IN KDE: Remote Desktop Connection (KRdb). VNC compatible client for
sharing KDE desktops.
Initial patch provided by Adrian Portelli via PR pkg/20630 modified by me.
Changes:
- follow PKG_SYSCONFDIR
- install locales into PKGLOCALEDIR
0.9.0:
======
- Gnome 2 preliminary support, including a new option
for an antialiased diagram.
- Gcc 3.2 compile support
- Some bug and potential bug fixes
- New Turkish translation, by Gorkem Cetin
- Several fixes to assure proper compilation with newer
autotools
- Resolved memory bug by limiting resolved names to 1024
entries and arranging them in a simple LRU cache
Patch provided by Quentin Garnier via PR pkg/20624.
Changes:
This release fixes a security hole discovered by Georgi Guninski in
the SOCKS dissector. All users of previous versions are encouraged
to upgrade. For more details see
http://www.ethereal.com/appnotes/enpa-sa-00008.html
Bug Fixes:
==========
- A missing comma in a string array could cause Ethereal to crash
when opening the preferences dialog.
New Protocols:
==============
- MSN Messenger, SSH
Updated Protocols:
==================
- AFS, Apache JServ, BACNET, BGP, DCCP, DCERPC, DCERPC NT, DNS,
Frame Relay, GTP, IPP, IPX, LSA, M3UA, MDSHDR, MPLS, NCP2222,
NETLOGON, PPP, RADIUS, SAMR, SMB, SNMP, SPOOLSS, SRVSVC, SSL,
Token Ring, X11
Updated Capture File Support:
=============================
- NetXRay
Patch provided by Juan RP via PR pkg/20610 with small cleanups.
Changes:
1.0.14:
=======
- Privilege separation has been introduced. When this feature is
enabled, each client session spawns two processes communicating
over a private channel : a restricted trusted part, and the main
part that definitely revokes all privileges after authentication
and chroot(). Add --with-privsep to ./configure in order to enable
that feature.
- Automatic detection of Virtuozzo was added.
- Forced passive IP addresses (-P) can now work with gateways whoose
addresses are dynamic (DSL and cable modem users), using symbolic
host names.
1.0.13a:
========
- The previous release broken compilation with PostgreSQL, and it
didn't work any more with very old versions of the Perl interpreter.
Both issues were fixed. No other change has been made - If 1.0.13
works for you, there's absolutely no need to upgrade.
1.0.13:
=======
- Traditional and simplified chinese translations are not messed any
more (Thanks to Ying-Chieh Liao) .
- The documentation has been improved.
- OpenLDAP 2.1.x is now supported.
- New LDAP directives were added to provide more flexibility
(LDAPFilter, LDAPHomeDir and LDAPVersion, see README.LDAP) .
- On-demand directories are now also created when path contains extra
slashes.
- pure-uploadscript will no more immediately give up when the server
hasn't been started before.
- Files whoose names contains non-printable characters are not listed
any more.
- A new switch (--with-boring) has been introduced to produce more
professional-looking messages.
- Zero-copy transfers of large files have been fixed on Solaris,
thanks to Emmanuel Hocdet.
- Larger banner messages can now be displayed.
- Owner-readability is now only enforced for files when quotas are
enabled (Claudiu) .
- A new Czech translation has been added. Contributed by Martin Sarfy
<xsarfy@informatics.muni.cz>
- Default UID and GID can now be used for SQL-based authentication,
contributed by Clive Goodhead, adapted to PostgreSQL as well.
- A Vpopmail authentication module has been added
(contrib/pure-vpopauth.pl) .
- "make -f Makefile.gui" should work again on most today's Linux
distributions.
- The Win32 port was slightly improved. The server is now compiled as
non-root (but binds port 21), and ASCII transfers are not mangled
any more.
Changes:
- follow PKG_SYSCONFDIR
- fix paths in manpages
- minor cleanups
2.5.6:
======
ENHANCEMENTS:
=============
- The --delete-after option now implies --delete. (Wayne Davison)
- The --suffix option can now be used with --backup-dir. (Michael
Zimmerman)
- Combining "::" syntax with the -rsh/-e option now uses the
specified remote-shell as a transport to talk to a (newly-spawned)
server-daemon. This allows someone to use daemon features, such
as modules, over a secure protocol, such as ssh. (JD Paul)
- The rsync:// syntax for daemon connections is now accepted in the
destination field.
- If the file name given to --include-from or --exclude-from is "-",
rsync will read from standard input. (J.W. Schultz)
- New option --link-dest which is like --compare-dest except that
unchanged files are hard-linked in to the destination directory.
(J.W. Schultz)
- Don't report an error if an excluded file disappears during an
rsync run. (Eugene Chupriyanov and Bo Kersey)
- Added .svn to --cvs-exclude list to support subversion. (Jon
Middleton)
- Properly support IPv6 addresses in the rsyncd.conf "hosts allow"
And "hosts deny" fields. (Hideaki Yoshifuji)
- Changed exclude file handling to permit DOS or MAC style line
terminations. (J.W. Schultz)
- Ignore errors from chmod when -p/-a/--preserve-perms is not set.
(Dave Dykstra)
BUG FIXES:
==========
- Fix "forward name lookup failed" errors on AIX 4.3.3. (John
L. Allen, Martin Pool)
- Generate each file's rolling-checksum data as we send it, not
in a separate (memory-eating) pass before hand. This prevents
timeout errors on really large files. (Stefan Nehlsen)
- Fix compilation on Tru64. (Albert Chin, Zoong Pham)
- Better handling of some client-server errors. (Martin Pool)
- Fixed a crash that would occur when sending a list of files that
contains a duplicate name (if it sorts to the end of the file
list) and using --delete. (Wayne Davison)
- Fixed the file-name duplicate-removal code when dealing with multiple
dups in a row. (Wayne Davison)
- Fixed a bug that caused rsync to lose the exit status of its child
processes and sometimes return an exit code of 0 instead of showing
an error. (David R. Staples, Dave Dykstra)
- Fixed bug in --copy-unsafe-links that caused it to be completely
broken. (Dave Dykstra)
- Prevent infinite recursion in cleanup code under certain circumstances.
(Sviatoslav Sviridov and Marc Espie)
- Fixed a bug that prevented rsync from creating intervening directories
when --relative-paths/-R is set. (Craig Barratt)
- Prevent "Connection reset by peer" messages from Cygwin. (Randy O'Meara)
INTERNAL:
=========
- Many code cleanups and improved internal documentation. (Martin
Pool, Nelson Beebe)
- Portability fixes. (Dave Dykstra and Wayne Davison)
- More test cases. (Martin Pool)
- Some test-case fixes. (Brian Poole, Wayne Davison)
- Updated included popt to the latest vendor drop, version 1.6.4.
(Jos Backus)
- Updated config.guess and config.sub to latest versions; this
means rsync should build on more platforms. (Paul Green)
automatically add the correct libraries for each OS, so we can remove the
custom SunOS library additions in the package Makefile. Also remove the
custom do-install target and simply use the rdesktop one (no rationale for
not using it either). Remove USE_GMAKE setting since BSD make is
sufficient.
Version 2.6.5 - 2003-02-28
* new mirror options --log=<file> and --script=<file> to produce lftp commands
equivalent to the actions done (log) or to be done (script) by mirror.
`-' as file name means stdout.
* fixed a dead-lock when resuming FXP with passive source.
* re-get file size and date after HTTP redirect.
* added workarounds for proftpd.
* handle EPIPE (Broken pipe) error as temporary network error.
* fixed a dead-lock in HTTP retrieval after redirect.
* added cls option --sort=date (Oskar Liljeblad).
* fixed compilation on OpenBSD and older Solaris.
* fixed handling of symbolic links in find.
* lftp -f and -c options can now be combined
* fixed slot handling in non-interactive mode.
* fixed large file support in cat command.
* fixed dante socks compilation (now lftp does not use poll with dante).
* fixed data connection abort with ssl connection to wu-ftpd.
Changes in ipa-1.3.1 (from the ipa-1.3.1/HISTORY file):
1. Some improvements for ipa(8) were implemented, as a result
ipa(8) now uses less CPU time when works with many rules and
with many limits.
2. Fixed incorrectly rounded Kbytes, Mbytes, Gbytes and Tbytes in
output of ipastat(8).
3. Fixed some minor bugs in ipa(8).
Package changes:
1. Two MASTER_SITES were removed.
2. MAINTAINER email was changed.
3. ALL_TARGET was "disabled", let original Makefile finds
right target.
Jumpgate is a TCP connection forwarder that provides many enhancements
and improvements over the existing programs that do the same thing. It
provides an interactive mode that queries the connected party for the
forwarding information it needs. Also, there is the option to log the
entire forwarded session in a file for later inspection. Furthermore,
it can log information about the forwarded session via the syslog(3)
facility.
slurm is a tool to monitor network traffic.
Features:
- realtime traffic statistics divided into incoming and
outgoing optional combined view
- can monitor any kind of network interface (testers welcome!)
- shows detailed statistics about the interface
Pkg submitted by Wolfram <mail@eckigesauge.de> in private mail.
remove -I$(top_srcdir)/intl from src/Makefile.am
for systems which have libintl in /usr/lib.
refer /dev/ic/wi_ieee.h for systems which have this file.
(Thanks for the translation, soda!)
This version fixes the buffer overflow issue noted in:
http://www.kb.cert.org/vuls/id/916785
Changes:
- follow PKG_SYSCONFDIR
- added rc.d script
- create own user and group
- added MESSAGE with post-install instructions
- removed DEINSTALL
- minor cleanups (this package was really half-baked..)
1.9.1:
======
- src/preprocessors/spp_rpc_decode.c (PreprocRpcDecode):
- alignment errors on non-x86 platforms
- added new space delimited options
alert_fragments
no_alert_multiple_requests
no_alert_large_fragments
no_alert_incomplete
- corrected buffer overflow in fragment normalization
- src/snort.c
- Win32 '-s' parameter wasn't configured to accept an optarg,
but code expected one, causing null-pointer violation.
- Backport of 2.0 fixes for stream4 ( off by one errors on reassembly )
Fixed the regular expression in RR.pm to comply with the RFCs,
turns our we were _too_ paranoid.
Various cleanups for perl 5.004.
Applied SIG patch.
Added Net::DNS::Resolver::Recurse module.
Applied initialization bug in OPT.pm patch.
Applied patch for udp timeouts.
Fixed a typo in FAQ.pod that was making aropos and whatis
grumpy.
Applied patch for TKEY support.
Added Net::DNS::Packet->safe_push() to allow for automatically
checking for duplicate RRs being pushed into a packet.
Added more tests.
