| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
From Andrey Simonenko in PR#21224.
Changes since 1.3.2:
- Fixed two bugs in ipa(8), which caused core dumps: if there were one or
some `\t' characters after the "rule" or "limit" keyword in ipa.conf(5),
then ipa(8) wasn't able to parse such configuration file
- File /var/ipa/## lock ## was renamed to /var/ipa/lock db, because
BSD daily script deletes files with `#' characters. All should remove
the /var/ipa/## lock ## file
- Minor improvements and changes
|
|
|
|
and update MASTER_SITES.
|
|
|
|
|
|
|
|
before but apparently i did not :/)
|
|
Bump PKGREVISION to 1.
|
|
GNU sed)
|
|
IMPORTANT: This version fixes remotely exploitable heap overflow in the stream4
preprocessor module.
Advisory: http://www.coresecurity.com/common/showdoc.php?idx=313&idxseccion=10
Changes:
2.0.0:
======
- Enhanced high-performance detection engine
- Stateful Pattern Matching
- New detection keywords: byte_test & byte_jump
- The Snort code base has undergone an external third party professional
security audit funded by Sourcefire (http://www.sourcefire.com)
- Many new and updated rules
- snort.conf has been updated
- Enhancements to self preservation mechanisms in stream4 and frag2
- State tracking fixes in stream4
- New HTTP flow analyzer
- Enhanced protocol decoding (TCP options, 802.1q, etc)
- Enhanced protocol anomaly detection (IP, TCP, UDP, ICMP, RPC, HTTP, etc)
- Enhanced flexresp mode for real-time TCP session sniping
- Better chroot()'ing
- Tagging system updated
- Several million bugs addressed....
- Updated FAQ (thanks to Erek Adams and Dragos Ruiu) Snort 2.0 can be
downloaded at http://www.snort.org/dl/snort-2.0.0.tar.gz. Binary
versions of the codebase will be built over the next several days and
made available at here.
2.0.rc4:
========
- byte_jump/byte_test don't force relative content options
- byte_jump/byte_test absolute offsets work
- Better FIN handling in Stream4
2.0.rc3:
========
- A low memory usage detection method (enabled via "config detection:
search-method lowmem")
- Moved the default unix socket location to LOGDIR
2.0.rc2:
========
- syslog should work on win32 and unix
- major tagging updates
- new UDP decoding alerts
- snort.conf updates
2.0.rc1:
========
- Higher performance (due to a new pattern matcher and rebuilt detection
engine)
- Better decoders
- Enhanced stream reassembly and defragmentation
- Tons of bug fixes
- Updated rules
- Updated snort.conf
- New detection keywords (byte_test, byte_jump, distance, within) &
stateful pattern matching
- New HTTP flow analyzer
- Enhanced anomaly detection (HTTP, RPC, TCP, IP, etc)
- Better self preservation in stateful subsystems
- Xrefs fixed
- Flexresp works faster and more effectively
- Better chroot()'ing
- Fixed 802.1q decoding
- Better async state handling
- New alerting option: -A cmg!!
|
|
* DNS bug fixes
* FreeBSD compile fixes and UDP send bug fix
* New functions: gnet_{udp,mcast}_socket_get_local_inetaddr
* Build improvements: library is now named libgnet-MAJOR.MINOR,
favors GLib 2 over GLib 1.2
* New Base64 module (by Alfred Reibenschuh)
* Major documentation improvements
* Some minor API renaming in Inetaddr and TcpSocket
* IPv6 support
* Server, Conn, URI, and Unix modules are no longer "experimental"
* Header files are now in gnet-2.0
* gnet-config removed. Use pkg-config.
* Many API changes
* gnet_server_new() changed, but the prototype is the same. Make sure
you are using the new version correctly.
|
|
|
|
updated to gnet-2.0.0.
|
|
|
|
net/qadsl.
qADSL is an auto-login client and connection keeper for Telia AB ADSL
and Comhem broadband.
From pkgsrc-wip. Supplied by Ola Eriksson in PR#18480. Thanks!
|
|
This Perl module provides an extensible network server engine.
From PR#18830 from Ron Roskens. Thanks!
|
|
|
|
Changes since 0.10.0:
030407 Bugs uncovered by Charlie Reitsma <reitsmac@denison.edu>:
HOWTO incorrectly specified penctl in place of penlog
in Apache configuration example, and using penctl to
redirect log to penlogd didn't work.
Avoid bogus header rewriting in rewrite_request.
Released 0.10.1.
Also increase FN_SETSIZE for our package.
From PR#21075 (Andreas Wrede). Thanks!
|
|
|
|
|
|
|
|
as net/nettest.
The nettest and nettestd commands perform client and server
performance tests for various types of interprocess communication.
These tests time the data throughput of pipes and UNIX domain, TCP,
and UDP socket connections.
Supplied by Brian Ginsbach in PR#18985. Thanks!
|
|
Addresses PR pkg/18134.
Patch by itojun.
|
|
(suggested by lukem), group z, r and f flags.
some whitespace cleanup.
|
|
|
|
tcpflow is a program that captures data transmitted as part of TCP connections
(flows), and stores the data in a way that is convenient for protocol analysis
or debugging. A program like 'tcpdump' shows a summary of packets seen on the
wire, but usually doesn't store the data that's actually being transmitted.
In contrast, tcpflow reconstructs the actual data streams and stores each flow
in a separate file for later analysis.
tcpflow understands sequence numbers and will correctly reconstruct data
streams regardless of retransmissions or out-of-order delivery. However, it
currently does not understand IP fragments; flows containing IP fragments will
not be recorded properly.
tcpflow is based on the LBL Packet Capture Library (available from LBL) and
therefore supports the same rich filtering expressions that programs like
'tcpdump' support.
|
|
Addresses PR21086 by Rob Quinn <rquinn at sec dot sprint dot net>.
|
|
- group 'zrw' and 'p' args, -s last
- use the && operator consistently
- strip unneeded parens
- some whitespace cleanup
|
|
2003-02-20 0.42
- fixed a long-standing bug in dsbl handler - data received from
the remote was not collected correctly. Well, this one wasn't
happened too frequently - I only seen it once, when a proxy
delivered data from the target mailserver one byte at a time.
- added yet another port, 1813 (socks5), as advanced (level2) port.
SKK proxy listens here, but it is seen unfrequently.
2003-02-14 0.42b2
- added proxylogger - receiving part of proxycheck, to be used
from inetd and with -c chat.
2003-02-12 0.42b1
- fixed a small bug in last wingate/telnet code changes (mostly
cosmetic: "Resource temporarily unavailable" vs "Connection timed out").
- added another telnet/wingate proxy variant, with a prompt
"SpoonProxy>", which expects a command in form "host port"
(instead of tn-wg/wingate which is of the form "host:port").
2003-02-04 0.42b
- some code cleanups/changes: may break things, testing...
- FTP proxy detection added, port 1183 only for now. Interesting
to experiment with M$ ftp servers ;)
- fixed not finding advanced protocol if no ports are specified
(e.g. -pwg: tried default protos:ports instead of wg:25,1181)
- modified telnet/wingate proxy code to be a bit faster and to
know which command to sent to a particular proxy.
|
|
Changelog of Samba2.2 Japanese Edition
Samba Users Group Japan
Here is the fix list of Samba2.2 Japanese Edition.
The sign of each line means:
*: Fix of Samba Japanese Edition only
x: Fix of sending a patch to Samba Team
c: Fix of being commited a patch by Samba Team
samba-2.2.7b-ja-1.0
~~~~~~~~~~~~~~~~~~~
Changes to the original version
c Fixed a security problem which is fixed at samba 2.2.8a
[sugj-tech:5233]
c Fixed using CIDR of 'hosts allow/deny' parameters [samba-jp:14286]
|
|
* bug fixes
|
|
|
|
|
|
I forgot to add one more patch file.
|
|
Manually merge changes between samba 2.2.7a and samba 2.2.7b,
addressing both CAN-2003-0201 and CAN-2003-0085 by The Common
Vulnerabilities and Exposures (CVE) project.
|
|
Changes since 2.2.8:
Digital Defense, Inc. has alerted the Samba Team to a serious
vulnerability in all stable versions of Samba currently shipping.
The Common Vulnerabilities and Exposures (CVE) project has assigned
the ID CAN-2003-0201 to this defect.
This vulnerability, if exploited correctly, leads to an anonymous
user gaining root access on a Samba serving system. All versions
of Samba up to and including Samba 2.2.8 are vulnerable. An active
exploit of the bug has been reported in the wild.
|
|
- rewrite of large parts of code. Now use net-snmp libraries instead of
calling an external program
- There are now a sdig(8) and sdig.conf(5) man pages
- the debug code now has multiple levels so using -d once
doesn't give you all the really messy unimportant stuff. To see
that, use several - the really ugly ones are hiding down at 5 and 6.
With some snmp fixes by myself, I can now successfully querry my 3com and
alliedtelesyn switches.
|
|
hopefully for others too. Addresses PR#21045.
|
|
|
|
iplog is a TCP/IP traffic logger. Currently, it is capable of logging
TCP, UDP and ICMP traffic. Adding support for other protocols
should be relatively easy.
iplog's capabilities include the ability to detect TCP port
scans, TCP null scans, FIN scans, UDP and ICMP "smurf" attacks,
bogus TCP flags (used by scanners to detect the operating system in use),
TCP SYN scans, TCP "Xmas" scans, ICMP ping floods, UDP scans, and IP
fragment attacks.
iplog is able to run in promiscuous mode and monitor traffic to all hosts
on a network.
iplog uses libpcap to read data from the network and can be ported
to any system that supports pthreads and on which libpcap will function.
Submitted by Martin Mersberger <gremlin@portal-to-web.de> in PR 20887
|
|
|
|
streaming.
|
|
|
|
wol implements Wake On LAN functionality in a small program. It wakes
up hardware that is Magic Packet (tm) compliant. Consider you have a
sleeping or turned-off computer and you want to remotely wake him up.
Just type wol MAC-ADDRESS and the host wakes up (OK, it will boot ;-).
This small utility was able to wake my PC that has Intel PRO/100+ NIC.
Provided by Juan RP <juan@xtraeme.dyndns.org> in PR#19575
|
|
|
|
- Ensure error->OK transition correctly detected
- Avoid rpc timeout in error->OK transition
- Fix stupid parse bug when hostnames given on commandline
|
|
Implement '-e' to specify an external domain for displaying
names and IP addresses. Can combine with '-d' to allow mrstat
to check one set of names and IP addresses and report another.
|
|
Version 1.5 - May 2002
- Fixed a bug in displaying of 15-character NetBIOS names (15th character wasn't displayed).
Bug reported by Tom Kustner, Kenny Breck and Richard IJzermans
- Fixed a bug in interpreting netmask /32 and /0. Patch provided by Thomas Poindessous for Debian Linux
- List of hosts to scan can now be read from stdin as well as from file. Suggested by Kevin Kadow
- Fixed a bug in timing. (nbtscan waited for two seconds after scanning not doing anything). Reported by Ceri Hopkins
- Nbtscan now works on Darwin. Patches provided by Mohammad A. Haque
- timeout option -t is now in milliseconds, not seconds
- Fixed some Solaris portability problems. Patches provided by Petter Reinholdtsen
|
|
|
|
Changes:
arts
* Several memory corruption fixes.
kdelibs
* kdialog: Fix screen numbering problem for centerOnScreen() static method
* kprogress: Fix math problem in displaying correct percentage for large
numbers
* kio_http: Fix data processing for webdav(s) listing of directories and files
* kate: Many small bugfixes, including:
+ Fixed code completion drop-down box position
+ Fixed "wrap cursor disabled" bugs
+ Fixed vertical scrollbar middle mouse behaviour
+ Fixed remove whitespace feature
+ Now clears the redo history when it is irrelevant
+ Fixed crash after starting up with a non-existant directory in the file
selector history
* kparts: Fix extension of transparently downloaded files, this fixes ark
(used to display temp file instead of archive content)
* klauncher: Fixed support for "Path=" entry in .desktop files. This entry
can be used to specify a working directory.
* kio: Don't let ChModJob's -X emulation interfere with mandatory file locking.
* kdeui: Fix for alternate background coloring in Konqueror list views.
* kdeui: Fix to prevent an event loop in conjunction with Qt 3.1.2.
* kio/bookmarks: Properly handle multiple shown bookmarks with the same URL;
fixes crash on exit in Konqueror when bookmarkbar is on and some bookmarks
points to the same place
* kstyles: Handle focus indicators on label-less checkboxes better
* kdeprint: Don't freeze when there is no route to the selected CUPS server
* SSL: add support for OpenSSL 0.9.7
* SSL: ADH ciphers are now explicitly disabled in all cases
* SSL: new CA root certificate added
* Several Xinerama related fixes
* QXEmbed fixes for various situations that don't handle XEMBED well
* Java on IRIX with SGI 1.2 VM is fixed
* khtml: Several major bugfixes, partially incorporated fixes from Safari as well.
kdeaddons
kdeadmin
* Linux Kernel Configurator: Add details about the lightbulb icon's meaning
* Linux Kernel Configurator: Support for more incorrect kernel configuration
files
kdeartwork
kdebase
* kcmshell: Restored backwards compatibility wrt KDE 3.0 module names
* klipper: Escape "&" everywhere.
* konsole:
+ Removed "get prompt back"-hacks, don't assume emacs key shell bindings.
+ Fixed usage of background images with spaces in the filename.
+ Profile support fixes (disabled menubar etc.)
+ Bookmarks invoked from "Terminal Sessions" kicker menu now set correct
title.
+ Fixed a problem with the "Linux" font that prevented it from being used
with fontconfig.
* kdesktop: Made desktop menus pop up in unused Kicker space work.
* kicker: Fixed empty taskbar sometimes showing scroll buttons.
* konqueror:
+ Various startup performance improvements
+ Fix crash when sidebar tree expands hidden directory
+ Fix crash when config button hidden from config button's menu
+ Extensive fixes to Netscape plugins, fixing crashes and plugin support
+ Changes to default preview settings, making the defaults safer on various
platforms
* Java configuration module: Make it possible to properly configure Java in
all cases
* Previews: Fixed a privacy issue where previews of HTML files could access
files or hosts on the network.
kdeedu
* KStars:
+ Fixed bug #51708: No longer exits if starting position is below horizon
(only affected some systems)
+ Fixed bug #52205: Country of Lhasa is China, not Tibet.
+ Fixed too-narrow coordinates field in statusbar.
+ Fixed bug in "length of day" calculator module; it now properly accounts
for latitude and longitude
kdegames
* Atlantik: Many small bugfixes, including:
+ Better handling of incoming messages
+ Fixed token animation
* kbackgammon: Common crash fix.
kdegraphics
* KIconEdit: Fix the ellipse/circle tool not to leave any "holes" in the
drawings
* Kooka: Some UI crashes fixed
* KViewShell: Default paper size is fixed
* KGhostView: Fixed wheel-mouse scrolling
kdemultimedia
* KsCD:
+ Stopped KsCD from pausing after tracks in random mode
+ Correctly associate extra CDDB information with tracks
+ Support non-Latin encodings properly in CDDB entries and elsewhere
+ Proper systemtray behaviour
+ Updated key accel code to avoid depricated calls
* Movie previews have been removed due to severe unresolved stability problems
kdenetwork
* Desktop Sharing server (krfb):
+ fix problems on X11 servers with 8 bit depth
+ fix problems on X11 servers with big-endian framebuffer
+ allow X11 servers without XShm (thin clients). Warning: requires a lot
of bandwidth
+ remove read timeouts. This should solve problems with some clients that
got disconnected after a minute of inactivity (but increases the time to
detect dead clients)
+ fix problem with clients that support both RichCursor and SoftCursor
encodings (like krdc from HEAD)
* Desktop Sharing client (krdc):
+ fix: when an error occurred in fullscreen krdc did not restore the
original resolution
+ fix: krdc stopped to repaint the framebuffer after a disconnect while
the error dialog was displayed
+ the quality setting in medium quality mode has been increased because
the original setting looked too bad with Keramik
kdepim
* KOrganizer bug fixes:
+ Use correct default duration for events crossing a day boundary (#53477).
+ Correctly save category colors (#54913).
+ Don't show todos more than once in what's next view.
+ Include todos in print output of month view (#53291).
+ Don't restrict maximum size of search dialog (#54912).
+ Make cancel button of template selection dialog work (#54852).
+ Don't break sorting when changing todos by context menu (#53680).
+ Update views on changes of todos directly in the todo list (#43162).
+ Save state of statusbar (#55380).
* knotes: Escape "&" in note titles
kdesdk
* Cervisia:
+ Fixed line break in protocol view
+ Fixed timestamp for files that are not in cvs (#55053)
+ Fixed handling of Cervisia's options like 'Update Recursively' when run
as embedded part in konqueror (#55665)
kdetoys
* kworldclock: Fixed that all clocks show the same time.
* kweather: Made it work again with non-english locales. (#52147)
* kweather: Prevent KWeather from looping and freezing Kicker when not
connected to the internet.(#49191)
kdeutils
* klaptopdaemon: Fix serious stalling problems on GNU/Linux with ACPI
* kcalc: Now a KMainWindow instead of a KDialog to fix various UI
inconsistencies
* kdf: Support escapes in fstab
quanta
* Bugfixes:
+ Allow resizing of the main window even with large user toolbars [#53230]
+ Insert valid DTD definitions [#53274]
+ Honor the View Default settings from Settings->Configure Editor [#53569]
+ Be less braindead regarding the Show DTD Toolbar setting [#53739]
+ Be able to select also directories in tag dialogs [#54819]
+ Do not complain about text files being binary ones on a system with
broken mimetypes [#54924]
+ Bring up the "File Changed" dialog only, when the file content has
changed[#55678]
+ Select Tag Area behaviour fixed for optional tags
+ Insert non-translated string in CSS code parts
+ Insert "border-top", "border-right", etc. correctly in CSS
+ Don't quote the script line more than once in the action configuration
dialog
+ Memory leak fixed: editor parts were not deleted when a file was closed
+ Fix insertion of "img" tags in HTML documents
+ Upload/rescan project/add to new project tree view behaviour fixed
+ Fix renaming of file in the Project Tree, when a file with the new name
was already present in the project
+ Rename only what has to be renamed in the project and enable project
saving after a rename
+ Use the correct encoding for newly created files
+ Saving of Author and E-Mail project options was broken in some cases
+ Fix the numbering of new documents
+ Fix the execution of actions
+ Fix crash when deleting an action
+ Insert valid single tags from the toolbar
* Enhancements:
+ Show the tag attributes (Alt-Down) menu lower than the current line
+ "Insert in cursor position" for script actions replaces the selection if
there was some text selected
+ New DCOP interface (WindowManagerIf) added to enable the modification of
the opened documents from a script
+ DTD for Quanta tags (DTD definition) added
+ XHTML 1.0 Strict DTD added
|
