| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
Changes:
- Apply NetBSD patch to sysdeputil.c to activate a few features. Thanks to
Lubomir Sedlacik <salo@netbsd.org>.
- Apply fix for broken clients that terminate commands with \r\r\n. Thanks
to Andrey Chernomyrdin <andrey@excom.spb.su>.
- AIX send_file support, thanks to Tomas Ogren <stric@ing.umu.se>.
- Fix typos in vsftpd.conf.5, thanks to SEKINE Tatsuo <tsekine@sdri.co.jp>.
- Simple -F flag support to LIST and NLST. Needed for some broken clients.
- Add simple ? wildcard in pattern matching.
- Make pasv_min_port and pasv_max_port work if they are the same value.
Thanks to Marvin Solomon <solomon@cs.wisc.edu>.
- Paranoia: ignore user_config_dir if username has a / in it.
- Implement stub ALLO command to keep busybox/ftpput happy.
- Implement REIN, ACCT and SMNT stubs.
- Implement FEAT along with an OPTS stub.
- Implement STAT (no-args version).
- Implement STAT (file/dir).
- Add very simple access control via hide_file and deny_file. These should
NOT be used for securing content as they are very dumb! Filesystem
permissions are still the recommended way for securing important content.
- Allow unsetting of string values with option= (i.e. blank).
- Default virtual users to being chroot()'ed to the guest_user's home
directory, if virtual_use_local_privs is not set.
- Add support for "user_sub_token", where you can set the home directory
of guest_user to "/home/virtual/$USER", and "user_sub_token" to "$USER"
to have a root directory auto generated based on username logging in,
e.g. fred logs in and gets chroot()'ed in /home/virtual/fred.
- Fix bug in str_replace_text if replace token matches at end of string.
- Recognize P@SW as PASV; works around an SMC router bug.
- Accept an async ABOR sequence if it arrives via non-urgent data. Fixes
issue with Cisco routers. Thanks to Eddie Corns <E.Corns@ed.ac.uk>.
- Implement simple {,} support in pattern matcher (nested not handled).
Handy to use with hide_file and deny_file options.
- Fix port range with pasv_min_port and pasv_max_port to use the full range
(the upper limit wasn't being used very often!).
- Activate SO_REUSEADDR on passive listen sockets - makes servers with
restricted port ranges much more useable!
- Add secure_email_list_enable, to provide simple anonymous password control.
For some cases, it's better than the hassle of virtual users. Idea thanks
to Malcolm O'Callaghan, <mjo@stamps.com>.
- Add some FAQ entries.
- Fix issue with failure to call openlog() before using tcp_wrappers. Part
of RH bugzilla #89765. (The more serious part was fixed with v1.2.0).
|
|
Changes:
2.1.0:
======
- A new connection tracking module, Flow (replaces conversation)
- A new portscan detector based off of Flow, Flow-Portscan (replaces
portscan2)
- A new http preprocessor, HttpInspect (replaces http_decode)
- Alert Thresholding and Suppression
- PCRE rule keyword (Perl Compat Regular Expressions)
- isdataat rule keyword (buffer length detection)
- A ton of new and updated rules.
2.0.6:
======
- 64-bit update for detection engine. (Thanks, Silio d'Angelo)
- Added better PPP decoding. (Thanks Jesper Peterson)
- Updated ip_proto optimization for high-speed detection engine.
- Fixed infinite loop problem that was introduced by the recursive pattern
matching patch. Reported by Lawrence Reed, thanks for testing out the
changes for us!
- Various changes to help respond (version 1) work a little better.
- spp_http_decode 64-bit patch from Dirk Mueller.
- Out-of-order ACK problem from Andrew Rucker. Also, updated stream4 to the
most recent version from HEAD.
- Minor fixes to tagging related to 'src' and 'dst' directives
- When counting one byte patterns in 'ningroup' added a check for
psLen==1 (wu-manber pattern matcher). Thanks Josh Sakofsky and Dennis
McGuire for helping us test this.
2.0.5:
======
- Stream4 fixes from Andrew Rucker Jones.
- Allow memcap to be configured for threshold features.
2.0.4:
======
- Fixed a core dump introduced with 2.0.3 when dealing with negated patterns
2.0.3:
======
- doe_ptr handling in byte_test/byte_jump slightly modified to work
better with the pcre patch
- content processing is now recursive to make distance/within processing
better ( thanks to Shai Rubin for patch! )
- fixed a bug in the mwm.c pattern matcher that resulted in some alerts
not firing in a particular configuration of rules
2.0.2:
======
- Added Thresholding and Suppression features (Marc Norton/Sourcefire)
- Fixed TCP RST processing bug found (Shai Rubin)
- Cleanup of spp_arpspoof (Jeff Nathan)
- Cleanup of win32 version including proper Event Log support (Chris Reid)
- Munged data fixes for stream4 (Chris Green)
|
|
Also undefine TOTAL_MEMORY_SYMBOL, since we don't have it
(or at least there is no "total" or "_total").
|
|
|
|
|
|
don't end in a newline.
|
|
- XXX: whoever ported this needs to revisit it and fix issues such as utmp
support etc.
|
|
|
|
This module provides an interface to various files related to the bind
DNS daemon.
|
|
|
|
a typo in the previous commit.
|
|
CC_VERSION defined before it is used.
|
|
( We really need non-recursive dependancies... *sigh* )
|
|
* Check for stdint.h in autoconf
* prevent the geoipupdate man page from trying to install itself directly
in the system directory
* Fixed includes to compile on Windows
* Removed the _addr_to_num() calls from GeoIP_*_by_name()
* _seek_record() optimizations
* Added GeoIP_assign_region_by_inetaddr which doesn't do any mallocs and
made all other region APIs go thru it
* Replaced _h_addr_to_num() with ntohl() and removed _h_addr_to_num()
* Fixed bug when IP address not found in region rev1 database
* Added added extern "C" to GeoIPCity.h fixes problems when included
in C ++ library
* Added support for GeoIP ISP Edition identifier
* Fixed bug in GeoIP_database_info
* Added support for GeoIP AS Number Edition
* renamed GeoIP_org_by_* functions to GeoIP_name_by_* to reduce confusion
since these functions are used by GeoIP ISP and GeoIP ASNum as well as
GeoIP Organization
* Added support for GeoIP Proxy Edition
* renamed GeoIP_country_id_by_* functions to GeoIP_id_by_*
* Added GeoIP_record_id_by_addr and GeoIP_next_record functions
* Added support for new GeoIP Region format, including Canadian Provinces
* Added support for GeoIP City format revision 1, including dma code and
area code
* geoiplookup returns results from GeoIP Region, City, ISP and Organization
databases
* Standardized location for GeoIP Region, City, ISP and Organization data bases
* Added GeoIP_open_type to open database from default location for other
dbs besides country
* Added check to make sure that the appropriate database is loaded for each
lookup method
* Updated update code to check for first 12 characters of license key
* Added GeoIP_country_continent array to lookup continent by country ID
Closes PR pkg/23909.
|
|
|
|
|
|
with INCOMPAT_CURSES lines.
|
|
|
|
and patched to work with the current SOAPpy
the only change in this releas:
- fixed small typo in documentation
|
|
changes:
- Preliminary pyGlobus support (contributed by Ivan R. Judson)
- Fixes for many of the test scripts in tests/*.py, as well as
documentation in tests/README of what tests succeed and fail.
- New/Changed configuration settings:
- Added 'strict' option to the WSDL class constructor. If strict is
true, a RuntimeException will be raised if an unrecogned message is
recieved. If strict is false, a warning will be printed to the
console, the message type will be added to the WSDL schema, and
processing will continue. This is in response to the second half of
bug report [ 817331 ] "Some WSDL.py changes", submitted by Rudolf
Ruland.
- Config.simplify_objects=1 now converts all SOAPpy objects into basic
Python types (list, dictionary, tuple, double, float, etc.). By default,
Config.simplify_objects=0 for backward compatibility.
- Config.dict_encoding='ascii' converts the keys of dictionaries
(e.g. created when Config.simplify_objects=1) to ascii == plain python
strings instead of unicode strings. This variable can be set to any
encoding known to string.encode().
- Config.strict_range=1 forces the SOAP parsing routines to perform
range checks on recieved SOAP float and double objects. When
The following bugs have been fixed:
[ 752882 ] "SSL SOAP Server no longer working."
[ 792258 ] "SOAPBuilder.SOAPBuilder.dump can catch wrong exceptions"
[ 792600 ] "SOAPBuilder.SOAPBuilder.dump possibly should not call gentag"
[ 817331 ] "Some WSDL.py changes"
[ 858168 ] 'xsi:nil="true" causes exception'
In addtion, all of the outstanding bugs in the WSDL implementation
have been fixed, so WSDLProxy should now function properly.
|
|
|
|
ZSI, the Zolera SOAP Infrastructure, is a pure-Python module that
provides an implementation of SOAP messaging, as described in The
SOAP 1.1 Specification (see http://www.w3.org/TR/soap). It can also
be used to build applications using SOAP Messages with Attachments.
(see http://www.w3.org/TR/SOAP-attachments) ZSI is intended to make it
easier to write web services in Python.
In particular, ZSI parses and generates SOAP messages, and converts
between native Python datatypes and SOAP syntax. Simple dispatch and
invocation methods are supported. There are no known bugs. It's only
known limitation is that it cannot handle multi-dimensional arrays.
|
|
|
|
This is a Python extension module for Spread, an open source group
communications package.
|
|
|
|
|
|
|
|
What's new since 2.6.10:
* fixed mirror -c for empty files.
* a rare coredump fixed in http 0.9 handling, when first line of reply is empty.
* compilation fixes for compilers other than gcc.
* translations update.
|
|
|
|
|
|
a date in the past: May 20 2003
Found by uninstalling all packages.
|
|
(will be included in the next release) and make the package honour
PKG_SYSCONFDIR.
use CONF_FILES to install the sample configuration ftpd.conf and
ftpusers.
bump PKGREVISION, as the default configuration file location has
changed to ${PKG_SYSCONFDIR}. set PKG_SYSCONFDIR.tnftpd=/etc to get
the previous behaviour.
|
|
use CPPFLAGS.SunOS instead of a conditional.
|
|
|
|
|
|
Changes from version 1.1:
* Added support for hex netmasks.
* Minor bugfixes, cleanup.
Provided by the maintainer - Joe Laffey <joe@laffeycomputer.com>, thanks!
|
|
|
|
DTRT.
|
|
|
|
|
|
l2tpd is a user-space L2TP daemon. L2TP is the Layer Two Tunneling
Protocol described in RFC 2661. It allows you to tunnel PPP sessions
over a network or transport protocol (in this case, UDP.)
Part of the l2tp code is implemented in the l2tpd program, and part of
it is implemented as "handlers". A handler is a shared-object library
which is dynamically linked into l2tpd at run-time using the
"load-handler" configuration directive.
Although the handlers included with this package (sync-pppd and cmd)
are licensed under the GPL, as a special exception, you may write your
own handlers which link to code in this package and not release them
under the GPL. There may be other reasons why your handlers must
be released under the GPL (for example, they may link with other GPL'd
code), but in the absence of other reasons, you may keep your handlers
proprietary.
|
|
|
|
Changes:
* Version 1.0.17a:
+ An old standing issue has been fixed : ungracefully aborted transfers
caused the session to exit without removing ftpwho entry and atomic
files. This fix also speeds up ftpwho and peruserlimit.
* Version 1.0.17:
+ The SSL certificate file can now be changed through a new configuration
switch, --with-certfile. It doesn't depend on sysconfdir any more and it
defaults to the original location : /etc/ssl/private/pure-ftpd.pem.
+ Shadowed NIS accounts and MacOS X Panther system accounts are now
processed by the pure-pwconvert tool.
+ The server doesn't reject users any more on Linux when capabilities are
used.
+ The documentation has been improved (man pages, README, FAQ, typos).
+ Optimizations have been made.
+ SO_REUSEPORT is now used on FreeBSD to always bind the ftp-data port.
+ SSL-related error messages are now more explicit.
+ The SITE TIME command has been implemented.
+ The sample PAM configuration file has been rewritten.
+ A logfile parser has been added to the contribs.
+ MacOS X Panther specific instructions have been added.
+ Upload is now atomic. A file is uploaded with a temporary name and it
gets its final name only once the upload has been completed. If a file
already exists with the same name, the content can be preserved until the
new content has been fully transfered (using the new --notruncate run-time
switch).
Web servers will no more serve partially transfered files during uploads.
The new handling of uploads also limits the races in virtual quota
handling.
* Version 1.0.16c:
+ The PAM backend and the CGI mode were accidentally broken in version
1.0.16b. This version fixes both issues.
+ The Norwegian translation has been updated.
* Version 1.0.16b:
+ The server now properly compiles with SSL/TLS on RedHat 9 systems.
+ pure-ftpwho now outputs nice-looking XHTML 1.1 conformant code, an XSS
issue has been fixed and the local host name is now properly displayed in
verbose mode.
+ The path to SSL certificates now follows the --sysconfdir prefix.
+ Minor optimizations have been made.
+ IPv4 and IPv6 addresses will now listen for connections even
without the -4 switch on NetBSD and FreeBSD.
|
|
|
|
Changes:
0.6.b 20030710
+ Plugins now works with GTK+ interface
+ Updated the passive OS fingerprint database (1279 records)
!! Fixed internal refreshing (for huge traffic loads)
!! Fixed wifi-dump support
!! Fixed doppleganger re-arp
!! Fixed a problem with signed char under mac G3
!! Fixed some possible buffer overflows
0.6.a 20030507
+ Buffered Data Connections (only for ncurses)
+ New Sniffing method (Port Stealing)
+ Updated the passive OS fingerprint database (1189 records)
+ enhanced smb dissector
+ enhanced troll plugin against request caching
+ NEW PLUGIN: Confusion,Hunter, SMB suite
+ partial wifi-dump support (experimental)
!! Fixed demonization problem
!! Fixed StateMachine problem
!! a bouch of bug fix
|
|
s/netbsd.org/NetBSD.org/
|
|
|
|
|
|
* Improved portability to Tru64, IRIX, and other LP64 platforms.
(Inbuilt ls works on IRIX now. Thanks to Onno van der Linden
for highlighting the underlying issue!)
* License updates on third party code.
* Update fts(3) code to include fix for possible race condition.
|
|
|
