| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
|
|
|
|
|
|
== June 28, 2002
Ethereal 0.9.5 has been released. This version fixes several potential
security problems revealed since the release of 0.9.4. See the security
advisory at http://www.ethereal.com/appnotes/enpa-sa-00005.html for
more details.
New Features:
The ability to read packet data from a pipe was enhanced. Printing
under Windows now works.
New Protocols
802.3 LACP, Apache JServ, AODV6, DCERPC Browser, Java RMI, TAPI
Updated Protocols
ATM, BGP, BOOTP, DCE RPC, EPM, Frame Relay, GTP, L2TP, LMP, MAPI, MIP,
MMSE, MTP3, NCP, NFS, NSPI, PPP, Q2931, RADIUS, RSVP, SCSI, SMB, SNA,
SOCKS, SPOOLSS, SRVSVC, SunATM, TFTP, TNS, Token Ring, UCP, VJ TCP/IP,
WCP, WEP, WSP, WTP
Capture File Updates
Ethereal can now write LANalyzer files. The Sniffer, nettl, snoop,
NetXRay, and libpcap code all received updates.
|
|
|
|
|
|
|
|
- Honor PKG_SYSCONFDIR and use bsd.pkg.install.mk to handle config files
and rc.d scripts.
- Memory access fixes.
- Now '{', '}', '#' and ';' characters are not allowed for naming
rules and limits.
*** SECURITY UPDATE ***
Removed SUID bit from ipastat(8) due to security problems (and don't
even try to set it back). Admins who use the "db_owner" parameter
*and* use some safe user/group, *and* didn't forget to set the same
safe user/group for the ipastat(8) program, as it was said in the
SECURITY NOTE on the ipastat(8) manual page, should not worry a lot.
Admins who ignored that SECURITY NOTE should double check the security
of their systems and change all passwords, secrets keys, etc. if you
think that somebody cracked your systems by ipastat(8).
|
|
|
|
- bump package revision.
|
|
|
|
have the ttytype throw-back, and it's not exactly useful these days.
|
|
--- 8.3.3-REL released --- (Wed Jun 26 21:15:43 PDT 2002)
1301. [func] log attempts to exploit #1300.
1300. [bug] Remote buffer overrun.
1299. [func] Log to xfer-in when a named-xfer fails and one of
the masters returned REFUSED.
1298. [bug] named could leak a OPT record when returning a
negative response.
1297. [func] 'ndc restart' will now attempt to preserve the
arguments named was started with.
Use 'ndc restart --' to clear the arguements.
Use 'ndc restart <new arguements>' to restart named
with a alternate set of arguements.
1296. [bug] delay setting need_restart until the response to
ndc exec has been sent.
1295. [func] new ndc command 'args'. returns the arguements that
named was started with %xx escaped.
1294. [bug] #1272 broke linkage for those OS's using -lfl (flex).
Move -ll/-lfl to LIBL for all platforms.
--- 8.3.2-REL released --- (Mon Jun 17 20:24:32 PDT 2002)
1293. [doc] update man pages for 'dig', 'dnsquery' and 'host'
to reflect IPv6 capabilities (nslookup and nsupdate
were already IPv4/IPv6 agnostic).
1292. [func] host: the default lookups now also include AAAA
records.
1291. [func] 'dig -x <ip6>' now works.
1290. [bug] 'dig @server' fail to report the IPv6 address of the
server in error messages.
1289. [contrib] normalize_zone now handles $TTL.
1288. [bug] named: -t and -w could not be used together.
1287. [func] report serial(s) in out going transfer operation.
--- 8.3.2-RC1 released --- (Thu May 30 23:06:11 PDT 2002)
1286. [func] libbind: no longer attempts bit string labels for
IPv6 reverse resolution. Try IP6.ARPA then IP6.INT
for nibble style resolution.
1285. [port] linux: ss_family vs __ss_family in sockaddr_storage.
1284. [port] freebsd: 5.0 uses gid_t rather that int for
GETGROUPLIST_ARGS
1283. [port] bsdi: 4.2 also has struct sockaddr_storage.
1282. [bug] nslookup was using inet_ntoa() to print out a IPv6
address.
1281. [bug] escape '(' and ')' when coverting to presentation
form.
1280. [func] server { edns yes_or_no; } is now supported.
1279. [bug] nslookup: partial coversion to similar style outputs
for both -type=aaaa and -type=a.
1278. [bug] free() of non-malloced memory in nslookup.
1277. [port] cast all instances of yytext in commands.l to (char*)
to silence compilers on OS's where lex declares it
as (unsigned char *).
1276. [port] hpux 11.22: ansify GetAnswer in getinfo.c to
silence compiler.
1275. [bug] bad declaration of si in tsig_key_from_addr().
1274. [port] hpux 11.22: ansify hexstring() and display() in
addr.c to silence compiler.
1273. [bug] const pointer conficts in res_debug.c.
1272. [port] hpux 11.22: don't link against -ll unless required.
1272. [bug] main_need_num was not last entry in enum.
main_need_tick nolonger required.
1271. [port] hpux: treat all hpux systems as BIG_ENDIAN, don't
include <sys/mbuf.h>.
1270. [port] hpux 11.22 namespace clash DATASIZE -> BIND_DATASIZE.
1269. [port] hpux 11.11 interface scaning.
1268. [port] solaris: 64 bit binary compatability.
1267. [bug] aix4: missing IN6_IS_ADDR_V4COMPAT macro.
1266. [bug] If you are using TSIG #1261 introduced the potential
of a infinite loop.
1265. [bug] nslookup failed on platforms that don't have BSD 43
style sockets.
1264. [bug] LINK_INIT and UNLINK were not compatible with
C++, use LINK_INIT_TYPE and UNLINK_TYPE instead.
--- 8.3.2-T1B released --- (Tue May 7 18:49:58 PDT 2002)
1263. [bug] gethostans() could get out of sync parsing the
response if there was a very long CNAME chain.
1262. [bug] winnt: dumpdb and stats should now work reliably.
1261. [bug] using a valid TSIG with a compressed ownername could
result a INSIST() failure.
1260. [func] "notify explicit;" from BIND 9.
1259. [misc] leave the verification of the OPT options to the
caller.
1258. [func] accept SOA MNAME field as legitimate additional
data.
1257. [bug] malformed response to query w/ tsig + edns.
1256. [port] darwin: probe for IPv6 support.
1255. [bug] xfers_running could become out of sync if a zone
was removed while it was being transfered.
1254. [func] nsupdate can now update IPv6 servers.
1253. [func] host now accepts IPv6 addresses.
1253. [bug] reserve space for the signature when performing a
zone transfer.
1252. [func] dnsquery now accepts IPv6 addresses.
1251. [bug] win32: it was possible to call RegCloseKey() on a
invalid key.
1250 [func] nslookup now accepts IPv6 addresses.
1249. [func] dig now accepts IPv6 addresses.
1248. [doc] correct some typos in named.conf.5 and corresponding
html.
1247. [bug] get_salen() IPv6 support was broken for OSs w/o sa_len.
1246. [support] add highly dangerous compile time option
NXDOMAIN_ON_DENIAL. it should not be used
except in testing.
1245. [bug] if we don't have enough file descriptors to open
a socket attempt to close a idle tcp client.
1244. [port] bsdi: 4.3 has struct sockaddr_storage.
1243. [bug] SERVFAIL can have too many other causes to be used
say whether a server supports EDNS or not.
1242. [port] 64k answer buffers were causing stack space to be
exceeded for certian OS. Use heap space instead.
1241. [bug] getnameinfo() failed to lookup IPv4 mapped /
compatible addresses.
1340. [bug] reference after free for included conf file name.
1339. [bug] doaddinfo would not always attempt to fetch missing
glue when it should have.
1338. [bug] an IPv6 only nameserver could generate spurious
sysquery errors.
1337. [port] linux: IN6ADDR_LOOPBACK_INIT, IN6ADDR_ANY_INIT and
sockaddr_storage not declared by early kernels.
1336. [bug] getaddrinfo() could call freeaddrinfo() with an
invalid pointer.
1335. [bug] res_nupdate() failed to update the name servers
addresses before sending the update.
1334. [bug] A6 is expected in the additional section.
|
|
--- 4.9.9-REL released ---
818. [bug] remote buffer overrun.
|
|
|
|
|
|
Submitted by Dawid Szymanski <dawszy@tgr.lubin.edu.pl> in private mail.
|
|
optimizing by moving each round into a separate function on sparc64.
|
|
header file to <basename>.h, keep it as y.tab.h
|
|
"make show-depends-dirs" works again.
|
|
Remove `-p' from mkdir arguments, it is already part of ${MKDIR}.
While here substitute a couple of ${PREFIX} by `%D' in
`@exec ${MKDIR} ...' lines and add a couple of missing `%D' in such lines too!
|
|
correct bad practice in the code - it uses two changing variables
to manage buffer (buf and buflen). we eliminate buflen and use
fixed point (ep) as the ending pointer.
this fix is critical.
|
|
|
|
wording in comments and the description.
|
|
|
|
This is modified version deveopled by Samba Users Group Japan.
o I18N for SWAT.
Select display language based on information supplied by
Web browser.
o L10N for Japanese.
Support various use of Japanese name; share name, computer
name, workgroup name, user name.
Solve some problems when different version of Windows are
mixed. Especially, vanilla samba dosen't support vendor
depended characters completely. (Those characters are
differently handled among Windows 95, Windows 98, Windows NT
and something changed in Windows XP.) This cause practical
problem on real world.
o Some Bugfix go ahead to original samba.
o Some original feature
Supoprt a recycle bin.
Currently it is samba 2.2.2 base, and they are developing newer
version based on samba 2.2.4.
|
|
|
|
|
|
Submitted by svs@ropnet.ru in pkg/12009
Eggdrop is an IRC bot, written in C. If you don't know what IRC is, this
is probably not whatever you're looking for! Eggdrop, being a bot, sits
on a channel and takes protective measures: to keep the channel from being
taken over (in the few ways that anything CAN), to recognize banished
users or sites and reject them, to recognize priveledged users and let
them gain ops, etc.
|
|
|
|
docsis is a small program that can be used to generate binary
configuration files for DOCSIS-compliant cable modems.
It can be used to implement a cable modem provisioning system, as well
as testing of DOCSIS-compliant cable modems.
|
|
|
|
It offers features like directory caching, tab completion, aliases, colored
ls, recursive commands, autologin, bookmarks, multiple connections opened
simultaneously, nohup mode transfers and SSH2 support (sftp).
Provided by Piotr Stolc in PR pkg/16675.
Enabling of Kerberos support from William Waites in PR pkg/16250
Cleaned up by me.
|
|
suse_x11 6.1p1).
avoids unncessarily upgrading suse_* on older installations.
|
|
version 2.2.4nb1 is that there are the usual minor bug fixes, plus some
important ones:
* fix printing with Win2K/XP clients
* fixes related to using LDAP for the SAM
* fixes related to changing passwords
Pkgsrc changes:
* Fetch the .tar.bz2 file -- it's smaller.
* Use smb.conf.default as the sample config file and get rid of
the homegrown files/smb.conf.sample. smb.conf.default is more
informative and is a better resource.
* Remove irrelevant examples.
* Move convert_smbpasswd script to the examples/samba/misc
directory. It's pretty much outlived it's usefulness at this
point of the Samba release cycle.
|
|
include:
* Installing the relevant manpages with the server programs.
* Miscellaneous bug fixes.
* Coda servers were doing strncmp instead of memcmp on ip-addresses.
This fixes 'identity-crisis' problems for replicated servers, where
servers didn't know which volumes they were hosting etc. (Ivan Popov)
* Made ValidateAttrs on the server more resilient to bad input.
* Handle reintegration conflicts when doing a partial reintegration,
instead of endlessly looping.
* Searching the colon separated CODACONFPATH environment variable for
venus.conf and server.conf configuration files.
* Added some more paranoia checks while parsing the /vice/db/servers
file.
* No longer ordering VRDB entries entries by ip-address. This allows
us to resize a VSG without affecting version-vectors.
* Added rds_print_stats to the server's printstats output to aid in
finding whether an RVM allocation failure is due to running out of
RVM space, or due to a large defragmentation that cannot be logged
in the RVM log.
* Added getvolinfo program to be useful when debugging volume mounting
problems.
* Avoid servers getting stuck in file-creation when there are
pre-existing files in /vicepa.
* Always pre-allocate fids with the maximum possible stride, will become
useful when we allowing modifications to a volume's replication
group. However, any replicated volume over a mix of old and new
servers has a slightly higher probability on getting unwanted
fid-collissions.
* Reduced server memory usage during reintegration.
* Not returning ENOENT when testing inconsistent files with
access(F_OK).
* Allow server-server repair with only one existing replica, needed
for repairing conflicts after running out of diskspace.
* Added "skip volumes" argument to norton-reinit -load.
* The 'change id' function of pdbtool would silently corrupt the pdb
databases, group owner id's were not updated, users were missing
as members from groups. Group could become a member of a user.
Hueristics to fix these corruptions are added to the 'pdbtool cm'
functionality.
|
|
include:
* Installing the relevant manpages with the client programs.
* Miscellaneous bug fixes.
* Venus now gracefully handles the situation where getvolinfo returns
different replicas compared to the cached replication information.
Now we only need add server support for VSG changes and a trigger
that forces venus to make a getvolinfo call and we can start moving
volumes around in the system.
* Avoid killing clients when receiving truncated directory data.
* Block when accessing an uncached object during resolution instead of
failing. This is especially useful during weak-reintegration.
* Added -local flag to cfs lv to avoid client-server rpc2 traffic.
* Fetch data as well as status in write-disconnected mode, the dirty
status-only object would prevent subsequent data-fetches until
successful reintegration completed.
* Added venus.conf option 'validateattrs' to limit piggybacked fids
during validate attrs to help reducing IP layer fragmentation.
* Another new venus.conf option 'serverprobe' to increase server probe
intervals (keeps firewalls from dropping masqueraded connections).
* venus.conf.ex file now defaults to turning on both masquerading and
using private mmap's for RVM.
* Disallow unlinking special names with 'cfs rmm'
* Optimized local-global fid replacement.
* Moved /usr/bin/replay to /usr/bin/coda_replay to avoid name conflicts.
* Reintroduced VSGs in venus.
* Re-randomizing during hoardwalks to add fair reclaiming behaviour
in the low end of the priority queue.
|
|
|
|
|
|
sharing client.
Provided in PR 16081 by Alex Newman (dolemite@wuli.nu)
Nap is a powerful Java file sharing client. It has OpenFT support via
giFT. Other features include fetching a server list from Napigator,
connecting to multiple OpenNap servers, doing multiple concurrent
searches, and automatic downloading. You can view your MP3 files and
play them conveniently from within XNap. It also provides a
commandline interface for use on a terminal.
|
|
|
|
|
|
Proposed in pkg/16202 by Greg A. Woods.
|
|
|
|
Sipcalc is an ip subnet calculator. Features include:
- IPv4
* Retrieving of address information from interfaces.
* Classfull and CIDR output.
* Multiple address and netmask input and output formats (dotted
quad, hex, number of bits).
* Output of broadcast address, network class, Cisco wildcard,
* hosts/range,
network range.
* The ability to "split" a network based on a smaller netmask, now
* also with
recursive runs on the generated subnets. (also IPv6)
- IPv6
* Compressed and expanded input and output addresses.
* Standard IPv6 network output.
* v4 in v6 output.
* Reverse DNS address generation.
|
|
|
|
|
|
|
|
(to avoid building against a pkgsrc openssl w/o registering a dependency)
|
