Age | Commit message (Collapse) | Author | Files | Lines |
|
Changes in version 0.1.2.17 - 2007-08-30
o Major bugfixes (security):
- We removed support for the old (v0) control protocol. It has been
deprecated since Tor 0.1.1.1-alpha, and keeping it secure has
become more of a headache than it's worth.
o Major bugfixes (load balancing):
- When choosing nodes for non-guard positions, weight guards
proportionally less, since they already have enough load. Patch
from Mike Perry.
- Raise the "max believable bandwidth" from 1.5MB/s to 10MB/s. This
will allow fast Tor servers to get more attention.
- When we're upgrading from an old Tor version, forget our current
guards and pick new ones according to the new weightings. These
three load balancing patches could raise effective network capacity
by a factor of four. Thanks to Mike Perry for measurements.
o Major bugfixes (stream expiration):
- Expire not-yet-successful application streams in all cases if
they've been around longer than SocksTimeout. Right now there are
some cases where the stream will live forever, demanding a new
circuit every 15 seconds. Fixes bug 454; reported by lodger.
o Minor features (controller):
- Add a PROTOCOLINFO controller command. Like AUTHENTICATE, it
is valid before any authentication has been received. It tells
a controller what kind of authentication is expected, and what
protocol is spoken. Implements proposal 119.
o Minor bugfixes (performance):
- Save on most routerlist_assert_ok() calls in routerlist.c, thus
greatly speeding up loading cached-routers from disk on startup.
- Disable sentinel-based debugging for buffer code: we squashed all
the bugs that this was supposed to detect a long time ago, and now
its only effect is to change our buffer sizes from nice powers of
two (which platform mallocs tend to like) to values slightly over
powers of two (which make some platform mallocs sad).
o Minor bugfixes (misc):
- If exit bandwidth ever exceeds one third of total bandwidth, then
use the correct formula to weight exit nodes when choosing paths.
Based on patch from Mike Perry.
- Choose perfectly fairly among routers when choosing by bandwidth and
weighting by fraction of bandwidth provided by exits. Previously, we
would choose with only approximate fairness, and correct ourselves
if we ran off the end of the list.
- If we require CookieAuthentication but we fail to write the
cookie file, we would warn but not exit, and end up in a state
where no controller could authenticate. Now we exit.
- If we require CookieAuthentication, stop generating a new cookie
every time we change any piece of our config.
- Refuse to start with certain directory authority keys, and
encourage people using them to stop.
- Terminate multi-line control events properly. Original patch
from tup.
- Fix a minor memory leak when we fail to find enough suitable
servers to choose a circuit.
- Stop leaking part of the descriptor when we run into a particularly
unparseable piece of it.
|
|
Fixes PR 36965.
|
|
- Fix ${MASTER_SITES}
- Fix permissions on installed html files
BIND changes:
1750. [cleanup] Add "End of Life" notices.
1749. [security] Use arc4 rather than LC NSID for QID RNG. [RT #17034]
1719. [port] HPUX-IA64 support.
1716. [port] solaris: poll() support.
1715. [port] solaris: uses Sun's md5 implementation.
1712. [bug] turning off non-blocking i/o was broken.
1700. [port] Use closefrom() if available.
See CHANGES for all the details.
|
|
|
|
jfranz at bsdprojects dot net.
LibMMS aims to be a common mms:// and mmsh:// (Microsoft streaming protocols)
parsing library, licensed under LGPL.
|
|
2007/09/09: version 2.9.1 = tag release-2-9-1
6192: EDK: Use discovered client_ip when lowid
2007/09/05
6187: BT: Fix wrong file order of multifile torrents due to patch #6174
2007/09/01
6179: BT: Send correct downloaded amount to tracker when download completed
6174: BT: Encode non-UTF8 filenames using "encoding" or "codepage" data
from .torrent if present
2007/08/31
6175: Yet another patch for share_scan_interval
- new default 30 minutes for newly created ini files
- still use 0 to disable
- hard-coded global minimum of 5 minutes, this updates old default 1 to 5
- automated options update, if update is needed (options_version <= 19) and
share_scan_interval = 5 (because of new hard-coded minimum, which is
processed earlier) its changed to new default of 30
6145: EDK: Update options description of max_connected_servers (Schlumpf)
6172: EDK: properly advertise and honour noviewshared tag (TripleM)
2007/08/23
6160: BT: Another fix for share_scan_interval
- Old hard-coded default was 300s, now with share_scan_interval its
possible to use a minimum of 60s which produces high CPU load.
This patch implements a minimum of 300s for the BT share_files timer.
2007/08/04
6128: New default for option messages_filter (unease)
6132: HTML: Fix group display in vd <num> for admin users
view of other users files
6130: Change API for network_parse_url, support user group
6127: HTML: Display file_chunk_sizes/file_piece_size in vd <num>
6135: BT: Fix high CPU load when share_scan_interval = 0
due to buggy patch #6049 (thx to darkman)
|
|
not required. From John R. Shannon.
|
|
|
|
|
|
|
|
fpdns fingerprints DNS servers to find out which type they are.
|
|
XXX: now segfaults on NetBSD-4.99.30/amd64, instead of not starting
at all before.
|
|
and to support the "inet6" option instead.
Remaining usage of USE_INET6 was solely for the benefit of the scripts
that generate the README.html files. Replace:
BUILD_DEFS+= USE_INET6
with
BUILD_DEFS+= IPV6_READY
and teach the README-generation tools to look for that instead.
This nukes USE_INET6 from pkgsrc proper. We leave a tiny bit of code
to continue to support USE_INET6 for pkgsrc-wip until it has been nuked
from there as well.
|
|
|
|
most changes supplied by mlelstv@NetBSD.org (Michael van Elst)
patch to src/rpsl/rpsl/rptype.cc supplied by he@NetBSD.org (Havard Eidnes)
also fixes PR pkg/36807
|
|
Bug Fixes
* Fix a bug in Net::Cmd that is_utf8 does not exist prior to perl 5.8.1
|
|
This version contains build problem with gcc4 reported and patch provided
by Yakovetsky Vladimir in PR 36943.
|
|
|
|
|
|
|
|
|
|
URLs, and upstream doesn't have time to fix it.
Use pkgsrc/net/youtube-dl instead.
|
|
youtube-dl is a small command-line program written in Python to
download videos from YouTube.com.
|
|
in pkgsrc/mk/pkginstall/bsd.pkginstall.mk revision 1.31.
|
|
|
|
|
|
correctly
find the builtin installation
|
|
|
|
|
|
report produced by Nipper includes; detailed security-related issues with
recommendations, a configuration report and various appendices. Nipper has a
large number of configuration options which are described on this page.
|
|
|
|
|
|
Honor PKG_SYSCONFDIR and PKGMANDIR.
Use SUBST framework instead of manual sed.
And pkglintfy.
Bump PKGREVISION.
|
|
|
|
Pkgsrc changes:
- none
Changes since version 0.60:
===========================
*** 0.61, 1 August 2007
Fix rt.cpan.org #28106, 28198, and 28590
Modification of $_ in various places.
Fix
t/11-inet6 assumed lowercase domain names.
|
|
This fixes PR pkg/36695 by Jim Bernard.
Bump PKGREVISION to 5.
|
|
|
|
Ernesti - PR/36804
|
|
Bump package revision.
|
|
update.
|
|
|
|
|
|
By default, no longer try to use libnet. You must now specify --enable-libnet (#148)
Remove support for pcap_snapshot_override which was never added to libpcap (#140)
Rewrite L2/DLT code in tcpedit/tcprewrite to be plugin based (#82)
tcpprep & tcprewrite no longer require root access (#3)
Remove libnids dependancy for flowreplay
And many more, see the following for all the details:
http://tcpreplay.synfin.net/trac/browser/trunk/docs/CHANGELOG?rev=1886
|
|
Fixed header files to avoid conflicts with system files on BSD for
IPv6 data structures.
Added code to prevent URI-related alerts from firing when the
body is being normalized.
Make Stream5 the default stream engine.
Add alert for multiple GRE encapsulations.
Added ability for Snort to track fragmented ICMPv6 to check for the
remote BSD exploit (Bugtraq ID 22901, CVE-2007-1365).
Code cleanup, change malloc/calloc to SnortAlloc, use safer functions
SnortSnprintf, SnortStrncpy, etc. Check pointers before use.
Additional updates for bounds checking.
And many more . . . check the ChangeLog for all the details
|
|
|
|
Change since versions 0.11.4 respectively 0.7.4:
- The old option handler has been rewritten.
- Added support for SCGI rpc calls.
- Added "http_ca{path/cert}" options. Patch by Johan Gunnarsson
- Added configure options that allow building universal binaries.
- Fixed a bug that caused piped requests to be lost.
- Improved XMLRPC support, including support for 64bit ints, removed
defective FastCGI support,
- Added a large number of commands for use with XMLRPC. See
system.listMethods for a complete list.
- Fixed a bug where the tracker re-announce interval for the previous
tracker was being used. Now the announce intervals for each tracker is
stored seperately.
- Commands that pass through rpc::parse_command_* now support inline
commands that start with a '$'. E.g 'print="$get_ip="'.
- Allow ';' as a separator for multi-command lines. Not recognized by
the string parser, so it must be preceded by whitespace.
- Allow escaping of newlines in the resource file.
- The "load_*" commands now allow a list of commands to be appended.
These commands will be called on the newly loaded download.
|
|
Pkgsrc changes:
- none
Changes since version 0.13:
===========================
0.14: (2007-08-03)
* allow CGI subclasses (like CGI::Fast) for args. bug fix
from Chris Kastorff <encryptio@gmail.com>.
|
|
No functionally changes since RC1.
|
|
by default, inet6 support is built in, but it can be disabled for systems
that do not have inet6 capability.
|
|
on NetBSD/current.
|