File bftpd.changes of Package bftpd
-------------------------------------------------------------------
Sun Feb 6 23:07:28 UTC 2022 - Martin Hauke <mardnh@gmx.de>
- Update to version 6.1
* Code clean-up.
* Graceful exit when no arguments are passed to Bftpd.
* Fixed passive port assignment in extended passive mode.
* Improved directory output formating.
* Fixed compiler warnings.
* Minor fix for ratios.
* Added better formatting for access denied message to client.
* Improved standards compliance on errors/replies to client.
* Added more checks when accessing files and symlinks.
-------------------------------------------------------------------
Sat Aug 4 16:22:47 UTC 2018 - aloisio@gmx.com
- Update to version 4.9
* Several checks added to chdir() and other
return codes to make sure syscalls are all returning
properly. Patch provided by Zhouyang Jia.
* Fixed some compiler warnings due to unused or
oddly indented code.
version 4.8:
* Fixed potential double-free bug during Bftpd shutdown.
* Fixed potential unititalized variable.
Thanks to Alex for reporting these bugs.
version 4.7
* Fixed memory leak in rename function.
Thanks to Alex for reporting this bug.
version 4.6
* Avoid memory corruption when reading config file by initalizing memory.
* Make sure CHROOT is default option, even if it is not specified
in the config file.
Thanks for Anton Yuzhaninov for providing the above two fixes.
version 4.5
* Avoid potential buffer underflow in main.c
Thanks to Andreas for pointing out this problem.
version 4.4
* Fixed potential buffer overflow when
expanding symbolic link file names.
version 4.3
* Clarified license (COPYING file)
* Fixed compiler warning with regards to
pointer-to-integer cast.
version 4.2
* Improved user checking code to avoid locking out
valid users from the system.
(Thanks to Lauri Kasanen for reporting this bug
and supplying a patch.)
version 4.1
* Added checks to crypt() calls to prevent
operating on NULL pointer.
(Thanks to Lauri Kasanen for reporting this bug.)
version 4.0
* Added patch from Thomas Cort to make Bftpd
compile on NetBSD.
version 3.9
* Adjusted Makefile to allow for easy access to
non-default compiler options. Alternative compiler
can be used by running "make CC=compilername".
* Zhenbo Xu reported several potential memory
bugs which could cause Bftpd if the operating
system is out of memory. Also reported a memory
leak. Checks are now in place to prevent crashes
and the memory leak has been plugged.
* Added MINIX-specific configuration file which
should allow Bftpd to run smoothly and without
additional configuration on MINIX.
* Merged MINIX porting code into mainline Bftpd
so we can work with one, unified code base.
version 3.8
* Fixed bug in user tracking which could result
in corrupted times on 64-bit systems.
* When Bftpd is compiled with a "prefix" (which
is the default behaviour) the Bftpd will
check both /etc/bftpd.conf AND PREFIX/etc/bftpd.conf
when trying to find its configuration file.
This should avoid requiring the admin to pass
the location of the config file on the command line.
version 3.7
* Removed CVS directory from doc folder.
* Options in the config file may now have
following #comments.
Reading the config file should happen a
little faster too.
Thanks to Zhang for reporting this issue.
* Fixed typo in re-reading config file.
Thanks to Zhang for reporting this issue.
* When installing Bftpd the make file now
respects the configure --prefix=/path/to/install
flag.
Thanks to Martin for reporting this bug.
* Config file parser now handled multiple
unexpected spaces.
Thanks to Chang for reporting this issue.
- Replaced bftpd-2.8_install.patch with bftpd-4.9_install.patch
- Spec cleanup
-------------------------------------------------------------------
Thu Jul 28 21:43:12 UTC 2011 - pascal.bleser@opensuse.org
- update to 3.6:
* includes a fix for dealing with named pipes: previously performing a
directory listing on a directory that included a named pipe would cause
Bftpd's connect to stall; this release provides a work-around so that
directory listings complete cleanly
-------------------------------------------------------------------
Sat Jul 23 09:56:31 UTC 2011 - pascal.bleser@opensuse.org
- update to 3.5:
* added explicit setting of sin_family to AF_INET to avoid ambiguity and
possible bind errors
- changes from 3.4:
* added configuration file option TIMEZONE_FIX: by default Bftpd tries to
guess the time zone, working around the C library; when running on a system
where the C library can correctly guess the time zone in a chroot
environment, set TIMEZONE_FIX="no" in the bftpd.conf file
* added -v command line option which will cause Bftpd to display the current
version and exit
- changes from 3.3:
* time stamps in the log file were not correct after chrooting; added time
zone code to make sure we can calculate the correct time without access to
system time zone info
-------------------------------------------------------------------
Thu Apr 28 09:31:56 UTC 2011 - mseben@gmail.com
- update to bftpd 3.2
* Added new value for SHOW_HIDDEN_FILES option in the
config file. The option can now be set to "yes",
"no" or "always". This allows admins to determine whether
clients can see hidden files if it is requested, never
or all the time, repectively. Please see the config file
comments for details.
* Made sure HIDE_GROUP variable will cause files belonging
to a given group to not be shown to the client.
- changes in bftpd 3.1
* Make sure default config disables anonymous login
by default.
- changes in bftpd 3.0
* Updated documentation to fix links. Thanks to Xiang for
pointing out the error.
* Added Slovak documentation, provided by Dusan.
-------------------------------------------------------------------
Fri Jun 4 06:09:13 UTC 2010 - pascal.bleser@opensuse.org
- update to 2.9:
* bftpd will attempt to create it's utmp directory if that
directory does not exist
* the ROOTDIR option now works properly for anonymous users
-------------------------------------------------------------------
Wed Apr 21 22:42:29 UTC 2010 - pascal.bleser@opensuse.org
- update to 2.8:
* fixes anonymous logins, which were broken a few releases back:
anonymous logins are now blocked by default, but can be easily
enabled in the configuration file
* support has been added for the "-a" flag in the LIST command,
allowing users to see hidden files
* the search function has been fixed so that symbolic links are
displayed properly, even if the link is broken
* some fixes were applied, making sure the server can always read
user-specific settings from the config file
* when several connections are dropped at once, the server now
cleans up all child processes, avoiding zombies
- changes from 2.7:
* fixes an issue where the same error code was returned
regardless of whether the client was trying to delete a write-
protected directory or a non-empty directory; the proper codes
are now returned, making sure the FTP client will be able to
take the proper action
- changes from 2.6:
* fixes a minor security bug which could be used to cause a
denial of service attack
-------------------------------------------------------------------
Fri Oct 9 21:20:44 UTC 2009 - pascal.bleser@opensuse.org
- update to 2.5:
* improves UTF-8 support with programs such as Filezilla
* now provides the option to log bandwidth usage on a per user basis
-------------------------------------------------------------------
Thu Sep 3 10:53:57 UTC 2009 - pascal.bleser@opensuse.org
- update to 2.4:
* a minor security bug which could be used to cause a denial of
service attack has been fixed
-------------------------------------------------------------------
Mon Oct 6 18:43:11 CEST 2008 - pascal.bleser@opensuse.org
- update to version 2.3
- added xinetd config
-------------------------------------------------------------------
Mon Nov 5 05:37:18 CET 2007 - mrueckert@suse.de
- update to version 2.1
-------------------------------------------------------------------
Fri Oct 5 02:07:20 CEST 2007 - mrueckert@suse.de
- initial package
