Files: 26b4bcd089f6c3a3c43d1380969c939e600b3ef2 / ChangeLog
4385 bytesRaw
1 | v1.11: 21APR2012 |
2 | WARNING: defaults have been removed for --user and |
3 | --pidfile options, update your start-up scripts! |
4 | |
5 | No longer stop sslh when reverse DNS requests fail |
6 | for logging. |
7 | |
8 | Added HTTP probe. |
9 | |
10 | No longer create new session if running in |
11 | foreground. |
12 | |
13 | No longer default to changing user to 'nobody'. If |
14 | --user isn't specified, just run as current user. |
15 | |
16 | No longer create PID file by default, it should be |
17 | explicitely set with --pidfile. |
18 | |
19 | No longer log to syslog if in foreground. Logs are |
20 | instead output to stderr. |
21 | |
22 | The four changes above make it straightforward to |
23 | integrate sslh with systemd, and should help with |
24 | launchd. |
25 | |
26 | v1.10: 27NOV2011 |
27 | Fixed calls referring to sockaddr length so they work |
28 | with FreeBSD. |
29 | |
30 | Try target addresses in turn until one works if |
31 | there are several (e.g. "localhost:22" resolves to |
32 | an IPv6 address and an IPv4 address and sshd does |
33 | not listen on IPv6). |
34 | |
35 | Fixed sslh-fork so killing the head process kills |
36 | the listener processes. |
37 | |
38 | Heavily cleaned up test suite. Added stress test |
39 | t_load script. Added coverage (requires lcov). |
40 | |
41 | Support for XMPP (Arnaud Gendre). |
42 | |
43 | Updated README.MacOSX (Aaron Madlon-Kay). |
44 | |
45 | v1.9: 02AUG2011 |
46 | WARNING: This version does not work with FreeBSD and |
47 | derivatives! |
48 | |
49 | WARNING: Options changed, you'll need to update your |
50 | start-up scripts! Log format changed, you'll need to |
51 | update log processing scripts! |
52 | |
53 | Now supports IPv6 throughout (both on listening and |
54 | forwarding) |
55 | |
56 | Logs now contain IPv6 addresses, local forwarding |
57 | address, and resolves names (unless --numeric is |
58 | specified). |
59 | |
60 | Introduced long options. |
61 | |
62 | Options -l, -s and -o replaced by their long |
63 | counterparts. |
64 | |
65 | Defaults for SSL and SSH options suppressed (it's |
66 | legitimate to want to use sslh to mux OpenVPN and |
67 | tinc while not caring about SSH nor SSL). |
68 | |
69 | Bind to multiple addresses with multiple -p options. |
70 | |
71 | Support for tinc VPN (experimental). |
72 | |
73 | Numeric logging option. |
74 | |
75 | v1.8: 15JUL2011 |
76 | Changed log format to make it possible to link |
77 | connections to subsequent logs from other services. |
78 | |
79 | Updated CentOS init.d script (Andre Krajnik). |
80 | |
81 | Fixed zombie issue with OpenBSD (The SA_NOCLDWAIT flag is not |
82 | propagated to the child process, so we set up signals after |
83 | the fork.) (Fran�ois FRITZ) |
84 | |
85 | Added -o "OpenVPN" and OpenVPN probing and support. |
86 | |
87 | Added single-threaded, select(2)-based version. |
88 | |
89 | Added support for "Bold" SSH clients (clients that speak first) |
90 | Thanks to Guillaume Ricaud for spotting a regression |
91 | bug. |
92 | |
93 | Added -f "foreground" option. |
94 | |
95 | Added test suite. (only tests connexions. No test for libwrap, |
96 | setsid, setuid and so on) and corresponding 'make |
97 | test' target. |
98 | |
99 | Added README.MacOSX (thanks Aaron Madlon-Kay) |
100 | |
101 | Documented use with proxytunnel and corkscrew in |
102 | README. |
103 | |
104 | |
105 | v1.7: 01FEB2010 |
106 | Added CentOS init.d script (Andre Krajnik). |
107 | |
108 | Fixed default ssl address inconsistancy, now |
109 | defaults to "localhost:443" and fixed documentation |
110 | accordingly (pointed by Markus Schalke). |
111 | |
112 | Children no longer bind to the listen socket, so |
113 | parent server can be stopped without killing an |
114 | active child (pointed by Matthias Buecher). |
115 | |
116 | Inetd support (Dima Barsky). |
117 | |
118 | v1.6: 25APR2009 |
119 | Added -V, version option. |
120 | |
121 | Install target directory configurable in Makefile |
122 | |
123 | Changed syslog prefix in auth.log to "sslh[%pid]" |
124 | |
125 | Man page |
126 | |
127 | new 'make install' and 'make install-debian' targets |
128 | |
129 | PID file now specified using -P command line option |
130 | |
131 | Actually fixed zombie generation (the v1.5 patch got |
132 | lost, doh!) |
133 | |
134 | |
135 | v1.5: 10DEC2008 |
136 | Fixed zombie generation. |
137 | |
138 | Added support scripts (), Makefile. |
139 | |
140 | Changed all 'connexions' to 'connections' to please |
141 | pesky users. Damn users. |
142 | |
143 | v1.4: 13JUL2008 |
144 | Added libwrap support for ssh service (Christian Weinberger) |
145 | Only SSH is libwraped, not SSL. |
146 | |
147 | v1.3: 14MAY2008 |
148 | Added parsing for local interface to listen on |
149 | |
150 | Changed default SSL connection to port 442 (443 doesn't make |
151 | sense as a default as we're already listening on 443) |
152 | |
153 | Syslog incoming connections |
154 | |
155 | v1.2: 12MAY2008 |
156 | Fixed compilation warning for AMD64 (Thx Daniel Lange) |
157 | |
158 | v1.1: 21MAY2007 |
159 | Making sslhc more like a real daemon: |
160 | * If $PIDFILE is defined, write first PID to it upon startup |
161 | * Fork at startup (detach from terminal) |
162 | (thanks to http://www.enderunix.org/docs/eng/daemon.php -- good checklist) |
163 | * Less memory usage (?) |
164 | |
165 | v1.0: |
166 | Basic functionality: privilege dropping, target hostnames and ports |
167 | configurable. |
168 | |
169 | |
170 |
Built with git-ssb-web