git ssb

Files: 5cd1fa18753c479f7eaef26b893016a37646364f / ChangeLog

5147 bytesRaw

1 v1.13: 18MAY2012
2 	Write PID file before dropping privileges.
3 
4 	Added --background, which overrides 'foreground'
5 	configuration file setting.
6 
7 	Added example systemd service file from Archlinux in
8 	scripts/
9 	https://projects.archlinux.org/svntogit/community.git/tree/trunk/sslh.service?h=packages/sslh
10 	(S�bastien Luttringer)
11 
12 v1.12: 08MAY2012
13 	Added support for configuration file.
14 
15 	New protocol probes can be defined using regular
16 	expressions that match the first packet sent by the
17 	client.
18 
19 	sslh now connects timed out connections to the first
20 	configured protocol instead of 'ssh' (just make sure
21 	ssh is the first defined protocol).
22 
23 	sslh now tries protocols in the order in which they
24 	are defined (just make sure sslh is the last defined
25 	protocol).
26 
27 v1.11: 21APR2012
28 	WARNING: defaults have been removed for --user and
29 	--pidfile options, update your start-up scripts!
30 
31 	No longer stop sslh when reverse DNS requests fail
32 	for logging.
33 
34 	Added HTTP probe.
35 
36 	No longer create new session if running in
37 	foreground.
38 
39 	No longer default to changing user to 'nobody'. If
40 	--user isn't specified, just run as current user.
41 
42 	No longer create PID file by default, it should be
43 	explicitely set with --pidfile.
44 
45 	No longer log to syslog if in foreground. Logs are
46 	instead output to stderr.
47 
48 	The four changes above make it straightforward to
49 	integrate sslh with systemd, and should help with
50 	launchd.
51 
52 v1.10: 27NOV2011
53 	Fixed calls referring to sockaddr length so they work
54 	with FreeBSD.
55 
56 	Try target addresses in turn until one works if
57 	there are several (e.g. "localhost:22" resolves to
58 	an IPv6 address and an IPv4 address and sshd does
59 	not listen on IPv6).
60 
61 	Fixed sslh-fork so killing the head process kills
62 	the listener processes.
63 
64 	Heavily cleaned up test suite. Added stress test
65 	t_load script. Added coverage (requires lcov).
66 
67 	Support for XMPP (Arnaud Gendre).
68 
69 	Updated README.MacOSX (Aaron Madlon-Kay).
70 
71 v1.9: 02AUG2011
72 	WARNING: This version does not work with FreeBSD and
73 	derivatives!
74 
75 	WARNING: Options changed, you'll need to update your
76 	start-up scripts! Log format changed, you'll need to
77 	update log processing scripts!
78 
79 	Now supports IPv6 throughout (both on listening and
80 	forwarding)
81 
82 	Logs now contain IPv6 addresses, local forwarding
83 	address, and resolves names (unless --numeric is
84 	specified).
85 
86 	Introduced long options.
87 
88 	Options -l, -s and -o replaced by their long
89 	counterparts.
90 
91 	Defaults for SSL and SSH options suppressed (it's 
92 	legitimate to want to use sslh to mux OpenVPN and 
93 	tinc while not caring about SSH nor SSL).
94 
95 	Bind to multiple addresses with multiple -p options.
96 
97 	Support for tinc VPN (experimental).
98 
99 	Numeric logging option.
100 
101 v1.8: 15JUL2011
102 	Changed log format to make it possible to link
103 	connections to subsequent logs from other services.
104 
105 	Updated CentOS init.d script (Andre Krajnik).
106 
107 	Fixed zombie issue with OpenBSD (The SA_NOCLDWAIT flag is not
108 	propagated to the child process, so we set up signals after
109 	the fork.) (Fran�ois FRITZ)
110 
111 	Added -o "OpenVPN" and OpenVPN probing and support.
112 
113 	Added single-threaded, select(2)-based version.
114 
115 	Added support for "Bold" SSH clients (clients that speak first)
116 	Thanks to Guillaume Ricaud for spotting a regression
117 	bug.
118 
119 	Added -f "foreground" option.
120 
121 	Added test suite. (only tests connexions. No test for libwrap,
122 	setsid, setuid and so on) and corresponding 'make
123 	test' target.
124 
125 	Added README.MacOSX (thanks Aaron Madlon-Kay)
126 
127 	Documented use with proxytunnel and corkscrew in
128 	README.
129 
130 	
131 v1.7: 01FEB2010
132 	Added CentOS init.d script (Andre Krajnik).
133 
134 	Fixed default ssl address inconsistancy, now
135 	defaults to "localhost:443" and fixed documentation
136 	accordingly (pointed by Markus Schalke).
137 
138 	Children no longer bind to the listen socket, so
139 	parent server can be stopped without killing an
140 	active child (pointed by Matthias Buecher).
141 
142 	Inetd support (Dima Barsky).
143 
144 v1.6: 25APR2009
145 	Added -V, version option.
146 
147 	Install target directory configurable in Makefile
148 
149 	Changed syslog prefix in auth.log to "sslh[%pid]"
150 
151 	Man page
152 
153 	new 'make install' and 'make install-debian' targets
154 
155 	PID file now specified using -P command line option
156 
157 	Actually fixed zombie generation (the v1.5 patch got
158 	lost, doh!)
159 
160 
161 v1.5: 10DEC2008
162 	Fixed zombie generation.
163 
164 	Added support scripts (), Makefile.
165 
166 	Changed all 'connexions' to 'connections' to please
167 	pesky users. Damn users.
168 
169 v1.4: 13JUL2008
170 	Added libwrap support for ssh service (Christian Weinberger)
171 	Only SSH is libwraped, not SSL.
172 
173 v1.3: 14MAY2008
174 	Added parsing for local interface to listen on
175 
176 	Changed default SSL connection to port 442 (443 doesn't make
177 	sense as a default as we're already listening on 443)
178 
179 	Syslog incoming connections
180 
181 v1.2: 12MAY2008
182 	Fixed compilation warning for AMD64 (Thx Daniel Lange)
183 
184 v1.1: 21MAY2007
185 	Making sslhc more like a real daemon:
186 	* If $PIDFILE is defined, write first PID to it upon startup
187 	* Fork at startup (detach from terminal)
188 	(thanks to http://www.enderunix.org/docs/eng/daemon.php -- good checklist)
189 	* Less memory usage (?)
190 
191 v1.0: 
192 	Basic functionality: privilege dropping, target hostnames and ports
193 	configurable.
194 
195 
196

Built with git-ssb-web

cel / sslh

Tree: 5cd1fa18753c479f7eaef26b893016a37646364f

Files: 5cd1fa18753c479f7eaef26b893016a37646364f / ChangeLog

1	v1.13: 18MAY2012
2	Write PID file before dropping privileges.
3
4	Added --background, which overrides 'foreground'
5	configuration file setting.
6
7	Added example systemd service file from Archlinux in
8	scripts/
9	https://projects.archlinux.org/svntogit/community.git/tree/trunk/sslh.service?h=packages/sslh
10	(S�bastien Luttringer)
11
12	v1.12: 08MAY2012
13	Added support for configuration file.
14
15	New protocol probes can be defined using regular
16	expressions that match the first packet sent by the
17	client.
18
19	sslh now connects timed out connections to the first
20	configured protocol instead of 'ssh' (just make sure
21	ssh is the first defined protocol).
22
23	sslh now tries protocols in the order in which they
24	are defined (just make sure sslh is the last defined
25	protocol).
26
27	v1.11: 21APR2012
28	WARNING: defaults have been removed for --user and
29	--pidfile options, update your start-up scripts!
30
31	No longer stop sslh when reverse DNS requests fail
32	for logging.
33
34	Added HTTP probe.
35
36	No longer create new session if running in
37	foreground.
38
39	No longer default to changing user to 'nobody'. If
40	--user isn't specified, just run as current user.
41
42	No longer create PID file by default, it should be
43	explicitely set with --pidfile.
44
45	No longer log to syslog if in foreground. Logs are
46	instead output to stderr.
47
48	The four changes above make it straightforward to
49	integrate sslh with systemd, and should help with
50	launchd.
51
52	v1.10: 27NOV2011
53	Fixed calls referring to sockaddr length so they work
54	with FreeBSD.
55
56	Try target addresses in turn until one works if
57	there are several (e.g. "localhost:22" resolves to
58	an IPv6 address and an IPv4 address and sshd does
59	not listen on IPv6).
60
61	Fixed sslh-fork so killing the head process kills
62	the listener processes.
63
64	Heavily cleaned up test suite. Added stress test
65	t_load script. Added coverage (requires lcov).
66
67	Support for XMPP (Arnaud Gendre).
68
69	Updated README.MacOSX (Aaron Madlon-Kay).
70
71	v1.9: 02AUG2011
72	WARNING: This version does not work with FreeBSD and
73	derivatives!
74
75	WARNING: Options changed, you'll need to update your
76	start-up scripts! Log format changed, you'll need to
77	update log processing scripts!
78
79	Now supports IPv6 throughout (both on listening and
80	forwarding)
81
82	Logs now contain IPv6 addresses, local forwarding
83	address, and resolves names (unless --numeric is
84	specified).
85
86	Introduced long options.
87
88	Options -l, -s and -o replaced by their long
89	counterparts.
90
91	Defaults for SSL and SSH options suppressed (it's
92	legitimate to want to use sslh to mux OpenVPN and
93	tinc while not caring about SSH nor SSL).
94
95	Bind to multiple addresses with multiple -p options.
96
97	Support for tinc VPN (experimental).
98
99	Numeric logging option.
100
101	v1.8: 15JUL2011
102	Changed log format to make it possible to link
103	connections to subsequent logs from other services.
104
105	Updated CentOS init.d script (Andre Krajnik).
106
107	Fixed zombie issue with OpenBSD (The SA_NOCLDWAIT flag is not
108	propagated to the child process, so we set up signals after
109	the fork.) (Fran�ois FRITZ)
110
111	Added -o "OpenVPN" and OpenVPN probing and support.
112
113	Added single-threaded, select(2)-based version.
114
115	Added support for "Bold" SSH clients (clients that speak first)
116	Thanks to Guillaume Ricaud for spotting a regression
117	bug.
118
119	Added -f "foreground" option.
120
121	Added test suite. (only tests connexions. No test for libwrap,
122	setsid, setuid and so on) and corresponding 'make
123	test' target.
124
125	Added README.MacOSX (thanks Aaron Madlon-Kay)
126
127	Documented use with proxytunnel and corkscrew in
128	README.
129
130
131	v1.7: 01FEB2010
132	Added CentOS init.d script (Andre Krajnik).
133
134	Fixed default ssl address inconsistancy, now
135	defaults to "localhost:443" and fixed documentation
136	accordingly (pointed by Markus Schalke).
137
138	Children no longer bind to the listen socket, so
139	parent server can be stopped without killing an
140	active child (pointed by Matthias Buecher).
141
142	Inetd support (Dima Barsky).
143
144	v1.6: 25APR2009
145	Added -V, version option.
146
147	Install target directory configurable in Makefile
148
149	Changed syslog prefix in auth.log to "sslh[%pid]"
150
151	Man page
152
153	new 'make install' and 'make install-debian' targets
154
155	PID file now specified using -P command line option
156
157	Actually fixed zombie generation (the v1.5 patch got
158	lost, doh!)
159
160
161	v1.5: 10DEC2008
162	Fixed zombie generation.
163
164	Added support scripts (), Makefile.
165
166	Changed all 'connexions' to 'connections' to please
167	pesky users. Damn users.
168
169	v1.4: 13JUL2008
170	Added libwrap support for ssh service (Christian Weinberger)
171	Only SSH is libwraped, not SSL.
172
173	v1.3: 14MAY2008
174	Added parsing for local interface to listen on
175
176	Changed default SSL connection to port 442 (443 doesn't make
177	sense as a default as we're already listening on 443)
178
179	Syslog incoming connections
180
181	v1.2: 12MAY2008
182	Fixed compilation warning for AMD64 (Thx Daniel Lange)
183
184	v1.1: 21MAY2007
185	Making sslhc more like a real daemon:
186	* If $PIDFILE is defined, write first PID to it upon startup
187	* Fork at startup (detach from terminal)
188	(thanks to http://www.enderunix.org/docs/eng/daemon.php -- good checklist)
189	* Less memory usage (?)
190
191	v1.0:
192	Basic functionality: privilege dropping, target hostnames and ports
193	configurable.
194
195
196

cel / sslh

Tree: 5cd1fa18753c479f7eaef26b893016a37646364f shsmasterv1.9v1.8v1.7v1.6v1.5v1.3v1.2v1.18v1.17v1.16v1.15v1.14v1.13v1.12v1.11v1.10v1.1v1.0 <input type="submit" value="Go"/>

Files: 5cd1fa18753c479f7eaef26b893016a37646364f / ChangeLog

Tree: 5cd1fa18753c479f7eaef26b893016a37646364f