git ssb

Files: 9bcb2cdd7a920ebc78b59d0b5797d678424aa93a / ChangeLog

4821 bytesRaw

1 v1.12: 08MAY2012
2 	Added support for configuration file.
3 
4 	New protocol probes can be defined using regular
5 	expressions that match the first packet sent by the
6 	client.
7 
8 	sslh now connects timed out connections to the first
9 	configured protocol instead of 'ssh' (just make sure
10 	ssh is the first defined protocol).
11 
12 	sslh now tries protocols in the order in which they
13 	are defined (just make sure sslh is the last defined
14 	protocol).
15 
16 v1.11: 21APR2012
17 	WARNING: defaults have been removed for --user and
18 	--pidfile options, update your start-up scripts!
19 
20 	No longer stop sslh when reverse DNS requests fail
21 	for logging.
22 
23 	Added HTTP probe.
24 
25 	No longer create new session if running in
26 	foreground.
27 
28 	No longer default to changing user to 'nobody'. If
29 	--user isn't specified, just run as current user.
30 
31 	No longer create PID file by default, it should be
32 	explicitely set with --pidfile.
33 
34 	No longer log to syslog if in foreground. Logs are
35 	instead output to stderr.
36 
37 	The four changes above make it straightforward to
38 	integrate sslh with systemd, and should help with
39 	launchd.
40 
41 v1.10: 27NOV2011
42 	Fixed calls referring to sockaddr length so they work
43 	with FreeBSD.
44 
45 	Try target addresses in turn until one works if
46 	there are several (e.g. "localhost:22" resolves to
47 	an IPv6 address and an IPv4 address and sshd does
48 	not listen on IPv6).
49 
50 	Fixed sslh-fork so killing the head process kills
51 	the listener processes.
52 
53 	Heavily cleaned up test suite. Added stress test
54 	t_load script. Added coverage (requires lcov).
55 
56 	Support for XMPP (Arnaud Gendre).
57 
58 	Updated README.MacOSX (Aaron Madlon-Kay).
59 
60 v1.9: 02AUG2011
61 	WARNING: This version does not work with FreeBSD and
62 	derivatives!
63 
64 	WARNING: Options changed, you'll need to update your
65 	start-up scripts! Log format changed, you'll need to
66 	update log processing scripts!
67 
68 	Now supports IPv6 throughout (both on listening and
69 	forwarding)
70 
71 	Logs now contain IPv6 addresses, local forwarding
72 	address, and resolves names (unless --numeric is
73 	specified).
74 
75 	Introduced long options.
76 
77 	Options -l, -s and -o replaced by their long
78 	counterparts.
79 
80 	Defaults for SSL and SSH options suppressed (it's 
81 	legitimate to want to use sslh to mux OpenVPN and 
82 	tinc while not caring about SSH nor SSL).
83 
84 	Bind to multiple addresses with multiple -p options.
85 
86 	Support for tinc VPN (experimental).
87 
88 	Numeric logging option.
89 
90 v1.8: 15JUL2011
91 	Changed log format to make it possible to link
92 	connections to subsequent logs from other services.
93 
94 	Updated CentOS init.d script (Andre Krajnik).
95 
96 	Fixed zombie issue with OpenBSD (The SA_NOCLDWAIT flag is not
97 	propagated to the child process, so we set up signals after
98 	the fork.) (Fran�ois FRITZ)
99 
100 	Added -o "OpenVPN" and OpenVPN probing and support.
101 
102 	Added single-threaded, select(2)-based version.
103 
104 	Added support for "Bold" SSH clients (clients that speak first)
105 	Thanks to Guillaume Ricaud for spotting a regression
106 	bug.
107 
108 	Added -f "foreground" option.
109 
110 	Added test suite. (only tests connexions. No test for libwrap,
111 	setsid, setuid and so on) and corresponding 'make
112 	test' target.
113 
114 	Added README.MacOSX (thanks Aaron Madlon-Kay)
115 
116 	Documented use with proxytunnel and corkscrew in
117 	README.
118 
119 	
120 v1.7: 01FEB2010
121 	Added CentOS init.d script (Andre Krajnik).
122 
123 	Fixed default ssl address inconsistancy, now
124 	defaults to "localhost:443" and fixed documentation
125 	accordingly (pointed by Markus Schalke).
126 
127 	Children no longer bind to the listen socket, so
128 	parent server can be stopped without killing an
129 	active child (pointed by Matthias Buecher).
130 
131 	Inetd support (Dima Barsky).
132 
133 v1.6: 25APR2009
134 	Added -V, version option.
135 
136 	Install target directory configurable in Makefile
137 
138 	Changed syslog prefix in auth.log to "sslh[%pid]"
139 
140 	Man page
141 
142 	new 'make install' and 'make install-debian' targets
143 
144 	PID file now specified using -P command line option
145 
146 	Actually fixed zombie generation (the v1.5 patch got
147 	lost, doh!)
148 
149 
150 v1.5: 10DEC2008
151 	Fixed zombie generation.
152 
153 	Added support scripts (), Makefile.
154 
155 	Changed all 'connexions' to 'connections' to please
156 	pesky users. Damn users.
157 
158 v1.4: 13JUL2008
159 	Added libwrap support for ssh service (Christian Weinberger)
160 	Only SSH is libwraped, not SSL.
161 
162 v1.3: 14MAY2008
163 	Added parsing for local interface to listen on
164 
165 	Changed default SSL connection to port 442 (443 doesn't make
166 	sense as a default as we're already listening on 443)
167 
168 	Syslog incoming connections
169 
170 v1.2: 12MAY2008
171 	Fixed compilation warning for AMD64 (Thx Daniel Lange)
172 
173 v1.1: 21MAY2007
174 	Making sslhc more like a real daemon:
175 	* If $PIDFILE is defined, write first PID to it upon startup
176 	* Fork at startup (detach from terminal)
177 	(thanks to http://www.enderunix.org/docs/eng/daemon.php -- good checklist)
178 	* Less memory usage (?)
179 
180 v1.0: 
181 	Basic functionality: privilege dropping, target hostnames and ports
182 	configurable.
183 
184 
185

Built with git-ssb-web

cel / sslh

Tree: 9bcb2cdd7a920ebc78b59d0b5797d678424aa93a

Files: 9bcb2cdd7a920ebc78b59d0b5797d678424aa93a / ChangeLog

1	v1.12: 08MAY2012
2	Added support for configuration file.
3
4	New protocol probes can be defined using regular
5	expressions that match the first packet sent by the
6	client.
7
8	sslh now connects timed out connections to the first
9	configured protocol instead of 'ssh' (just make sure
10	ssh is the first defined protocol).
11
12	sslh now tries protocols in the order in which they
13	are defined (just make sure sslh is the last defined
14	protocol).
15
16	v1.11: 21APR2012
17	WARNING: defaults have been removed for --user and
18	--pidfile options, update your start-up scripts!
19
20	No longer stop sslh when reverse DNS requests fail
21	for logging.
22
23	Added HTTP probe.
24
25	No longer create new session if running in
26	foreground.
27
28	No longer default to changing user to 'nobody'. If
29	--user isn't specified, just run as current user.
30
31	No longer create PID file by default, it should be
32	explicitely set with --pidfile.
33
34	No longer log to syslog if in foreground. Logs are
35	instead output to stderr.
36
37	The four changes above make it straightforward to
38	integrate sslh with systemd, and should help with
39	launchd.
40
41	v1.10: 27NOV2011
42	Fixed calls referring to sockaddr length so they work
43	with FreeBSD.
44
45	Try target addresses in turn until one works if
46	there are several (e.g. "localhost:22" resolves to
47	an IPv6 address and an IPv4 address and sshd does
48	not listen on IPv6).
49
50	Fixed sslh-fork so killing the head process kills
51	the listener processes.
52
53	Heavily cleaned up test suite. Added stress test
54	t_load script. Added coverage (requires lcov).
55
56	Support for XMPP (Arnaud Gendre).
57
58	Updated README.MacOSX (Aaron Madlon-Kay).
59
60	v1.9: 02AUG2011
61	WARNING: This version does not work with FreeBSD and
62	derivatives!
63
64	WARNING: Options changed, you'll need to update your
65	start-up scripts! Log format changed, you'll need to
66	update log processing scripts!
67
68	Now supports IPv6 throughout (both on listening and
69	forwarding)
70
71	Logs now contain IPv6 addresses, local forwarding
72	address, and resolves names (unless --numeric is
73	specified).
74
75	Introduced long options.
76
77	Options -l, -s and -o replaced by their long
78	counterparts.
79
80	Defaults for SSL and SSH options suppressed (it's
81	legitimate to want to use sslh to mux OpenVPN and
82	tinc while not caring about SSH nor SSL).
83
84	Bind to multiple addresses with multiple -p options.
85
86	Support for tinc VPN (experimental).
87
88	Numeric logging option.
89
90	v1.8: 15JUL2011
91	Changed log format to make it possible to link
92	connections to subsequent logs from other services.
93
94	Updated CentOS init.d script (Andre Krajnik).
95
96	Fixed zombie issue with OpenBSD (The SA_NOCLDWAIT flag is not
97	propagated to the child process, so we set up signals after
98	the fork.) (Fran�ois FRITZ)
99
100	Added -o "OpenVPN" and OpenVPN probing and support.
101
102	Added single-threaded, select(2)-based version.
103
104	Added support for "Bold" SSH clients (clients that speak first)
105	Thanks to Guillaume Ricaud for spotting a regression
106	bug.
107
108	Added -f "foreground" option.
109
110	Added test suite. (only tests connexions. No test for libwrap,
111	setsid, setuid and so on) and corresponding 'make
112	test' target.
113
114	Added README.MacOSX (thanks Aaron Madlon-Kay)
115
116	Documented use with proxytunnel and corkscrew in
117	README.
118
119
120	v1.7: 01FEB2010
121	Added CentOS init.d script (Andre Krajnik).
122
123	Fixed default ssl address inconsistancy, now
124	defaults to "localhost:443" and fixed documentation
125	accordingly (pointed by Markus Schalke).
126
127	Children no longer bind to the listen socket, so
128	parent server can be stopped without killing an
129	active child (pointed by Matthias Buecher).
130
131	Inetd support (Dima Barsky).
132
133	v1.6: 25APR2009
134	Added -V, version option.
135
136	Install target directory configurable in Makefile
137
138	Changed syslog prefix in auth.log to "sslh[%pid]"
139
140	Man page
141
142	new 'make install' and 'make install-debian' targets
143
144	PID file now specified using -P command line option
145
146	Actually fixed zombie generation (the v1.5 patch got
147	lost, doh!)
148
149
150	v1.5: 10DEC2008
151	Fixed zombie generation.
152
153	Added support scripts (), Makefile.
154
155	Changed all 'connexions' to 'connections' to please
156	pesky users. Damn users.
157
158	v1.4: 13JUL2008
159	Added libwrap support for ssh service (Christian Weinberger)
160	Only SSH is libwraped, not SSL.
161
162	v1.3: 14MAY2008
163	Added parsing for local interface to listen on
164
165	Changed default SSL connection to port 442 (443 doesn't make
166	sense as a default as we're already listening on 443)
167
168	Syslog incoming connections
169
170	v1.2: 12MAY2008
171	Fixed compilation warning for AMD64 (Thx Daniel Lange)
172
173	v1.1: 21MAY2007
174	Making sslhc more like a real daemon:
175	* If $PIDFILE is defined, write first PID to it upon startup
176	* Fork at startup (detach from terminal)
177	(thanks to http://www.enderunix.org/docs/eng/daemon.php -- good checklist)
178	* Less memory usage (?)
179
180	v1.0:
181	Basic functionality: privilege dropping, target hostnames and ports
182	configurable.
183
184
185

cel / sslh

Tree: 9bcb2cdd7a920ebc78b59d0b5797d678424aa93a shsmasterv1.9v1.8v1.7v1.6v1.5v1.3v1.2v1.18v1.17v1.16v1.15v1.14v1.13v1.12v1.11v1.10v1.1v1.0 <input type="submit" value="Go"/>

Files: 9bcb2cdd7a920ebc78b59d0b5797d678424aa93a / ChangeLog

Tree: 9bcb2cdd7a920ebc78b59d0b5797d678424aa93a