Changelog for
dansguardian-2.12.0.3-1.1.i586.rpm :
Fri Apr 5 14:00:00 2013 chrisAATTcomputersalat.de
- September 2012 - Dansguardian 2.12.0.3 - alpha
* Fixed memory leaks reported by analysis from coverity
* Improved persistent connection for a better RFC compliant implementation,
but not yet fully HTTP 1.1
* Minor improvement for debug output
* Applied patch #11 (Maxuploadsize per filtergroup) by fredbmail35
- September 2012 - Dansguardian 2.12.0.2 - alpha
* Applied patch #9 (Crash when more than one authplugin are selected)
by Frederic Bourgeois
* Added feature to allow Facebook mock ajax (request #6) by Jason Spiro
* Added contrib dir
* Added a new html & css validated html template in contrib (request #3).
By Chris Peschke
* Converted iso-8859 message files to utf-8 (bug #86). Suggested
by Fred Ulisses Maranhao
* Fixed Error reading Content-Length (bug #84). By Carlos Soto
* Fixed compilation error BSD due lack of string.h when using memcpy()
(bug #75). By Alexander Hornung
* Fixed exceptioniplist case sensitivity (bug #11). By Mark J Hewitt
* Fixed accept-encoding support for new tokens (bug #13). By userquin
- May 2012 - Dansguardian 2.12.0.1 - alpha - UNRELEASED
* Applied patch 3438750 (GCC 4.4 and 4.6 compatibility) by Mathieu PARENT
* Applied patch 3438749 (French translation update) by Mathieu PARENT
* Applied patch 3418297 (Set proxy timeout in dansguardian.conf) by Frederic Bourgeois
* Applied patch 3419088 (login/password in URL is dropped) by Mathieu PARENT
* Applied patch 3419089 (\"Expect\" header should be dropped) by Mathieu PARENT
* Applied patch 3438751 (Fix queue handling in OptionContainer) by Mathieu PARENT
* Applied patch 3515167 (Fix digest identication) by Frederic Bourgeois
* Fixed GCC warnings
* LFS review in String.cpp (requires different arch review yet)
- remove obsolete patches
* ntlm, commandlinescan
- add upstream patch #12
http://sourceforge.net/p/dansguardian/patches/12/attachment/dg.maxuploadsize.patch
* rename and rebased to be p0
Tue Apr 24 14:00:00 2012 chrisAATTcomputersalat.de
- change dg_group to \'vscan\' (clamd)
- add conf patch
* mv cachedir to /var/cache/dansguardian
- rpmlint
* incorrect-fsf-address:
update COPYING with an up to date version
http://www.gnu.org/licenses/gpl-2.0.txt
Wed Feb 15 13:00:00 2012 larsAATTlinux-schulserver.de
- refreshed patches - now only the following exist:
+ dansguardian-clamdsocket.patch (fix path to clamd socket on
openSUSE)
+ dansguardian-commandlinescan.patch (add missing include)
+ dansguardian-ntlm.patch (add mssing include)
- create and use \'dansguardian\' as proxy user and group to improve
security
- added rpmlintrc (for user/group)
- enabled ICAP AV server content scanner
- enabled support for command-line content scanners
- enabled logging a backtrace when a segmentation fault occurs
- built with -fno-strict-aliasing
- use try-restart in logrotate script to avoid a running dansguardian
if the user disabled the daemon
- requiring clamav during build is not needed any more: removed
Wed Sep 7 14:00:00 2011 chrisAATTcomputersalat.de
- update to 2.12.0.0 (alpha)
- Search term filtering
- POST data scanning
- ClamAV scanner removed (direct library usage, not ClamD)
- \"KavAV\" scanner removed (direct library usage, not KavD)
- Fix crash on logging very long URLs
- Per-group PICS settings
- Option to use a specific blocked response for Flash
(\".swf\" URLs; \"application/x-shockwave-flash\" MIME type)
- HTTPHeader bug fixes re. persistent connection detection,
crash in some (unknown) circumstances when trying to tunnel POST data
- Added per-room-blocking.
- Fixed a very old problem with gentle restarts where DG would fail to
release the RAM for the first set of config loaded. This was very
noticeable on systems with many groups.
- Added the ability to have DG listen on more than one port and to
use a different authentication plugin on each port. However, some
combinations are just not physically possible - for example basic
auth (proxy auth) won\'t mix with other authentication methods.
- Added transparent NTLM authentication, however to be useful needs
an authentication daemon and daemon-aware, NTLM-enabled web server.
(read source code for how to use it)
- Added experimental SSL MITM. (read source code for how to use it)
- Added experimental SSL certificate checking.
(read source code for how to use it)
- Added patch by Massimiliano Hofer to add Avast! support.
- Tidied up licensing notices and removed some email addresses.
- Support individual log items up to 32KB in length, which may require
multiple calls to getLine to read in.
Thu Apr 8 14:00:00 2010 johnAATTredux.org.uk
- Disable libclamav linkage for all but SUSE >= 11.1 and Fedora.
- Disable %preun and %postun for all but SUSE.
Sat Mar 27 13:00:00 2010 johnAATTredux.org.uk
- Updated spec file to build for Fedora and RHEL/CentOS.
- Added --enable-clamd option, as an alternative to libclamav
usage.
- Added a patch to enable ClamAV support for ClamAV versions
0.95 or later.
- Added a patch to add a required #include to fix the build on
Fedora.
- Added separate init scripts for Fedora/Red Hat and a generic
SysV init script (from the upstream package) for all others.
Tue Oct 13 14:00:00 2009 chrisAATTcomputersalat.de
- cp over from Education
- update to 2.10.1.1
o Add \"originalip\" option to dansguardian.conf, for determining
the original destination IP in transparent proxy set-ups, and
ensuring that the destination domain of the request resolves to
that IP. This can help to address a particular transparent
proxy security vulnerability (US-CERT VU#435052), but because of
certain limitations - only implemented on Linux/Netfilter;
potential breakage of websites using round-robin DNS - the code
is not enabled by default. Enable by passing \"--enable-orig-ip\"
to the configure script.
o Fix a crash which could occur when dealing with simultaneous
incoming connections in configurations using more than one
listening socket.
o Fix a crash when checking time limits on item lists.
o Fix potential usage of uninitialised memory during phrase
filtering.
- DansGuardian 2.10.0.3 - stable
o uClibc++ compilation patch from Natanael Copa.
o Fix crash on exit when running out of memory during phrase tree
preparation, from Victor Stinner.
o Clean up destructors for various objects, removing code duplication
with reset() methods.
o Compilation fixes from Jeffrey A. Young.
o Better handling of whitespace (tab characters) in configuration files.
o Fix HTTPS access for unauthenticated users when using basic or NTLM
authentication plugins.
o Reload list files on soft restart if cached (\".processed\") files have
been updated directly, from Harry Mason.
o Chop carriage return off useragent strings when \"loguseragent\" is
enabled.
o Don\'t force contents of dansguardianf
*.conf files to lower-case on
loading, so as not to destroy the case of group names.
o Make temporary bypass cookies valid for subdomains of the original
bypassed domain, including stripping \"www.\".
- DansGuardian 2.10.0.2 - stable
o Fix persistent connection detection to resolve issues with HTTP 1.1
browsers (Firefox), NTLM authentication and HTTPS websites.
o Change supported syntax for blocking HTTPS site access by IP to match
that documented in the default bannedsitelist (use \"
*ips\", as
documented, NOT \"
*
*ips\").
- DansGuardian 2.10.0.1 - stable
o Improve malformed URL detection (dc2008.de no longer incorrectly
classed as malformed).
o Improve persistent connection detection, correcting some situations in
which DG would return a blank page to browsers.
o Updated \"proxies\" weighted phrase list.
o Updated Chinese Big-5 messages file from Vicente Chua.
- spec mods
o change Requires from squid to http_proxy
o change Requires logrotate to Recommends logrotate
o always build with clamav for opensuse
o cleanup
* TAGS
* configure
o fix fdupes for suse_version > 1100
o Replaced ChangeLog with history.txt to doc
o use of name macro
Sat Oct 18 14:00:00 2008 lruppAATTsuse.de
- improve the init-script to provide more LSB options
- add fix_header.patch from e.kunigAATThome.nl (see bnc#436726)
- separate changelog
- use insserv macros in %%post and %%postun
- enable pcre, enable fancydm, enable trickledm, enable email
- use fdupes to link some identical language files
- remove unneeded scripts
Wed Oct 15 14:00:00 2008 Don Vosburg
- 2.10
- Updated to upstream declared stable version 2.10
Fri Sep 19 14:00:00 2008 Don Vosburg - 2.9.9.8
- Updated to version 2.9.9.8