SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for dansguardian-2.12.0.0-3.1.x86_64.rpm :
Wed Feb 15 13:00:00 2012 larsAATTlinux-schulserver.de
- update to 2.12.0.0 (alpha):
+ Search term filtering
+ POST data scanning
+ ClamAV scanner removed (direct library usage, not ClamD)
+ \"KavAV\" scanner removed (direct library usage, not KavD)
+ Fix crash on logging very long URLs
+ Per-group PICS settings
+ Option to use a specific blocked response for Flash
(\".swf\" URLs; \"application/x-shockwave-flash\" MIME type)
+ HTTPHeader bug fixes re. persistent connection detection,
crash in some (unknown) circumstances when trying to tunnel
POST data
+ Added per-room-blocking.
+ Fixed a very old problem with gentle restarts where DG would fail
to release the RAM for the first set of config loaded.
This was very noticeable on systems with many groups.
+ Added the ability to have DG listen on more than one port and
to use a different authentication plugin on each port.
However, some combinations are just not physically possible -
for example basic auth (proxy auth) won\'t mix with other
authentication methods.
+ Added transparent NTLM authentication, however to be useful
needs an authentication daemon and daemon-aware, NTLM-enabled
web server. (read source code for how to use it)
+ Added experimental SSL MITM. (read source code for how to use it)
+ Added experimental SSL certificate checking. (read source code
for how to use it)
+ Added patch by Massimiliano Hofer to add Avast! support.
+ Tidied up licensing notices and removed some email addresses.
+ Support individual log items up to 32KB in length, which may
require multiple calls to getLine to read in.
- refreshed patches - now only the following exist:
+ dansguardian-clamdsocket.patch (fix path to clamd socket on
openSUSE)
+ dansguardian-commandlinescan.patch (add missing include)
+ dansguardian-ntlm.patch (add mssing include)
- create and use \'dansguardian\' as proxy user and group to improve
security
- added rpmlintrc (for user/group)
- enabled ICAP AV server content scanner
- enabled support for command-line content scanners
- enabled logging a backtrace when a segmentation fault occurs
- built with -fno-strict-aliasing
- use try-restart in logrotate script to avoid a running dansguardian
if the user disabled the daemon
- requiring clamav during build is not needed any more: removed

Thu Apr 8 14:00:00 2010 johnAATTredux.org.uk
- Disable libclamav linkage for all but SUSE >= 11.1 and Fedora.
- Disable %preun and %postun for all but SUSE.

Sat Mar 27 13:00:00 2010 johnAATTredux.org.uk
- Updated spec file to build for Fedora and RHEL/CentOS.
- Added --enable-clamd option, as an alternative to libclamav
usage.
- Added a patch to enable ClamAV support for ClamAV versions
0.95 or later.
- Added a patch to add a required #include to fix the build on
Fedora.
- Added separate init scripts for Fedora/Red Hat and a generic
SysV init script (from the upstream package) for all others.

Tue Oct 13 14:00:00 2009 chrisAATTcomputersalat.de
- cp over from Education
- update to 2.10.1.1
o Add \"originalip\" option to dansguardian.conf, for determining
the original destination IP in transparent proxy set-ups, and
ensuring that the destination domain of the request resolves to
that IP. This can help to address a particular transparent
proxy security vulnerability (US-CERT VU#435052), but because of
certain limitations - only implemented on Linux/Netfilter;
potential breakage of websites using round-robin DNS - the code
is not enabled by default. Enable by passing \"--enable-orig-ip\"
to the configure script.
o Fix a crash which could occur when dealing with simultaneous
incoming connections in configurations using more than one
listening socket.
o Fix a crash when checking time limits on item lists.
o Fix potential usage of uninitialised memory during phrase
filtering.
- DansGuardian 2.10.0.3 - stable
o uClibc++ compilation patch from Natanael Copa.
o Fix crash on exit when running out of memory during phrase tree
preparation, from Victor Stinner.
o Clean up destructors for various objects, removing code duplication
with reset() methods.
o Compilation fixes from Jeffrey A. Young.
o Better handling of whitespace (tab characters) in configuration files.
o Fix HTTPS access for unauthenticated users when using basic or NTLM
authentication plugins.
o Reload list files on soft restart if cached (\".processed\") files have
been updated directly, from Harry Mason.
o Chop carriage return off useragent strings when \"loguseragent\" is
enabled.
o Don\'t force contents of dansguardianf
*.conf files to lower-case on
loading, so as not to destroy the case of group names.
o Make temporary bypass cookies valid for subdomains of the original
bypassed domain, including stripping \"www.\".
- DansGuardian 2.10.0.2 - stable
o Fix persistent connection detection to resolve issues with HTTP 1.1
browsers (Firefox), NTLM authentication and HTTPS websites.
o Change supported syntax for blocking HTTPS site access by IP to match
that documented in the default bannedsitelist (use \"
*ips\", as
documented, NOT \"
*
*ips\").
- DansGuardian 2.10.0.1 - stable
o Improve malformed URL detection (dc2008.de no longer incorrectly
classed as malformed).
o Improve persistent connection detection, correcting some situations in
which DG would return a blank page to browsers.
o Updated \"proxies\" weighted phrase list.
o Updated Chinese Big-5 messages file from Vicente Chua.
- spec mods
o change Requires from squid to http_proxy
o change Requires logrotate to Recommends logrotate
o always build with clamav for opensuse
o cleanup

* TAGS

* configure
o fix fdupes for suse_version > 1100
o Replaced ChangeLog with history.txt to doc
o use of name macro

Sat Oct 18 14:00:00 2008 lruppAATTsuse.de
- improve the init-script to provide more LSB options
- add fix_header.patch from e.kunigAATThome.nl (see bnc#436726)
- separate changelog
- use insserv macros in %%post and %%postun
- enable pcre, enable fancydm, enable trickledm, enable email
- use fdupes to link some identical language files
- remove unneeded scripts

Wed Oct 15 14:00:00 2008 donAATTvosburgs.org
- Updated to upstream declared stable version 2.10

Fri Sep 19 14:00:00 2008 donAATTvosburgs.org
- Updated to version 2.9.9.8

Mon Aug 18 14:00:00 2008 donAATTvosburgs.org
- Updated to version 2.9.9.7

Tue Jun 10 14:00:00 2008 wberrierAATTgmail.com
- patch to be able to build with gcc 4.3 (on opensuse 11.0)

Mon Jun 9 14:00:00 2008 wberrierAATTgmail.com
- Remove $time from Required-Start in .init script
(allows /etc/init.d/dansguardian to be started automatically
on suse 11.0)


  
ICM