SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for pound-2.7-4.1.i586.rpm :
Mon Mar 9 13:00:00 2015 alexandreAATTexatati.com.br
- Update to 2.7:
Enhancements:
- added support for larger DH keys + compile-time parameter for DH bits (workaround for OpenSSL limitation)
- added support for elliptical curve encryption
- added protocol version in X-SSL-cipher (Tom Fitzhenry)
- added \"Disable PROTO\" directives (fix for Poodle vulnerability)
- added Cert, Disable and Cipher directives for HTTPS back-ends. The directive HTTPS \"cert\" no longer supported.
- added filtering of \"Expect: 100-continue\" headers
- Add support for PATCH HTTP method
- Anonymise configuration option - show last client address byte as 0 (based on an idea by Christian Doering)
- SSLAllowClientRenegotiation (based on a patch from Joe Gooch)
- SSLHonorCipherOrder (based on a patch from Joe Gooch)
- Certificate alternate names support (based on a patch from Jonas Pasche)
- poundctl shows the length of the request queue (based on a request from Leo)
Bug fixes:
- fixed lh_retrieve warning
- fixed potential memory leak on client certificates
- fixed alt names problem (Joe Gooch)
- removed debugging messages
- fixed address comparison for RewriteLocation (IPv4/IPv6 problem - Christopher Bartz)
- re-patched the redirect patch (Frank Schmierler)
- fixed RPC handling (Frank Schmierler)
- sanitize URLs for redirection (prevent CSRF)
- SSL disable empty fragments + SSL disable compression (CRIME attack prevention)
- fixed bug in configuration of DISABLED directive
- changed the log level from WARNING to NOTICE if the thread arg is NULL
- fixed testing of gcc options
Release 2.7f
Enhancements:
- compile-time parameter for DH bits (workaround for OpenSSL limitation)
Bug fixes:
- allow \'-\' and \'=\' again in URLs (redirect)
- fixed lh_retrieve warning
- fixed \"Disable\" regex typo
Release 2.7e
Enhancements:
- added support for elliptical curve encryption
- added support for larger DH keys
- added protocol version in X-SSL-cipher (Tom Fitzhenry)
Bug fixes:
- fixed potential memory leak on client certificates
- fixed alt names problem (Joe Gooch)
- removed debugging messages
Release 2.7d
Enhancements:
- added \"Disable PROTO\" directives (fix for Poodle vulnerability)
- added Cert, Disable and Cipher directives for HTTPS back-ends. The
directive HTTPS \"cert\" no longer supported.
Bug fixes:
- fixed address comparison for RewriteLocation (IPv4/IPv6 problem - Christopher Bartz)
Release 2.7c
Enhancements:
- added filtering of \"Expect: 100-continue\" headers
Bug fixes:
- re-patched the redirect patch (Frank Schmierler)
- fixed RPC handling (Frank Schmierler)
Release 2.7b
Enhancements:
- Add support for PATCH HTTP method
Bug fixes:
- sanitize URLs for redirection (prevent CSRF)
- SSL disable empty fragments
- SSL disable compression (CRIME attack prevention)
- fixed bug in configuration of DISABLED directive
- changed the log level from WARNING to NOTICE if the thread arg is NULL
Release 2.7a
Enhancements:
- Anonymise configuration option - show last client address byte as 0 (based on an idea by Christian Doering)
- SSLAllowClientRenegotiation (based on a patch from Joe Gooch)
- SSLHonorCipherOrder (based on a patch from Joe Gooch)
- Certificate alternate names support (based on a patch from Jonas Pasche)
- poundctl shows the length of the request queue (based on a request from Leo)
Bug fixes:
- fixed testing of gcc options
Release 2.6
Enhancements:
- allow multiple AddHeader directives
Bug fixes:
- fixed memory leak in config/AddHeader
- removed call to AC_FUNC_MALLOC for AIX compatability
- workaround for AIX getaddrinfo() bug
Release 2.6f
Bug fixes:
- fixed memory leak in DH (patch by Edvin Torok via Patrizio Tassone)
Release 2.6e
Bug fixes:
- fixed problem in SNI certificate storage
- changed long to long long for support of requests larger than 2GB

Sat Apr 16 14:00:00 2011 mrueckertAATTsuse.de
- added Pound-2.6_fix_configure.patch
- Wno-unused-result isnt supported on all GCC versions.

Sat Apr 16 14:00:00 2011 mrueckertAATTsuse.de
- update to 2.6d
- added parsing for certificate CN
- fixed problem in task enqueing
- fixed small problem in Makefile
- additional changes from 2.6c
- added support for OpenSSL 1.0
- added some more detailed error logging
- fix for RewriteLocation
- fix for HTTPS back-ends
- fix for RPC support
- fix for possible request smuggling by using multiple headers
- additional changes from 2.6b
- pre-defined number of threads for better performance on small
hardware
- additional changes from 2.6a
- support for SNI via multiple Cert directives (thanks to Joe
Gooch)
- translate hexadecimal characters in URL for pattern matching
- added support for a \"Disabled\" directive in the configuration
- keep sessions for disabled back-ends, continue using them until
the time-out
- fixed memory leak in session removal
- user IgnoreCase for CheckURL too
- fixed some issues with OpenSolaris build (thanks to Spradling
Cloyce)
- the lib64 patch seems unneeded. disabled for now.

Fri Apr 15 14:00:00 2011 mrueckertAATTsuse.de
- create proper init script

Mon Feb 8 13:00:00 2010 jgAATTinternetx.de
- update to 2.5.0

Thu Dec 17 13:00:00 2009 jgAATTinternetx.de
- fixed config file location

Tue Jul 14 14:00:00 2009 jgAATTinternetx.de
- bumped to 2.4.5

Fri Mar 20 13:00:00 2009 jgAATTinternetx.de
- bumped to 2.4.4

Mon Jun 30 14:00:00 2008 jgAATTinternetx.de
- bumped to 2.4.3

Mon May 5 14:00:00 2008 jgAATTinternetx.de
- bumped to 2.4.2


  
ICM