Matthew Luckie <mjl at luckie dot org dot nz> though he has
handed off the code to me and does not want any credit
including removing the GPL copyright and allowing me to use
the ISC style license from license.template.
--
Major features of Net::FTPServer include:
* Feature parity with wu-ftpd.
* IP-based and IP-less virtual hosting.
* Virtual filesystem allows the FTP server to serve files from a
SQL database.
* Configurable and extensible in Perl.
* <Perl> sections in ftpd.conf file.
* Supports all the latest RFCs and Internet Drafts, including MLST,
MLSD, FEAT, OPTS, LANG.
* Secure by design and implementation.
* PAM authentication.
* Resource limits.
* Run standalone or from inetd.
* Configurable server greetings and welcome messages.
* Anonymous mode.
* Run in chroot jail.
* Sophisticated access control rules.
* wu-ftpd style aliases and cdpath.
* SITE EXEC (disabled by default).
* Syslog logging.
* Set TCP parameters.
A perl class for looking up words and their definitions on
network dictionary servers. Net::Dict provides a simple DICT
client API for the network protocol described in RFC2229.
from Sam Smith <s at msmith dot net>
>From ChangeLog:
o fixed mirror for empty files.
o a rare coredump fixed in http 0.9 handling, when first line
of reply is empty.
o translations update.
From NEWS:
* security fixes in html parsing code.
* fxp between ftps session is now possible (unencrypted yet).
* fixed a rare bug with access to freed memory in ftp.
* fixed a bug in mirror, now it does not incorrectly append directory name
when target directory is the root.
--
This release fixes a bug that could lead to a remote crash.
Users using irssi on non x86 arches are urged to upgrade.
Also fixes a bug in window layout restoring queries that could
also cause a crash in all arches.
Based on submission from Robert Nagy <thuglife@bsd.hu> with mods
from me.
Quagga is a routing software suite, providing implementations of OSPFv2,
OSPFv3, RIP v1 and v2, RIPv3 and BGPv4 for Unix platforms, particularly
FreeBSD and Linux and also NetBSD, to mention a few. Quagga is a fork of
GNU Zebra which was developed by Kunihiro Ishiguro. The Quagga tree aims
to build a more involved community around Quagga than the current
centralized model of GNU Zebra.
WWW: http://www.quagga.net/
* Performance improvement. While it depends, approximately this version
is 4%-30% faster than the previous release. (client/server)
* A bug, which prevents cvsync from removing temporary files, has
been fixed. To remove files left over, you may want to remove
the scanfile and rerun cvsync just after upgrading. (client)
* A new option `-l' has been added to the server. It writes the log
into a specified file. (server)
* A new keyword `base' has been added. It specifies a base-prefix
used for relative pathnames in the following keywords: 'distfile',
'refuse', and 'scanfile'. It must be an absolute pathname.
(client/server/cvscan)
OpenVPN is an easy-to-use, robust, and highly configurable VPN (Virtual
Private Network) daemon which can be used to securely link two or more
private networks using an encrypted tunnel over the internet.
WWW: http://openvpn.sourceforge.net/
from Jorge A. Cortes Montiel <jcortes at bsdcoders dot org>
ifstat is a tool to report network interfaces bandwidth just like
vmstat/iostat do for other system counters.
WWW: http://gael.roualland.free.fr/ifstat/
Jonny Robertson reported that Zebra can be remotely crashed if a Zebra
password has been enabled and a remote attacker can connect to the Zebra
telnet management port. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2003-0795 to this issue.
from http://rhn.redhat.com/errata/RHSA-2003-307.html
Bump package name.
ok itojun@ margarida@
A remotely exploitable buffer overrun has been reported in Epic.
This issue may reportedly be exploited by a malicious server that
supplies an overly long nickname in a CTCP messages, potentially
allowing for execution of arbitrary code in the context of the
client user.
It may be also be possible for a malicious client to send such a
message, but it is likely that the server will limit the length.
ok brad@
--
- TCPreen will now abort if SUDO_USER is invalid. UIDs are no longer
accepted as unprivileged usernames.
- Hostname lookup failures when the reverse DNS alias of a host was
not valid or when using IPv6 were fixed.
--
- Plugins now works with GTK+ interface
- Updated the passive OS fingerprint database (1279 records)
- Fixed internal refreshing (for huge traffic loads)
- Fixed wifi-dump support
- Fixed some possible buffer overflows
