* Performance improvement. While it depends, approximately this version
is 4%-30% faster than the previous release. (client/server)
* A bug, which prevents cvsync from removing temporary files, has
been fixed. To remove files left over, you may want to remove
the scanfile and rerun cvsync just after upgrading. (client)
* A new option `-l' has been added to the server. It writes the log
into a specified file. (server)
* A new keyword `base' has been added. It specifies a base-prefix
used for relative pathnames in the following keywords: 'distfile',
'refuse', and 'scanfile'. It must be an absolute pathname.
(client/server/cvscan)
OpenVPN is an easy-to-use, robust, and highly configurable VPN (Virtual
Private Network) daemon which can be used to securely link two or more
private networks using an encrypted tunnel over the internet.
WWW: http://openvpn.sourceforge.net/
from Jorge A. Cortes Montiel <jcortes at bsdcoders dot org>
ifstat is a tool to report network interfaces bandwidth just like
vmstat/iostat do for other system counters.
WWW: http://gael.roualland.free.fr/ifstat/
Jonny Robertson reported that Zebra can be remotely crashed if a Zebra
password has been enabled and a remote attacker can connect to the Zebra
telnet management port. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2003-0795 to this issue.
from http://rhn.redhat.com/errata/RHSA-2003-307.html
Bump package name.
ok itojun@ margarida@
A remotely exploitable buffer overrun has been reported in Epic.
This issue may reportedly be exploited by a malicious server that
supplies an overly long nickname in a CTCP messages, potentially
allowing for execution of arbitrary code in the context of the
client user.
It may be also be possible for a malicious client to send such a
message, but it is likely that the server will limit the length.
ok brad@
--
- TCPreen will now abort if SUDO_USER is invalid. UIDs are no longer
accepted as unprivileged usernames.
- Hostname lookup failures when the reverse DNS alias of a host was
not valid or when using IPv6 were fixed.
--
- Plugins now works with GTK+ interface
- Updated the passive OS fingerprint database (1279 records)
- Fixed internal refreshing (for huge traffic loads)
- Fixed wifi-dump support
- Fixed some possible buffer overflows
buffer overflow in TCP reassembly in old versions, possible
remote code execution. dsniff and other programs which use the
TCP reassembly code are potentially vulnerable
* cvsup2cvsync, which is a utility to convert a CVSup(R) scanfile into
a cvsync counterpart, has been added. When the upstream server
is using CVSup and you want to redistribute the contents using CVSync,
this tool is your friend.
* Support poll() instead of select() if available (server/client).
* cvsync(1) now supports "refuse" file. Using the refuse file,
you can prevent files/directories in a collection from
adding/updating/removing on the client side.
- Paths for both current and old versions in MASTER_SITES.
- Switch to .bz2 because old distfiles are only available this way.
- Remove versioned executable.
- Move install message into separate file.
permission from brad@
New features:
- IPv4 database updated (20030906)
- add support of LACNIC registry
- add output format "octal"
- New program "ipv6logstats" for parsing web server logs
- Files now only get allocated as they're downloaded
- Large torrents no longer hose the CPU
- Better network utilization and more consistent download rates
- Poorly seeded torrents get out faster
- Several important bug fixes
BitTorrent is a tool for distributing files. Whenever more than one
person is downloading at once they send pieces of the file(s) to each
other, thus relieving the central server's bandwidth burden. Even with
many simultaneous downloads, the upload burden on the central server
remains quite small, since each new downloader introduces new upload
capacity.
thanks to jose@ for review/suggestions
TclCurl gives the Tcl programmer a binding to libcurl, allowing you to
get a URL with FTP, TELNET, LDAP, GOPHER, DICT, FILE, HTTP or HTTPS
syntax.
maintainer: Jose Nazario <jose@crimelabs.net>
ok brad@, jolan@
Pktstat listens to the network and shows the bandwidth being consumed
by packets of various kinds in realtime. It understands some protocols
(including FTP, HTTP, and X11) and adds a descriptive name next to the
entry.
Ices version 0 is a source client for streaming MP3 audio to Shoutcast,
Icecast v1 and v2 servers. Due to Perl being shipped on OpenBSD by
default, custom playlist handlers written in Perl are always supported
by this port.
from Moritz Grimm <gtgbr@gmx.net>, cleanup and patches from me
WWW: http://www.icecast.org/
Libshout is a library for communicating with and sending data to an
icecast server. It handles the socket connection, the timing of the
data, and prevents bad data from getting to the icecast server.
With just a few lines of code, a programmer can easily turn any
application into a streaming source for an icecast server. Libshout
also allows developers who want a specific feature set (database
access, request taking) to concentrate on that feature set, instead of
worrying about how server communication works.
from Moritz Grimm <gtgbr@gmx.net>, cleanup and patches from me
WWW: http://www.icecast.org/
gMUDix is an improved version of MUDix, a MUD client for the Linux
console. It is designed to run as an X application, and was developed
with GTK+ 2.0. gMUDix has all the features of MUDix and more, including
ANSI color mapping, aliasing, macros, paths, tab completions, timers,
triggers, variables, and an easy-to-use script language.
EtherApe is a graphical network monitor for Unix modeled after
etherman. Featuring link layer, ip and TCP modes, it displays network
activity graphically. Hosts and links change in size with traffic.
Color coded protocols display. It supports Ethernet, FDDI, Token
Ring, ISDN, PPP and SLIP devices. It can filter traffic to be shown,
and can read traffic from a file as well as live from the network.
WWW: http://etherape.sourceforge.net/
from Craig Barraclough <craigba@creative.com.au>
Honeyd is a small daemon that creates virtual hosts on a network. The
hosts can be configured to run arbitrary services, and their personality
can be adapted so that they appear to be running certain operating
systems. Honeyd enables a single host to claim multiple addresses on a
LAN for network simulation.
"looks ok" sturm@
Submitted by Xavier Santolaria <xavier@santolaria.net>.
GeoIP is a C library that enables the user to find the country that any IP
address or hostname originates from.
- Fix serious bugs around the destruction of hash context.
These may cause abort() in C library and the server will stop.
- Improve stability.
- Fix some bugs.
