-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathChangeLog
766 lines (442 loc) · 22.3 KB
/
ChangeLog
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
2010-07-17 Hannu Lyytinen <[email protected]>
* fixed compiling problems on ddftp and ddfv.
2004-01-05 Hannu Lyytinen <[email protected]>
* fixed uploads on FreeBSD.
2004-01-03 Hannu Lyytinen <[email protected]>
* merged the security patches for libdd from Jann Fischer.
* FTP background checker was broken in 2.14.8, probably due
to lack of sleep.
2004-01-01 Hannu Lyytinen <[email protected]>
* DayDream and the FTP daemon create the temporary directory
if it does not exist. Removed the obsolete --with-tempdir
option from 'configure'.
* buffer overflow in main menu prompt building code.
2003-12-29 Hannu Lyytinen <[email protected]>
* FTP daemon no longer writes to wtmp, it was useless for
real logging purposes.
2003-12-26 Hannu Lyytinen <[email protected]>
* added the -v option to runas to fix the incorrect "archive
check failed" error message when viewing archive contents.
* fixed the archive checker which passed all archives,
faulty or not.
2003-12-25 Hannu Lyytinen <[email protected]>
* checking of duplicate files in temporary directories before
upload was broken for dialup lines.
2003-12-21 Hannu Lyytinen <[email protected]>
* FTP daemon no longer supports the -u switch. The umask
should have been 007 anyway.
2003-12-13 Hannu Lyytinen <[email protected]>
* the ~#NC display code caused the reading of a text file
to stop on the next display code, while it should have
only inhibited their interpretation.
* format string vulnerability in the ~#RA display code.
* format string vulnerability in the FTP daemon.
* FTP background checker read its input from the FTP session
control stream.
2003-11-15 Hannu Lyytinen <[email protected]>
* FTP daemon does not rely on vfork() semantics anymore.
2003-07-25 Hannu Lyytinen <[email protected]>
* FTP daemon leaked file descriptors, causing eventually
a hang, fixed.
* added configuration item to provide the correct runtime
library path for doors even when they are invoked from
a DayDream process invoked from the FTP daemon. Read
'docs/UPDATING' for more information.
* door programs could hang the board if they did not
connect the door socket, fixed.
2002-12-31 Hannu Lyytinen <[email protected]>
* fixed the creation of temporary directory.
2002-12-30 Hannu Lyytinen <[email protected]>
* sometimes file_id.diz files were not extracted
correctly when using ftp and background checker.
* uploaded files with no file_id.diz are no longer
deleted when using 'site upload' feature on ftp.
* date extraction from file_id.diz files somehow
got broken in 2.14.5, fixed.
* fixed Y2k bug in ddftpd's MDTM command.
2002-12-25 Hannu Lyytinen <[email protected]>
* fixed curses problem in NetBSD.
* rewrote utmp handling code for NetBSD.
2002-12-23 Hannu Lyytinen <[email protected]>
* eliminated the haunting yacc dependency at last.
* fixed compiling problems on OpenBSD 3.2.
* running now on a new platform, Solaris 8.
2002-12-01 Hannu Lyytinen <[email protected]>
* wrote workaround for using ddftpd behind NAT,
read 'docs/HOWTO-ftp' for further information.
2002-11-29 Hannu Lyytinen <[email protected]>
* fixed compiling problems on current Linux distributions.
2002-05-27 Hannu Lyytinen <[email protected]>
* fixed race conditions in the upload checker.
* fixed a race condition in the 'view' command.
* fixed a file descriptor leak in find_file().
2002-05-15 Hannu Lyytinen <[email protected]>
* optimizations in zmodem resulted in massive speed gain.
2002-05-12 Hannu Lyytinen <[email protected]>
* ddwho and ddftpwho did not work unless they were
run as 'bbs' user.
2002-05-09 Hannu Lyytinen <[email protected]>
* fixed a symlink vulnerability in the upload checker.
* linked statically to libddcommon to increase security in
telnetd and ftpd.
* removed operating system banner from ddtelnetd.
* fixed the handshaking bug in ddtelnetd which prevented
Amiga users connecting via telnet.
* the upload statistics screen was messed up due to incorrect
length computation for strings containing ANSI control codes.
2002-05-05 Hannu Lyytinen <[email protected]>
* fixed another segmentation fault, as a side effect
viewing text one screen at a time works again.
* doors died in 2.14.4-rc2 after the idle timeout
had elapsed and "disconnect on timeout" was disabled.
2002-05-04 Hannu Lyytinen <[email protected]>
* fixed segmentation fault in strndup() emulation.
* fixed broken "disable idle timeout" feature, patch
submitted by PinkFreud <[email protected]>.
* FTP daemon claimed that all nodes are full because
it did not setegid() before trying to write /tmp/dd.
2002-04-27 Hannu Lyytinen <[email protected]>
* fixed the "cannot open console" problem.
2002-03-29 Hannu Lyytinen <[email protected]>
* fixed tosser's erroneous open(..., O_RDONLY).
2002-03-28 Hannu Lyytinen <[email protected]>
* 'secure.sh' asks the user whether the ownerships of
the temporary directory should be modified.
2001-12-31 Jann Fischer <[email protected]>
* wrote a login wrapper "ddlogin".
2001-12-31 Hannu Lyytinen <[email protected]>
* the archive checking is implemented more securely.
* wrote an armoring script to set up the correct
ownerships and permissions for files and directories.
* coded a small wrapper 'runas', which can used to
execute programs with different UID or GID.
* wrote a guide about recommended permissions and
ownerships of files, read 'docs/SECURITY'.
* drop privileges as soon as possible.
* text search worked only in the current message base.
* some messages could have been unreadable due to
typo in 'readmsgs.c'.
2001-12-30 Jann Fischer <[email protected]>
* restricted access to "$" command to sysops only.
2001-12-30 Hannu Lyytinen <[email protected]>
* password prompt was displayed even if the door had
not password.
2001-12-29 Hannu Lyytinen <[email protected]>
* fixed prevention of multiple logins if ALLOW2LOGINS
is set to 'N'.
* text file control codes ~#MC, ~#TF and ~#RA were
vulnerable to buffer overflow attack. Although there
are no known exploits, an attacker could run arbitrary
code on whatever UID DayDream was running on.
* a typo slipped into tosser's sources.
2001-12-27 Hannu Lyytinen <[email protected]>
* fixed buffer overflow bug in ~#MC command.
* fixed tosser's outbound mail handler.
* deprecated CHATCMD, CHATMODE, DISABLEWILDS, QUESTIONS,
QUICKLINEED, ARC_TYPE and ARC_OFFLINE in
'daydream.cfg'.
* fixed ddftpwho, ddftpd, server and yelld not
to use procfs.
2001-12-19 Hannu Lyytinen <[email protected]>
* fixed ddwho not to use procfs.
2001-11-18 Hannu Lyytinen <[email protected]>
* missing .gfx/.txt files are syslogged on 'local2'
facility with 'debug' criticality.
* added password support for doors.
* made it possible to keep DayDream silent about
invalid user accounts in login.
* the '\s' token can be used in strings.xxx to omit
the rest of the line, even newlines.
* new account creation can be completely disabled.
2001-11-16 Hannu Lyytinen <[email protected]>
* added ASKDISPLAY option to 'daydream.cfg'.
2001-09-09 Hannu Lyytinen <[email protected]>
* daydream.m4 contains AM_PATH_DAYDREAM for easier
door programming.
* fixed C++ calling conventions in door library.
2001-07-15 Hannu Lyytinen <[email protected]>
* report verbosely if failed to execute a door.
2001-07-13 Hannu Lyytinen <[email protected]>
* provided logout() from OpenBSD-current libutil
as an alternative for missing one. In other
words, libutil is not needed on Linux anymore.
* replaced the old telnet daemon with the one
checked out from OpenBSD-current CVS tree.
It has been modified to negotiate the binary
transmission mode and to warn on failure.
2001-07-11 Hannu Lyytinen <[email protected]>
* message reading command 'keep' was broken.
* fixed another file descriptor leak.
2001-07-09 Hannu Lyytinen <[email protected]>
* catalog-based dupechecker searched only the
first conference for duplicate files. Fixed.
* ddftpd erroneously uploaded the file into user's
last joined conference, if SITE UPLOAD command
was not given.
* fixed Python-specific compilation problems.
* fixed Hydracom compilations problems on Linux.
2001-07-06 Hannu Lyytinen <[email protected]>
* fixed the stdio handler so that the child process
gets a controlling terminal of its own. Now the
control-C and such key combinations work and it
does not die on OpenBSD anymore.
* disappearing uploads when using ddftpd is cured.
Read "docs/HOWTO-ftp" for further information.
* fixed a printf() format bug that caused segmentation
fault on FreeBSD in stats screen. You should read
"docs/UPDATING".
* stdio handler code had a bug that prevented
the correct operation of background checker.
2001-07-05 Hannu Lyytinen <[email protected]>
* /proc not needed anymore, kill(2) is used instead.
A mounted procfs was a security issue on OpenBSD.
* traditional PTY allocation is attempted if the
/dev/ptmx-based allocation fails.
* another possibility of segmentation fault
eliminated in display.c, stripansi().
* fixed background checker bug, which corrupted
userbase on OpenBSD.
2001-07-04 Hannu Lyytinen <[email protected]>
* idle timeout on local nodes works again.
* fixed the nasty bug in background checker.
2001-06-29 Hannu Lyytinen <[email protected]>
* ddsnoop works now on OpenBSD 2.9 and FreeBSD 4.3.
2001-06-28 Hannu Lyytinen <[email protected]>
* telnet nodes do not jam on startup on OpenBSD 2.9.
Jann Fischer provided the bug fix.
* fixed ddcfg's file permissions.
* file descriptor leak fixed in the userbase code.
2001-03-03 Hannu Lyytinen <[email protected]>
* DayDream 2.13 released.
2001-03-01 Hannu Lyytinen <[email protected]>
* ddcfg used erroneously umask 0.
2001-02-21 Hannu Lyytinen <[email protected]>
* fixed the 'sysop login' and 'usered' options
in the builtin frontdoor.
2001-02-20 Hannu Lyytinen <[email protected]>
* the telnet connections do not jam anymore on
NetBSD and OpenBSD.
* the whole login session was terminated on NetBSD
or OpenBSD when one logged out of DayDream. Fixed.
2001-01-26 Hannu Lyytinen <[email protected]>
* fixed problems in ddtelnetd (missing _PATH_LOGIN).
2001-01-15 Hannu Lyytinen <[email protected]>
* fixed documentation (correct TTY type enumeration).
2001-01-07 Hannu Lyytinen <[email protected]>
* ddcallers didn't update the list at all on FreeBSD.
2001-01-01 Hannu Lyytinen <[email protected]>
* stdio code had a bug that caused typed characters
appear too slowly.
2000-12-02 Hannu Lyytinen <[email protected]>
* Phillip O'Donnell wrote the dosdoor support code.
Merged the patch into source tree.
2000-11-19 Hannu Lyytinen <[email protected]>
* fixed last callers display in built-in front door.
The contents were bogus on FreeBSD.
2000-10-07 Hannu Lyytinen <[email protected]>
* Charles Mauch sent a diff containing new commands for
readmsgs.c. Two commands merged from diff, namely
"jump to previous/next message base" while reading
messages.
2000-09-23 Hannu Lyytinen <[email protected]>
* corrected handling of CR/LF for connections coming
from Microsoft Windows clients.
2000-08-19 Hannu Lyytinen <[email protected]>
* fixed buffer overflow in stats screen.
2000-08-18 Hannu Lyytinen <[email protected]>
* deleted users were shown in the userlist.
2000-08-12 Hannu Lyytinen <[email protected]>
* hanging up after daily time limit fixed.
2000-07-12 Hannu Lyytinen <[email protected]>
* 2.11 released.
* fixed a file descriptor leak in userbase code.
* fixed the hangup bug under NetBSD and OpenBSD.
2000-07-10 Hannu Lyytinen <[email protected]>
* added '--with-server' to 'configure'.
2000-07-09 Hannu Lyytinen <[email protected]>
* made command history private.
* fixed cosmetic bug in login screen.
2000-07-08 Hannu Lyytinen <[email protected]>
* enterbbs() had segmentation fault bug.
* fixed the bug in strspace() and strtoken().
2000-06-30 Hannu Lyytinen <[email protected]>
* fixed another overflow bug in 'doorport.c'.
* NetBSD and OpenBSD compatibility announcement.
* made lots of global symbols local.
2000-06-04 Hannu Lyytinen <[email protected]>
* added configure-test for O_SYNC.
2000-06-03 Hannu Lyytinen <[email protected]>
* fixed a logical mistake in main/unix.c, O_NONBLOCK
was not set on node's communication socket.
2000-05-28 Hannu Lyytinen <[email protected]>
* "add to top" feature removed.
2000-05-27 Hannu Lyytinen <[email protected]>
* replaced getwd()'s with getcwd() in ftp-daemon.
* wrote 'daydream-config' for makefiles.
2000-05-26 Hannu Lyytinen <[email protected]>
* strspa() does now check the length of destination string.
* wrote 'configure' test for IUCLC and XCASE in 'termios.h'.
2000-04-29 Hannu Lyytinen <[email protected]>
* fixed the upload code which messed with the stack and
caused a segfault after upload.
2000-04-24 Hannu Lyytinen <[email protected]>
* ddftpd was never compiled.
2000-04-07 Hannu Lyytinen <[email protected]>
* default configuration file allows new users to join
conference #1.
* files of exactly 10000000 bytes long weren't added
correctly into file catalogs.
* fixed segfaulting new user search in usered.
2000-04-05 Hannu Lyytinen <[email protected]>
* userbase code rewritten again.
2000-03-23 Hannu Lyytinen <[email protected]>
* documented the door parameter tokens into
'docs/html/setup.html'.
* added the need for 'chown bbs:bbs /tmp/dd' to 'INSTALL'.
* fixed the stdio handling code, the output of very quick
programs (e.g. '/bin/echo') was not shown at all.
* made the command line tokens available for DDDI doors
in daydream.cfg applicable to stdio programs as well.
2000-03-01 Hannu Lyytinen <[email protected]>
* added possibility to add new files to the top of the
file catalog.
2000-02-22 Hannu Lyytinen <[email protected]>
* first steps towards the use of syslog.
2000-02-21 Hannu Lyytinen <[email protected]>
* new file scan was still broken by Y2k in the conferences
using long file names.
2000-02-13 Hannu Lyytinen <[email protected]>
* rewrote some of the tests in 'configure' to keep some
old shells quiet.
* ^C did not interrupt the disconnection sequence in
case the background checker was used.
* fixed a bug that caused the program to loop infinitely
in automatic disconnect after upload.
* automatic disconnect after upload was broken due to the
buffer overflow bug in DDPut(), namely it segfaulted.
* fixed a buffer overflow which caused a segfault whenever
a string consisting only of carriage returns was printed.
2000-01-23 Hannu Lyytinen <[email protected]>
* added an option for alternative temporary directory
into configure.
2000-01-22 Hannu Lyytinen <[email protected]>
* ddftpd is not compiled if yacc is not found.
* added check for libtermcap, telnetd requires it.
2000-01-20 Hannu Lyytinen <[email protected]>
* rewrote user handling code.
2000-01-13 Hannu Lyytinen <[email protected]>
* added HOWTO-telnet to distribution.
2000-01-08 Hannu Lyytinen <[email protected]>
* user was not disconnected correctly in case of wrong
system password.
* added panic() for emergency situations.
* fixed the Unix98 PTY support.
* fixed the built-in frontdoor that didn't invoke the board
at all.
2000-01-07 Hannu Lyytinen <[email protected]>
* ddsz and ddrz were not symlinked by the installer.
2000-01-04 Hannu Lyytinen <[email protected]>
* nodemessages are send via non blocking sockets in order
to avoid the malfunction of the whole board in case a
single node locks up.
* fixed telnetd, it didn't do anything but dumped core.
2000-01-03 Hannu Lyytinen <[email protected]>
* fixed a socket descriptor leak in doorport.
2000-01-02 Hannu Lyytinen <[email protected]>
* aliens/ is now created by the installer for new
installations.
* coded the "$"-command.
* implemented the "log"-command at last.
* text files were always viewed without any pause.
* found and fixed a segmentation fault in the menu code.
* fixed Y2K problems.
1999-12-28 Hannu Lyytinen <[email protected]>
* fixed the failing compile on glibc 2.0.
1999-12-24 Hannu Lyytinen <[email protected]>
* fixed a bug that broke the expansion of the %e token in
filenames and therefore only .gfx files were shown.
* removed all Windows and OS/2 related code and got rid of
unnecessary -DUNIX define.
1999-12-23 Hannu Lyytinen <[email protected]>
* fixed the "continue" selection in userdata editor.
* rewrote HotKey() for better understanding of it.
* default menu bindings were not provided for local or sysop logins
from the build-in frontdoor.
* serial TTY is opened in non-blocking mode, since open() jammed.
* local or sysop login from the built-in frontdoor dumped core.
1999-12-21 Hannu Lyytinen <[email protected]>
* eliminated half the goto statements in the source code.
* entering a message to a user, who has been granted access to
the conference but who has never joined into it works now OK.
* moved access controlling code to "access.c". Access control
data is reread from disk every time it is needed.
* wrote "user.c", setpwent()-like userbase routines and removed
direct accesses to the userbase file from the rest of code.
1999-12-19 Hannu Lyytinen <[email protected]>
* fixed the initial strings in ddcallers' slots.
* fixed a bug in ddcallers that caused the yesterday's statistics
to accumulate into today's statistics.
* fixed the option `-e' (exclude sysop) in ddcallers.
1999-12-04 Hannu Lyytinen <[email protected]>
* view-command works again.
* getdd.py gets installed if Python support is compiled.
* fixed broken Python support.
1999-12-01 Hannu Lyytinen <[email protected]>
* traced down many memory leaks in menus.c, typetext.c and
display.c.
* fixed a bug in the menu code, pop_menu was still broken.
* added ddfv to the supplied "daydream.cfg".
1999-11-29 Hannu Lyytinen <[email protected]>
* wrote HOWTO-telnet.
* wrote spec-file for RPM packaging.
* compile with -D_GNU_SOURCE to include the declaration of getpt().
1999-11-24 Hannu Lyytinen <[email protected]>
* getpty() supports Unix98 pty's as well.
1999-11-09 Hannu Lyytinen <[email protected]>
* when creating a doorport, malfunctioning doors that continued
to run even if socket binding failed were not killed properly.
1999-11-03 Hannu Lyytinen <[email protected]>
* the doorport is now re-entrant, so invoking a door within
a running door does not cause lock-ups.
1999-11-02 Hannu Lyytinen <[email protected]>
* dumped 'mklinks', 'make install' does the job now. Old links
are removed befored creating symlinks. No unnecessary links
are made.
* changed the maximum number of fileareas per conference back
to 256, since some old binary-only doors (e.g. saturnjoin)
didn't like the changed field size.
1999-10-31 Hannu Lyytinen <[email protected]>
* modified the menu code a bit; default menu bindings are provided
by the program, instead of forcing the user to supply them. Thus,
one doesn't need to know about the new menu system at all.
1999-09-26 Hannu Lyytinen <[email protected]>
* symlinks are created by 'mklinks'. Symlinks and ownerships should
be set correctly now.
* some weird segfaults found in usered and filelist under FreeBSD.
They are fixed now, but I don't know the real reason behind them.
1999-09-25 Hannu Lyytinen <[email protected]>
* FreeBSD support reincarnated.
1999-09-23 Hannu Lyytinen <[email protected]>
* pop_menu-command was broken.
* better fix for argument passing in the menu code.
1999-09-21 Hannu Lyytinen <[email protected]>
* autojoinconf-feature was completely broken.
* menu commands "internal" and "door" pass the command
arguments correctly; userlist was broken because of this.
1999-09-20 Hannu Lyytinen <[email protected]>
* 'make new-board' works ok for different source & compile paths.
* ddcfg creates all directories correctly now.
1999-09-19 Hannu Lyytinen <[email protected]>
* "command" didn't pass the arguments correctly.
* command redefinition didn't work in the menu code.
* added support for multiple concurrent compiles.
1999-08-08 Hannu Lyytinen <[email protected]>
* TypeFile(): TYPE_SEC flag wasn't handled correctly, namely it
attempted to print the file without security extension first.
* TypeFile() and friends: cleaned and generalized a bit. The
filename tokens are handled here, not in menus.c (they
appeared originally there).
1999-08-01 Hannu Lyytinen <[email protected]>
* Started this ChangeLog.
* Converted the whole package to use Automake.
* Python module is now called `libddpython.so', not `_dd.so'.