fireflier (1.1.6-3ubuntu0.1) feisty-security; urgency=low * SECURITY UPDATE: Unsafe tmp file handling * Patch taken from fireflier 1.1.6-3etch1: Fix the unsafe usage of temporary files, allowing arbitary file deletion. * References: DSA-1326 CVE-2007-2837 * debian/control: Modify Maintainer value to match DebianMaintainerField spec. -- Michael Bienia Sun, 08 Jul 2007 00:07:31 +0200 fireflier (1.1.6-3) unstable; urgency=low * to fix all those build problems now and forever I finally removed automake from the build depends * removed automake1.7 from build depends * fixed an init script problem where the server didnt start on missing modules.dep -- Martin Maurer Sun, 22 Jan 2006 13:26:37 +0100 fireflier (1.1.6-2) unstable; urgency=low * fixed the fireflier-server postrm script -- Martin Maurer Thu, 6 Oct 2005 13:26:37 +0100 fireflier (1.1.6-1) unstable; urgency=low * added debconf-2.0 alternative dependency * /var/lib/fireflier/usrules.dat is removed on purge -- Martin Maurer Fri, 30 Sep 2005 13:26:37 +0100 fireflier (1.1.6) unstable; urgency=low * wont add port matches for connection tracking rules (RELATED,ESTABLISHED) as ports may differ (esp in RELATED rules). -- Martin Maurer Mon, 9 Sep 2005 13:26:37 +0100 fireflier (1.1.5) unstable; urgency=low * fixed a bug relating to incoming/outgoing interfaces the interface was displayed at the wrong position * zero length (=empty) passwords work now (but you shouldnt use them - they are evil) * autologin feature - look at AUTOLOGIN (maybe at /usr/share/doc/...) * merged in patch from Yves Combe (thanks a lot for this work): - fixes a lot of endian problems --> ff should work on archs like ppc now * patch from Andreas Jochens fixing gcc 3.4 build -- Martin Maurer Mon, 9 Aug 2004 13:26:37 +0100 fireflier (1.1.4-3) unstable; urgency=low * removed the broken template stuff * fireflier server init script outputs a message if server is deactivated * changed build depend from automake1.4 to automake -- Martin Maurer Fri, 14 Apr 2004 13:26:37 +0100 fireflier (1.1.4-2) unstable; urgency=low * build depends now on g++ instead of g++-3.2 fireflier compiles without problems on g++-3.3, so this build dependency was incorrect. (closes: #236438) -- Martin Maurer Sun, 7 Mar 2004 13:29:00 +0100 fireflier (1.1.4-1) unstable; urgency=low * fixed some lintian problems: - included dh_strip again - removed some documentation files from deb packages (INSTALL, ...) - added reference to GPL to the copyright file on debian systems * added COPYING file to tarball, stating that linking against openssl is allowed. This message was so far only in the debian packages. shame on me -- Martin Maurer Wed, 28 Jan 2004 13:29:00 +0100 fireflier (1.1.4) unstable; urgency=low * updated queued pakets mechanism: if the queue is full, the oldest packet is dropped, not the newest. reduced queue size to 10 (was 50) * default login name in qtclient is determined by getlogin now. * there is now a kde version of the qtclient it has a dock icon, which displays if packets are pending, and supports (optional) auto-popup of the fireflier window -- Martin Maurer Mon, 19 Jan 2004 13:29:00 +0100 fireflier (1.1.3) unstable; urgency=low * gnomeclient and qtclient do port resolution now * server does forking (-d). pidfile supported * updated the init script * fixed some compile issues for suse (tested server and qtclient) -- Martin Maurer Sat, 8 Nov 2003 13:29:00 +0100 fireflier (1.1.2-1) unstable; urgency=high * updated gnomeclient autogen.sh, and build dependency on automake-1.7 so that it should compile on the build daemons now -- Martin Maurer Fri, 10 Oct 2003 13:29:00 +0100 fireflier (1.1.2) unstable; urgency=high * fixed a DOS attack, where anyone who had access to the fireflier-server port could prevent logins to the server. Notice, that only one IP has access to the fireflier port by default. * /var/run/fireflier/usrules is no longer world readable * qtclient now terminates when there is already a connected user * valgrind and electric fence runs - minor changes * extended debian descriptions. closes #209490, closes #209679 * improved documentation a little bit. added progress messages to the status bar. closes #187231 * changed some fonts in qtclient (fixed width font in rulesform now) -- Martin Maurer Wed, 10 Sep 2003 14:29:00 +0100 fireflier (1.1.1-1) unstable; urgency=low * fixed gnomeclient automake problems (automake specific links were not updated on rebuild -- Martin Maurer Wed, 25 Jun 2003 14:29:00 +0100 fireflier (1.1.1) unstable; urgency=low * fixed a gcc-3.3 compile error. (closes: #197723) -- Martin Maurer Tue, 17 Jun 2003 14:29:00 +0100 fireflier (1.1-3) unstable; urgency=low * added libtool to build-depends -- Martin Maurer Mon, 10 Mar 2003 22:29:00 +0100 fireflier (1.1-2) unstable; urgency=low * added autoconf and automake to build-depends * adapted debian/rules to changed qt include directory -- Martin Maurer Wed, 04 Mar 2003 22:29:00 +0100 fireflier (1.1-1) unstable; urgency=low * Now again with the correct libqt3 include paths.... -- Martin Maurer Wed, 19 Feb 2003 22:29:00 +0100 fireflier (1.1) unstable; urgency=low * closed security hole where users could read and delete iptables and userspace rules while not being logged in * redesigned interface * first working gtk client (thanks to Klaus Triendl) * README updated * qtclient Makefile updates (qt detection) * iptables path fix for suse -- Martin Maurer Don, 13 Feb 2003 10:00:00 +0200 fireflier (1.0a) unstable; urgency=low * code cleanup in server. replaced defines and literals by enums -- Martin Maurer Fri, 23 Nov 2002 10:00:00 +0200 fireflier (1.0) unstable; urgency=low * fixed another gcc 3.x compile bug * adapted to changed iptables library (they moved the header files) -- Martin Maurer Fri, 25 Oct 2002 10:00:00 +0200 fireflier (0.9.3) unstable; urgency=low * exchanged sun jsse with miniSSL by BebboSoft (www.bebbosoft.de). See README for details. * removed the javaclients from the debian packages (not that sure about the DFSG conformance of the BebboSoft licence - see miniSSL) * created an applet version of the javaclient (use applet.patch.0.9.3) * fixed minor bugs -- Martin Maurer Wed, 24 Jul 2002 10:00:00 +0200 fireflier (0.9.2) unstable; urgency=low * modified java client to compile with java 1.4 notice that you would have to edit fireflier.java to get this working. (cf README) * fixed server to compile with newer pam versions * fixed a small bug in resolver * changed font in qtclient rules_dialog * fixed some gcc3.x problems in qtclient, maybe it compiles now can't verify this, as I don't have qt3.x compiled with gcc3.x * if you use this package, it would be nice if you sent feedback (see README) * fixed some minor bugs -- Martin Maurer Tue, 19 Jul 2002 10:00:00 +0200 fireflier (0.9.1) unstable; urgency=low * fixed resolver -- Martin Maurer Tue, 3 Jun 2002 10:00:00 +0200 fireflier (0.9) unstable; urgency=low * fixed two bugs which prevented timeouting userspace rules from being deleted * fixed bug not saving protocol on insert of port matching rule * fixed bug which stopped server from sending packets to client * various other bugs * work on qtclient (status: useable) * created debs for qtclient * created configure script for qtclient (should be improved) * hispirit (status: not useable) started work on gtkclient * removed sun-jsse from source!!! (license problems). You will need to get this yourself. (unless you don't need the javaclient) * removed javaclient from debian build scripts -- Martin Maurer Tue, 1 Jun 2002 10:00:00 +0200 fireflier (0.8) unstable; urgency=low * fixed a bug regarding close buttons in iptables/userspace rules dialogs * sourceforge registration * first official release * debian packages for server * corrected alloc bug * created README * corrected bug when deleting userspace rules (bug in javaclient) -- Martin Maurer Tue, 7 May 2002 10:00:00 +0200 fireflier (0.8pre3) * corrected bug when creating rules of non-existent values (server crashed) * improved javaclient optical design * review of code. some general changings (assertions, ...) * debugging * javaclient: fixed popup windows. iptables list and userspace list may not coexist * fixed Makefile, so that configfiles are not overwritten on upgrade * startup script should be working by now. Copy it to /etc/init.d and create the necessary links -- Martin Maurer Tue, 21 Apr 2002 10:00:00 +0200 fireflier (0.8pre2) * corrected configure script to abort on missing libraries * userspace rules are saved whenever a new rule is inserted (formerly only on exit) * got rid of startup.sh: handling of client ip now via config file. Filtering is done in userspace (as little traffic expected) ip_queue rules are inserted on startup and deleted on shutdown (cf. Configfile: create_queue_rules) -- Martin Maurer Tue, 18 Apr 2002 10:00:00 +0200 fireflier (0.8pre1) * first pre version -- Martin Maurer Tue, 16 Apr 2002 10:00:00 +0200 xxxxxxxxxxxxxxxxxxx: 2002-02-0x * development started