portslave (2005.04.03) unstable; urgency=high * Renamed the logcheck config file from portslave.pppd to portslave-pppd to fit with the new naming convention. * Made it build with the latest ppp. -- Russell Coker Sun, 4 Apr 2005 23:40:00 +1000 portslave (2004.03.26) unstable; urgency=low * Build-depends on ppp-dev. Closes: #240156 * Changed the version number as reported by the programs. * Note that the previous version totally disabled CHAP support (the previous changelog entry did not clearly state this). -- Russell Coker Fri, 26 Mar 2004 12:53:00 +1100 portslave (2004.03.21) unstable; urgency=low * Added an option to disable chap as the latest Debian ppp package has changed the CHAP hooks and I can't work out how to get it going again. -- Russell Coker Sun, 21 Mar 2004 22:37:00 +1100 portslave (2002.10.21) unstable; urgency=low * Fixed a bug in ./configure . -- Russell Coker Mon, 21 Oct 2002 06:39:00 +0200 portslave (2002.10.16) unstable; urgency=low * Added support for limiting the answer times. -- Russell Coker Wed, 16 Oct 2002 23:04:00 +0200 portslave (2002.09.17) unstable; urgency=low * New version that depends on libradius1. * Made "ssh" refer to version 2, and "ssh1" be the keyword for ssh V 1.x. * Fixed many trivial warnings about function parameters not being used. * Merged in FIDO support - haven't tested it yet. Author: Andy Pershin Adapted for recent versions by Dmitry Sergienko * Made rlogin use options "-8" and "-E". * Added CHAP support. -- Russell Coker Tue, 17 Sep 2002 00:24:00 +0200 portslave (2002.01.19) unstable; urgency=low * Added "%M" for multilink pppd option. * More changes related to removing support for ppp 2.4.0. -- Russell Coker Sat, 19 Jan 2002 16:33:00 +0100 portslave (2002.01.12) unstable; urgency=low * Remove support for ppp 2.4.0. -- Russell Coker Sat, 12 Jan 2002 21:02:00 +0100 portslave (2002.01.10) unstable; urgency=low * Made it not SEGV when DNS is down. * Changed some variable names to work with the next version of pppd. -- Russell Coker Thu, 10 Jan 2002 21:40:00 +0100 portslave (2001.12.28) unstable; urgency=low * Improved support for setting variables in chat script. -- Russell Coker Fri, 28 Dec 2001 00:10:00 +0100 portslave (2001.12.27) unstable; urgency=low * Added CLI support and changed the way that the initchat is parsed. This breaks old pslave.conf files. * Fixed a bug in ctlportslave so that it will clear old data from memory before displaying the logged on users (necessary for "cshow who"). * Stopped it using spaces in the Acct-Session-Id attribute. -- Russell Coker Thu, 27 Dec 2001 02:10:00 +0100 portslave (2001.12.16) unstable; urgency=low * Tidied up the debian/rules file. * Made it compile with older headers for the sockaddr_in code if you don't enable IPv6. * Made it compile with ppp*.tgz in the current directory as well as in the parent directory. * Fixed the callback patch. It compiles now - I can't test it though... * Added a patch to create potato packages to the docs directory. -- Russell Coker Sun, 16 Dec 2001 14:36:00 +0100 portslave (2001.12.11-1) unstable; urgency=low * Made the programs have the right version number. * Made it depend on the latest ppp Debian package. -- Russell Coker Tue, 11 Dec 2001 11:35:00 +0100 portslave (2001.12.11) unstable; urgency=low * Made the Acct-Session-Id aqttribute be sent in access-request packets as well as accounting. This may make it easier for some people to manage accounting. Made the Acct-Session-Id by default be the system time in seconds * 64K + the low 16bits of the PID in hex. Previously the decimal representation of the PID was merely appended to the decimal representation of the time, this meant that more space was taken up, and the session ids didn't always increase. * Added logcheck files. * Fixed a bug in ctlportslave that caused a buffer overflow on utmp parsing and a SEGV. -- Russell Coker Tue, 11 Dec 2001 10:38:00 +0100 portslave (2001.11.25) unstable; urgency=low * Added a patch from Cyclades for shadow password support. Also added support for MD5 hashed passwords. * Stopped warnings when unused port definitions reference non-existant devices. * Added a real bool type to the source. Makes the code clearer. * Started work on CID. * Added support for gethostbyname2() for IPv6. Not fully tested but works better than the previous code that broke gethostbyname() for IPv4. -- Russell Coker Sun, 25 Nov 2001 13:11:00 +0100 portslave (2001.11.18) unstable; urgency=low * Forced to change the syntax of hostname-service type for IPv6 support. Now use [a.b.c.d]port format. * IPv6 might even work. I have it sending RADIUS packets to ::1, now I need an IPv6 RADIUS server... -- Russell Coker Sun, 18 Nov 2001 21:45:00 +0100 portslave (2001.11.17) unstable; urgency=low * Made location an enum type. * Made the Debian package depend on the latest woody version. * Stopped the double messages about authentication failure. * Added a pppd patch for persistant IPv6 addresses. * Started work on IPv6 support. Use ./configure --enable-ipv6 to compile with it. It currently doesn't compile with IPv6 enabled... * Changed the parsing code to remove the remnants of the old way of doing it. Makes the code more readable. -- Russell Coker Sat, 17 Nov 2001 18:37:00 +0100 portslave (2001.11.11) unstable; urgency=low * Added new config directive for DCD related setting "%d". * Fixed a bug with rlogin/ssh where Portslave tried to connect to 0.0.0.0. -- Russell Coker Sun, 11 Nov 2001 20:18:00 +0100 portslave (2001.11.08) unstable; urgency=low * Adds more serial error checking and streamlined the default config file. * Made the default config file not allow locallogins! Also made the logging clearer. * The last version was broken badly, it never asked as a password (so any account with a password was unusable ;). Also ports were always recognised as port 0 for "portslave -" and by libpsr. It was only a development release anyway. * Made the error message be displayed on authentication failure, and fixed a potential SEGV in the failure message code. * Synchronised the patches with the latest Debian package. -- Russell Coker Thu, 8 Nov 2001 18:31:00 +0100 portslave (2001.11.05) unstable; urgency=low * Ran flawchecker to check for potential security problems. Now use /dev/urandom for random authentication vectors. Also tightened up some potentially nasty code in syslog.c and ctlportslave. The /dev/urandom change fixes a potential attack, the others just prevent SEGVs. * Added a ./configure option for enabling the IP address assignment. Also fixed a couple of minor IP assignment related bugs that crept in when merging the patch. * Removed README.NET and moved the data into portslave(8). * Merged in more code from Cyclades. * Made "s{32-63}.tty tts/C{0-31}" be a valid type of config syntax. -- Russell Coker Mon, 5 Nov 2001 20:03:00 +0100 portslave (2001.11.01) unstable; urgency=low * Started adding TACACS support. * Finished merging the callback support. Run "./configure --enable-callback" to compile it in. I haven't tested it though. * Changed the way patches are applied so the compile will abort immidiately if a patch fails. -- Russell Coker Thu, 1 Nov 2001 17:01:00 +0100 portslave (2001.10.29) unstable; urgency=low * Partial merge of Callback patch from Alexandr D. Kanevskiy . Also added some other minor patched from him. * Merge of IP assignment patch (forgot who that came from - sorry), disabled by default. I haven't tested enabling this! * Made a Framed-Route with a mask of /32 mean "route add -host" instead of "route add -net". Now we can have single IPs in framed routes. * Removed the ./configure option for the number of ports. Make it work with an arbitary large number of ports. NB ctlportslave will run out of memory if you use too high numbers... * Made ctlportslave not display idle ports. Also added an option for continuously updating the display. -- Russell Coker Mon, 29 Oct 2001 17:38:00 +0200 portslave (2001.10.26) unstable; urgency=low * Fix the RADIUS timeout code, made it try both servers in turn, not try server 0.0.0.0, and display the error messages correctly. * Fixed some buggy handling of error messages that could cause SEGV. -- Russell Coker Fri, 26 Oct 2001 22:53:00 +0200 portslave (2001.10.15) unstable; urgency=low * I broke accounting in 2001.10.09, fixed now. This also fixes a problem with utmp writing. It seems that if do_acct is set to false then the utmp record will have the IP address from pslave.conf even if that IP address was over-ruled by the RADIUS server! * Fixed utmpfrom in the default config documentation. Also made the variable in the source consistant with the config file so I don't make that mistake again. * Documented the environment variables used by portslave. -- Russell Coker Mon, 15 Oct 2001 01:18:00 +0200 portslave (2001.10.13) unstable; urgency=low * Improved the error reporting for DNS problems. * Fixed a parsing bug where unexpected tabs confused it. * Fixed a bug in the .spec file. -- Russell Coker Sat, 13 Oct 2001 19:01:00 +0200 portslave (2001.10.09) unstable; urgency=low * Removed some code from the memory management patch that's supposed to be buggy. * Reformatted the code slightly. * Fixed the .spec file to match the removal of the libpsr directory and the creation of an extra shared object. -- Russell Coker Tue, 9 Oct 2001 20:57:00 +0200 portslave (2001.10.06) unstable; urgency=low * Huge changes with this version, needs lots of testing!!! * Removed pppd-radius from the Debian package! Made it use the regular pppd. * Merged in the Cyclades code for local authentication and stub code for TACACS (anyone got some TACACS client code to share with me?). * Added %g to the formatting strings for printing the PID and %H for the target host for login sessions. * Rewrote the error handling for RADIUS packet creation and re-formatted radclient.c. Also added a config option to specify the number of RADIUS retries. * Ignore break on serial port when doing modem negotiation and login prompt. * Added port number specification for telnet service. * Replaced all sleep() and usleep() calls with nanosleep(). * Replaced the ppp 2.4.1 patches with the patches from the Debian pppd package. The Debian package had all our patches and some extras so it makes sense to track them. This also included some callback code! * Implemented the Login-TCP-Port attribute, now need code for MPPP limiting. * Stopped ssh and rlogin from disabling escape character (leave it disabled for telnet because telnet allows "open" command). * Removed hacks supporting Linux kernel < 2.2.0. It should still work on old kernels, just not display stats properly for ppp. * Added new config parameter "radretries". * Made the start time be calculated from RADIUS login time for terminal authentication (used to be from ip-up time). * Removed the libpsr directory and moved the contents to src directory. * Updated to latest debian standards version and follow the latest Debian policy on stripping and debug generation. -- Russell Coker Sat, 6 Oct 2001 19:32:38 +0200 portslave (2001.10.02) unstable; urgency=low * Removed spurious "Detected login for" syslog message on AutoPPP. * Changed ctlportslave code for detecting idle time. Now if it can't open the device it will display idle time as -1. This makes it less painful to run ctlportslave as non-root. * Made ctlportslave not display entries where the process as listed in utmp does not exist. * Updated the default-config document to include the facility and change to the new format of config file. * Changed the default initchat script to use "\c" instead of "" for null send strings. * Merged in a small amount of code from portslave-new. Added location parameter (currently always 0 and unused), also added some new logging for ssh and ssh2. Should be no functional differences because of this, just easier for me to manage my code and easier to add new features in the next release... * Updated chat.c and rwconf.c to new code standards and added better error reporting. * Fixed the Debian config file upgrade code to not match on comments. * Made the default permissions of the config file deny world read. * Finally fixed all the autoconf variable substitution issues. * Made it work with more than one abort string in initchat (previously only the first would work). -- Russell Coker Tue, 2 Oct 2001 18:37:50 +0200 portslave (2001.09.09) unstable; urgency=low * Changed the version number to use dots instead of dashes because too many programs do strange things with dashes in version numbers. * Changed the ./configure script to fix some problems with directories. -- Russell Coker Sun, 09 Sep 2001 13:21:48 +0200 portslave (2001-08-30) unstable; urgency=low * Make it build properly on Debian. Closes: #110627 -- Russell Coker Thu, 30 Aug 2001 15:41:00 +0200 portslave (2001-08-22) unstable; urgency=low * Minor addition to pslave.conf(5) and Debian packaging. * Wrote upgrade script for Debian to convert the format of the config file. -- Russell Coker Wed, 22 Aug 2001 22:02:07 +0200 portslave (2001-08-17) unstable; urgency=low * Changed the configuration in a serious way. Made "all." and "conf." be synonyms (this makes it possible to set every parameter on a per-port basis). As part of this I changed conf.ipno to all.loc_host and all.ipno to all.rem_host. * Updated the documentation and removed some obsolete stuff. * Added new autoconf code based on the work of T. M. Pederson. * Made the number of ports a config option with default 256. * Changed the user-name and password max lengths to 64. * Made many more pointers const in radclient.c. * Removed debian/conffiles because we use DH_COMPAT=3 and it's automatic. * Added a +config-file option to Portslave to allow different ports to have different config files. This is not as necessary as it used to be now that every option can be set on a per-port basis, but will be handy for upgrades. * Added config options for parity, stop-bits, and bits per byte (default 8N1). * Restructured the getty code. * Fixed a config file parsing bug when running "portslave -" with a tty that's not in the config file. * Made failure to lock /var/run/radius.id a fatal error. -- Russell Coker Fri, 17 Aug 2001 01:45:12 +0200 portslave (2001-07-13) unstable; urgency=low * Added the conf.stripnames feature. * Fixed a bug in dynamic ip address (IP address spec ending in '+') parsing. * Now adds framed-route entries AFTER IP is brought up for PAP logins. * Made the chat-script code take up to 126 strings (was 62). * Added the "ABORT" keyword to chat scripts. -- Russell Coker Fri, 13 Jul 2001 15:48:15 +0200 portslave (2001-07-12) unstable; urgency=low * Minor fix to the man page. * Made the Debian package include pppd source. -- Russell Coker Thu, 12 Jul 2001 14:34:52 +0200 portslave (2001-07-11) unstable; urgency=low * Fixed a potential SEGV if you only define the secondary RADIUS server. * Made the config file case-insensitive for key words (still case sensitive for device names etc naturally). * Made the porttype setting an enum. -- Russell Coker Wed, 11 Jul 2001 14:30:16 +0200 portslave (2001-07-10) unstable; urgency=low * Fixed a bug whereby the first line of the config file wouldn't be parsed correctly by libpsr.so. * Fixed a potential buffer overflow parsing radius packets (too many filters, messages, or routes). * Made ctlportslave take 1 character abbreviations for everything. * Made Framed-Route work with terminal authentication. Also added some error logging for when the route command returns an error, made it handle a gateway of 0.0.0.0, and handle no specification of metric. * Added a memory leak patch for pppd 2.4.1. -- Russell Coker Tue, 10 Jul 2001 12:25:47 +0200 portslave (2001-07-09) unstable; urgency=low * Rewrote all the config code to only have the configuration for the line in use in memory. Saves about 500K of resident RAM for each running copy of Portslave. * Removed some cruft from ctlportslave, cut the binary from 30K to 13K. * Changed the maximum number of lines to 1024 (was 512). Could make it larger if necessary. * Made pppd display the correct "started by user" message when using terminal authentication. * Fixed the logging code properly. * Added ppp packet counting (seriously hacking pppd). -- Russell Coker Mon, 9 Jul 2001 17:48:33 +0200 portslave (2001-07-08) unstable; urgency=low * Added per-line option for logging passwords to syslog. * Changed the syslog code to not log to the console all the time. * Documented the utmpfrom field in the config file and fixed the default. * Fixed a potential buffer overflow in ctlportslave (MAXLINES checking). * Did some more work on hacking syslog() and the debug code. Also made the debug config setting an integer not a boolean! * Now SPECIAL_STATUS honors the sysutmp config setting. * The pppopt and autoppp options must use the plugin. pppopt needs the plugin for accounting. * Stopped "make install" from creating a rc.boot directory. * For Debian make DH_COMPAT=3. -- Russell Coker Sun, 8 Jul 2001 18:24:38 +0200 portslave (2001-07-05) unstable; urgency=low * Added "make dep" support. * Added new code for de-referencing sym-links for device names. This will make locking work better regarding /dev/modem and /dev/ttyS* on devfs. Now we use absolute path names for all devices internally and strip the "/dev/" from the start before writing to utmp. -- Russell Coker Thu, 5 Jul 2001 16:10:53 +0200 portslave (2001-07-02) unstable; urgency=low * Added #include in syslog.c, needed for htonl() etc. * Added a .spec file for RPM, don't know if it works. * Added support for specifying port numbers for services. * Changed the accounting service name to "radius-acct" which is the official name (used to be "radacct"). * Changed the default port numbers (used if /etc/services doesn't contain entries for "radius" and "radius-acct") to 1812 and 1813 from 1645 and 1646. * Changed the variable PPPLOGNAME to PORTSLAVELOGNAME to avoid conflicts with the environment variable pppd sets named PPPLOGNAME. * Made it work with ppp-x.x.x.tar.gz * Changed the version number in the RPM spec file to not have hyphens. -- Russell Coker Mon, 2 Jul 2001 16:32:33 +0200 portslave (2001-06-28) unstable; urgency=low * ./configure now checks for the location of rlogin * Fixed the bug where it would send a bogus second accounting-start record. * Made it log bytes and packets sent and received in the accounting-end record (actually the pppd code is missing for packet accounting, but the portslave code is already there). * Re-added pppd 2.4.0 support and included the pppd memory leak patch from "Arthur Naseef" . * Fixed a config parsing bug that resulted in dynamic addresses being reversed. * Tweaked the syslog code some more. Now it logs way too much, which is better than not logging enough. * Fixed the spawn code so that it won't fork() for PPP protocol. * Chat now works! * Added all the docs to the Debian package. * Wrote ctlportslave(1) and documented the chat script format for pslave.conf(5). * Made ctlportslave take the option "q" to quit, saves typing. -- Russell Coker Thu, 28 Jun 2001 17:45:01 +0200 portslave (2001-06-27) unstable; urgency=low * Added some more comments and did some more work on the logging code. * Re-wrote the chat code to try and fix a stack corruption bug (and make the code readable and maintainable. * Added a patch from "Arthur Naseef" to fix memory leaks. * Fixed the shutdown code, so that on error portslave shouldn't ever hang on exit. * Moved rlogin into it's own separate package. -- Russell Coker Wed, 27 Jun 2001 17:16:45 +0200 portslave (2001-06-26) unstable; urgency=low * Added ppp_version to the symbol table for libpsr. * Fixed the logging code, it's not more consistant and the code makes more sense (to me at least). * Removed radinit, it wasn't serving any purpose, it's apparently been dead code for some time. * Audited all strcpy() code and used a few strncmp() calls and other changes to reduce the risk of buffer overflows. * Updated docs/TODO * Made all code compile with lots of gcc warnings turned on and fixed all the problems it reports! * No longer use -I../src on the compiler command line. * Copied some code from Portslave 2.0A, including the %S parameter for format strings (it's the same as our %T but we have both for compatibility). -- Russell Coker Tue, 26 Jun 2001 12:00:00 +0200 portslave (2001-06-24) unstable; urgency=low * Wrote portslave(8). -- Russell Coker Sun, 24 Jun 2001 21:55:42 +0200 portslave (2001-06-22) unstable; urgency=low * Made the integer scanning return error if sscanf() can't get exactly one value. * Added a proper bool type to configuration that accepts 0/no/false or 1/yes/true just like bools in samba, changed the default config file appropriately. * "make clean" will not longer remove pslave_cfg.h * Fixed the logging code to use the regular openlog() and syslog() library calls from libc for local logging instead of the broken AF_UNIX code that was being used before. This makes it work on recent 2.2 kernels. -- Russell Coker Fri, 22 Jun 2001 12:00:00 +0200 portslave (2001-06-21) unstable; urgency=low * Fix lock file generation to only use the last directory componant so it'll work with devfs style names. * Added the -i option to the rlogin.1 man page. * Wrote a man page for pslave.conf(5). * Made more values have sensible defaults. -- Russell Coker Thu, 21 Jun 2001 22:58:11 +0200 portslave (2001-06-20) unstable; urgency=low * Made the PPP source external to the main source for Portslave and made it apply patches from a patch directory. This will make it 100 times easier to migrate Portslave to a new version of PPPD and make it easy to compile the same version for different versions of PPPD. * Changed the macro VERSION to PORTSLAVE_VERSION to avoid conflicts. * Fixed the installation of man pages, amoung other things it won't install wrong man pages on Debian. -- Russell Coker Wed, 20 Jun 2001 12:00:00 +0200 portslave (2001-04-04) unstable; urgency=low * More work on accounting. -- Russell Coker Wed, 4 Apr 2001 14:04:45 +1000 portslave (2001-04-03) unstable; urgency=low * Adds a better description. Closes: #87397 * Changed MAXLINES from 256 to 512 (just in case 256 isn't enough). * Made the included pppd source closer to the upstream. -- Russell Coker Tue, 3 Apr 2001 14:04:45 +1000 portslave (2001-02-20) unstable; urgency=low * Changed spawnit to support up to 254 parameters when executing a program, it used to be 30. * Added accounting patch from "Alexandr D. Kanevskiy" to make it correctly send accounting packets on AutoPPP sessions. * Fixed a bunch of trivial warnings from not including system header files. -- Russell Coker Tue, 20 Feb 2001 10:29:37 +0100 portslave (2000-12-25) unstable; urgency=low * Fixed the version code. -- Russell Coker Mon, 25 Dec 2000 06:14:16 +1100 portslave (2000-12-24) unstable; urgency=low * Initial Release. -- Russell Coker Sun, 24 Dec 2000 09:57:47 +1100 Local variables: mode: debian-changelog End: