- -- Alan DeKok <aland@freeradius.org> Mon, 26 Mar 2007 14:57:03 +0100
-
-freeradius (1.1.5-0) unstable; urgency=low
-
- * New upstream release.
-
- -- Nicolas Baradakis <nbk@sitadelle.com> Tue, 6 Mar 2007 23:52:55 +0100
-
-freeradius (1.1.3-0) unstable; urgency=low
-
- * New upstream release.
- * Delete dpatch merged in mainstream CVS:
- - 01-actually_check_for_unset_password
- * Remove irrelevant dpatch after autotools upgrade:
- - 13_a_libtool_to_call_your_own
- * Update debian/rules because of autotools upgrade, too.
- * Fix errors in initscript when trying to reload even if the server
- isn't running.
-
- -- Nicolas Baradakis <nbk@sitadelle.com> Mon, 10 Jul 2006 14:06:04 +0200
-
-freeradius (1.1.2-0) unstable; urgency=low
-
- * New upstream release.
- * Update dpatch for 1.1.2:
- - 13_a_libtool14_to_call_your_own
-
- -- Nicolas Baradakis <nbk@sitadelle.com> Sun, 21 May 2006 19:20:03 +0200
-
-freeradius (1.1.1-0) unstable; urgency=low
-
- * New upstream release.
- * Delete dpatches merged in mainstream CVS:
- - 01_NET-SNMP_build_support
- - 02_document_actual_shared_secret_maximum_length
- - 12_more_dialup_admin_various_fixes
- * Remove irrelevant dpatch after rlm_eap changes in CVS:
- - 06_libtool14_vs_rlm_eap_tls
- * Features that break compatibility with Sarge have not been merged:
- - debhelper V5 support
- - lsb-init functions
-
- -- Nicolas Baradakis <nbk@sitadelle.com> Sun, 12 Feb 2006 16:29:20 +0100
-
-freeradius (1.1.0-1) unstable; urgency=low
- * ReDebianise upstream tarball:
- - Deleted RFCs: 2243 2289 2433 2548 2618 2619 2620 2621 2716 2759 2809 2865
- 2866 2867 2868 2869 2882 2924 3162 3575 3576 3579 3580
- draft-kamath-pppext-eap-mschapv2-00
-
- * New FreeRADIUS modules marked stable by new upstream release
- - rlm_perl
- - rlm_sqlcounter
- - rlm_sql_log + radsqlrelay
- - rlm_otp (formerly rlm_x99_token, not built as it depends on OpenSSL)
-
- * Remove upstream-integrated patches:
- - 02_EAP-SIM_doesnt_need_openssl
- - 03_X99_is_not_stable
- - 07_manpage_fixups
- - 09_use_crypth_if_we_have_it
- - 10_escape_entire_ldap_string
- - 11_dont_xlat_possibly_bad_usernames_in_bad_accounting_packets
- - 12_dialup_admin_various_fixes
-
- * More dialup-admin fixes from Arve Seljebu
- - Fix redirects in dialup-admin pages on servers with
- register_globals turned off.
- Closes: #333704
- - HTTP form fields will always fail is_int, use in_numeric instead
- Closes: #335149
- - Created 12_more_dialup_admin_various_fixes
-
- * Update to Policy 3.6.2.0
- * Upgrade Debhelper support to V5
- * Don't install the .in files with the examples
- * Prefer libmysqlclient15-dev
- Closes: #343779
- * Shared secrets can only be 31 characters long, note this in clients.conf
- - Created 02_document_actual_shared_secret_maximum_length
- Closes: 344606
- * Added support for lsb-init functions
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Sun, 15 Jan 2006 13:34:13 +1100
-
-freeradius (1.1.0-0) unstable; urgency=low
-
- * New upstream release.
- * Update set of patches:
- - 01_NET-SNMP_build_support.dpatch
- - 06_libtool14_vs_rlm_eap_tls.dpatch
- - 13_a_libtool14_to_call_your_own.dpatch
-
- -- Nicolas Baradakis <nbk@sitadelle.com> Sun, 1 Jan 2006 18:15:47 +0100
-
-freeradius (1.0.5-2) unstable; urgency=low
-
- * Stop dragging non-PIC code from libeap.a into rlm_eap_sim.so and
- rlm_eap.so.
- (Thanks to Peter Salinger)
- Closes: #288547
- - Rename 06_libtool14_vs_rlm_eap_tls to 06_libtool14_vs_rlm_eap
- and modify with Peter's changes and some Makefile hackery to
- get it all linking
- * Don't rerun configure during the build.
- (Thanks to Kurt Roeckx)
- * A whole bunch of dialup-admin fixes from Arve Seljebu and Tobias
- - Report correct data transfer statistics for users
- Closes: #329672
- - Lower-case sql column names to match creation scripts
- Closes: #333709
- - Fix creation of empty groups
- Closes: #333739
- - Put quote around usernames in HTML output
- Closes: #333742
- - Properly notice when we've got a blank password to SQL
- Closes: #333744
- - Created 12_dialup_admin_various_fixes
- * Stop using libtool1.4 to build against, now that we can't have it and
- libltdl3-dev installed at the same time
- Closes: #279391
- - Created 13_a_libtool14_to_call_your_own to get most recent ltmain.sh
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Sun, 16 Oct 2005 21:26:30 +1000
-
-freeradius (1.0.5-1) unstable; urgency=high
-
- * Urgency high for security fixes below, all reported upstream
- * ReDebianise upstream tarball:
- - Deleted RFCs: 2243 2289 2433 2548 2618 2619 2620 2621 2716 2759 2809 2865
- 2866 2867 2868 2869 2882 2924 3162 3575 3576 3579 3580
- draft-kamath-pppext-eap-mschapv2-00
- * Add missed build-dependancy on dpatch (>=2)
- * Update to Standards-Version 3.6.2.0
- - No changes needed
- * Repair some minorly broken manpages
- - Created 07_manpage_fixups.dpatch
- * Security fixes stolen from CVS release_1_0 branch:
- - Be sure we use crypt.h if we have it, to avoid segfaulting on a
- bad built-in crypt() definition, spotted by Konstantin Kubatkin
- + Created 09_use_crypth_if_we_have_it
- - Make sure we escape the entire LDAP string, instead of
- aborting as soon as it becomes possible to be out of space
- + Created 10_escape_entire_ldap_string
- - Don't xlat the UserName attribute before we can be sure of meeting
- any escape sequences it may contain, spotted by Primoz Bratanic
- + Created 11_dont_xlat_possibly_bad_usernames_in_bad_accounting_packets
- * Depend on adduser, so our postinst can create the freerad user
- * Don't install the .in versions of the example scripts.
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Mon, 19 Sep 2005 15:10:40 +1000
-
-freeradius (1.0.5-0) unstable; urgency=low
-
- * New Upstream release, from release_1_0 branch
- - Remove 04_bonus_control_code_in_clients_conf_5
- - Remove 05_unbreak_quoted_sql_results
- * Fix my _name_ in the dpatches
- * Remove patch to CVS ID header from 05_unbreak_quoted_sql_values
- so as not to break things when comitting to FreeRADIUS CVS
- * Take linking fix from FreeRADIUS bugzilla #75 to allow
- rlm_eap_tls to be linked to by rlm_eap_ttls and rlm_eap_peap
- even though we don't build them in the Debian archive.
- (Thanks to Luca Landi for the patch)
- - Created 06_libtool14_vs_rlm_eap_tls
- * Fix ownership of files in /var/log/freeradius/ more efficiently
- (Caught by Guido Trotter)
- Closes: #326891
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Wed, 7 Sep 2005 01:08:07 +1000
-
-freeradius (1.0.4-2) unstable; urgency=low
-
- * Fix my email address in the dpatches
- * Remove extraneous ^g from man/man5/clients.conf.5
- - Created 04_bonus_control_code_in_clients_conf_5
- * Correct handing of parameterless call of init script, and
- general init script neatening
- (Thanks to Derrick Karpo)
- Closes: #315438
- * Correctly leave out the .in files in the examples
- * Correctly use debhelper after splitting binary make target
- into binary-arch and binary-indep.
- (Thanks to Kurt Roeckx for actually hitting the bug)
- Closes: #315770
- * Steal fix from CVS release_1_0 tree for rlm_sql quoted values.
- (Thanks to Nicolas Baradakis for the fix)
- - Upstream bugzilla #242, src/modules/rlm_sql/sql.c 1.79.2.2
- - Created 05_unbreak_quoted_sql_values
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Mon, 27 Jun 2005 03:13:48 +1000
-
-freeradius (1.0.4-1) unstable; urgency=low
- * ReDeianise upstream tarball:
- - Deleted RFCs: 2243 2289 2433 2548 2618 2619 2620 2621 2716 2759 2809 2865
- 2866 2867 2868 2869 2882 2924 3162 3575 3576 3579 3580
- draft-kamath-pppext-eap-mschapv2-00
- * Convert to dpatch, dpatch-2-style interface.
- - New build-dependancy on dpatch (>= 2)
- - Created 01_NET-SNMP_build_support
- - Created 02_EAP-SIM_doesnt_need_openssl
- - Created 03_X99_is_not_stable
- * Assemble the freeradius-dialupadmin in the binary-indep make target
- Closes: #313173 (Thanks to Santiago Vila for spotting this)
- * Include the example scripts in /usr/share/doc/freeradius/examples/scripts
- except those three which are installed into the binary by the Makefile.
- Closes: #314253 (Thanks to Michael Langer for spotting this)
- * Suggest libdate-manip-perl for freeradius-dialupadmin
- Closes: #306007 (Thanks to Feng Sian)
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Wed, 22 Jun 2005 16:03:27 +1000
-
-freeradius (1.0.4-0) unstable; urgency=medium
-
- * New upstream release, fixing build problems.
- * Prefer libpq-dev over postgresql-dev as a build-dependancy.
- - This requires us to use pgconfig to find the headers.
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Thu, 16 Jun 2005 13:56:33 +1000
-
-freeradius (1.0.3-0) unstable; urgency=high
-
- * New upstream release
- * Urgency high for some denial-of-service fixes:
- - SQL injection attacks and DoS (core dump) via buffer overflow.
- Closes: #307720
-
- -- Alan DeKok <aland@ox.org> Fri, 3 Jun 2005 11:29:34 -0700
-
-freeradius (1.0.2-4) unstable; urgency=high
-
- * Security fix stolen from CVS release_1_0 branch:
- - Always use sql_escape_func when calling radius_xlat
- - Add a test in sql_escape_func() to check buffer bound when
- input character needs escaping.
- - Urgency high as these are (theoretical) security issues.
- Closes: #307720 (Thanks to Primoz Bratanic and Nicolas Baradakis)
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Mon, 23 May 2005 18:53:51 +1000
-
-freeradius (1.0.2-3) unstable; urgency=medium
-
- * Fixes stolen from CVS release_1_0 branch:
- - Fix missed SIGCHLD when waiting for external programs
- when threaded. (Medium urgency as this can easily livelock
- FreeRADIUS, which is an authentication server.)
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Mon, 18 Apr 2005 23:46:41 +1000
-
-freeradius (1.0.2-2) unstable; urgency=medium
-
- * Get rid of extraneous '%' at the start of every reference to
- /etc/freeradius-dialupadmin in freeradius-dialupadmin's configuration.
- Closes: #299749
- * Fixes stolen from CVS release_1_0 branch:
- - Fix checkrad call for NAS ports > 9999999. (sprintf integer overrun,
- reason for urgency medium.)
- - Fix inverted test causing crash with pthreads and crypt
- Closes: #300219 (Thanks Manuel Menal)
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Wed, 6 Apr 2005 12:33:05 +1000
-
-freeradius (1.0.2-1) unstable; urgency=low
-
- * ReDebianise upstream tarball:
- - Deleted RFCs: 2243 2289 2433 2548 2618 2619 2620 2621 2716 2759 2809 2865
- 2866 2867 2868 2869 2882 2924 3162 3575 3576 3579 3580
- * Allow rlm_eap_sim to build without OpenSSL
- * Make init script return 1 if reloading kills the server
- (Thanks to Nicolas Baradakis)
- Closes: #292170
- * Enable Novell eDirectory integration
- * Enable udpfromto code so that replies come from the same address as
- the request arrived at
- * Build-depend on libmysqlclient12-dev as libmysqlclient10 has problems
- accessing 4.0 series mySQL servers, and libmysqlclient12 can access
- 4.1 series mySQL servers.
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Fri, 4 Mar 2005 09:30:40 +1100
-
-freeradius (1.0.2-0) unstable; urgency=low
-
- * New upstream release
- * Update for Debian Policy 3.6.1.1
- - Change test if invoke-rc.d as per Policy 9.3.3.2
- * freeradius-dialupadmin Suggests php4-mysql | php4-pgsql
- Closes: #279419
- * Added a two-second pause to restart in init.d script
- Closes: #262635
- * FreeRADIUS module packages now depend on the same source
- version of the main FreeRADIUS package.
- Closes: #284353
- * FreeRADIUS-dialupadmin's default paths in admin.conf are
- now correct.
- Closes: #280942
- * FreeRADIUS-dialupadmin's help.php3 can now find README.
- Closes: #280941
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Wed, 29 Dec 2004 20:12:52 +1100
-
-freeradius (1.0.1-2) unstable; urgency=high
-
- * freeradius-dialupadmin Suggests php4-mysql | php4-pgsql
- Closes: #279419
- * Added a two-second pause to restart in init.d script
- Closes: #262635
- * FreeRADIUS module packages now depend on the same source
- version of the main FreeRADIUS package.
- Closes: #284353
- * FreeRADIUS-dialupadmin's default paths in admin.conf are
- now correct.
- Closes: #280942
- * FreeRADIUS-dialupadmin's help.php3 can now find README.
- Closes: #280941
- * Fixes stolen from 1.0.2 CVS:
- - Bug fix to make udpfromto code work
- - radrelay shouldn't dump core if it can't read a VP from the
- detail file.
- - Only initialize the random pool once.
- - In rlm_sql, don't escape characters twice.
- - In rlm_ldap, only claim Auth-Type if a plain text password is present.
- - Locking fixes in threading code
- - Fix building on gcc-4.0 by not trying to access static auth_port from
- other files.
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Wed, 29 Dec 2004 20:19:42 +1100
-
-freeradius (1.0.1-1) unstable; urgency=high
-
- * ReDebianise upstream tarball:
- - Deleted RFCs: 2243 2289 2433 2548 2618 2619 2620 2621 2716 2759 2809 2865
- 2866 2867 2868 2869 2882 2924 3162 3575 3576 3579 3580
- - Remove CVS directories.
- * Urgency high for security fix from 1.0.1-0 (CAN-2004-0938,
- closes: #275136).
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Thu, 23 Sep 2004 22:28:11 +1000
-
-freeradius (1.0.1-0) unstable; urgency=high
-
- * New upstream release
- * Urgency high for some denial-of-service fixes:
- - Fix two remote crashes and a remote memory leak in
- radius packet decoding.
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Thu, 2 Sep 2004 17:12:23 +1000
-
-freeradius (1.0.0-1) unstable; urgency=low
-
- * ReDebianise upstream tarball:
- - Deleted RFCs: 2243 2289 2433 2548 2618 2619 2620 2621 2716 2759 2809 2865
- 2866 2867 2868 2869 2882 2924 3162 3575 3576 3579 3580
- * Support building with libsnmp5's UCD-SNMP compatiblity mode.
- - libsnmp{4.2,5} still depend on OpenSSL, so SNMP's still disabled.
- * Update for Debian Policy 3.6.11
- - Change test for invoke-rc.d as per Policy 9.3.3.2
- * Disable rlm_eap types PEAP, TLS and TTLS as they depend on OpenSSL.
- * Disable rlm_sql driver PostgreSQL as it depends on OpenSSL.
- * Disable rlm_x99_token as it depends on OpenSSL.
- * Finally, -v is documented in radius(8).
- - Closes: #151266
- * Reword a sentence in radwatch(8) by removing the personal pronoun.
- - Closes: #264522
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Tue, 17 Aug 2004 17:42:40 +1000
-
-freeradius (1.0.0-0) unstable; urgency=low
-
- * New upstream release
- * Added H323 billing stuff to the examples
- * Created Dialup-Admin package for the PHP-based web
- FreeRADIUS database (SQL/LDAP) frontend.
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Sat, 17 Jul 2004 16:21:38 +1000
-
-freeradius (0.9.3-1) unstable; urgency=low
-
- * New upstream release, incorporates security fix from 0.9.2-4.
- * Correct build-dependancy on debhelper.
- Closes: #234486
- * Split iodbc SQL driver into its own package.
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Tue, 24 Feb 2004 23:56:26 +1100
-
-freeradius (0.9.2-4) unstable; urgency=high
-
- * Patch from upstream head:
- - Fix a remote DoS and possible exploit due to mis-handling
- of tagged attributes, and Tunnel-Password attribute.
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Fri, 21 Nov 2003 09:52:51 +1100
-
-freeradius (0.9.2-3) unstable; urgency=low
-
- * Removed redundant code to delete contents of a directory
- on purge which ends up being removed anyway.
- * Provide a default pam.d configuration.
- * Fix the usage of dh_installinit to not make the package uninstallable.
- * Change package removal to not abort if we cannot stop the server.
- * Debian-archive-fit version of freeradius.
- Closes: #208620
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Tue, 11 Nov 2003 02:12:55 +1100
-
-freeradius (0.9.2-2) unstable; urgency=low
-
- * Use dh_installinit rather than doing it by hand
- This involves renaming the initfile in the source tarball
- * Only add user freerad to the group shadow on first installation
- * Only chmod /etc/freeradius to group-readable, not group-read/write
- * Removed the freerad user when the freerad group is removed
- * Removed spurious build-dependancy on autoconf2.13 and libtool(1.4)
- * Build-conflict against libssl-dev
- * Restore Kerberos and LDAP as they will build without OpenSSL
- * Make myself the maintainer
- * Update to Policy 3.6.1.0
- - No changes needed
-
- -- Paul Hampson <Paul.Hampson@anu.edu.au> Sun, 9 Nov 2003 00:07:52 +1100