-freeradius (1.1.0~pre0~cvs20051215-0) unstable; urgency=low
+freeradius (1.1.3-0) unstable; urgency=low
- * New upstream release, from branch_1_1 in the CVS.
- * See doc/ChangeLog for feature improvements.
+ * New upstream release.
+ * Delete dpatch merged in mainstream CVS:
+ - 01-actually_check_for_unset_password
+ * Remove irrelevant dpatch after autotools upgrade:
+ - 13_a_libtool_to_call_your_own
+ * Update debian/rules because of autotools upgrade, too.
+ * Fix errors in initscript when trying to reload even if the server
+ isn't running.
+
+ -- Nicolas Baradakis <nicolas.baradakis@cegetel.net> Mon, 10 Jul 2006 14:06:04 +0200
+
+freeradius (1.1.2-2) unstable; urgency=low
+
+ [ Stephen Gran ]
+ * Acknowledge my previous NMU's (closes: #351732, #359042)
+ * Init scripts overhaul:
+ - now use reload on upgrade of modules
+ - replace sleep statements with --retry, as time based tests are
+ fragile
+ - no longer exit with an error if stop fails because the
+ daemon isn't running (closes: #374670, #351735)
+ - stop using command -v in /bin/sh scripts
+ * General maintainer script overhaul:
+ - Don't rm -rf something in /etc (ouch)
+ - Use chown -R instead of 'find .. -exec'
+ - should not need to manually remove the init script on purge (it's a dpkg
+ managed conffile)
+ - Only do user management stuff if user is missing. No point rerunning it
+ every upgrade.
+ - Install /etc/freeradius/dictionary with relaxed permissions, but never
+ touch it again (closes: #334299)
+ - switch to debhelper files where possible. I like an easy to read
+ Makefile.
+ * Arg. Move README.rfc to the freeradius package where it belongs.
+
+ [ Mark Hymers ]
+ * Document building SSL/PostgreSQL modules in debian/rules, add
+ control.postgresql to make it more convenient. Tested on AMD64 using
+ system libtool.
+
+ -- Stephen Gran <sgran@debian.org> Sun, 25 Jun 2006 23:06:16 +0100
+
+freeradius (1.1.2-1) unstable; urgency=low
+
+ [ Mark Hymers ]
+ * New maintainers
+ * New upstream version.
+ * Remove previous patches merged upstream:
+ - 01_NET-SNMP_build_support.dpatch
+ - 02_document_actual_shared_secret_maximum_length.dpatch
+ - 12_more_dialup_admin_various_fixes.dpatch
+ - 14_broken_parse.dpatch
+ - 15_CVE-2006-1354.dpatch
+ * Use --with-system-libtool during configure. Add B-D: on libtool
+ Removes obsolete dpatches:
+ - 06_libtool14_vs_rlm_eap_tls.dpatch
+ - 13_a_libtool_to_call_your_own.dpatch
+ * Remove freeradius.undocumented as we don't install links to
+ undocumented(7) anymore (not recommended since policy 3.5.8.0)
+
+ [ Stephen Gran ]
+ * Update to Standards Version 3.7.2 (no changes)
+ * Remove doc/rfc/ to make -legal happy (closes: #365192)
+ - this means repacked tarball. See README.rfc for details
+ * Test for unset variable, rather than empty variable in clean_radacct,
+ monthly_tot_stats and truncate_radacct (closes: #374053)
+
+ -- Mark Hymers <mark@hymers.org.uk> Sat, 17 Jun 2006 16:05:19 +0100
+
+freeradius (1.1.2-0) unstable; urgency=low
+
+ * New upstream release.
+ * Update dpatch for 1.1.2:
+ - 13_a_libtool14_to_call_your_own
+
+ -- Nicolas Baradakis <nicolas.baradakis@cegetel.net> Sun, 21 May 2006 19:20:03 +0200
+
+freeradius (1.1.1-0) unstable; urgency=low
+
+ * New upstream release.
+ * Delete dpatches merged in mainstream CVS:
+ - 01_NET-SNMP_build_support
+ - 02_document_actual_shared_secret_maximum_length
+ - 12_more_dialup_admin_various_fixes
+ * Remove irrelevant dpatch after rlm_eap changes in CVS:
+ - 06_libtool14_vs_rlm_eap_tls
+ * Features that break compatibility with Sarge have not been merged:
+ - debhelper V5 support
+ - lsb-init functions
+
+ -- Nicolas Baradakis <nicolas.baradakis@cegetel.net> Sun, 12 Feb 2006 16:29:20 +0100
+
+freeradius (1.1.0-1.2) unstable; urgency=high
+
+ * Non-maintainer upload.
+ * [ CVE-2006-1354 ]:
+ src/modules/rlm_eap/types/rlm_eap_mschapv2/rlm_eap_mschapv2.c:
+ Due to insufficient input validation it is possible for a remote
+ attacker to bypass authentication or cause a denial of service.
+ (closes: #359042)
+
+ -- Stephen Gran <sgran@debian.org> Wed, 17 May 2006 11:22:28 -0500
+
+freeradius (1.1.0-1.1) unstable; urgency=low
+
+ * Non-maintainer upload.
+ * Upstream patch to fix parsing config file (closes: #351732)
+ Fixes: fails to start on amd64 (error in dictionary parsing code)
+
+ -- Stephen Gran <sgran@debian.org> Sat, 1 Apr 2006 11:07:55 +0100
+
+freeradius (1.1.0-1) unstable; urgency=low
+ * ReDebianise upstream tarball:
+ - Deleted RFCs: 2243 2289 2433 2548 2618 2619 2620 2621 2716 2759 2809 2865
+ 2866 2867 2868 2869 2882 2924 3162 3575 3576 3579 3580
+ draft-kamath-pppext-eap-mschapv2-00
- -- Nicolas Baradakis <nbk@sitadelle.com> Thu, 15 Dec 2005 20:23:03 +0100
+ * New FreeRADIUS modules marked stable by new upstream release
+ - rlm_perl
+ - rlm_sqlcounter
+ - rlm_sql_log + radsqlrelay
+ - rlm_otp (formerly rlm_x99_token, not built as it depends on OpenSSL)
+
+ * Remove upstream-integrated patches:
+ - 02_EAP-SIM_doesnt_need_openssl
+ - 03_X99_is_not_stable
+ - 07_manpage_fixups
+ - 09_use_crypth_if_we_have_it
+ - 10_escape_entire_ldap_string
+ - 11_dont_xlat_possibly_bad_usernames_in_bad_accounting_packets
+ - 12_dialup_admin_various_fixes
+
+ * More dialup-admin fixes from Arve Seljebu
+ - Fix redirects in dialup-admin pages on servers with
+ register_globals turned off.
+ Closes: #333704
+ - HTTP form fields will always fail is_int, use in_numeric instead
+ Closes: #335149
+ - Created 12_more_dialup_admin_various_fixes
+
+ * Update to Policy 3.6.2.0
+ * Upgrade Debhelper support to V5
+ * Don't install the .in files with the examples
+ * Prefer libmysqlclient15-dev
+ Closes: #343779
+ * Shared secrets can only be 31 characters long, note this in clients.conf
+ - Created 02_document_actual_shared_secret_maximum_length
+ Closes: 344606
+ * Added support for lsb-init functions
+
+ -- Paul Hampson <Paul.Hampson@anu.edu.au> Sun, 15 Jan 2006 13:34:13 +1100
+
+freeradius (1.1.0-0) unstable; urgency=low
+
+ * New upstream release.
+ * Update set of patches:
+ - 01_NET-SNMP_build_support.dpatch
+ - 06_libtool14_vs_rlm_eap_tls.dpatch
+ - 13_a_libtool14_to_call_your_own.dpatch
+
+ -- Nicolas Baradakis <nicolas.baradakis@cegetel.net> Sun, 1 Jan 2006 18:15:47 +0100
+
+freeradius (1.0.5-2) unstable; urgency=low
+
+ * Stop dragging non-PIC code from libeap.a into rlm_eap_sim.so and
+ rlm_eap.so.
+ (Thanks to Peter Salinger)
+ Closes: #288547
+ - Rename 06_libtool14_vs_rlm_eap_tls to 06_libtool14_vs_rlm_eap
+ and modify with Peter's changes and some Makefile hackery to
+ get it all linking
+ * Don't rerun configure during the build.
+ (Thanks to Kurt Roeckx)
+ * A whole bunch of dialup-admin fixes from Arve Seljebu and Tobias
+ - Report correct data transfer statistics for users
+ Closes: #329672
+ - Lower-case sql column names to match creation scripts
+ Closes: #333709
+ - Fix creation of empty groups
+ Closes: #333739
+ - Put quote around usernames in HTML output
+ Closes: #333742
+ - Properly notice when we've got a blank password to SQL
+ Closes: #333744
+ - Created 12_dialup_admin_various_fixes
+ * Stop using libtool1.4 to build against, now that we can't have it and
+ libltdl3-dev installed at the same time
+ Closes: #279391
+ - Created 13_a_libtool14_to_call_your_own to get most recent ltmain.sh
+
+ -- Paul Hampson <Paul.Hampson@anu.edu.au> Sun, 16 Oct 2005 21:26:30 +1000
+
+freeradius (1.0.5-1) unstable; urgency=high
+
+ * Urgency high for security fixes below, all reported upstream
+ * ReDebianise upstream tarball:
+ - Deleted RFCs: 2243 2289 2433 2548 2618 2619 2620 2621 2716 2759 2809 2865
+ 2866 2867 2868 2869 2882 2924 3162 3575 3576 3579 3580
+ draft-kamath-pppext-eap-mschapv2-00
+ * Add missed build-dependancy on dpatch (>=2)
+ * Update to Standards-Version 3.6.2.0
+ - No changes needed
+ * Repair some minorly broken manpages
+ - Created 07_manpage_fixups.dpatch
+ * Security fixes stolen from CVS release_1_0 branch:
+ - Be sure we use crypt.h if we have it, to avoid segfaulting on a
+ bad built-in crypt() definition, spotted by Konstantin Kubatkin
+ + Created 09_use_crypth_if_we_have_it
+ - Make sure we escape the entire LDAP string, instead of
+ aborting as soon as it becomes possible to be out of space
+ + Created 10_escape_entire_ldap_string
+ - Don't xlat the UserName attribute before we can be sure of meeting
+ any escape sequences it may contain, spotted by Primoz Bratanic
+ + Created 11_dont_xlat_possibly_bad_usernames_in_bad_accounting_packets
+ * Depend on adduser, so our postinst can create the freerad user
+ * Don't install the .in versions of the example scripts.
+
+ -- Paul Hampson <Paul.Hampson@anu.edu.au> Mon, 19 Sep 2005 15:10:40 +1000
freeradius (1.0.5-0) unstable; urgency=low
Closes: #326891
-- Paul Hampson <Paul.Hampson@anu.edu.au> Wed, 7 Sep 2005 01:08:07 +1000
-
+
freeradius (1.0.4-2) unstable; urgency=low
* Fix my email address in the dpatches
* Build-depend on libmysqlclient12-dev as libmysqlclient10 has problems
accessing 4.0 series mySQL servers, and libmysqlclient12 can access
4.1 series mySQL servers.
-
+
-- Paul Hampson <Paul.Hampson@anu.edu.au> Fri, 4 Mar 2005 09:30:40 +1100
freeradius (1.0.2-0) unstable; urgency=low
- No changes needed
-- Paul Hampson <Paul.Hampson@anu.edu.au> Sun, 9 Nov 2003 00:07:52 +1100
-
+
freeradius (0.9.2-1) unstable; urgency=low
* Deleted RFCs: 2243 2289 2433 2548 2618 2616 2620 2621
-- Paul Hampson <Paul.Hampson@anu.edu.au> Sun, 20 Jul 2003 06:56:28 +1000
radiusd-freeradius (0.7+cvs20021113-1) unstable; urgency=low
-
+
* Explicitly excluding modules not in the "stable" list.
* Updated policy version number.
* Moved from non-US/main to main.
* Put pidfile in package's own directory.
- * Package not as buggy and unstable modules are easily identifiable.
+ * Package not as buggy and unstable modules are easily identifiable.
(closes: Bug#142217)
* Init script handles failure better. (closes: Bug#151264)
* New upstream release. (closes: Bug#140536)
radiusd-freeradius (0.5+cvs20020408-1) unstable; urgency=high
- * New build-dep on libssl-dev, which is implied by another dep, but making
+ * New build-dep on libssl-dev, which is implied by another dep, but making
explicit for builders on Potato. (closes: Bug#131832)
- * Built against new postgresql libraries, so automatic dep tracking has
+ * Built against new postgresql libraries, so automatic dep tracking has
the correct version, now. (closes: Bug#139290)
* Removed python example module.
* Explicitly disabled beta ippool module.
* Fixed permissions of log files. (closes: Bug#116242,#116243)
* Close file descriptors of stdin, stdout, stderr, if not debugging.
(closes: Bug#116768)
- * Made package "non-native". (An upload issue, not code.)
+ * Made package "non-native". (An upload issue, not code.)
(closes: Bug#119161)
-- Chad Miller <cmiller@debian.org> Tue, 20 Nov 2001 10:50:20 -0500
* Added user 'freerad' into the 'shadow' group.
* Fixed UUCP-style of restricting time of log-in.
* Changed debugging messages to give more info about execution flow.
- * Better counter module.
+ * Better counter module.
* Inserted CHAP support for SQL modules.
* Removed possible infinite loop.