+Ver 1.70.2:
+* Fix redirects in dialup-admin pages on servers with register_globals
+ turned off.
+* HTTP form fields will always fail is_int, use in_numeric instead.
+
+Ver 1.70.1:
+* Report correct data transfer statistics for users
+* Lower-case sql column names to match creation scripts
+* Fix creation of empty groups
+* Put quote around usernames in HTML output
+* Properly notice when we've got a blank password to SQL
+
+Ver 1.70:
+* Add the /bin postgresql compatibility patch from Guy Fraser
+* Add ldap_userdn as a configuration directive. If set we use that for
+ user DN's (variables supported) instead of performing and ldap search for
+ each user. That can be somewhat faster.
+* Add a check_user_passwd() and a get_user_dn() functions in lib/ldap/functions.php3
+* Add general_restrict_badusers_access directive. If set to yes we only allow each administrator
+ access to their own entries in the badusers table
+* Add a username.mappings table. We are able to map each administrator username to additional queries
+ on the accounting and user settings tables.
+* Add an sql_accounting_extra_query directive. If set this query is included in all
+ queries to the accounting tables.
+ Combined with admin username mappings we are able to easily restrict access on specific accounting data
+ to each administrator.
+* Escape bad characters in the $login variable
+* Add a da_sql_escape_string function. We use that for every element we pass to sql queries in order to
+ protect ourselves from sql injection.
+* Use the ldap_userdn directive where applicable in the functions.php3 file
+* Add an sql_xlat function
+* Add a nas administration page for sql based clients
+* Fix small bugs in accounting.php3 and user_stats.php3. Add nas_admin.php3 to the buttons page
+* Add da_sql_escape_string for all relevant variables in lib/sql files
+* Keep the nas list in a separate array $nas_list. Update various pages to use that one now.
+* Make nas_list actually work
+* Also allow for '-' to exist in a nas name in bin/log_badlogins
+
+Ver 1.68:
+* Huge PostgreSQL compatibility patch by Guy Fraser <guy@incentre.net>
+* Also support the Crypt-Password attribute in lib/sql/password_check.php3. Patch by Guy Fraser <guy@incentre.net>
+* Small fix in user_finger.php3
+* Add the ability to erase rows from the badusers table
+* In log_badlogins for multiple logins if it is a mppp attempt, log it
+* Add a message when adding a user in the badusers table
+* Close sql connections in add_badusers.php3
+* Add a patch from Neil McCalden to not put spaces in the -p argument to the mysql binary.
+* Fix a bug in conf/config.php3. Patch from Neil McCalden
+* In log_badlogins add a newline after every sql query so that the resulting file can be editable
+* Add a force directive in log_badlogins. If uncommented it will force inserts even if there are
+ sql errors. That can help in case there is one sql query which stops the whole failed logins
+ logging system from working
+* Sort the servers list in failed_logins,user_stats,stats
+Ver 1.65:
+* Add a captions.conf file with a few configurable captions for now
+* Move the nas list to a separate file called naslist.conf
+* Add the ability to include configuration files in admin.conf
+* Add a page for clearing open sessions from the database called clear_opensessions.php3. Add it in the
+ user toolbar
+* Move the userinfo page of user_admin to a separate file so that it can be easily changed to
+ fit per installation needs
+* Add a conf/accounting.attrs allowing the customization of the attributes in the user_accounting,
+ user_finger and failed_logins pages
+* Add a directive to determine if the administrator will be able to change the user password from
+ the user edit page
+* Call mysql_escape_string before running the sql query
+* Use the sql_connect_timeout for the mysql driver
+* Add a help page for the badusers table
+* Also take the Session-Timeout in consideration when calcualting the remaining time in user_admin.php3
+* Add regex matching in log_badlogins and don't expect the callerid to always be in numeric format
+* Small html corrections in user_toolbar.html.php3
+* Add a HOWTO from Paris Stamatopoulos
+* create a doc directory and move the documentation files there
+* Add a note about the HOWTO in the README file
+* Add a few help pages for the nomadix radius attributes by Ulrich Walcher
+* Update the HOWTO with instructions about the ldap configuration directives and the scripts in the bin folder
+* Update the AUTHORS file
+* Check for the binaries used (mysql/snmpwalk) in the scripts in the bin folder before using them
+* Update the HOWTO file
+* Use the general_domain variable from the admin.conf file in log_badlogins instead of a new one
+* Add a sql_command directive in admin.conf containing the path to the mysql binary. That can be used by the
+ scripts in the bin folder instead of setting a variable in each script
+* Add a general_nas_type and a per nas type directive and pass that to snmpfinger. Updated snmpfinger to also
+ support lucent equipment apart from cisco
+* Update the HOWTO file with a few comments on the general_nas_type directive
+* Use the User-Password attribute instead of Password in user_test.php3
Ver 1.63:
* Do an eval on the attribute description strings in the user_edit page. That will allow the login-time creation
page to work properly.
* Show correct calculation of the montlhy usage time.
* Don't show an account as locked if Dialup-Access does not exist and the mapping corresponds to 'none' attribute
* Make clean_radacct and truncate_radacct work correctly
+* Fix a small bug in bytes2str. It will now also show GBs if appropriate
+* Add an entry about the failed_logins page
+* Update the help page for the lock message attribute
+* Update the badusers page to also use the general_accounting_info_order directive
Ver 1.62:
* Remove one sql query from user_admin which was not needed.
* Instead of a query like "LIKE 'YYYY-MM-DD%'" use "AcctStopTime >= 'YYYY-MM-DD 00:00:00 AND AcctStopTime
projects / freeradius.git / blobdiff