+Ver 1.70.2:
+* Fix redirects in dialup-admin pages on servers with register_globals
+ turned off.
+* HTTP form fields will always fail is_int, use in_numeric instead.
+
+Ver 1.70.1:
+* Report correct data transfer statistics for users
+* Lower-case sql column names to match creation scripts
+* Fix creation of empty groups
+* Put quote around usernames in HTML output
+* Properly notice when we've got a blank password to SQL
+
+Ver 1.70:
+* Add the /bin postgresql compatibility patch from Guy Fraser
+* Add ldap_userdn as a configuration directive. If set we use that for
+ user DN's (variables supported) instead of performing and ldap search for
+ each user. That can be somewhat faster.
+* Add a check_user_passwd() and a get_user_dn() functions in lib/ldap/functions.php3
+* Add general_restrict_badusers_access directive. If set to yes we only allow each administrator
+ access to their own entries in the badusers table
+* Add a username.mappings table. We are able to map each administrator username to additional queries
+ on the accounting and user settings tables.
+* Add an sql_accounting_extra_query directive. If set this query is included in all
+ queries to the accounting tables.
+ Combined with admin username mappings we are able to easily restrict access on specific accounting data
+ to each administrator.
+* Escape bad characters in the $login variable
+* Add a da_sql_escape_string function. We use that for every element we pass to sql queries in order to
+ protect ourselves from sql injection.
+* Use the ldap_userdn directive where applicable in the functions.php3 file
+* Add an sql_xlat function
+* Add a nas administration page for sql based clients
+* Fix small bugs in accounting.php3 and user_stats.php3. Add nas_admin.php3 to the buttons page
+* Add da_sql_escape_string for all relevant variables in lib/sql files
+* Keep the nas list in a separate array $nas_list. Update various pages to use that one now.
+* Make nas_list actually work
+* Also allow for '-' to exist in a nas name in bin/log_badlogins
+
Ver 1.68:
* Huge PostgreSQL compatibility patch by Guy Fraser <guy@incentre.net>
* Also support the Crypt-Password attribute in lib/sql/password_check.php3. Patch by Guy Fraser <guy@incentre.net>
+* Small fix in user_finger.php3
+* Add the ability to erase rows from the badusers table
+* In log_badlogins for multiple logins if it is a mppp attempt, log it
+* Add a message when adding a user in the badusers table
+* Close sql connections in add_badusers.php3
+* Add a patch from Neil McCalden to not put spaces in the -p argument to the mysql binary.
+* Fix a bug in conf/config.php3. Patch from Neil McCalden
+* In log_badlogins add a newline after every sql query so that the resulting file can be editable
+* Add a force directive in log_badlogins. If uncommented it will force inserts even if there are
+ sql errors. That can help in case there is one sql query which stops the whole failed logins
+ logging system from working
+* Sort the servers list in failed_logins,user_stats,stats
Ver 1.65:
* Add a captions.conf file with a few configurable captions for now
* Move the nas list to a separate file called naslist.conf
projects / freeradius.git / blobdiff