From bryan@stansell.org Mon Sep 23 15:05:46 2002 Received: from underdog.stansell.org (localhost [127.0.0.1]) by underdog.stansell.org (8.12.6/8.12.6) with ESMTP id g8NM5kKW002489; Mon, 23 Sep 2002 15:05:46 -0700 (PDT) Received: (from bryan@localhost) by underdog.stansell.org (8.12.6/8.12.6/Submit) id g8NM5k8k002488; Mon, 23 Sep 2002 15:05:46 -0700 (PDT) Date: Mon, 23 Sep 2002 15:05:45 -0700 From: Bryan Stansell To: announce@conserver.com, users@conserver.com Subject: conserver 7.2.3 and LISA 2002 Message-ID: <20020923220545.GA26964@underdog.stansell.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4i Sender: announce-admin@conserver.com Errors-To: announce-admin@conserver.com X-BeenThere: announce@conserver.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Conserver Announcements List-Unsubscribe: , List-Archive: First, I'd like to say there are quite an array of changes going into 7.2.3. Bug fixes (like the fixes for duplicate console names and bad conditionals in the code) and new features (PAM support [basic tests done on Solaris 8 and RedHat Linux 7.2] and the new -F option) are exciting to me. I hope folks enjoy the new version. As always, if you find problems, please let me know. Second, I wanted folks to know that I'm planning on being at the LISA conference this year (Nov 3-8, http://www.usenix.org/events/lisa02/). Well, one part, anyway. Specifically, there are plans of having a conserver BOF (like two years ago), and I'm planning on being there (a lot of great things came out of the BOF and went into the code last time). If you're either going to the conference or just in the neighborhood (Philadelphia), it would be a blast to see you there! I'll be more than happy to talk about conserver or my current occupation of traveling full-time out of a backpack (tips on places to visit throughout the world greatly appreciated - and if you have pictures, even better). I'll give you one guess as to why I'm not attending the rest of the conference. ;-) As always, to wrap up, here's the complete list of changes... version 7.2.3 (Sep 23, 2002): - checking for duplicate console names got lost in the major 7.2.0 rewrite of that code. it's back now, with a couple of other edge-case fixes i noticed while scanning the code - reported by Dave Stuit - added --with-pam and PAM authentication support - suggested by Stu May - added -F server option to prevent automatic reinitialization of failed consoles ('|' syntax consoles which exit with a zero status are still reinitialized) - requested by William P LePera and Malcolm Gibbs - successful automatic reinitialization of consoles now attaches a client that wants read-write mode - added read-only client wish to become read-write in -i output - moved to autoconf-2.54 and fixed some small configure.in bugs Many thanks to John R. Jackson for the following fixes, cleanups, and enhancements... - "lost timestamps" bug (SIGALRM/sleep()/usleep()/tcp_wrapper interaction) - compiler warnings, bad fileOpenFD tests, and ability to use a colon after an equal in the config file (LOGDIR=C:\Logs) - autologin fix for Solaris BSM support Bryan Stansell From bryan@stansell.org Sun Sep 29 15:32:06 2002 Received: from underdog.stansell.org (localhost [127.0.0.1]) by underdog.stansell.org (8.12.6/8.12.6) with ESMTP id g8TMW5KW014165; Sun, 29 Sep 2002 15:32:06 -0700 (PDT) Received: (from bryan@localhost) by underdog.stansell.org (8.12.6/8.12.6/Submit) id g8TMW5So014164; Sun, 29 Sep 2002 15:32:05 -0700 (PDT) Date: Sun, 29 Sep 2002 15:32:05 -0700 From: Bryan Stansell To: users@conserver.com, announce@conserver.com Subject: alpha OpenSSL patches available Message-ID: <20020929223205.GA8576@underdog.stansell.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4i Sender: announce-admin@conserver.com Errors-To: announce-admin@conserver.com X-BeenThere: announce@conserver.com X-Mailman-Version: 2.0.13 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Conserver Announcements List-Unsubscribe: , List-Archive: I've made the first round of OpenSSL patches (that is, support for OpenSSL within conserver) available. You can find them at ftp://ftp.conserver.com/conserver/openssl-patches/ or http://www.conserver.com/openssl-patches/ in the file 7.2.3-to-7.2.4-alpha1.patch. I want to warn folks again that's it's a very basic implementation of the SSL bits. There is no certificate exchange, and there are more than likely many ways to make the code crash (both client and server). But, I have successfully make the new code do it's thing (encrypted connections) as well as talk to the old code (7.2.3) non-encrypted. It's surprisingly functional, but I can't guarantee you won't make it choke immediately or that it won't leak memory like a sieve. With the first level of functionality there, I'll be looking into these types of things next. But, I wanted it available so that interested folks could look and play and hopefully point out all the bad things I did (or didn't do) with the OpenSSL API. Here's the CHANGES file additions, to show what I've got... version 7.2.4 (): - added --with-openssl for client/server encryption - added -E option to client and server to allow for non-encrypted connections (encryption is the default if compiled in) - expanded -V output to show what optional bits actually got compiled into the code (libwrap, regex, etc) Bryan Stansell