===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/49.html,v
retrieving revision 1.64
retrieving revision 1.65
diff -u -r1.64 -r1.65
--- www/49.html 2019/05/27 22:55:18 1.64
+++ www/49.html 2019/05/31 13:15:31 1.65
@@ -108,7 +108,7 @@
Improved hardware support, including:
- New vte(4)
- driver for RDC R6040 10/100 Ethernet devices.
+ driver for RDC R6040 10/100 Ethernet devices.
- New rdcphy(4)
driver for RDC Semiconductor R6040 10/100 Ethernet PHY.
- New rsu(4)
@@ -155,7 +155,7 @@
- Generic network stack improvements:
- Reworking of the MCLGETI livelock algorithm to improve
- forwarding and host performance under high network load.
+ forwarding and host performance under high network load.
- Added support for socket splicing; sockets can be temporarily connected so that the kernel moves data without userland intervention. This will be used by relayd(8) in the next release.
- Added AES-GCM support for IPsec.
- Added automatic send and receive buffer scaling for TCP.
@@ -166,19 +166,19 @@
improvements to IPsec performance under certain conditions.
- tcpdump(8) now decodes Multicast DNS (mDNS) traffic.
- Wake on Lan support has been added to arp(8).
-
- Enabled MPLS and mpe(4) by default on GENERIC kernels.
- - Added a mpls option to ifconfig(8) to enable MPLS on a per interface basis replacing the global sysctl knob.
+ - Enabled MPLS and mpe(4) by default on GENERIC kernels.
+
- Added a mpls option to ifconfig(8) to enable MPLS on a per interface basis replacing the global sysctl knob.
- OpenBGPD, OpenOSPFD and other routing daemon improvements:
- - bgpd(8) handles various message encoding errors more gracefully now.
- - Notification messages are now logged in bgpd(8).
- - ospfd(8) will now correctly redistribute overlapping routes.
- - ospfctl(8) now prints the LSDB checksum in the show summary output for quick verification that two LSDBs are in sync.
- - Fixed ldpd(8)'s message parser to work on all architectures and more LDP messages are now implemented.
- - Various improvements in ospf6d(8).
+ - bgpd(8) handles various message encoding errors more gracefully now.
+
- Notification messages are now logged in bgpd(8).
+
- ospfd(8) will now correctly redistribute overlapping routes.
+
- ospfctl(8) now prints the LSDB checksum in the show summary output for quick verification that two LSDBs are in sync.
+
- Fixed ldpd(8)'s message parser to work on all architectures and more LDP messages are now implemented.
+
- Various improvements in ospf6d(8).
- pf(4) improvements:
@@ -210,12 +210,12 @@
- SCSI improvements:
- Improved safety when detaching SCSI devices by waiting for
- the completion of pending commands.
+ the completion of pending commands.
- Improved hotplug support on mpi(4) and
- mpii(4).
+ mpii(4).
- Continued iopoolification of SCSI drivers, notably on
umass(4) which improves the
- reliability and performance of multi-LUN devices.
+ reliability and performance of multi-LUN devices.
- Added vscsi(4), a driver for
userland handling of SCSI device commands.
- Added iscsid(8), an iSCSI initiator.
@@ -314,41 +314,41 @@
- Implement Elliptic Curve Cryptography modes for key exchange (ECDH)
and host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA
offer better performance than plain DH and DSA at the same
- equivalent symmetric key length, as well as much shorter keys.
+ equivalent symmetric key length, as well as much shorter keys.
- sftp(1)
and
sftp-server(8):
add a protocol extension to support a hard link operation. It is
available through the "ln" command in the client. The old "ln"
behaviour of creating a symlink is available using its "-s" option
- or through the preexisting "symlink" command.
+ or through the preexisting "symlink" command.
- scp(1):
Add a new -3 option to scp: Copies between two remote hosts are
transferred through the local host. Without this option the data is
- copied directly between the two remote hosts.
+ copied directly between the two remote hosts.
- ssh(1):
automatically order the hostkeys requested by the client based on
which hostkeys are already recorded in known_hosts. This avoids
hostkey warnings when connecting to servers with new ECDSA keys,
since these are now preferred when learning hostkeys for the first
- time.
+ time.
- ssh(1)
and
sshd(8):
add a new IPQoS option to specify arbitrary TOS/DSCP/QoS values
- instead of hardcoding lowdelay/throughput. (bz#1733)
+ instead of hardcoding lowdelay/throughput. (bz#1733)
- sftp(1):
the sftp client is now significantly faster at performing directory
listings, using OpenBSD glob(3) extensions to preserve the results
of stat(3) operations performed in the course of its execution
rather than performing expensive round trips to fetch them again
- afterwards.
+ afterwards.
- ssh(1):
"atomically" create the listening mux socket by binding it on a
temporary name and then linking it into position after listen() has
succeeded. This allows the mux clients to determine that the server
socket is either ready or stale without races. Stale server sockets
- are now automatically removed. (also fixes bz#1711)
+ are now automatically removed. (also fixes bz#1711)
- ssh(1)
and
sshd(8):
@@ -358,7 +358,7 @@
ssh(1)
and
sshd(8)
- and their order of preference.
+ and their order of preference.
- sftp(1)
and
scp(1):
@@ -368,7 +368,7 @@
atomicio callback mechanism and use it to add a bandwidth
limit option to
sftp(1).
- (bz#1147)
+ (bz#1147)
- The following significant bugs have been fixed in this release:
@@ -376,37 +376,37 @@
and
ssh-agent(1):
honour $TMPDIR for client xauth and ssh-agent temporary
- directories. (bz#1809)
+ directories. (bz#1809)
- ssh(1):
avoid NULL deref on receiving a channel request on an
- unknown or invalid channel. (bz#1842)
+ unknown or invalid channel. (bz#1842)
- sshd(8):
remove a debug() that pollutes stderr on client connecting
- to a server in debug mode. (bz#1719)
+ to a server in debug mode. (bz#1719)
- scp(1):
pass through ssh command-line flags and options when doing
remote-remote transfers, e.g. to enable agent forwarding which is
- particularly useful in this case. (bz#1837)
+ particularly useful in this case. (bz#1837)
- sftp-server(8):
- umask should be parsed as octal.
+ umask should be parsed as octal.
- sftp(1):
- escape '[' in filename tab-completion.
+ escape '[' in filename tab-completion.
- ssh(1):
- Typo in confirmation message. (bz#1827)
+ Typo in confirmation message. (bz#1827)
- sshd(8):
prevent free() of string in .rodata when
- overriding AuthorizedKeys in a Match block.
+ overriding AuthorizedKeys in a Match block.
- sshd(8):
- Use default shell /bin/sh if $SHELL is "".
+ Use default shell /bin/sh if $SHELL is "".
- ssh(1):
kill proxy command on fatal() (we already killed it on
- clean exit).
+ clean exit).
- ssh(1):
install a SIGCHLD handler to reap expired child process.
- (bz#1812)
- - Support building against openssl-1.0.0a
+ (bz#1812)
+ - Support building against openssl-1.0.0a
- Fix vulnerability in legacy certificate signing introduced in
- OpenSSH-5.6 and found by Mateusz Kocielski.
+ OpenSSH-5.6 and found by Mateusz Kocielski.