===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/57.html,v
retrieving revision 1.62
retrieving revision 1.63
diff -c -r1.62 -r1.63
*** www/57.html 2015/03/12 21:25:55 1.62
--- www/57.html 2015/03/13 00:03:50 1.63
***************
*** 126,132 ****
Installer improvements:
- The etc and xetc sets are now part of base and
! xbase and are not distributed separately anymore. They are extracted
from base and xbase during installation and upgrade.
Note that this includes the rc and rc.conf files!
- The installer now supports
--- 126,132 ----
- Installer improvements:
- The etc and xetc sets are now part of base and
! xbase and are not distributed separately any more. They are extracted
from base and xbase during installation and upgrade.
Note that this includes the rc and rc.conf files!
- The installer now supports
***************
*** 189,195 ****
- All architectures have been transitioned to static PIE, meaning the statically linked binaries in /bin and /sbin now have randomly located text segments.
- Allow larger .openbsd.randomdata ELF segments.
- Sync kernel AES code and ssh(1) AES code to the one shipped with OpenSSL/LibreSSL.
!
- removed passwd(1) support for all password cyphers except blowfish(3)
- Use sha512 instead of md5 for tcp(4) initial sequence number.
- Use sha512 instead of md5 in the random number generator.
- Delete secret or secret-derived data in many base utilities with explicit_bzero(3).
--- 189,195 ----
- All architectures have been transitioned to static PIE, meaning the statically linked binaries in /bin and /sbin now have randomly located text segments.
- Allow larger .openbsd.randomdata ELF segments.
- Sync kernel AES code and ssh(1) AES code to the one shipped with OpenSSL/LibreSSL.
!
- removed passwd(1) support for all password ciphers except blowfish(3)
- Use sha512 instead of md5 for tcp(4) initial sequence number.
- Use sha512 instead of md5 in the random number generator.
- Delete secret or secret-derived data in many base utilities with explicit_bzero(3).
***************
*** 205,211 ****
the compatibility layer for other operating systems has been removed.
The API is still compatible with upstream libevent 1.4.15-stable.
- openssl(1)
! s_client got a -proxy parameter for connecting over a HTTP proxy.
- Ground work laid for improved SMP scalability.
- gzsig has been removed.
- switch last workq API uses to
--- 205,211 ----
the compatibility layer for other operating systems has been removed.
The API is still compatible with upstream libevent 1.4.15-stable.
- openssl(1)
! s_client now supports a -proxy parameter for connecting over a HTTP proxy.
- Ground work laid for improved SMP scalability.
- gzsig has been removed.
- switch last workq API uses to
***************
*** 268,274 ****
- OpenBSD httpd(8):
! - SSLv2/3 is not supported anymore; renamed all occurrences of "SSL" to "TLS".
- Various TLS improvements with better support for ECDHE/DHE forward secrecy.
- Improved support for virtual hosts by supporting name- and IP- based aliases.
- Added support for basic authentication by checking against files created with htpasswd(1).
--- 268,274 ----
- OpenBSD httpd(8):
! - SSLv2/3 is not supported any more; renamed all occurrences of "SSL" to "TLS".
- Various TLS improvements with better support for ECDHE/DHE forward secrecy.
- Improved support for virtual hosts by supporting name- and IP- based aliases.
- Added support for basic authentication by checking against files created with htpasswd(1).
***************
*** 283,289 ****
- OpenSMTPD 5.4.4:
! - SSLv3 is not supported anymore.
- Added support for a new message and headers parser.
- Added support for append-domain.
- Restricted address lookups to configured address families.
--- 283,289 ----
- OpenSMTPD 5.4.4:
! - SSLv3 is not supported any more.
- Added support for a new message and headers parser.
- Added support for append-domain.
- Restricted address lookups to configured address families.