===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/73.html,v
retrieving revision 1.41
retrieving revision 1.42
diff -u -r1.41 -r1.42
--- www/73.html 2023/04/06 21:46:05 1.41
+++ www/73.html 2023/04/06 22:22:15 1.42
@@ -946,6 +946,11 @@
non-optional X.509 notBefore, and X.509 notAfter timestamps.
+
Updated zlib to 1.2.13.
+
+ Fixed a long-standing bug in a libreadline header that broke the
+ interactive Python command line interface.
+
Switched tftpd(8) to
default to read-only unless -w is specified for write access (the
previous default).
@@ -1003,22 +1008,30 @@
Do not test the connection in non-interactive mode. The test
writes characters to the socket which can corrupt data that is
possible piped into nc.
+ Some refactoring and code cleanup.
- Further changes:
+ Improvements in
+ acme-client(1):
- - Added support for newlines inside the alternative names block in
- acme-client.conf.
-
- Made acme-client(1) use
- time checks which eliminate time-zone variation.
-
- Encode Subject Alternative Name (SAN) entries before printing in acme-client(1).
-
- Prevent acme-client(1) from
- leaking an http get request when receiving a redirect without a
+
- Added support for newlines inside the alternative names block in
+ acme-client.conf(5).
+
- Use proper data structures for retrieving subject alternative names in
+ certificates rather than printing them to a buffer and tokenizing and
+ parsing the undocumented string.
+
- Simplified, corrected and modernized the use of libcrypto interfaces.
+
- Plugged various memory leaks.
+
- Use ASN1_TIME_to_tm(3)
+ instead of a poor man's hand-rolled version of it.
+
- Use timegm(3)
+ instead of mktime(3)
+ to eliminate time-zone variation.
+
- Encode Subject Alternative Name (SAN) entries before printing.
+
- Prevent acme-client(1)
+ from leaking an http get request when receiving a redirect without a
location header.
+
+
Prevented smtpd(8)
abort due to a connection from a local, scoped ipv6 address.