===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/plus.html,v
retrieving revision 1.855
retrieving revision 1.856
diff -u -r1.855 -r1.856
--- www/plus.html 2003/01/06 09:03:30 1.855
+++ www/plus.html 2003/01/18 20:05:08 1.856
@@ -50,10 +50,85 @@
We are working on OpenBSD-current.
-The following list sums up (almost) all the changes made up to January 4.
+The following list sums up (almost) all the changes made up to January 17.
+- Unbreak pf(4) nat random source port assignment. Now a rule has to actually ask for static-port in order to get it.
+
- Enable the pfctl(8) 'static-port' keyword.
+
- Extensive ld(1) changes to better protect ELF executables from tampering (see the checkin comment for details.)
+
- Add new output format option '-f' to ncheck_ffs(8).
+
- ncheck_ffs(8) no longer reports when the set[ug]id bits are set on directories, since these are meaningless in OpenBSD.
+
- Fix a missing YYERROR in the pfctl(8) parser.
+
+
- Deal with cd(4) drives that are picky about being asked to play the leadout track.
+
- Note with regret and sadness that the freely available PCI vendor and device list is no longer available.
+
- Bring protocols(5) more into line with current reality.
+
- More improvements and device additions to pciide(4).
+
+
- Explicity use the first path found by glob(3) instead of indexing with an uninitialised variable in sftp(1).
+
- Small fixes to whois(1).
+
- Create PIC archives for a number of X libs, useful for ports that create shared libraries.
+
- Stop nfsstat(1) displaying info for the no-longer-supported NQNFS protocol.
+
- Fix nfsstat(1)'s filesystem id lookup, and a minor buffer overrun.
+
- Fix some minor bugs in pf(4) radix table creation.
+
- Have pfctl(8) recognise the '-T load' option like it used to.
+
- Plug a memory leak in the pf(4) radix table code when using PFR_FLAG_DUMMY.
+
- For the benefit of dhclient(8), allow outbound pings from the initial pf(4) rulebase installed by rc(8).
+
+
- Pull all the IP address parsing code of pfctl(8) into one place.
+
- Goodbye libc_r and libnpthread, hello libpthread.
+
- Check for and report read errors in md5(1).
+
- Stop sftp(1) uploading or downloading non-regular files.
+
- /etc/weekly is now built (by default) in /var/tmp rather than /tmp.
+
+
- Add an extra sanity check in malloc(3) to prevent size_t overflows.
+
- Better input checking and error handling in the pf(4) radix tables code.
+
+
- Begin converting vmstat(8) with the -i option to use sysctl(3) instead of kvm.
+
- Start work on NVIDIA nForce support.
+
+
- pf(4) radix tables now understand CIDR-notation IPv4 addresses.
+
- Some command-line fixes and tweaks to rusers(1).
+
- Stop rm(1) with the -P option from overwriting files with multiple links.
+
+
- Fix handling of addition and subtraction of negated addresses to radix tables in pfctl(8).
+
- In ssh(1) only show the socket(2) error for the last address to which one tries to connect.
+
- Don't fill files full of holes with ftruncate(2) after a write error in rcp(1) and scp(1).
+
- Add a progress meter to the sftp(1) client.
+
+
- Remove fetch(9) and store(9) from the kernel, and replace calls to them with their copy(9) descendants.
+
- Various strl* return value checks in pfctl(8).
+
- Initial support for queue statistics display for pfctl(8) (-vsq option.)
+
- 'Default-Phase-1-Configuration' -> 'Default-phase-1-configuration', 'Default-Phase-2-Suites' -> 'Default-phase-2-suites' in isakmpd(8).
+
- New radix table manipulation syntax for pf.conf(5), and a corresponding new -Tl option for pfctl(8).
+
- Add support for active/inactive pf(4) radix tablesets in the kernel
+
+
- Enable SET/ACK in isakmpd(8) when acting as an ike-mode-cfg responder.
+
- Improvements and fixes to batch mode sftp(1).
+
+
- Big strlcpy/strlcat(3) makeover for csh(1).
+
- Stop compress(1) from clobbering an existing output file if the input can't be opened.
+
- gcc(1) attribute(sentinel) improvements.
+
- Improvements to whois(1): Can specify port with -p; recursive IP lookup; INICHOST (-i) is now netsol.
+
+
- Remove old altq packet-classifier code from the kernel now that pf(4) does its job instead.
+
+
- pfctl(8)'s string parser can handle strings beginning with an underscore, useful for all those new daemon usernames.
+
- Have authpf(8) clean up after failed previous incarnations of itself.
+
- Don't allow s[eh]mmni to be set (via the newish sysctl(8) interface) greater than 0xffff, to prevent id collisions due to wraparound.
+
- pf(4) radix tables now spring into and out of existence on demand.
+
- Fix the sudoers(5) parser's handling of EOF not preceded by newline.
+
- Stop sftp(1) from always adding u+w permissions to files pulled by get -p.
+
- Values set in sysctl.conf(5) can contain spaces when quoted as for sh.
+
- shmctl(2) can now operate on segments marked for removal.
+
- In compress(1), don't trip the 'may not mix -o, -c or -t' warning by mistake, and don't choke on stdin when compressing.
+
- Add mg(1) the +number option, which moves the point to the given line of each file.
+
- Correct a couple of {dup,reply,route}-to problems related to nat pools.
+
+
- Create a new group, _lkm, and install modstat(8) setgid to it instead of to kmem.
+
- pstat(8) now only does kvm_openfiles(3) for the -v option, the rest is obtained using sysctl(3).
+
- cp(1) sets permissions later, so -R works when copying directories with no write access.
- Fix a null deref in dlsym(3).
- Avoid a rare division-by-zero in ps(1) that could occur on non-IEEE systems like the vax.
@@ -609,7 +684,7 @@
www@openbsd.org
-
$OpenBSD: plus.html,v 1.855 2003/01/06 09:03:30 deraadt Exp $
+
$OpenBSD: plus.html,v 1.856 2003/01/18 20:05:08 deraadt Exp $