proftp-docs — List for documentation maintainers

[Proftpd-docs] CVS: www.proftpd.org/include header.epl,1.37,1.38

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org/include
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv4848/include

Modified Files:
	header.epl 
Log Message:

Updating website with news, MD5 checksums, PGP sigs of 1.3.2b, 1.3.3rc2
releases.


Index: header.epl
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/include/header.epl,v
retrieving revision 1.37
retrieving revision 1.38
diff -C2 -r1.37 -r1.38
*** header.epl	1 Jul 2009 03:17:15 -0000	1.37
--- header.epl	20 Oct 2009 21:38:10 -0000	1.38
***************
*** 18,38 ****
  <div id="menu">
    <h1>Current Versions</h1>
!   Stable: <strong>1.3.2a</strong>
    <div class="indent">
!     <span class="nowrap">[ <a href="/docs/RELEASE_NOTES-1.3.2a">RELEASE_NOTES</a> ]</span>
    </div>
    <div class="indent">
!     <span class="nowrap">[ <a href="/docs/NEWS-1.3.2a">NEWS</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.2a.tar.gz">gz</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.2a.tar.bz2">bz2</a> ]</span>
    </div>
!   Release Candidate: <strong>1.3.3rc1</strong>
    <div class="indent">
!     <span class="nowrap">[ <a href="/docs/RELEASE_NOTES-1.3.3rc1">RELEASE_NOTES</a> ]</span>
    </div>
    <div class="indent">
!     <span class="nowrap">[ <a href="/docs/NEWS-1.3.3rc1">NEWS</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.3rc1.tar.gz">gz</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.3rc1.tar.bz2">bz2</a> ]</span>
    </div>
  
--- 18,38 ----
  <div id="menu">
    <h1>Current Versions</h1>
!   Stable: <strong>1.3.2b</strong>
    <div class="indent">
!     <span class="nowrap">[ <a href="/docs/RELEASE_NOTES-1.3.2b">RELEASE_NOTES</a> ]</span>
    </div>
    <div class="indent">
!     <span class="nowrap">[ <a href="/docs/NEWS-1.3.2b">NEWS</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.2b.tar.gz">gz</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.2b.tar.bz2">bz2</a> ]</span>
    </div>
!   Release Candidate: <strong>1.3.3rc2</strong>
    <div class="indent">
!     <span class="nowrap">[ <a href="/docs/RELEASE_NOTES-1.3.3rc2">RELEASE_NOTES</a> ]</span>
    </div>
    <div class="indent">
!     <span class="nowrap">[ <a href="/docs/NEWS-1.3.3rc2">NEWS</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.3rc2.tar.gz">gz</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.3rc2.tar.bz2">bz2</a> ]</span>
    </div>
  

[Proftpd-docs] CVS: www.proftpd.org/docs NEWS-1.3.2b, NONE, 1.1 NEWS-1.3.3rc2, NONE, 1.1 RELEASE_NOTES-1.3.2b, NONE, 1.1 RELEASE_NOTES-1.3.3rc2, NONE, 1.1

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org/docs
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv3727

Added Files:
	NEWS-1.3.2b NEWS-1.3.3rc2 RELEASE_NOTES-1.3.2b 
	RELEASE_NOTES-1.3.3rc2 
Log Message:

Adding NEWS, RELEASE_NOTES files for 1.3.2b, 1.3.3rc2.


--- NEW FILE ---
$Id: NEWS-1.3.2b,v 1.1 2009/10/20 21:31:09 castaglia Exp $

-----------------------------------------------------------------------------
  More details on the bugs listed below can be found by using the bug number
  indicated in the following URL:

    http://bugs.proftpd.org/show_bug.cgi?id=N

  where `N' is the bug number.
-----------------------------------------------------------------------------

1.3.2b - Released 20-Oct-2009
--------------------------------
- Bug 3221 - Fixed regression causing command-line -D/--define options not
  to work.
- Bug 3275 - Improper SSL/TLS certificate subjectAltName verification.
- Bug 3282 - With "SQLNegativeCache on", mod_sql will look up wrong cached user
  value for subsequent USER commands.
- Bug 3284 - Slower transfers of multiple small file transfers after upgrade
[...1988 lines suppressed...]
- sendfile() deprecates politely on Linux 2.0.x.
- AuthPAMAuthoritative now defaults to False.  This should clear up any
  confusion on using PAM with AuthUserFile and friends.
- Removed Bandwidth from the documentation.
- Fixed a rare segfault in mod_auth.
- Logging has changed slightly to be more informative and more consistent.
    All messages that get logged are now preceded with
    <virtualhost> (remote host[remote ip]).
- mod_ldap for authentication against LDAP directories is now in place.
- ftpwho/ftpcount -- a grammatical error corrected, and they now build
    as seperate binaries.
- Fixed the 'no names, just UIDs' bug.
- Added genuser.pl to facilitate AuthUserFile entry creation.
- Umask now takes an optional second argument, specifying a directory umask.
- Work around FreeBSD's broken setpassent(), and a new option to override
    this in fixed versions of FreeBSD's libc (--enable-force-setpassent).
- Generate RPMs for both inetd and standalone versions of ProFTPD.
- Added AuthUsingAlias to allow for more fine-grain control of anonymous
    logins.
- Added support for 'TYPE L 8' and 'TYPE L 7' per RFC 959.

--- NEW FILE ---
$Id: NEWS-1.3.3rc2,v 1.1 2009/10/20 21:31:09 castaglia Exp $

-----------------------------------------------------------------------------
  More details on the bugs listed below can be found by using the bug number
  indicated in the following URL:

    http://bugs.proftpd.org/show_bug.cgi?id=N

  where `N' is the bug number.
-----------------------------------------------------------------------------

1.3.3rc2 - Released 20-Oct-2009
--------------------------------
- Bug 3263 - Supplying option SFTPRekey timeout parameter causes segmentation
  fault.
- Bug 3265 - SFTP requests are logged to ExtendedLog without regard to classes.
- Bug 2758 - ProFTPD doesn't always pay attention to AccessDenyMsg.
- Bug 3266 - Support "implicit" FTPS.
- Bug 2070 - AuthAliasOnly off in <Global> section kills anonymous logins.
[...2122 lines suppressed...]
- sendfile() deprecates politely on Linux 2.0.x.
- AuthPAMAuthoritative now defaults to False.  This should clear up any
  confusion on using PAM with AuthUserFile and friends.
- Removed Bandwidth from the documentation.
- Fixed a rare segfault in mod_auth.
- Logging has changed slightly to be more informative and more consistent.
    All messages that get logged are now preceded with
    <virtualhost> (remote host[remote ip]).
- mod_ldap for authentication against LDAP directories is now in place.
- ftpwho/ftpcount -- a grammatical error corrected, and they now build
    as seperate binaries.
- Fixed the 'no names, just UIDs' bug.
- Added genuser.pl to facilitate AuthUserFile entry creation.
- Umask now takes an optional second argument, specifying a directory umask.
- Work around FreeBSD's broken setpassent(), and a new option to override
    this in fixed versions of FreeBSD's libc (--enable-force-setpassent).
- Generate RPMs for both inetd and standalone versions of ProFTPD.
- Added AuthUsingAlias to allow for more fine-grain control of anonymous
    logins.
- Added support for 'TYPE L 8' and 'TYPE L 7' per RFC 959.

--- NEW FILE ---
                    1.3.2 Release Notes
                  ------------------------

This file contains a description of the major changes to ProFTPD for the
1.3.2 release cycle, from the 1.3.2rc1 release to the 1.3.2 maintenance
releases.  More information on these changes can be found in the NEWS and
ChangeLog files.

1.3.2b (maintenance)
---------------------

  + Bug and regression fixes.


1.3.2a (maintenance)
---------------------

  + Added French, Bulgarian, Korean translations.

  + Various bug and regression fixes.


1.3.2 (stable)
---------------

  + Security fixes

    Fixed encoding-dependent SQL injection vulnerability in mod_sql_mysql
    and mod_sql_postgres modules.


1.3.2rc4
---------

  + Fixed %f logging, HiddenStore and UserOwner not working (Bug#3137).

  + Added Russian translation.

  + New documentation:

      doc/howto/Compiling.html
      doc/howto/Rewrite.html
      doc/howto/Sendfile.html


1.3.2rc3
---------

  + Fixed character set/encoding support on FreeBSD.

  + Fixed mod_sql authentication regression (Bug#2922)

  + Start of a regression testsuite.  Currently have basic unit tests for
    most FTP commands, and a few of the configuration directives.  See
    the Testing howto for more information.

  + Fixed variable substitution in user/group names in SQL queries.

  + Lowered the default TimeoutLinger value from 180 secs to 30 secs,
    for better interoperability.  Many FTP clients have a timeout of
    60 secs, waiting for a response from the server, before the client
    closes the control connection.  ProFTPD's lingering closes should
    thus not be longer than 60 secs, to avoid hitting those clients'
    timeout limit.

  + Fixed several issues related to aborting of downloads.

  + New documentation:

      doc/howto/Testing.html
      doc/howto/Translations.html


1.3.2rc2
---------

  + Added Chinese translation.

  + Fixed handling of SSL/TLS session shutdowns on data connections.  This
    issue was causing problems for users of recent FileZilla versions which
    insisted on proper SSL/TLS session shutdowns.

  + Fixed file descriptor leak when using syslog logging.

  + Fixed syslog logging on Mac OSX platforms.

  + Attempted to address the following message in system log files:

      warning: `proftpd' uses 32-bit capabilities (legacy support in use)

    by having mod_cap use the libcap version numbers provided by newer
    Linux kernels.  See doc/modules/mod_cap.html for more details.

  + Added new `prxs' tool, for compiling and installing third-party
    modules without needing the proftpd source code.  See
    doc/howto/DSO.html for more information.

  + Added sendfile support for Mac OSX 10.5.


1.3.2rc1
---------

  + Added pkgconfig file

    As part of the process of installing proftpd from source, a proftpd.pc
    file, suitable for use by the common `pkg-config' tool, is provided.
    This proftpd.pc file is installed into the <install-dir>/lib/pkgconfig/
    directory.

    See http://pkgconfig.freedesktop.org/ for more details.

  + IPv6 support is enabled by default.  To disable at build time, use:

      ./configure --disable-ipv6 ...

    And to disable IPv6 support at runtime, use:

      UseIPv6 off

    in your proftpd.conf

  + Changed command-line behavior:

      The -vv command-line option currently shows only the static modules,
      e.g.:

        - ProFTPD Version: 1.3.0 (stable)
        -   Scoreboard Version: 01040002
        -   Built: mar gen 2 10:57:47 CET 2007
        -     Module: mod_core.c
        -     Module: mod_xfer.c
        -     Module: mod_auth_unix.c
        -     Module: mod_auth_file.c
        ...

      Now, the -vv command-line option will show all modules, static *and*
      shared:

        ProFTPD Version: 1.3.0 (stable)
        Scoreboard Version: 01040002
        Built: Thu Jun 14 14:13:37 UTC 2007

        Loaded modules:
          mod_ifsession.c
          mod_tls/2.1.1
          mod_cap/1.0
          ...

       Note that the output format has changed slightly (no leading " - ").
       The -l command-line option can be used to list just the static
       modules.

       Also note that order of the module listed via -vv shows the order
       in which the core proftpd engine calls each module, i.e. the modules
       are listed in module order.

  + New configuration directives:

      AuthPAMOptions

        Some PAM modules need the PAM_TTY item to be set; the mod_auth_pam
        module now sets the PAM_TTY item, unless the following configuration
        is used:

          AuthPAMOptions NoTTY

        This configuration should not be necessary, and is only supported
        as a safeguard.

      MaxTransferPerHost

        This directive configures a limit on the maximum number of
        simultaneous data transfers (uploads/downloads) for a given
        host.

      MaxTransfersPerUser

        This directive configures a limit on the maximum number of
        simultaneous data transfers (uploads/downloads) for a given
        user name, regardless of the number of clients using that user name.

      TLSVerifyOrder

        This directive is part of the support for the Online Certificate
        Status Protocol (OCSP) in the mod_tls module.  See
        doc/contrib/mod_tls.html#TLSVerifyOrder for details.

      TransferPriority

        This directive can be used to change the process priority while
        the session process is handling a data transfer.  Using this
        directive, data transfers can be given lower/higher priorities
        than other processes on the system, depending on the site needs.

      UseEncoding

        The mod_lang module can how support encodings other than just
        UTF8 for the control connection FTP commands and responses.  See
        doc/modules/mod_lang.html#UseEncoding for additional information.

  + New contrib scripts:

      Added contrib/ftpmail, a Perl script which reads a TransferLog FIFO and
      sends automatic email notifications whenever uploads occur.  See
      doc/contrib/ftpmail.html for more details.

  + Enhanced configuration directives:

      BanOnEvent ClientConnectRate

        Clients can now be banned if they connect too frequently; see
        doc/contrib/mod_ban.html#BanOnEvent

      LogFormat %f

        The %f LogFormat variable is now properly substituted for the
        RNFR, RNTO, SITE CHGRP, and SITE CHMOD commands.

      TimeoutIdle, TimeoutNoTransfer, TimeoutStalled

        These directives can now be used within <Anonymous> sections to
        specify different timeouts for anonymous sessions.

      TLSOptions EnableDiags

        The EnableDiags option configures mod_tls to be *much* more verbose,
        and to print diagnostics about the SSL/TLS protocol to the TLSLog.
        See doc/contrib/mod_tls.html#TLSOptions

      TLSRequired !data, ctrl+!data, auth+!data

        The various combinations for requiring SSL/TLS protection on
        control and data connections have increased.  More details can be
        found here: doc/contrib/mod_tls.html#TLSRequired

  + Deprecated configuration directives

      AnonymousGroup

        This directive is NOT recommended, and relies on a "special
        dynamic configuration" which is very confusing to users.  It will
        be removed in the 1.3.3 ProFTPD release cycle.

      UseUTF8

        This directive has been replaced by the UseEncoding directive.

  + New translations

      The FTP response messages used by proftpd have been translated into
      Italian.  To use translations, compile proftpd using:

        ./configure --enable-nls ...

      This builds the mod_lang module, in addition to installing the
      translated message catalogs for proftpd's use.  See
      doc/modules/mod_lang.html for more information.

  + New modules:

      mod_dynmasq

        Useful for sites using dynamic DNS and other similar services.
        This module automatically refreshes the IP address of the daemon,
        so that the correct address is communicated to clients i.e. via
        the MasqueradeAddress directive.  See the module documentation at:

          doc/contrib/mod_dynmasq.html

      mod_facts

        Implements the MLSD and MLST commands, as per RFC3659.  Also provides
        the MFF and MFMT commands from:

          http://www.ietf.org/internet-drafts/draft-somers-ftp-mfxx-03.txt
 
        Module documentation is available for mod_facts at:

          doc/modules/mod_facts.html

        This module is compiled in by default.

      mod_ident

        The RFC1413 "identification protocol" lookup was separated out of
        the main proftpd code and into this mod_ident module.  With this
        change, you can now choose to build proftpd without this support
        using:

          ./configure --disable-ident ..

        You can also choose to build mod_ident as a shared module, loadable
        as needed:

          ./configure --enable-dso --with-shared=mod_ident ...

        Module documentation is available for mod_ident at:

          doc/modules/mod_ident.html

        This module is compiled in by default.

      mod_sql_odbc

        This module is a mod_sql backend module which supports ODBC
        drivers.  See doc/contrib/mod_sql_odbc.html for more information.

      mod_sql_sqlite

        This module is a mod_sql backend module which uses SQLite as its
        backend database.  See doc/contrib/mod_sql_sqlite.html for details.

      mod_unique_id

        Generates a unique ID for every FTP session.  This ID can be
        written to log files and stored in databases, for tracking all of
        the activity associated with a particular FTP session.  See:

          doc/contrib/mod_unique_id.html

  + New documentation:

      doc/howto/ConfigurationTricks.html

  + Updated documentation:

      doc/howto/TLS.html

        Added instructions on how to use OpenSSL in FIPS mode; see
        doc/howto/TLS.html#TLSFIPS


Last Updated: $Date: 2009/10/20 21:31:09 $

--- NEW FILE ---
                    1.3.3 Release Notes
                  ------------------------

This file contains a description of the major changes to ProFTPD for the
1.3.3 release cycle, from the 1.3.3rc1 release to the 1.3.3 maintenance
releases.  More information on these changes can be found in the NEWS and
ChangeLog files.

1.3.3rc2
---------

  + When handling .ftpaccess files, proftpd was merging them into the
    main configuration such that the .ftpaccess files configurations would
    override the main configuration.  This was never the intended behavior,
    and has been fixed (Bug#3279).

    However, this does mean that sites which use .ftpaccess files may see
    a change in the behavior of their proftpd.

  + Changed scoreboard format (Bug#3286), need for "ServerType inetd"
    server to manually delete their old ScoreboardFiles.  Otherwise they
    will see "error opening scoreboard: bad version (too old)" errors.

  + Changed SQL connection policy (Bug#3290).  Important for clients which
    connect but don't authenticate (e.g. mod_ban, mod_dnsbl, mod_wrap2_sql,
    etc which will reject connected clients prior to authentication); saves
    on unnecessary database connections in such cases.  For sites which
    require the old behavior, there is a new "PERCONNECTION" connection
    policy.

    NOTE: If you are using mod_sql for logging purposes only, e.g. you have
    the following in your mod_sql config:

      SQLEngine log

    then this connection policy change may affect you.  If the database
    connection is opened after a chroot has occurred (via DefaultRoot or
    <Anonymous> login), the database connection may fail.  And since now
    the connection is delayed until first use, and the first use for logging
    may occur after the chroot, the logging may fail.  For such sites, then,
    you will need to use the "PERCONNECTION" connection policy explicitly.

  + Support for "implicit" FTPS.  To enable this, use:

      TLSOptions UseImplicitSSL

    WARNING: Using this setting will cause mod_tls to handle ALL connections
    to the vhost as implicit FTPS connections.  It is NOT possible to support
    both plain FTP (or explicit FTPS) clients AND implicit FTPS clients on the
    same address/port.  Therefore this setting should ONLY ever be used in
    order to support braindead/broken FTPS clients, and then only for as long
    as it takes to fix/replace those broken clients.

    Note that "implicit" FTPS was explicitly DROPPED from the RFC which
    defines FTP over SSL/TLS; the only clients which use this feature are
    outdated clients based on older, now-invalidated versions of the
    specification.  Please update your FTPS clients to one which uses
    explicit FTPS as soon as possible.

  + Re-enable turning off the Nagle algorithm; this drastically helps speed
    up transfers of multiple small files.

  + New modules

    mod_sql_passwd
      This module supports MD5 and SHA1 passwords, encoding using base64 or
      hex, from SQL tables.  See doc/contrib/mod_sql_passwd.html for details.

  + New configuration directives

    AuthUnixOptions

      In Bug#1896, support for checking some AIX-specific functions for
      whether a login should be accepted was added; this happens only on AIX
      server, of course.

      However, some AIX admins like to configure "rlogin=false", yet still
      want to allow FTP logins.  To enable this specific behavior, a new
      AuthUnixOptions directive was added, with a setting which is only
      honored on AIX:

        AuthUnixOptions aixNoRLogin

      If this setting is used on any other server, it is silently ignored.
      Bug#3300 has the full details.

  + Changed configuration directives

    ExtendedLog

      You can now disable logging in an <Anonymous> section to an ExtendedLog
      which was opened outside of the <Anonymous> section, i.e.:

        ExtendedLog /path/to/ext.log ALL

        <Anonymous /path/to/anon>
          ...
          ExtendedLog /path/to/anon-ext.log ALL

          # Disable the logging to the higher-level ExtendedLog by
          # configuring again here, but changing the command class to 'NONE'
          ExtendedLog /path/to/ext.log NONE
          ...
        </Anonymous>

    HiddenStores

      The HiddenStores directive can now be used to customize and change
      the prefix which is prepended to the HiddenStore files.  The default
      prefix is ".in.", but if you wish to use a different prefix for any
      reason, you can use something like:

        HiddenStores foo

      This will cause the prefix to be ".foo.".

    SQLOptions

      When the connection to the database is lost, mod_sql now will try
      only once to automatically reconnect (if such reconnect functionality
      is supported by the database, e.g. MySQL or Postgres).  To disable this
      reconnect behavior, there is a new "noReconnect" SQLOptions setting:

        SQLOptions noReconnect

      See Bug#3270 for the full details of this behavior change.  It should
      be transparent for most sites.


1.3.3rc1
---------

  + Added French, Bulgarian, Korean translations.

  + RPM 4.2 or later is required by the proftpd.spec file provided in the
    distribution.

  + If the --localstatedir configure option is used, proftpd's build system
    used to automatically append "/proftpd" to the configured path.  This
    behavior has been fixed; proftpd's build system will now use the
    configured --localstatedir path as is.

    Note that this may cause issues if you have an existing build script
    for compling proftpd; the expected locations of files under the
    --localstatedir path will change.

  + New command-line options:

    The -S, --serveraddr command-line option has been added.  This option
    can be used to specify the IP address of the host machine.  By
    default, proftpd attempts to resolve the host IP address by using DNS
    resolution of the hostname.  However, in cases where DNS is not
    configured for the host machine, this approach does not work.

    To specify the desired IP address, use -S when starting proftpd, e.g.:

      /usr/local/sbin/proftpd -S 1.2.3.4 ...

    And if you want proftpd to listen on all interfaces, you can specify
    a wildcard socket using an IP address of 0.0.0.0:

      /usr/local/sbin/proftpd -S 0.0.0.0 ...

  + New modules:

    mod_exec

      This module enables execution of external scripts based on actions/events
      during a session.  See doc/contrib/mod_exec.html for details.

    mod_sftp

      This module implements the SSH2, SFTP, and SCP protocols.  See
      doc/contrib/mod_sftp.html for more information.

    mod_sftp_pam

      This module uses PAM to provide a 'keyboard-interactive' SSH2
      authentication method for mod_sftp.  More information can be found in
      the documentation for mod_sftp_pam, in doc/contrib/mod_sftp_pam.html.

    mod_sftp_sql

      This module uses SQL (via mod_sql) for looking up authorized SSH2 
      public keys for user and hostbased authentication.  More information
      is available in doc/contrib/mod_sftp_sql.html.

    mod_shaper

      This module can be used to provide data transfer rate "shaping"
      across the entire server.  See the documentation at
      doc/contrib/mod_shaper.html.

    mod_tls_shmcache

      This module provides an external SSL session cache using shared
      memory; see the TLSSessionCache configuration directive.  More
      information on this module can be found in
      doc/contrib/mod_tls_shmcache.html.

  + New configuration directives:

    RewriteHome

      The RewriteHome directive can be used to support rewriting the
      home directory for a user, based on regular expression rules.
      One such use case is where some portion of the home directory is
      retrieved e.g. from an LDAP directory, but you need to apply some
      custom prefix to the LDAP attribute.

      To enable this feature, first you need to add the following to your
      proftpd.conf:

        RewriteHome on

      Next, you need to configure the mod_rewrite rules for rewriting your home
      directory; this feature depends on mod_rewrite for the rewriting.
      The pseudo-command used by mod_rewrite for rewriting home directories is
      "REWRITE_HOME".  Thus would you use:

        <IfModule mod_rewrite.c>
          RewriteEngine on
          RewrlteLog /path/to/rewrite.log

          RewriteCondition %m REWRITE_HOME
          RewriteRule (.*) /my/new/prefix$1
        </IfModule>

    ScoreboardScrub

      The ScoreboardScrub directive can be used to turn on/off proftpd's
      periodic "scrubbing" of its ScoreboardFile, where the ScoreboardFile
      is scanned for entries of dead sessions:

        ScoreboardScrub on|off|secs

      Note that if scoreboard scrubbing is turned off, the ScoreboardFile
      can still be scrubbed on demand, either by using mod_ctrls_admin's
      "ftpdctl scoreboard scrub" action, or by using the new ftpscrub
      command-line utility.

    TLSControlsACLs

      With the addition of support for external session caches, the
      mod_tls module now supports some ftpdctl actions for interacting
      with those session caches.  The TLSControlsACLs directive can be
      used to configure ACLs for the ftpdctl actions supported by mod_tls,
      and is analogous to other ACLs directives for other modules which
      support ftpdctl actions.

    TLSPKCS12File

      The TLSPKCS12File directive of the mod_tls module is used to
      configure mod_tls to use the certificate and private key contained
      in the indicated PKCS#12 file.  Some sites already use PKCS#12 files
      for containing their other certificates, and thus find it useful to
      have PKCS#12 support in mod_tls.

    TLSSessionCache

      The TLSSessionCache directive configures an external SSL session
      cache, which can be used for storing and shared SSL sessions across
      multiple processes.  An external SSL session cache is an optional
      facility which speeds up parallel FTPS session connections.

      See doc/contrib/mod_tls.html#TLSSessionCache for more information.

  + Changed configuration directives:

    AllowOverride

      This directive no longer supports the optional user/group/class
      parameters.  If you wish to have per-user/group/class conditional
      use of the AllowOverride directive, you will need to use the
      mod_ifsession module.  For example, instead of:

        AllowOverride off user !admin

      you will need to use:

        <IfUser admin>
          AllowOverride on
        </IfUser>

        <IfUser !admin>
          AllowOverride off
        </IfUser>

      Note that the "!admin" section is necessary.  If you set
      "AllowOverride off" unconditionally, then use a mod_ifsession context,
      you would end up with two AllowOverride settings, and the code might not
      be able to distinguish properly which setting to use.  Thus you need to
      make both the "on" and "off" cases conditional, and mutually exclusive.

      Configurations which use the user/group/class conditional parameters
      to AllowOverride will now generate configuration errors.

    BanOnEvent

      The BanOnEvent directive of the mod_ban module now supports
      TimeoutLogin events.

    <VirtualHost>

      You can now specify an IP address of "0.0.0.0" in a <VirtualHost>
      definition.

    IdentLookups

      The default IdentLookups value is now 'off'.  The RFC1413 IDENT lookup
      adds latency to the login process, so much so that it is a FAQ to
      configure "IdentLookups off".  In addition, the IDENT protocol is not
      secure; it can easily be spoofed using man-in-the-middle attacks.  Sites
      that require IDENT lookups must now explicitly configure
      "IdentLookups on".

      Note that in order to use IdentLookups, you must compile proftpd with
      the mod_ident module.  If you use the --disable-ident configure
      option, then proftpd will not recognize the IdentLookups directive.
      Thus in your proftpd.conf, you should use something like:

        <IfModule mod_ident.c>
          IdentLookups on
        </IfModule>

      if you want to use RFC1413 lookups.

    LogFormat, SQLNamedQuery

      There is a new variable, %{protocol}, which describes the protocol
      that the client is using.  This variable can have values of "ftp",
      "ftps", "ssh2", "sftp", and "scp".

      Note that for SSH2 connections, the value will be "ssh2" until SFTP or
      SCP channels are opened; this means that during login, the %{protocol}
      value will be "ssh2".

      There is also a new %w variable which is only valid for RNTO commands.
      The %w value will be the original name of the file being renamed
      (mnemonic: "whence" a renamed file comes).

    RewriteCondition, RewriteRule

      Use of environment variables in mod_rewrite rules is now supported
      via the "%{ENV:var}" syntax.

    SQLGroupInfo

      The SQLGroupInfo now supports custom queries for retrieve group
      information.  Note that instead of a single custom query, several
      different queries are needed; different lookups are called for
      depending on the situation and configuration of mod_sql (e.g.
      using the 'groupset' or 'groupsetfast' SQLAuthenticate parameters).

      See doc/contrib/mod_sql.html#SQLGroupInfo and
      doc/howto/SQL.html#SQLUsersetfast for more details.

    SQLUserInfo

      The support for custom SQLUserInfo queries has been extended to
      support custom queries to be used when the 'userset' or 'usersetfast'
      SQLAuthenticate parameters are used.

      For more information, see doc/contrib/mod_sql.html#SQLUserInfo and 
      doc/howto/SQL.html#SQLUsersetfast.

    TLSOptions

      The NoSessionReuseRequired option has been added.  As of
      ProFTPD 1.3.3rc1, mod_tls only accepts SSL/TLS data connections
      that reuse the SSL session of the control connection, as a security
      measure.  Unfortunately, there are some clients (e.g. curl) which
      do not reuse SSL sessions.

      To relax the requirement that the SSL session from the control
      connection be reused for data connections, use the following in the
      proftpd.conf:

        <IfModule mod_tls.c>
          ...
          TLSOptions NoSessionReuseRequired
          ...
        </IfModule>

    TLSRequired

      The TLSRequired directive can now be used in <Directory> sections and
      in .ftpaccess files.  When used in these configuration contexts, only
      the TLSRequired values that require SSL/TLS protection on data transfers
      are honored.  With this, it is now possible to mark specific files or
      directories as requiring SSL/TLS protection to be accessed via data
      transfer.

    TransferLog

      The "service-name" field of the TransferLog usually contains just
      "ftp".  In order to support TransferLogs for SFTP and SCP transfers,
      the service-name field of the TransferLog format may now show
      "sftp" or "scp".  It may also show "ftps" instead of "ftp", if the
      data transfer occurred while the client is using FTP over SSL/TLS.

      NOTE: This change, while correct, may cause issues for log parsers.

  + Deprecated configuration directives:

    AnonymousGroup

      Support for this directive has been removed.

  + Developer Notes

    If you are a module developer, then you will want to know of the following
    API/internals changes:

      * The original USER value sent by the client is no longer stored in
        the config tree.  That is, the following no longer works:

          user = get_param_ptr(main_server->conf, C_USER, FALSE);

        Instead, the original USER value is stashes in the session.notes
        table.  Thus the above line of code can be replaced with:

          user = pr_table_get(session.notes, "mod_auth.orig-user", NULL);

        A similar change occurred for the anonymous "password" sent, but
        this will probably not apply to most modules.

 
Last Updated: $Date: 2009/10/20 21:31:09 $

[Proftpd-docs] CVS: www.proftpd.org/docs/howto NAT.html,1.1,1.2

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org/docs/howto
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv25533

Modified Files:
	NAT.html 
Log Message:

Updated URL, added info to NAT howto.


Index: NAT.html
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/docs/howto/NAT.html,v
retrieving revision 1.1
retrieving revision 1.2
diff -C2 -r1.1 -r1.2
*** NAT.html	17 Aug 2007 00:11:26 -0000	1.1
--- NAT.html	19 Oct 2009 21:10:07 -0000	1.2
***************
*** 35,39 ****
  IP-masq HOWTO at:
  <pre>
!   <a href="http://www.linuxdoc.org/HOWTO/IP-Masquerade-HOWTO.html">http://www.linuxdoc.org/HOWTO/IP-Masquerade-HOWTO.html</a>
  </pre>
  or search for information concerning your OS of choice.
--- 35,39 ----
  IP-masq HOWTO at:
  <pre>
!   <a href="http://tldp.org/HOWTO/IP-Masquerade-HOWTO/">tldp.org/HOWTO/IP-Masquerade-HOWTO/</a>
  </pre>
  or search for information concerning your OS of choice.
***************
*** 109,112 ****
--- 109,125 ----
  
  <p>
+ If instead your Linux system uses IP Filters, then you might do something
+ like the following.  First, update your <code>ipf.conf</code> with:
+ <pre>
+   # Allow passive FTP transfers from ports 49152 to 65534, the IANA-registered
+   # ephemeral port range.
+   pass in quick proto tcp from any to any port 49151 &gt;&lt; 65535 flags S keep state
+ </pre>
+ Then make sure that the changes take effect by using:
+ <pre>
+   ipf -Fa -f /path/to/ipf.conf
+ </pre>
+ 
+ <p>
  <b>Double Checking</b><br>
  Setting up <code>proftpd</code> that allows passive data transfers srequires

[Proftpd-docs] CVS: www.proftpd.org download.epl, 1.111, 1.112 wwwmirror.epl, 1.112, 1.113

[John M. <jw...@us...>]

Update of /cvsroot/pdd/www.proftpd.org
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv4340

Modified Files:
	download.epl wwwmirror.epl 
Log Message:
update

Index: download.epl
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/download.epl,v
retrieving revision 1.111
retrieving revision 1.112
diff -C2 -r1.111 -r1.112
*** download.epl	10 Apr 2009 20:09:20 -0000	1.111
--- download.epl	14 Oct 2009 01:20:00 -0000	1.112
***************
*** 245,259 ****
  			</p>
  	<p>
- 		<a href="ftp://ftp1.ar.proftpd.org">ftp://ftp1.ar.proftpd.org/</a>
-         <br />
- 		<a href="ftp://mirrors.localhost.net.ar/pub/mirrors/proftpd">ftp://mirrors.localhost.net.ar/pub/mirrors/proftpd</a>
- 		<br />
- 
- 		Location: Argentina					(Buenos Aires)
- 				<br />
- 
- 					Maintained by: Nicolas Sigal<br />
- 			</p>
- 	<p>
  		<a href="ftp://ftp4.bg.proftpd.org">ftp://ftp4.bg.proftpd.org/</a>
          <br />
--- 245,248 ----

Index: wwwmirror.epl
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/wwwmirror.epl,v
retrieving revision 1.112
retrieving revision 1.113
diff -C2 -r1.112 -r1.113
*** wwwmirror.epl	2 Jul 2009 17:05:55 -0000	1.112
--- wwwmirror.epl	14 Oct 2009 01:20:00 -0000	1.113
***************
*** 33,37 ****
  	<a href="http://www.cz.proftpd.org/">cz</a>
  	<a href="http://www.de.proftpd.org/">de</a>
- 	<a href="http://www.hk.proftpd.org/">hk</a>
  	<a href="http://www.ie.proftpd.org/">ie</a>
  	<a href="http://www.il.proftpd.org/">il</a>
--- 33,36 ----
***************
*** 47,51 ****
  	<a href="http://www.si.proftpd.org/">si</a>
  	<a href="http://www.tw.proftpd.org/">tw</a>
- 	<a href="http://www.ua.proftpd.org/">ua</a>
  	<a href="http://www.uk.proftpd.org/">uk</a>
  	<a href="http://www.us.proftpd.org/">us</a>
--- 46,49 ----
***************
*** 132,146 ****
  			</p>
  	<p>
- 		<a href="http://www2.ua.proftpd.org">http://www2.ua.proftpd.org/</a>
-         <br />
- 		<a href="http://proftpd.dnepr.net/">http://proftpd.dnepr.net/</a>
- 		<br />
- 
- 		Location: Ukraine					(Dnepropetrovsk)
- 				<br />
- 
- 					Maintained by: Andrey Lakhno<br />
- 			</p>
- 	<p>
  		<a href="http://www2.am.proftpd.org">http://www2.am.proftpd.org/</a>
          <br />
--- 130,133 ----
***************
*** 165,178 ****
  			</p>
  	<p>
- 		<a href="http://www3.hk.proftpd.org">http://www3.hk.proftpd.org/</a>
-         <br />
- 		<a href="http://proftpd.hknetworks.com/">http://proftpd.hknetworks.com/</a>
- 		<br />
- 
- 		Location: Hong kong				<br />
- 
- 					Maintained by: Stanley Au<br />
- 			</p>
- 	<p>
  		<a href="http://www1.li.proftpd.org">http://www1.li.proftpd.org/</a>
          <br />
--- 152,155 ----
***************
*** 208,222 ****
  			</p>
  	<p>
- 		<a href="http://www2.ar.proftpd.org">http://www2.ar.proftpd.org/</a>
-         <br />
- 		<a href="http://proftpd.localhost.net.ar/">http://proftpd.localhost.net.ar/</a>
- 		<br />
- 
- 		Location: Argentina					(Capital Federal, Buenos Aires, Argentina)
- 				<br />
- 
- 					Maintained by: Nicolas Sigal<br />
- 			</p>
- 	<p>
  		<a href="http://www2.cz.proftpd.org">http://www2.cz.proftpd.org/</a>
          <br />
--- 185,188 ----

[Proftpd-docs] CVS: www.proftpd.org ROADMAP,1.100,1.101

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv14711

Modified Files:
	ROADMAP 
Log Message:

Updating the roadmap.


Index: ROADMAP
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/ROADMAP,v
retrieving revision 1.100
retrieving revision 1.101
diff -C2 -r1.100 -r1.101
*** ROADMAP	15 Sep 2009 01:11:25 -0000	1.100
--- ROADMAP	1 Oct 2009 16:21:18 -0000	1.101
***************
*** 17,21 ****
          Bug#3214 - ftpwho/ftptop truncate UTF8 strings due to byte, versus
                     character, lengths 
-         Bug#3289 - Support the HOST command
          Bug#3290 - Change default mod_sql connection policy to open database
                     connection on authentication
--- 17,20 ----
***************
*** 28,29 ****
--- 27,29 ----
          Bug#2871 - Remove ftpshut and the /etc/shutmsg file
          Bug#3079 - Support modules written in C++
+         Bug#3289 - Support the HOST command

[Proftpd-docs] CVS: www.proftpd.org/docs/howto Timestamps.html, 1.1, 1.2

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org/docs/howto
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv26651

Modified Files:
	Timestamps.html 
Log Message:

Update the Timestamps howto for the website.


Index: Timestamps.html
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/docs/howto/Timestamps.html,v
retrieving revision 1.1
retrieving revision 1.2
diff -C2 -r1.1 -r1.2
*** Timestamps.html	17 Aug 2007 00:11:26 -0000	1.1
--- Timestamps.html	29 Sep 2009 17:11:01 -0000	1.2
***************
*** 22,26 ****
  
  <p>
! Depending on the logs at which you are looking, the timestamps will be correct
  <i>until</i> the user logs in.  After that, the timestamps are wrong.  This
  is one clue.  The other clue is that these wrong timestamps go away when
--- 22,28 ----
  
  <p>
! If the timestamps in question are those displayed in directory listings, then
! you need to check your <a href="http://www.proftpd.org/docs/directives/linked/config_ref_TimesGMT.html"><code>TimesGMT</code></a> configuration.  Otherwise,
! depending on the logs at which you are looking, the timestamps will be correct
  <i>until</i> the user logs in.  After that, the timestamps are wrong.  This
  is one clue.  The other clue is that these wrong timestamps go away when
***************
*** 135,142 ****
  
  <p>
! <font color=red>Question</font>: I thought that the <code>TimesGMT</code> directive was causing this?<br>
  <font color=blue>Answer</font>: No.  The <a href="http://www.proftpd.org/docs/directives/linked/config_ref_TimesGMT.html"><code>TimesGMT</code></a> directive
! only affects the timestamps as displayed to FTP clients in directory listings;
! it does <b>not</b> affect the timestamps used in log files.
  
  <p>
--- 137,145 ----
  
  <p>
! <font color=red>Question</font>: I thought that the <code>TimesGMT</code> directive was affected the timestamps that proftpd uses?<br>
  <font color=blue>Answer</font>: No.  The <a href="http://www.proftpd.org/docs/directives/linked/config_ref_TimesGMT.html"><code>TimesGMT</code></a> directive
! only affects the timestamps as displayed to FTP clients in
! <i>directory listings</i>; it does <b>not</b> affect the timestamps used in
! log files.
  
  <p>

[Proftpd-docs] CVS: www.proftpd.org/docs/howto Chroot.html, 1.1, 1.2

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org/docs/howto
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv30837

Modified Files:
	Chroot.html 
Log Message:

Update the Chroot howto for the website.


Index: Chroot.html
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/docs/howto/Chroot.html,v
retrieving revision 1.1
retrieving revision 1.2
diff -C2 -r1.1 -r1.2
*** Chroot.html	17 Aug 2007 00:11:26 -0000	1.1
--- Chroot.html	17 Sep 2009 20:56:54 -0000	1.2
***************
*** 187,190 ****
--- 187,254 ----
  mount.  Otherwise, the chroot will fail.
  
+ <p><a name="FAQ"></a>
+ <b>Frequently Asked Questions</b><br>
+ 
+ <p>
+ <font color=red>Question</font>: I am using the <code>DefaultRoot</code>
+ directive, but my logins are failing.  The debug logging shows the following:
+ <pre>
+   USER <i>user</i>: Login successful.
+   Preparing to chroot to directory '/home/users/<i>user</i>'
+   <i>user</i> chroot("/home/users/<i>user</i>"): Permission denied
+   error: unable to set default root directory
+ </pre>
+ I am starting <code>proftpd</code> with root privileges, so why is the
+ <code>chroot()</code> failing with "Permission denied"?<br>
+ <font color=blue>Answer</font>: The above situation can happen in cases
+ where even root privileges are insufficient.  There have been reports of
+ this happening for security-hardened systems (<i>e.g.</i> SELinux, OpenWall,
+ <i>etc</i>); it can <i>also</i> happen when NFS is involved.
+ 
+ <p>
+ If the <code>DefaultRoot</code> directory in question is mounted via NFS, make
+ sure that the NFS configuration mounts the directory with root privileges.  The
+ <code>chroot(2)</code> system call <i>requires</i> root privileges; a
+ no-root-privs mounted NFS directory does not allow the <code>chroot(2)</code>
+ to succeed.
+ 
+ <p>
+ Similarly, instead of "Permission denied", you might see "No such file or
+ directory":
+ <pre>
+   <i>user</i> chroot("~"): No such file or directory
+ </pre>
+ The reasons for this error are explained
+ <a href="Authentication.html#homedir">here</a>.
+ 
+ <p><a name="MultipleRoots">
+ <font color=red>Question</font>: Is it possible to configure <code>DefaultRoot</code> for all users <i>except</i> some special users, which will have a different root directory?<br>
+ <font color=blue>Answer</font>: Yes, this is possible.  ProFTPD supports
+ having multiple <code>DefaultRoot</code> directives in the proftpd.conf at the
+ same time; <code>proftpd</code> checks all of them
+ <i>in the order they appear</i>.  The first one which matches the logging-in
+ user is applied.
+ 
+ <p>
+ To illustrate, here's an example.  Keep in mind that the optional parameters to
+ the <code>DefaultRoot</code> directive are <i>group</i> names, <b>not</b> user
+ names.
+ <pre>
+   DefaultRoot /path/to/admin/dir admin-group
+   DefaultRoot /path/to/special/dir special-group
+   DefaultRoot ~  <font color=blue># everyone else</font>
+ </pre>
+ 
+ <p>
+ If the logging-in user is a member of group 'admin-group', then
+ <code>proftpd</code> will chroot to the <code>/path/to/admin/dir</code>
+ directory.  If the logging-in user is not a member of group 'admin-group' but
+ <b>is</b> a member of group 'special-group', then
+ <code>/path/to/special/dir</code> is used for the chroot.  And if the user
+ is not a member of either of these groups, then the normal home directory is
+ used for the chroot.  It's always a good idea of have a "applies to everyone"
+ <code>DefaultRoot</code> directive in your proftpd.conf, at the
+ <i>end of the list</i> of <code>DefaultRoot</code>s, as a catch-all.
+ 
  <p>
  <hr>

[Proftpd-docs] CVS: www.proftpd.org ROADMAP,1.99,1.100

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv22617

Modified Files:
	ROADMAP 
Log Message:

Updating roadmap for 1.3.3 release cycle.


Index: ROADMAP
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/ROADMAP,v
retrieving revision 1.99
retrieving revision 1.100
diff -C2 -r1.99 -r1.100
*** ROADMAP	9 Sep 2009 18:23:30 -0000	1.99
--- ROADMAP	15 Sep 2009 01:11:25 -0000	1.100
***************
*** 7,11 ****
  1.3.3
       C  Add mod_exec
-         Add mod_vroot
       C  Add mod_sftp et al
       C  Add mod_shaper
--- 7,10 ----
***************
*** 15,24 ****
       C  Bug#2715 - Use session.notes table, rather than config tree, for storing
                     some data
-         Bug#2871 - Remove ftpshut and the /etc/shutmsg file
-         Bug#3079 - Support modules written in C++
       C  Bug#3086 - mod_quotatab write locking is ineffective
   
  TBD
          Bug#2052 - ProFTPD "unused parameters" cleanup
          Bug#2062 - Enhance UserOwner/GroupOwner to take IDs as well as name
                     parameters
--- 14,29 ----
       C  Bug#2715 - Use session.notes table, rather than config tree, for storing
                     some data
       C  Bug#3086 - mod_quotatab write locking is ineffective
+         Bug#3214 - ftpwho/ftptop truncate UTF8 strings due to byte, versus
+                    character, lengths 
+         Bug#3289 - Support the HOST command
+         Bug#3290 - Change default mod_sql connection policy to open database
+                    connection on authentication
   
  TBD
+         Add mod_vroot
          Bug#2052 - ProFTPD "unused parameters" cleanup
          Bug#2062 - Enhance UserOwner/GroupOwner to take IDs as well as name
                     parameters
+         Bug#2871 - Remove ftpshut and the /etc/shutmsg file
+         Bug#3079 - Support modules written in C++

[Proftpd-docs] CVS: www.proftpd.org ROADMAP,1.98,1.99

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv4163

Modified Files:
	ROADMAP 
Log Message:

Updated roadmap.


Index: ROADMAP
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/ROADMAP,v
retrieving revision 1.98
retrieving revision 1.99
diff -C2 -r1.98 -r1.99
*** ROADMAP	28 Apr 2009 22:52:24 -0000	1.98
--- ROADMAP	9 Sep 2009 18:23:30 -0000	1.99
***************
*** 10,15 ****
       C  Add mod_sftp et al
       C  Add mod_shaper
       C  Bug#2067 - Allow/Deny Filters should be supported in the <Limit> context
! 	Bug#2368 - Allow contrib modules to extend mod_sql's SQLAuthTypes
       C  Bug#2715 - Use session.notes table, rather than config tree, for storing
                     some data
--- 10,16 ----
       C  Add mod_sftp et al
       C  Add mod_shaper
+      C  Bug#2013 - Track RFC2228 sessions in scoreboard
       C  Bug#2067 - Allow/Deny Filters should be supported in the <Limit> context
!      C  Bug#2368 - Allow contrib modules to extend mod_sql's SQLAuthTypes
       C  Bug#2715 - Use session.notes table, rather than config tree, for storing
                     some data
***************
*** 19,24 ****
   
  TBD
- 
-         Bug#2013 - Track RFC2228 sessions in scoreboard
          Bug#2052 - ProFTPD "unused parameters" cleanup
          Bug#2062 - Enhance UserOwner/GroupOwner to take IDs as well as name
--- 20,23 ----

[Proftpd-docs] CVS: www.proftpd.org bugs.epl,1.9,1.10

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv22755

Modified Files:
	bugs.epl 
Log Message:

Yet another tweak to the Bugzilla query so that the default list of open
bug reports sorts in bug ID number (ascending).


Index: bugs.epl
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/bugs.epl,v
retrieving revision 1.9
retrieving revision 1.10
diff -C2 -r1.9 -r1.10
*** bugs.epl	2 Apr 2009 01:02:26 -0000	1.9
--- bugs.epl	31 Aug 2009 20:56:39 -0000	1.10
***************
*** 18,22 ****
      <li><a href="/localsite/Userguide/linked/debugging-problems.html">Guide on tracking proftpd bugs</a></li>
      <li><a href="http://www.catb.org/~esr/faqs/smart-questions.html">How to Ask Questions the Smart Way</a></li>
!     <li><a href="http://bugs.proftpd.org/buglist.cgi?order=relevance+desc&bug_status=__open__&amp;product=ProFTPD">All open bugs</a></li>
      <li><a href="http://bugs.proftpd.org/buglist.cgi?query_format=advanced&amp;short_desc_type=allwordssubstr&amp;short_desc=&amp;product=ProFTPD&amp;long_desc_type=substring&amp;long_desc=&amp;bug_file_loc_type=allwordssubstr&amp;bug_file_loc=&amp;keywords_type=allwords&amp;keywords=&amp;bug_status=UNCONFIRMED&amp;bug_status=NEW&amp;bug_status=ASSIGNED&amp;bug_status=REOPENED&amp;bug_severity=blocker&amp;bug_severity=critical&amp;bug_severity=major&amp;bug_severity=normal&amp;emailassigned_to1=1&amp;emailtype1=substring&amp;email1=&amp;emailassigned_to2=1&amp;emailreporter2=1&amp;emailcc2=1&amp;emailtype2=substring&amp;email2=&amp;bugidtype=include&amp;bug_id=&amp;votes=&amp;chfieldfrom=&amp;chfieldto=Now&amp;chfieldvalue=&amp;cmdtype=doit&amp;order=Reuse+same+sort+as+last+time&amp;field0-0-0=noop&amp;type0-0-0=noop&amp;value0-0-0=">All bugs with a severity of 'normal' or higher</a></li>
      <li><a href="http://bugs.proftpd.org/buglist.cgi?query_format=advanced&amp;short_desc_type=allwordssubstr&amp;short_desc=&amp;product=ProFTPD&amp;long_desc_type=substring&amp;long_desc=&amp;bug_file_loc_type=allwordssubstr&amp;bug_file_loc=&amp;keywords_type=allwords&amp;keywords=&amp;bug_status=UNCONFIRMED&amp;bug_status=NEW&amp;bug_status=ASSIGNED&amp;bug_status=REOPENED&amp;bug_severity=enhancement&amp;emailassigned_to1=1&amp;emailtype1=substring&amp;email1=&amp;emailassigned_to2=1&amp;emailreporter2=1&amp;emailcc2=1&amp;emailtype2=substring&amp;email2=&amp;bugidtype=include&amp;bug_id=&amp;votes=&amp;chfieldfrom=&amp;chfieldto=Now&amp;chfieldvalue=&amp;cmdtype=doit&amp;order=Reuse+same+sort+as+last+time&amp;field0-0-0=noop&amp;type0-0-0=noop&amp;value0-0-0=">Requested Enhancements</a></li>
--- 18,22 ----
      <li><a href="/localsite/Userguide/linked/debugging-problems.html">Guide on tracking proftpd bugs</a></li>
      <li><a href="http://www.catb.org/~esr/faqs/smart-questions.html">How to Ask Questions the Smart Way</a></li>
!     <li><a href="http://bugs.proftpd.org/buglist.cgi?order=bugs.bug_id+asc&bug_status=__open__&amp;product=ProFTPD">All open bugs</a></li>
      <li><a href="http://bugs.proftpd.org/buglist.cgi?query_format=advanced&amp;short_desc_type=allwordssubstr&amp;short_desc=&amp;product=ProFTPD&amp;long_desc_type=substring&amp;long_desc=&amp;bug_file_loc_type=allwordssubstr&amp;bug_file_loc=&amp;keywords_type=allwords&amp;keywords=&amp;bug_status=UNCONFIRMED&amp;bug_status=NEW&amp;bug_status=ASSIGNED&amp;bug_status=REOPENED&amp;bug_severity=blocker&amp;bug_severity=critical&amp;bug_severity=major&amp;bug_severity=normal&amp;emailassigned_to1=1&amp;emailtype1=substring&amp;email1=&amp;emailassigned_to2=1&amp;emailreporter2=1&amp;emailcc2=1&amp;emailtype2=substring&amp;email2=&amp;bugidtype=include&amp;bug_id=&amp;votes=&amp;chfieldfrom=&amp;chfieldto=Now&amp;chfieldvalue=&amp;cmdtype=doit&amp;order=Reuse+same+sort+as+last+time&amp;field0-0-0=noop&amp;type0-0-0=noop&amp;value0-0-0=">All bugs with a severity of 'normal' or higher</a></li>
      <li><a href="http://bugs.proftpd.org/buglist.cgi?query_format=advanced&amp;short_desc_type=allwordssubstr&amp;short_desc=&amp;product=ProFTPD&amp;long_desc_type=substring&amp;long_desc=&amp;bug_file_loc_type=allwordssubstr&amp;bug_file_loc=&amp;keywords_type=allwords&amp;keywords=&amp;bug_status=UNCONFIRMED&amp;bug_status=NEW&amp;bug_status=ASSIGNED&amp;bug_status=REOPENED&amp;bug_severity=enhancement&amp;emailassigned_to1=1&amp;emailtype1=substring&amp;email1=&amp;emailassigned_to2=1&amp;emailreporter2=1&amp;emailcc2=1&amp;emailtype2=substring&amp;email2=&amp;bugidtype=include&amp;bug_id=&amp;votes=&amp;chfieldfrom=&amp;chfieldto=Now&amp;chfieldvalue=&amp;cmdtype=doit&amp;order=Reuse+same+sort+as+last+time&amp;field0-0-0=noop&amp;type0-0-0=noop&amp;value0-0-0=">Requested Enhancements</a></li>

[Proftpd-docs] CVS: Userguide/directives/sgml TimeoutLinger, 1.2, 1.3

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/Userguide/directives/sgml
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv6862/directives/sgml

Modified Files:
	TimeoutLinger 
Log Message:

Had an outdated default value in the TimeoutLinger docs.


Index: TimeoutLinger
===================================================================
RCS file: /cvsroot/pdd/Userguide/directives/sgml/TimeoutLinger,v
retrieving revision 1.2
retrieving revision 1.3
diff -C2 -r1.2 -r1.3
*** TimeoutLinger	26 Apr 2007 18:10:32 -0000	1.2
--- TimeoutLinger	14 Aug 2009 22:32:44 -0000	1.3
***************
*** 33,37 ****
  <varlistentry><term><synopsis>Default</synopsis></term>
  <listitem> <para>
! TimeoutLinger 180
  </para> </listitem>
  </varlistentry>
--- 33,37 ----
  <varlistentry><term><synopsis>Default</synopsis></term>
  <listitem> <para>
! TimeoutLinger 30
  </para> </listitem>
  </varlistentry>

[Proftpd-docs] CVS: www.proftpd.org/docs/howto Quotas.html, 1.2, 1.3

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org/docs/howto
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv5032

Modified Files:
	Quotas.html 
Log Message:

Updated Quota howto from source CVS.


Index: Quotas.html
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/docs/howto/Quotas.html,v
retrieving revision 1.2
retrieving revision 1.3
diff -C2 -r1.2 -r1.3
*** Quotas.html	5 Feb 2009 21:21:45 -0000	1.2
--- Quotas.html	23 Jul 2009 16:21:20 -0000	1.3
***************
*** 222,228 ****
  
  <p>
! If this is not the case, then consider looking in the <a href="../contrib/mod_quotatab.html#QuotaLog"><code>QuotaLog</code></a> file for more information.
  
! <p><a name="QuotasPerMonth" title="#QuotasPerMonth></a>
  <font color=red>Question</font>: Can I use <code>mod_quotatab</code> to set
  monthly quotas?<br>
--- 222,239 ----
  
  <p>
! Another possibility is that your configured limits are "unlimited" (<i>i.e.</i>
! zero).  As it states in the <a href="../contrib/mod_quotatab.html#Usage"><code>mod_quotatab</code></a> documentation:
! <pre>
!   For any quota limit that is set as "unlimited", mod_quotatab will not keep the tally.
!   Many site administrators might want this ability, for accounting purposes. However,
!   that ability is outside of the intended design of this module; other logging modules
!   are much better suited for accounting purposes (<i>e.g</i>. mod_sql's <code>SQLLog</code> directive).
! </pre>
! 
! <p>
! If the above cases are not applicable, then consider looking in the
! <a href="../contrib/mod_quotatab.html#QuotaLog"><code>QuotaLog</code></a> file for more information.
  
! <p><a name="QuotasPerMonth" title="#QuotasPerMonth"></a>
  <font color=red>Question</font>: Can I use <code>mod_quotatab</code> to set
  monthly quotas?<br>
***************
*** 294,297 ****
--- 305,324 ----
  in file sizes is used for tracking the byte-related tallies.
  
+ <p><a name="QuotasDeleteTransferBytes" title="#QuotasDeleteTransferBytes">
+ <font color=red>Question</font>: I configured limits for my users such that
+ only the transfer bytes limit is set.  On uploads, my transfer bytes tally
+ is incremented properly.  But when I delete a file, the transfer bytes tally
+ is not <i>decremented</i>.  Is this a bug?<br>
+ <font color=blue>Answer</font>: No, it's not a bug.
+ 
+ <p>
+ Deleting a file does not count as transferred bytes (<i>i.e.</i> it does not
+ pertain to the <code>bytes_xfer</code> limit); it counts as uploaded bytes
+ (<i>i.e.</i> the <code>bytes_in</code> limit).  And since there is only a limit,
+ in this case, on the transferred bytes, the <code>mod_quotatab</code> module
+ ends up not changing any tally value for a delete.  More details on this
+ can be found in
+ <a href="http://bugs.proftpd.org/show_bug.cgi?id=2897">Bug#2897</a>.
+ 
  <p>
  <hr>

[Proftpd-docs] CVS: www.proftpd.org/docs NEWS-1.3.2a, NONE, 1.1 RELEASE_NOTES-1.3.2a, NONE, 1.1 NEWS-1.3.1, 1.1, NONE NEWS-1.3.1rc1, 1.1, NONE NEWS-1.3.1rc2, 1.1, NONE NEWS-1.3.1rc3, 1.1, NONE RELEASE_NOTES-1.3.1, 1.1, NONE RELEASE_NOTES-1.3.1rc1, 1.1, NONE RELEASE_NOTES-1.3.1rc2, 1.1, NONE RELEASE_NOTES-1.3.1rc3, 1.1, NONE

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org/docs
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv6027

Added Files:
	NEWS-1.3.2a RELEASE_NOTES-1.3.2a 
Removed Files:
	NEWS-1.3.1 NEWS-1.3.1rc1 NEWS-1.3.1rc2 NEWS-1.3.1rc3 
	RELEASE_NOTES-1.3.1 RELEASE_NOTES-1.3.1rc1 
	RELEASE_NOTES-1.3.1rc2 RELEASE_NOTES-1.3.1rc3 
Log Message:

Added news, release notes for 1.3.2a release.

Removed news, release notes for 1.3.1 releases.


--- NEW FILE ---
$Id: NEWS-1.3.2a,v 1.1 2009/07/01 02:34:03 castaglia Exp $

-----------------------------------------------------------------------------
  More details on the bugs listed below can be found by using the bug number
  indicated in the following URL:

    http://bugs.proftpd.org/show_bug.cgi?id=N

  where `N' is the bug number.
-----------------------------------------------------------------------------

1.3.2a - Released 30-Jun-2009
--------------------------------
- Bug 3121 - Use PQescapeStringConn() rather than PQescapeString().
- Bug 3176 - Postgres chokes on standard charset names.
- Bug 3179 - Restarted proftpd using mod_shaper will segfault.
- Bug 3188 - prxs broken due to typo.
- Bug 3183 - Incorrect logging to wtmp.
- Bug 3184 - When started in a chroot, proftpd fails to set transfer buffer
[...1974 lines suppressed...]
- sendfile() deprecates politely on Linux 2.0.x.
- AuthPAMAuthoritative now defaults to False.  This should clear up any
  confusion on using PAM with AuthUserFile and friends.
- Removed Bandwidth from the documentation.
- Fixed a rare segfault in mod_auth.
- Logging has changed slightly to be more informative and more consistent.
    All messages that get logged are now preceded with
    <virtualhost> (remote host[remote ip]).
- mod_ldap for authentication against LDAP directories is now in place.
- ftpwho/ftpcount -- a grammatical error corrected, and they now build
    as seperate binaries.
- Fixed the 'no names, just UIDs' bug.
- Added genuser.pl to facilitate AuthUserFile entry creation.
- Umask now takes an optional second argument, specifying a directory umask.
- Work around FreeBSD's broken setpassent(), and a new option to override
    this in fixed versions of FreeBSD's libc (--enable-force-setpassent).
- Generate RPMs for both inetd and standalone versions of ProFTPD.
- Added AuthUsingAlias to allow for more fine-grain control of anonymous
    logins.
- Added support for 'TYPE L 8' and 'TYPE L 7' per RFC 959.

--- NEW FILE ---
                    1.3.2 Release Notes
                  ------------------------

This file contains a description of the major changes to ProFTPD for the
1.3.2 release cycle, from the 1.3.2rc1 release to the 1.3.2 maintenance
releases.  More information on these changes can be found in the NEWS and
ChangeLog files.

1.3.2a (maint)
---------------------

  + Added French, Bulgarian, Korean translations.

  + Various bug and regression fixes.


1.3.2 (stable)
---------------

  + Security fixes

    Fixed encoding-dependent SQL injection vulnerability in mod_sql_mysql
    and mod_sql_postgres modules.


1.3.2rc4
---------

  + Fixed %f logging, HiddenStore and UserOwner not working (Bug#3137).

  + Added Russian translation.

  + New documentation:

      doc/howto/Compiling.html
      doc/howto/Rewrite.html
      doc/howto/Sendfile.html


1.3.2rc3
---------

  + Fixed character set/encoding support on FreeBSD.

  + Fixed mod_sql authentication regression (Bug#2922)

  + Start of a regression testsuite.  Currently have basic unit tests for
    most FTP commands, and a few of the configuration directives.  See
    the Testing howto for more information.

  + Fixed variable substitution in user/group names in SQL queries.

  + Lowered the default TimeoutLinger value from 180 secs to 30 secs,
    for better interoperability.  Many FTP clients have a timeout of
    60 secs, waiting for a response from the server, before the client
    closes the control connection.  ProFTPD's lingering closes should
    thus not be longer than 60 secs, to avoid hitting those clients'
    timeout limit.

  + Fixed several issues related to aborting of downloads.

  + New documentation:

      doc/howto/Testing.html
      doc/howto/Translations.html


1.3.2rc2
---------

  + Added Chinese translation.

  + Fixed handling of SSL/TLS session shutdowns on data connections.  This
    issue was causing problems for users of recent FileZilla versions which
    insisted on proper SSL/TLS session shutdowns.

  + Fixed file descriptor leak when using syslog logging.

  + Fixed syslog logging on Mac OSX platforms.

  + Attempted to address the following message in system log files:

      warning: `proftpd' uses 32-bit capabilities (legacy support in use)

    by having mod_cap use the libcap version numbers provided by newer
    Linux kernels.  See doc/modules/mod_cap.html for more details.

  + Added new `prxs' tool, for compiling and installing third-party
    modules without needing the proftpd source code.  See
    doc/howto/DSO.html for more information.

  + Added sendfile support for Mac OSX 10.5.


1.3.2rc1
---------

  + Added pkgconfig file

    As part of the process of installing proftpd from source, a proftpd.pc
    file, suitable for use by the common `pkg-config' tool, is provided.
    This proftpd.pc file is installed into the <install-dir>/lib/pkgconfig/
    directory.

    See http://pkgconfig.freedesktop.org/ for more details.

  + IPv6 support is enabled by default.  To disable at build time, use:

      ./configure --disable-ipv6 ...

    And to disable IPv6 support at runtime, use:

      UseIPv6 off

    in your proftpd.conf

  + Changed command-line behavior:

      The -vv command-line option currently shows only the static modules,
      e.g.:

        - ProFTPD Version: 1.3.0 (stable)
        -   Scoreboard Version: 01040002
        -   Built: mar gen 2 10:57:47 CET 2007
        -     Module: mod_core.c
        -     Module: mod_xfer.c
        -     Module: mod_auth_unix.c
        -     Module: mod_auth_file.c
        ...

      Now, the -vv command-line option will show all modules, static *and*
      shared:

        ProFTPD Version: 1.3.0 (stable)
        Scoreboard Version: 01040002
        Built: Thu Jun 14 14:13:37 UTC 2007

        Loaded modules:
          mod_ifsession.c
          mod_tls/2.1.1
          mod_cap/1.0
          ...

       Note that the output format has changed slightly (no leading " - ").
       The -l command-line option can be used to list just the static
       modules.

       Also note that order of the module listed via -vv shows the order
       in which the core proftpd engine calls each module, i.e. the modules
       are listed in module order.

  + New configuration directives:

      AuthPAMOptions

        Some PAM modules need the PAM_TTY item to be set; the mod_auth_pam
        module now sets the PAM_TTY item, unless the following configuration
        is used:

          AuthPAMOptions NoTTY

        This configuration should not be necessary, and is only supported
        as a safeguard.

      MaxTransferPerHost

        This directive configures a limit on the maximum number of
        simultaneous data transfers (uploads/downloads) for a given
        host.

      MaxTransfersPerUser

        This directive configures a limit on the maximum number of
        simultaneous data transfers (uploads/downloads) for a given
        user name, regardless of the number of clients using that user name.

      TLSVerifyOrder

        This directive is part of the support for the Online Certificate
        Status Protocol (OCSP) in the mod_tls module.  See
        doc/contrib/mod_tls.html#TLSVerifyOrder for details.

      TransferPriority

        This directive can be used to change the process priority while
        the session process is handling a data transfer.  Using this
        directive, data transfers can be given lower/higher priorities
        than other processes on the system, depending on the site needs.

      UseEncoding

        The mod_lang module can how support encodings other than just
        UTF8 for the control connection FTP commands and responses.  See
        doc/modules/mod_lang.html#UseEncoding for additional information.

  + New contrib scripts:

      Added contrib/ftpmail, a Perl script which reads a TransferLog FIFO and
      sends automatic email notifications whenever uploads occur.  See
      doc/contrib/ftpmail.html for more details.

  + Enhanced configuration directives:

      BanOnEvent ClientConnectRate

        Clients can now be banned if they connect too frequently; see
        doc/contrib/mod_ban.html#BanOnEvent

      LogFormat %f

        The %f LogFormat variable is now properly substituted for the
        RNFR, RNTO, SITE CHGRP, and SITE CHMOD commands.

      TimeoutIdle, TimeoutNoTransfer, TimeoutStalled

        These directives can now be used within <Anonymous> sections to
        specify different timeouts for anonymous sessions.

      TLSOptions EnableDiags

        The EnableDiags option configures mod_tls to be *much* more verbose,
        and to print diagnostics about the SSL/TLS protocol to the TLSLog.
        See doc/contrib/mod_tls.html#TLSOptions

      TLSRequired !data, ctrl+!data, auth+!data

        The various combinations for requiring SSL/TLS protection on
        control and data connections have increased.  More details can be
        found here: doc/contrib/mod_tls.html#TLSRequired

  + Deprecated configuration directives

      AnonymousGroup

        This directive is NOT recommended, and relies on a "special
        dynamic configuration" which is very confusing to users.  It will
        be removed in the 1.3.3 ProFTPD release cycle.

      UseUTF8

        This directive has been replaced by the UseEncoding directive.

  + New translations

      The FTP response messages used by proftpd have been translated into
      Italian.  To use translations, compile proftpd using:

        ./configure --enable-nls ...

      This builds the mod_lang module, in addition to installing the
      translated message catalogs for proftpd's use.  See
      doc/modules/mod_lang.html for more information.

  + New modules:

      mod_dynmasq

        Useful for sites using dynamic DNS and other similar services.
        This module automatically refreshes the IP address of the daemon,
        so that the correct address is communicated to clients i.e. via
        the MasqueradeAddress directive.  See the module documentation at:

          doc/contrib/mod_dynmasq.html

      mod_facts

        Implements the MLSD and MLST commands, as per RFC3659.  Also provides
        the MFF and MFMT commands from:

          http://www.ietf.org/internet-drafts/draft-somers-ftp-mfxx-03.txt
 
        Module documentation is available for mod_facts at:

          doc/modules/mod_facts.html

        This module is compiled in by default.

      mod_ident

        The RFC1413 "identification protocol" lookup was separated out of
        the main proftpd code and into this mod_ident module.  With this
        change, you can now choose to build proftpd without this support
        using:

          ./configure --disable-ident ..

        You can also choose to build mod_ident as a shared module, loadable
        as needed:

          ./configure --enable-dso --with-shared=mod_ident ...

        Module documentation is available for mod_ident at:

          doc/modules/mod_ident.html

        This module is compiled in by default.

      mod_sql_odbc

        This module is a mod_sql backend module which supports ODBC
        drivers.  See doc/contrib/mod_sql_odbc.html for more information.

      mod_sql_sqlite

        This module is a mod_sql backend module which uses SQLite as its
        backend database.  See doc/contrib/mod_sql_sqlite.html for details.

      mod_unique_id

        Generates a unique ID for every FTP session.  This ID can be
        written to log files and stored in databases, for tracking all of
        the activity associated with a particular FTP session.  See:

          doc/contrib/mod_unique_id.html

  + New documentation:

      doc/howto/ConfigurationTricks.html

  + Updated documentation:

      doc/howto/TLS.html

        Added instructions on how to use OpenSSL in FIPS mode; see
        doc/howto/TLS.html#TLSFIPS


Last Updated: $Date: 2009/07/01 02:34:03 $

--- NEWS-1.3.1 DELETED ---

--- NEWS-1.3.1rc1 DELETED ---

--- NEWS-1.3.1rc2 DELETED ---

--- NEWS-1.3.1rc3 DELETED ---

--- RELEASE_NOTES-1.3.1 DELETED ---

--- RELEASE_NOTES-1.3.1rc1 DELETED ---

--- RELEASE_NOTES-1.3.1rc2 DELETED ---

--- RELEASE_NOTES-1.3.1rc3 DELETED ---

[Proftpd-docs] CVS: www.proftpd.org wwwmirror.epl,1.111,1.112

[John M. <jw...@us...>]

Update of /cvsroot/pdd/www.proftpd.org
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv27624

Modified Files:
	wwwmirror.epl 
Log Message:
update

Index: wwwmirror.epl
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/wwwmirror.epl,v
retrieving revision 1.111
retrieving revision 1.112
diff -C2 -r1.111 -r1.112
*** wwwmirror.epl	24 Jun 2009 20:57:38 -0000	1.111
--- wwwmirror.epl	2 Jul 2009 17:05:55 -0000	1.112
***************
*** 41,44 ****
--- 41,45 ----
  	<a href="http://www.lv.proftpd.org/">lv</a>
  	<a href="http://www.nl.proftpd.org/">nl</a>
+ 	<a href="http://www.pl.proftpd.org/">pl</a>
  	<a href="http://www.rs.proftpd.org/">rs</a>
  	<a href="http://www.se.proftpd.org/">se</a>
***************
*** 264,268 ****
  		<a href="http://www4.ar.proftpd.org">http://www4.ar.proftpd.org/</a>
          <br />
! 		<a href="proftpd.patan.com.ar">proftpd.patan.com.ar</a>
  		<br />
  
--- 265,269 ----
  		<a href="http://www4.ar.proftpd.org">http://www4.ar.proftpd.org/</a>
          <br />
! 		<a href="http://proftpd.patan.com.ar">http://proftpd.patan.com.ar</a>
  		<br />
  
***************
*** 317,320 ****
--- 318,332 ----
  			</p>
  	<p>
+ 		<a href="http://www1.pl.proftpd.org">http://www1.pl.proftpd.org/</a>
+         <br />
+ 		<a href="http://proftpd.piotrkosoft.net/">http://proftpd.piotrkosoft.net/</a>
+ 		<br />
+ 
+ 		Location: Poland					(Poland)
+ 				<br />
+ 
+ 					Maintained by: Piotr Maluty<br />
+ 			</p>
+ 	<p>
  		<a href="http://www2.il.proftpd.org">http://www2.il.proftpd.org/</a>
          <br />

[Proftpd-docs] CVS: www.proftpd.org md5_pgp.epl, 1.47, 1.48 index.epl, 1.102, 1.103

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv13273

Modified Files:
	md5_pgp.epl index.epl 
Log Message:

Update website with news of releases of 1.3.2a, 1.3.3rc1.


Index: md5_pgp.epl
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/md5_pgp.epl,v
retrieving revision 1.47
retrieving revision 1.48
diff -C2 -r1.47 -r1.48
*** md5_pgp.epl	5 Feb 2009 19:26:47 -0000	1.47
--- md5_pgp.epl	1 Jul 2009 03:17:15 -0000	1.48
***************
*** 9,14 ****
  
  <pre>
! 89f5e31fc3d3e02b66424dfc6cc5892d <a href="ftp://ftp.proftpd.org/distrib/sources/proftpd-1.3.2.tar.bz2">proftpd-1.3.2.tar.bz2</a>
! 756f762883cc8eed03d99dc3b1c56a8e <a href="ftp://ftp.proftpd.org/distrib/sources/proftpd-1.3.2.tar.gz">proftpd-1.3.2.tar.gz</a>
  </pre>
  
--- 9,16 ----
  
  <pre>
! ad3cbb5db30c5ae39e09b308892392b3 <a href="ftp://ftp.proftpd.org/distrib/sources/proftpd-1.3.2a.tar.bz2">proftpd-1.3.2a.tar.bz2</a>
! def477c4a9c1a5599f2e5aeed550c4a3 <a href="ftp://ftp.proftpd.org/distrib/sources/proftpd-1.3.2a.tar.gz">proftpd-1.3.2a.tar.gz</a>
! 23b8674208cceba595512c5d188a5f5d <a href="ftp://ftp.proftpd.org/distrib/sources/proftpd-1.3.3rc1.tar.bz2">proftpd-1.3.3rc1.tar.bz2</a>
! 2cd1dfb30e526d5a1905d44ff8816da8 <a href="ftp://ftp.proftpd.org/distrib/sources/proftpd-1.3.3rc1.tar.gz">proftpd-1.3.3rc1.tar.gz</a>
  </pre>
  
***************
*** 16,37 ****
  
  <pre>
! <strong>proftpd-1.3.2.tar.bz2.asc</strong>
  -----BEGIN PGP SIGNATURE-----
! Version: PGP 6.5.8
  
! iQA/AwUASYs3zLeOiT+lEZdqEQK9EwCgsV2rI3O2XEq7x7adQB2u08yeZc4An1bK
! u7PxZQ/dIlkYnHk2oBbQ0C2G
! =9Fme
  -----END PGP SIGNATURE-----
  </pre>
  
  <pre>
! <strong>proftpd-1.3.2.tar.gz.asc</strong>
  -----BEGIN PGP SIGNATURE-----
! Version: PGP 6.5.8
  
! iQA/AwUASYs3vLeOiT+lEZdqEQINLgCglb0HJIH8uEbrkcm6KLdwJ+7hGu4AoK58
! XuiOmnUqleKQOIkeE1SklEgN
! =sR7w
  -----END PGP SIGNATURE-----
  </pre>
--- 18,61 ----
  
  <pre>
! <strong>proftpd-1.3.2a.tar.bz2.asc</strong>
  -----BEGIN PGP SIGNATURE-----
! Version: GnuPG v1.4.9 (GNU/Linux)
  
! iEYEABECAAYFAkpKw8kACgkQt46JP6URl2p7GgCg1pbFpbOh+dTPrcsSEedNaju1
! LYMAoK69y+8yp6fReHs1IKB3kisUL/Gw
! =kIzP
  -----END PGP SIGNATURE-----
  </pre>
  
  <pre>
! <strong>proftpd-1.3.2a.tar.gz.asc</strong>
  -----BEGIN PGP SIGNATURE-----
! Version: GnuPG v1.4.9 (GNU/Linux)
  
! iEYEABECAAYFAkpKw74ACgkQt46JP6URl2ocfACgzcd6EW5eJAl+hf03njGgjeMA
! kyoAniK0xDWCEsjzXlo0JdFAoV9tfsKv
! =DKvJ
! -----END PGP SIGNATURE-----
! </pre>
! 
! <pre>
! <strong>proftpd-1.3.3rc1.tar.bz2.asc</strong>
! -----BEGIN PGP SIGNATURE-----
! Version: GnuPG v1.4.9 (GNU/Linux)
! 
! iEYEABECAAYFAkpK0HgACgkQt46JP6URl2pwmQCgg6K9KBBhoNQzFyCduVfwsSca
! r/QAnRyIUUJ3+UcfY+Zg27OVZXGXfKpF
! =dqSx
! -----END PGP SIGNATURE-----
! </pre>
! 
! <pre>
! <strong>proftpd-1.3.3rc1.tar.gz.asc</strong>
! -----BEGIN PGP SIGNATURE-----
! Version: GnuPG v1.4.9 (GNU/Linux)
! 
! iEYEABECAAYFAkpK0H8ACgkQt46JP6URl2phUgCgwt79NOdS3cOFbVC7gr6nxXvF
! FMUAoM5mAz7wzoVWN5Xwa9Yn9RS1MGRF
! =aPJa
  -----END PGP SIGNATURE-----
  </pre>

Index: index.epl
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/index.epl,v
retrieving revision 1.102
retrieving revision 1.103
diff -C2 -r1.102 -r1.103
*** index.epl	5 Feb 2009 19:26:47 -0000	1.102
--- index.epl	1 Jul 2009 03:17:15 -0000	1.103
***************
*** 4,7 ****
--- 4,22 ----
  #include "header.epl"
  
+ <h1>1.3.2a, 1.3.3rc1 released</h1>
+ [<i>30/Jun/2009</i>]
+ <p>The ProFTPD Project team is happy to release 1.3.2a to the community.
+ This is a maintenance release, containing backported fixes for bugs found
+ in the 1.3.2 release.  The <a href="docs/RELEASE_NOTES-1.3.2a">RELEASE_NOTES</a>
+ and <a href="docs/NEWS-1.3.2a">NEWS</a> files contain the full details.</p>
+ 
+ <p>We are also pleased to release 1.3.3rc1 to the community.  This is the
+ first release candidate of the 1.3.3 development cycle, and contains
+ numerous new features, including the <code>mod_exec</code>,
+ <code>mod_shaper</code>, and <code>mod_tls_shmcache</code> modules and
+ SSH2, SFTP, and SCP support (via the <code>mod_sftp</code> module).
+ The <a href="docs/RELEASE_NOTES-1.3.3rc1">RELEASE_NOTES</a>
+ and <a href="docs/NEWS-1.3.3rc1">NEWS</a> files contain the full details.</p>
+ 
  <h1>1.3.2 released</h1>
  [<i>5/Feb/2009</i>]

[Proftpd-docs] CVS: www.proftpd.org/include header.epl,1.36,1.37

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org/include
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv13273/include

Modified Files:
	header.epl 
Log Message:

Update website with news of releases of 1.3.2a, 1.3.3rc1.


Index: header.epl
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/include/header.epl,v
retrieving revision 1.36
retrieving revision 1.37
diff -C2 -r1.36 -r1.37
*** header.epl	2 Jun 2009 16:32:31 -0000	1.36
--- header.epl	1 Jul 2009 03:17:15 -0000	1.37
***************
*** 18,31 ****
  <div id="menu">
    <h1>Current Versions</h1>
!   Stable: <strong>1.3.2</strong>
    <div class="indent">
!     <span class="nowrap">[ <a href="/docs/RELEASE_NOTES-1.3.2">RELEASE_NOTES</a> ]</span>
    </div>
    <div class="indent">
!     <span class="nowrap">[ <a href="/docs/NEWS-1.3.2">NEWS</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.2.tar.gz">gz</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.2.tar.bz2">bz2</a> ]</span>
    </div>
-   Release Candidate: <strong>None</strong>
  
    <h1>Mirrors and Downloads</h1>
--- 18,39 ----
  <div id="menu">
    <h1>Current Versions</h1>
!   Stable: <strong>1.3.2a</strong>
    <div class="indent">
!     <span class="nowrap">[ <a href="/docs/RELEASE_NOTES-1.3.2a">RELEASE_NOTES</a> ]</span>
    </div>
    <div class="indent">
!     <span class="nowrap">[ <a href="/docs/NEWS-1.3.2a">NEWS</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.2a.tar.gz">gz</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.2a.tar.bz2">bz2</a> ]</span>
!   </div>
!   Release Candidate: <strong>1.3.3rc1</strong>
!   <div class="indent">
!     <span class="nowrap">[ <a href="/docs/RELEASE_NOTES-1.3.3rc1">RELEASE_NOTES</a> ]</span>
!   </div>
!   <div class="indent">
!     <span class="nowrap">[ <a href="/docs/NEWS-1.3.3rc1">NEWS</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.3rc1.tar.gz">gz</a> ]</span>
!     <span class="nowrap">[ <a href="ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.3rc1.tar.bz2">bz2</a> ]</span>
    </div>
  
    <h1>Mirrors and Downloads</h1>

[Proftpd-docs] CVS: www.proftpd.org/docs NEWS-1.3.3rc1, NONE, 1.1 RELEASE_NOTES-1.3.3rc1, NONE, 1.1

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org/docs
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv10250

Added Files:
	NEWS-1.3.3rc1 RELEASE_NOTES-1.3.3rc1 
Log Message:

Add the news, release notes for 1.3.3rc1.


--- NEW FILE ---
$Id: NEWS-1.3.3rc1,v 1.1 2009/07/01 02:56:33 castaglia Exp $

-----------------------------------------------------------------------------
  More details on the bugs listed below can be found by using the bug number
  indicated in the following URL:

    http://bugs.proftpd.org/show_bug.cgi?id=N

  where `N' is the bug number.
-----------------------------------------------------------------------------

1.3.3rc1 - Released 30-Jun-2009
--------------------------------
- Bug 1801 - Faulty SQLConnectInfo PERCALL policy - connections not closed
  after each call.
- Bug 2894 - Deprecate the AnonymousGroup directive.
- Bug 3123 - Use PQescapeStringConn() rather than PQescapeString().
- Bug 3133 - mod_facts should advertise TVFS support in the FEAT response.
- Bug 3128 - mod_sql_sqlite should use transactions for INSERT/UPDATE
[...2066 lines suppressed...]
- sendfile() deprecates politely on Linux 2.0.x.
- AuthPAMAuthoritative now defaults to False.  This should clear up any
  confusion on using PAM with AuthUserFile and friends.
- Removed Bandwidth from the documentation.
- Fixed a rare segfault in mod_auth.
- Logging has changed slightly to be more informative and more consistent.
    All messages that get logged are now preceded with
    <virtualhost> (remote host[remote ip]).
- mod_ldap for authentication against LDAP directories is now in place.
- ftpwho/ftpcount -- a grammatical error corrected, and they now build
    as seperate binaries.
- Fixed the 'no names, just UIDs' bug.
- Added genuser.pl to facilitate AuthUserFile entry creation.
- Umask now takes an optional second argument, specifying a directory umask.
- Work around FreeBSD's broken setpassent(), and a new option to override
    this in fixed versions of FreeBSD's libc (--enable-force-setpassent).
- Generate RPMs for both inetd and standalone versions of ProFTPD.
- Added AuthUsingAlias to allow for more fine-grain control of anonymous
    logins.
- Added support for 'TYPE L 8' and 'TYPE L 7' per RFC 959.

--- NEW FILE ---
                    1.3.3 Release Notes
                  ------------------------

This file contains a description of the major changes to ProFTPD for the
1.3.3 release cycle, from the 1.3.3rc1 release to the 1.3.3 maintenance
releases.  More information on these changes can be found in the NEWS and
ChangeLog files.

1.3.3rc1
---------

  + Added French, Bulgarian, Korean translations.

  + RPM 4.2 or later is required by the proftpd.spec file provided in the
    distribution.

  + If the --localstatedir configure option is used, proftpd's build system
    used to automatically append "/proftpd" to the configured path.  This
    behavior has been fixed; proftpd's build system will now use the
    configured --localstatedir path as is.

    Note that this may cause issues if you have an existing build script
    for compling proftpd; the expected locations of files under the
    --localstatedir path will change.

  + New command-line options:

    The -S, --serveraddr command-line option has been added.  This option
    can be used to specify the IP address of the host machine.  By
    default, proftpd attempts to resolve the host IP address by using DNS
    resolution of the hostname.  However, in cases where DNS is not
    configured for the host machine, this approach does not work.

    To specify the desired IP address, use -S when starting proftpd, e.g.:

      /usr/local/sbin/proftpd -S 1.2.3.4 ...

    And if you want proftpd to listen on all interfaces, you can specify
    a wildcard socket using an IP address of 0.0.0.0:

      /usr/local/sbin/proftpd -S 0.0.0.0 ...

  + New modules:

    mod_exec

      This module enables execution of external scripts based on actions/events
      during a session.  See doc/contrib/mod_exec.html for details.

    mod_sftp

      This module implements the SSH2, SFTP, and SCP protocols.  See
      doc/contrib/mod_sftp.html for more information.

    mod_sftp_pam

      This module uses PAM to provide a 'keyboard-interactive' SSH2
      authentication method for mod_sftp.  More information can be found in
      the documentation for mod_sftp_pam, in doc/contrib/mod_sftp_pam.html.

    mod_sftp_sql

      This module uses SQL (via mod_sql) for looking up authorized SSH2 
      public keys for user and hostbased authentication.  More information
      is available in doc/contrib/mod_sftp_sql.html.

    mod_shaper

      This module can be used to provide data transfer rate "shaping"
      across the entire server.  See the documentation at
      doc/contrib/mod_shaper.html.

    mod_tls_shmcache

      This module provides an external SSL session cache using shared
      memory; see the TLSSessionCache configuration directive.  More
      information on this module can be found in
      doc/contrib/mod_tls_shmcache.html.

  + New configuration directives:

    RewriteHome

      The RewriteHome directive can be used to support rewriting the
      home directory for a user, based on regular expression rules.
      One such use case is where some portion of the home directory is
      retrieved e.g. from an LDAP directory, but you need to apply some
      custom prefix to the LDAP attribute.

      To enable this feature, first you need to add the following to your
      proftpd.conf:

        RewriteHome on

      Next, you need to configure the mod_rewrite rules for rewriting your home
      directory; this feature depends on mod_rewrite for the rewriting.
      The pseudo-command used by mod_rewrite for rewriting home directories is
      "REWRITE_HOME".  Thus would you use:

        <IfModule mod_rewrite.c>
          RewriteEngine on
          RewrlteLog /path/to/rewrite.log

          RewriteCondition %m REWRITE_HOME
          RewriteRule (.*) /my/new/prefix$1
        </IfModule>

    ScoreboardScrub

      The ScoreboardScrub directive can be used to turn on/off proftpd's
      periodic "scrubbing" of its ScoreboardFile, where the ScoreboardFile
      is scanned for entries of dead sessions:

        ScoreboardScrub on|off|secs

      Note that if scoreboard scrubbing is turned off, the ScoreboardFile
      can still be scrubbed on demand, either by using mod_ctrls_admin's
      "ftpdctl scoreboard scrub" action, or by using the new ftpscrub
      command-line utility.

    TLSControlsACLs

      With the addition of support for external session caches, the
      mod_tls module now supports some ftpdctl actions for interacting
      with those session caches.  The TLSControlsACLs directive can be
      used to configure ACLs for the ftpdctl actions supported by mod_tls,
      and is analogous to other ACLs directives for other modules which
      support ftpdctl actions.

    TLSPKCS12File

      The TLSPKCS12File directive of the mod_tls module is used to
      configure mod_tls to use the certificate and private key contained
      in the indicated PKCS#12 file.  Some sites already use PKCS#12 files
      for containing their other certificates, and thus find it useful to
      have PKCS#12 support in mod_tls.

    TLSSessionCache

      The TLSSessionCache directive configures an external SSL session
      cache, which can be used for storing and shared SSL sessions across
      multiple processes.  An external SSL session cache is an optional
      facility which speeds up parallel FTPS session connections.

      See doc/contrib/mod_tls.html#TLSSessionCache for more information.

  + Changed configuration directives:

    AllowOverride

      This directive no longer supports the optional user/group/class
      parameters.  If you wish to have per-user/group/class conditional
      use of the AllowOverride directive, you will need to use the
      mod_ifsession module.  For example, instead of:

        AllowOverride off user !admin

      you will need to use:

        <IfUser admin>
          AllowOverride on
        </IfUser>

        <IfUser !admin>
          AllowOverride off
        </IfUser>

      Note that the "!admin" section is necessary.  If you set
      "AllowOverride off" unconditionally, then use a mod_ifsession context,
      you would end up with two AllowOverride settings, and the code might not
      be able to distinguish properly which setting to use.  Thus you need to
      make both the "on" and "off" cases conditional, and mutually exclusive.

      Configurations which use the user/group/class conditional parameters
      to AllowOverride will now generate configuration errors.

    BanOnEvent

      The BanOnEvent directive of the mod_ban module now supports
      TimeoutLogin events.

    <VirtualHost>

      You can now specify an IP address of "0.0.0.0" in a <VirtualHost>
      definition.

    IdentLookups

      The default IdentLookups value is now 'off'.  The RFC1413 IDENT lookup
      adds latency to the login process, so much so that it is a FAQ to
      configure "IdentLookups off".  In addition, the IDENT protocol is not
      secure; it can easily be spoofed using man-in-the-middle attacks.  Sites
      that require IDENT lookups must now explicitly configure
      "IdentLookups on".

      Note that in order to use IdentLookups, you must compile proftpd with
      the mod_ident module.  If you use the --disable-ident configure
      option, then proftpd will not recognize the IdentLookups directive.
      Thus in your proftpd.conf, you should use something like:

        <IfModule mod_ident.c>
          IdentLookups on
        </IfModule>

      if you want to use RFC1413 lookups.

    LogFormat, SQLNamedQuery

      There is a new variable, %{protocol}, which describes the protocol
      that the client is using.  This variable can have values of "ftp",
      "ftps", "ssh2", "sftp", and "scp".

      Note that for SSH2 connections, the value will be "ssh2" until SFTP or
      SCP channels are opened; this means that during login, the %{protocol}
      value will be "ssh2".

      There is also a new %w variable which is only valid for RNTO commands.
      The %w value will be the original name of the file being renamed
      (mnemonic: "whence" a renamed file comes).

    RewriteCondition, RewriteRule

      Use of environment variables in mod_rewrite rules is now supported
      via the "%{ENV:var}" syntax.

    SQLGroupInfo

      The SQLGroupInfo now supports custom queries for retrieve group
      information.  Note that instead of a single custom query, several
      different queries are needed; different lookups are called for
      depending on the situation and configuration of mod_sql (e.g.
      using the 'groupset' or 'groupsetfast' SQLAuthenticate parameters).

      See doc/contrib/mod_sql.html#SQLGroupInfo and
      doc/howto/SQL.html#SQLUsersetfast for more details.

    SQLUserInfo

      The support for custom SQLUserInfo queries has been extended to
      support custom queries to be used when the 'userset' or 'usersetfast'
      SQLAuthenticate parameters are used.

      For more information, see doc/contrib/mod_sql.html#SQLUserInfo and 
      doc/howto/SQL.html#SQLUsersetfast.

    TLSOptions

      The NoSessionReuseRequired option has been added.  As of
      ProFTPD 1.3.3rc1, mod_tls only accepts SSL/TLS data connections
      that reuse the SSL session of the control connection, as a security
      measure.  Unfortunately, there are some clients (e.g. curl) which
      do not reuse SSL sessions.

      To relax the requirement that the SSL session from the control
      connection be reused for data connections, use the following in the
      proftpd.conf:

        <IfModule mod_tls.c>
          ...
          TLSOptions NoSessionReuseRequired
          ...
        </IfModule>

    TLSRequired

      The TLSRequired directive can now be used in <Directory> sections and
      in .ftpaccess files.  When used in these configuration contexts, only
      the TLSRequired values that require SSL/TLS protection on data transfers
      are honored.  With this, it is now possible to mark specific files or
      directories as requiring SSL/TLS protection to be accessed via data
      transfer.

    TransferLog

      The "service-name" field of the TransferLog usually contains just
      "ftp".  In order to support TransferLogs for SFTP and SCP transfers,
      the service-name field of the TransferLog format may now show
      "sftp" or "scp".  It may also show "ftps" instead of "ftp", if the
      data transfer occurred while the client is using FTP over SSL/TLS.

      NOTE: This change, while correct, may cause issues for log parsers.

  + Deprecated configuration directives:

    AnonymousGroup

      Support for this directive has been removed.

  + Developer Notes

    If you are a module developer, then you will want to know of the following
    API/internals changes:

      * The original USER value sent by the client is no longer stored in
        the config tree.  That is, the following no longer works:

          user = get_param_ptr(main_server->conf, C_USER, FALSE);

        Instead, the original USER value is stashes in the session.notes
        table.  Thus the above line of code can be replaced with:

          user = pr_table_get(session.notes, "mod_auth.orig-user", NULL);

        A similar change occurred for the anonymous "password" sent, but
        this will probably not apply to most modules.

 
Last Updated: $Date: 2009/07/01 02:56:33 $

[Proftpd-docs] CVS: www.proftpd.org/docs/howto SQL.html,1.2,1.3

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org/docs/howto
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv19173

Modified Files:
	SQL.html 
Log Message:

Update the URLs to castaglia.org to be to proftpd.org instead.


Index: SQL.html
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/docs/howto/SQL.html,v
retrieving revision 1.2
retrieving revision 1.3
diff -C2 -r1.2 -r1.3
*** SQL.html	10 Apr 2009 18:55:01 -0000	1.2
--- SQL.html	25 Jun 2009 20:40:42 -0000	1.3
***************
*** 268,272 ****
  A list of <code>mod_sql</code> configuration directives can be found here:
  <pre>
!   <a href="http://www.castaglia.org/proftpd/modules/mod_sql.html">http://www.castaglia.org/proftpd/modules/mod_sql.html</a>
  </pre>
  
--- 268,272 ----
  A list of <code>mod_sql</code> configuration directives can be found here:
  <pre>
!   <a href="http://www.proftpd.org/doc/contrib/mod_sql.html">http://www.proftpd.org/doc/contrib/mod_sql.html</a>
  </pre>
  
***************
*** 440,444 ****
  <font color=blue>Answer</font>: This log message almost always denotes use
  of <code>mod_sql</code>, and a problem in the <code>mod_sql</code>
! configuration.  To debug the problem, define an <a href="http://www.castaglia.org/proftpd/modules/mod_sql.html#SQLLogFile"><code>SQLLogFile</code></a>
  (making sure the path is <b>not</b> in a world-writable directory), to which
  <code>mod_sql</code> will write debugging information.
--- 440,444 ----
  <font color=blue>Answer</font>: This log message almost always denotes use
  of <code>mod_sql</code>, and a problem in the <code>mod_sql</code>
! configuration.  To debug the problem, define an <a href="http://www.proftpd.org/doc/contrib/mod_sql.html#SQLLogFile"><code>SQLLogFile</code></a>
  (making sure the path is <b>not</b> in a world-writable directory), to which
  <code>mod_sql</code> will write debugging information.

[Proftpd-docs] CVS: www.proftpd.org wwwmirror.epl,1.110,1.111

[John M. <jw...@us...>]

Update of /cvsroot/pdd/www.proftpd.org
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv12258

Modified Files:
	wwwmirror.epl 
Log Message:
update

Index: wwwmirror.epl
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/wwwmirror.epl,v
retrieving revision 1.110
retrieving revision 1.111
diff -C2 -r1.110 -r1.111
*** wwwmirror.epl	28 Apr 2009 16:12:45 -0000	1.110
--- wwwmirror.epl	24 Jun 2009 20:57:38 -0000	1.111
***************
*** 31,35 ****
  	<a href="http://www.be.proftpd.org/">be</a>
  	<a href="http://www.bg.proftpd.org/">bg</a>
- 	<a href="http://www.br.proftpd.org/">br</a>
  	<a href="http://www.cz.proftpd.org/">cz</a>
  	<a href="http://www.de.proftpd.org/">de</a>
--- 31,34 ----
***************
*** 252,275 ****
  			</p>
  	<p>
! 		<a href="http://www4.br.proftpd.org">http://www4.br.proftpd.org/</a>
          <br />
! 		<a href="http://proftpd.oi.com.br/">http://proftpd.oi.com.br/</a>
  		<br />
  
! 		Location: Brazil					(Rio de Janeiro - Brazil)
  				<br />
  
! 					Maintained by: Oi Internet<br />
  			</p>
  	<p>
! 		<a href="http://www3.lv.proftpd.org">http://www3.lv.proftpd.org/</a>
          <br />
! 		<a href="http://proftpd.linux.edu.lv/">http://proftpd.linux.edu.lv/</a>
  		<br />
  
! 		Location: Latvia					(Riga, Latvia)
  				<br />
  
! 					Maintained by: Leo Truksans<br />
  			</p>
  	<p>
--- 251,274 ----
  			</p>
  	<p>
! 		<a href="http://www3.lv.proftpd.org">http://www3.lv.proftpd.org/</a>
          <br />
! 		<a href="http://proftpd.linux.edu.lv/">http://proftpd.linux.edu.lv/</a>
  		<br />
  
! 		Location: Latvia					(Riga, Latvia)
  				<br />
  
! 					Maintained by: Leo Truksans<br />
  			</p>
  	<p>
! 		<a href="http://www4.ar.proftpd.org">http://www4.ar.proftpd.org/</a>
          <br />
! 		<a href="proftpd.patan.com.ar">proftpd.patan.com.ar</a>
  		<br />
  
! 		Location: Argentina					(Buenos Aires, Argentina)
  				<br />
  
! 					Maintained by: John Knoll<br />
  			</p>
  	<p>
***************
*** 342,346 ****
  		<a href="http://www36.us.proftpd.org">http://www36.us.proftpd.org/</a>
          <br />
! 		<a href="http://proftpd.mirror.facebook.com/">http://proftpd.mirror.facebook.com/</a>
  		<br />
  
--- 341,345 ----
  		<a href="http://www36.us.proftpd.org">http://www36.us.proftpd.org/</a>
          <br />
! 		<a href="http://proftpd.mirror.facebook.net/">http://proftpd.mirror.facebook.net/</a>
  		<br />
  

[Proftpd-docs] CVS: www.proftpd.org/include header.epl,1.35,1.36

[John M. <jw...@us...>]

Update of /cvsroot/pdd/www.proftpd.org/include
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv30478

Modified Files:
	header.epl 
Log Message:
- remove crufty link opening tag
- copyright statement in a separate para


Index: header.epl
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/include/header.epl,v
retrieving revision 1.35
retrieving revision 1.36
diff -C2 -r1.35 -r1.36
*** header.epl	16 Mar 2009 04:42:22 -0000	1.35
--- header.epl	2 Jun 2009 16:32:31 -0000	1.36
***************
*** 80,88 ****
             alt="Valid XHTML 1.0!" height="31" width="88" />
      </a>
-     <a href="http://sourceforge.net/">
      <a href="http://sourceforge.net/projects/proftp">
        <img src="http://sflogo.sourceforge.net/sflogo.php?group_id=17793&type=10" width="80" height="15" border="0" alt="Get ProFTPD Server Software at SourceForge.net. Fast, secure and Free Open Source software downloads" />
      </a>
!     Copyright &copy; 1999, 2000-9, The ProFTPD Project.
    </div>
  </div>
--- 80,87 ----
             alt="Valid XHTML 1.0!" height="31" width="88" />
      </a>
      <a href="http://sourceforge.net/projects/proftp">
        <img src="http://sflogo.sourceforge.net/sflogo.php?group_id=17793&type=10" width="80" height="15" border="0" alt="Get ProFTPD Server Software at SourceForge.net. Fast, secure and Free Open Source software downloads" />
      </a>
!     <p>Copyright &copy; 1999, 2000-9, The ProFTPD Project.</p>
    </div>
  </div>

[Proftpd-docs] CVS: www.proftpd.org/docs/howto Rewrite.html, 1.1, 1.2

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org/docs/howto
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv10293

Modified Files:
	Rewrite.html 
Log Message:

Update the Rewrite howto from the version in the source CVS module.


Index: Rewrite.html
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/docs/howto/Rewrite.html,v
retrieving revision 1.1
retrieving revision 1.2
diff -C2 -r1.1 -r1.2
*** Rewrite.html	9 Feb 2009 16:34:59 -0000	1.1
--- Rewrite.html	27 May 2009 23:15:47 -0000	1.2
***************
*** 253,257 ****
      # the client tells us to use in the PORT command
      RewriteCondition %m ^PORT$
!     RewriteRule ([0-9]+,[0-9]+,[0-9]+,[0-9]+)(.*) ${replace:/$1/%a$2}
  
      # Replace the periods in the client address with commas, as per RFC959
--- 253,257 ----
      # the client tells us to use in the PORT command
      RewriteCondition %m ^PORT$
!     RewriteRule ([0-9]+,[0-9]+,[0-9]+,[0-9]+)(.*) ${replace:/$1/$1/%a$2}
  
      # Replace the periods in the client address with commas, as per RFC959
***************
*** 303,307 ****
  The above <code>RewriteRule</code> would work, but it would <b>not</b> actually
  redirect the FTP client to the URL.  FTP unfortuntely does <i>not</i> support
! redirection of requests, at the protocol level, unlike HTTP.
  
  <p>
--- 303,320 ----
  The above <code>RewriteRule</code> would work, but it would <b>not</b> actually
  redirect the FTP client to the URL.  FTP unfortuntely does <i>not</i> support
! redirection of requests to other servers, at the protocol level, unlike HTTP.
! 
! <p>
! However, it <i>is</i> possible to redirect a request to some other directory
! on the same machine.  For example, if you wanted to have any file uploaded
! by a client go into the "/Incoming/" directory, no matter where the client
! wanted to upload the file, you could use:
! <pre>
!   &lt;IfModule mod_rewrite.c&gt;
!     RewriteEngine on
!     RewriteCondition %m STOR
!     RewriteRule (.*/)?(.*) /Incoming/$2
!   &lt;/IfModule&gt;
! </pre>
  
  <p>

[Proftpd-docs] CVS: www.proftpd.org ROADMAP,1.97,1.98

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv26342

Modified Files:
	ROADMAP 
Log Message:

Updated the roadmap.


Index: ROADMAP
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/ROADMAP,v
retrieving revision 1.97
retrieving revision 1.98
diff -C2 -r1.97 -r1.98
*** ROADMAP	1 Apr 2009 23:11:35 -0000	1.97
--- ROADMAP	28 Apr 2009 22:52:24 -0000	1.98
***************
*** 6,20 ****
  
  1.3.3
!         Add mod_exec
          Add mod_vroot
       C  Add mod_sftp et al
!         Add mod_shaper
       C  Bug#2067 - Allow/Deny Filters should be supported in the <Limit> context
  	Bug#2368 - Allow contrib modules to extend mod_sql's SQLAuthTypes
!         Bug#2715 - Use session.notes table, rather than config tree, for storing
                     some data
          Bug#2871 - Remove ftpshut and the /etc/shutmsg file
          Bug#3079 - Support modules written in C++
!         Bug#3086 - mod_quotatab write locking is ineffective
   
  TBD
--- 6,20 ----
  
  1.3.3
!      C  Add mod_exec
          Add mod_vroot
       C  Add mod_sftp et al
!      C  Add mod_shaper
       C  Bug#2067 - Allow/Deny Filters should be supported in the <Limit> context
  	Bug#2368 - Allow contrib modules to extend mod_sql's SQLAuthTypes
!      C  Bug#2715 - Use session.notes table, rather than config tree, for storing
                     some data
          Bug#2871 - Remove ftpshut and the /etc/shutmsg file
          Bug#3079 - Support modules written in C++
!      C  Bug#3086 - mod_quotatab write locking is ineffective
   
  TBD

[Proftpd-docs] CVS: www.proftpd.org/docs/howto TLS.html,1.5,1.6

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org/docs/howto
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv6153

Modified Files:
	TLS.html 
Log Message:

Updating the TLS howto from the source module.


Index: TLS.html
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/docs/howto/TLS.html,v
retrieving revision 1.5
retrieving revision 1.6
diff -C2 -r1.5 -r1.6
*** TLS.html	5 Feb 2009 21:21:45 -0000	1.5
--- TLS.html	28 Apr 2009 17:02:33 -0000	1.6
***************
*** 326,329 ****
--- 326,355 ----
  </pre>
  
+ <p><a name="TLSProtection">
+ <font color=red>Question</font>: Does FTPS protect both the control connection
+ <i>and</i> the data connections?<br>
+ <font color=blue>Question</font>: Short answer: yes.
+ 
+ <p>
+ The long answer is, of course, that it depends.  In the case of
+ <code>mod_tls</code>, it depends on your <code>TLSRequired</code> setting.
+ If you use:
+ <pre>
+   TLSRequired on
+ </pre>
+ then you are configuring <code>mod_tls</code> to <b>require</b> SSL/TLS
+ protection for both control connections (<i>e.g.</i> protecting the username
+ and password used to log in) <i>and</i> data connections.  If you have:
+ <pre>
+   TLSRequired off
+ </pre>
+ then it is up to the FTPS client whether both control and data connections
+ will be protected via SSL/TLS.  Other <code>TLSRequired</code> settings
+ can be used to specify specific combinations: data connections only,
+ control connections only, authentication plus data data connections only,
+ <i>etc</i>.  The <code>TLSRequired</code>
+ <a href="../../contrib/mod_tls.html#TLSRequired">documentation</a> has the
+ details.
+ 
  <p><a name="TLSClients">
  <font color=red>Question</font>: Where can I find a list of clients that

[Proftpd-docs] CVS: www.proftpd.org wwwmirror.epl,1.109,1.110

[John M. <jw...@us...>]

Update of /cvsroot/pdd/www.proftpd.org
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv709

Modified Files:
	wwwmirror.epl 
Log Message:
update

Index: wwwmirror.epl
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/wwwmirror.epl,v
retrieving revision 1.109
retrieving revision 1.110
diff -C2 -r1.109 -r1.110
*** wwwmirror.epl	10 Apr 2009 20:09:20 -0000	1.109
--- wwwmirror.epl	28 Apr 2009 16:12:45 -0000	1.110
***************
*** 175,189 ****
  			</p>
  	<p>
- 		<a href="http://www16.de.proftpd.org">http://www16.de.proftpd.org/</a>
-         <br />
- 		<a href="http://proftp.oslevel.de">http://proftp.oslevel.de</a>
- 		<br />
- 
- 		Location: Germany					(Karlsruhe)
- 				<br />
- 
- 					Maintained by: Mirko Hahn<br />
- 			</p>
- 	<p>
  		<a href="http://www1.li.proftpd.org">http://www1.li.proftpd.org/</a>
          <br />
--- 175,178 ----

[Proftpd-docs] CVS: www.proftpd.org features.epl,1.7,1.8

[TJ S. <cas...@us...>]

Update of /cvsroot/pdd/www.proftpd.org
In directory ddv4jf1.ch3.sourceforge.com:/tmp/cvs-serv23289

Modified Files:
	features.epl 
Log Message:

Reword the statement about execution of external commands.
Move the "source code available" to its own entry.


Index: features.epl
===================================================================
RCS file: /cvsroot/pdd/www.proftpd.org/features.epl,v
retrieving revision 1.7
retrieving revision 1.8
diff -C2 -r1.7 -r1.8
*** features.epl	12 Jun 2005 20:06:37 -0000	1.7
--- features.epl	27 Apr 2009 18:49:32 -0000	1.8
***************
*** 25,32 ****
        directory structure, system binaries or other system files.
    </li>
!   <li>No SITE EXEC command. In modern Internet environments, such
!       commands are a security nightmare. ProFTPD does not execute any
!       external programs at any time. The source is available (and must
!       always be available) for administrators to audit.
    </li>
    <li>Hidden directories and files, based on Unix-style permissions or
--- 25,33 ----
        directory structure, system binaries or other system files.
    </li>
!   <li>No SITE EXEC command. In modern Internet environments, such commands are
!       a security nightmare.
!   </li>
!   <li>Source code is available (and must always be available) for
!       administrators and developers to audit.
    </li>
    <li>Hidden directories and files, based on Unix-style permissions or