[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
[or-cvs] r17586: {tor} put recent release blurbs into the changelog; fix a typo in (in tor/trunk: . doc/spec)
Author: arma
Date: 2008-12-11 12:18:03 -0500 (Thu, 11 Dec 2008)
New Revision: 17586
Modified:
tor/trunk/ChangeLog
tor/trunk/ReleaseNotes
tor/trunk/doc/spec/tor-spec.txt
Log:
put recent release blurbs into the changelog; fix a typo in tor-spec.
Modified: tor/trunk/ChangeLog
===================================================================
--- tor/trunk/ChangeLog 2008-12-11 15:58:14 UTC (rev 17585)
+++ tor/trunk/ChangeLog 2008-12-11 17:18:03 UTC (rev 17586)
@@ -40,6 +40,10 @@
Changes in version 0.2.1.8-alpha - 2008-12-08
+ Tor 0.2.1.8-alpha fixes some crash bugs in earlier alpha releases,
+ builds better on unusual platforms like Solaris and old OS X, and
+ fixes a variety of other issues.
+
o Major features:
- New DirPortFrontPage option that takes an html file and publishes
it as "/" on the DirPort. Now relay operators can provide a
@@ -101,6 +105,12 @@
Changes in version 0.2.0.32 - 2008-11-20
+ Tor 0.2.0.32 fixes a major security problem in Debian and Ubuntu
+ packages (and maybe other packages) noticed by Theo de Raadt, fixes
+ a smaller security flaw that might allow an attacker to access local
+ services, further improves hidden service performance, and fixes a
+ variety of other issues.
+
o Security fixes:
- The "User" and "Group" config options did not clear the
supplementary group entries for the Tor process. The "User" option
@@ -166,6 +176,13 @@
Changes in version 0.2.1.7-alpha - 2008-11-08
+ Tor 0.2.1.7-alpha fixes a major security problem in Debian and Ubuntu
+ packages (and maybe other packages) noticed by Theo de Raadt, fixes
+ a smaller security flaw that might allow an attacker to access local
+ services, adds better defense against DNS poisoning attacks on exit
+ relays, further improves hidden service performance, and fixes a
+ variety of other issues.
+
o Security fixes:
- The "ClientDNSRejectInternalAddresses" config option wasn't being
consistently obeyed: if an exit relay refuses a stream because its
Modified: tor/trunk/ReleaseNotes
===================================================================
--- tor/trunk/ReleaseNotes 2008-12-11 15:58:14 UTC (rev 17585)
+++ tor/trunk/ReleaseNotes 2008-12-11 17:18:03 UTC (rev 17586)
@@ -4,6 +4,12 @@
each development snapshot, see the ChangeLog file.
Changes in version 0.2.0.32 - 2008-11-20
+ Tor 0.2.0.32 fixes a major security problem in Debian and Ubuntu
+ packages (and maybe other packages) noticed by Theo de Raadt, fixes
+ a smaller security flaw that might allow an attacker to access local
+ services, further improves hidden service performance, and fixes a
+ variety of other issues.
+
o Security fixes:
- The "User" and "Group" config options did not clear the
supplementary group entries for the Tor process. The "User" option
Modified: tor/trunk/doc/spec/tor-spec.txt
===================================================================
--- tor/trunk/doc/spec/tor-spec.txt 2008-12-11 15:58:14 UTC (rev 17585)
+++ tor/trunk/doc/spec/tor-spec.txt 2008-12-11 17:18:03 UTC (rev 17586)
@@ -253,8 +253,8 @@
To avoid being trivially distinguished from servers, client-only Tor
instances are encouraged but not required to use a two-certificate chain
- as well. Clients SHOULD NOT use keep using the same certificates when
- their IP changes. Clients MAY send no certificates at all.
+ as well. Clients SHOULD NOT keep using the same certificates when
+ their IP address changes. Clients MAY send no certificates at all.
3. Cell Packet format