OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/vsftpd?expand=0&rev=5

vsftpd-2.0.5.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:4b2bc1126b4aa71fb00322646e88228b095e1ce57340c6a34d80fff4d1afb76e
-size 116330

vsftpd-2.0.6.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:08a00c726f74f68c5682d826dcb3f038c307ffef59ab88753e3ac0c462b08cd8
+size 118231

vsftpd.changes

@@ -1,3 +1,41 @@
+-------------------------------------------------------------------
+Tue Mar 11 20:56:47 CET 2008 - crrodriguez@suse.de
+
+- version 2.0.6
+- Fix delay_failed_login typo. Oops.
+- Patch the getcwd and readlink sysutil helpers to reflect that they wouldn't
+like a 0-sized buf. No caller is affected. Thanks Ilja van Sprundel
+<ilja@suresec.org>.
+- Allow a (fake) reauth as the same user as the logged in user. Should resolve
+.NET related report from Sabo Jim <Jim.Sabo@thomson.net>.
+- Tweak from Lucian Adrian Grijincu <lucian.grijincu@gmail.com> to take
+unnecessary port calculations out of a loop.
+- Fix byte I/O accounting in the error path of do_file_send_rwloop, thanks to
+<echen@siac.com>.
+- Don't log FireFox's attempts to RETR directories! Reported by
+Nixdorf, Tim <tnixdorf@dnps.com>.
+- Fix STOU sending the same 150 status line twice - oops! Reported by
+<yamazaki@iij.ad.jp>.
+- Fix xferlog format for virtual (guest) users, reported by Andy Fletcher
+<andy@withnail.org>.
+- Fix bug with empty user list file and userlist_deny=NO. Reported by
+Marcin Zawadzki/GlobalVanet.com <marcin.zawadzki@globalvanet.com>.
+- Pretend we have proper UTF8 support and respond positively to OPTS UTF8 ON.
+Thanks Stanislav Maslovski <stanislav.maslovski@gmail.com>.
+- Add control over the file permissions used in the chown()ing of anonymous
+uploads: chown_upload_mode (default 0600 as before). Suggestion from
+An Pham <apham@medforcetech.com>.
+- Do a retry getting the active ftp socket in vsf_privop_get_ftp_port_sock();
+should help buggy Solaris systems. Reported by Michael Masterson
+<mjmasterson@xo.com>.
+- Add debug_ssl option to dump out some SSL connection details.
+- Use code 522, not 521, to indicate that the server requires an encrypted
+data connection. Still does not seem to coax lftp to retry :(
+- Recognize OPTS pre-login.
+- A whole ton of SSL improvements, including ability to force requirement of
+a client cert; data and control channel client cert cross checking. Ability
+to require fully valid / authentic client certs. No cert-based auth yet. 
+
 -------------------------------------------------------------------
 Tue Mar 27 14:45:11 CEST 2007 - mskibbe@suse.de
 

vsftpd.init

@@ -28,6 +28,7 @@
 # Required-Stop:     $syslog $remote_fs
 # Default-Start:     3 5
 # Default-Stop:      0 1 2 6
+# Description:		 very secure ftp daemon
 # Short-Description: very secure ftp daemon
 ### END INIT INFO
 # Note on runlevels:

vsftpd.spec

@@ -1,7 +1,7 @@
 #
-# spec file for package vsftpd (Version 2.0.5)
+# spec file for package vsftpd (Version 2.0.6)
 #
-# Copyright (c) 2007 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany.
 # This file and all modifications and additions to the pristine
 # package are under the same license as the package itself.
 #
@@ -10,6 +10,7 @@
 
 # norootforbuild
 
+
 Name:           vsftpd
 BuildRequires:  openssl-devel pam-devel
 %if 0%{?suse_version} < 1001
@@ -17,12 +18,12 @@ BuildRequires:  libcap
 %else
 BuildRequires:  libcap-devel
 %endif
-Version:        2.0.5
-Release:        41
+Version:        2.0.6
+Release:        1
 Summary:        Very Secure FTP Daemon - Written from Scratch
-License:        GNU General Public License (GPL)
+License:        GPL v2 or later
 Group:          Productivity/Networking/Ftp/Servers
-URL:            http://vsftpd.beasts.org
+Url:            http://vsftpd.beasts.org
 Source:         %name-%version.tar.bz2
 Source1:        %name.pam
 Source2:        %name.logrotate
@@ -36,9 +37,9 @@ Patch2:         %name-2.0.4-nowarn.patch
 Patch3:         %name-2.0.4-xinetd.diff
 Patch4:         %name-2.0.4-enable-ssl.patch
 Patch5:         %name-2.0.4-dmapi.patch
-Patch6:         %name-%{version}-vuser.patch
-Patch7:         %name-%{version}-enable-debuginfo.patch
-Patch8:         %name-%{version}-utf8-log-names.patch
+Patch6:         %name-2.0.5-vuser.patch
+Patch7:         %name-2.0.5-enable-debuginfo.patch
+Patch8:         %name-2.0.5-utf8-log-names.patch
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 Provides:       ftp-server
 PreReq:         %insserv_prereq
@@ -125,50 +126,85 @@ rm -rf $RPM_BUILD_ROOT
 %{_sysconfdir}/sysconfig/SuSEfirewall2.d/services/%{name}
 
 %changelog
-* Tue Mar 27 2007 - mskibbe@suse.de
+* Tue Mar 11 2008 crrodriguez@suse.de
+- version 2.0.6
+- Fix delay_failed_login typo. Oops.
+- Patch the getcwd and readlink sysutil helpers to reflect that they wouldn't
+  like a 0-sized buf. No caller is affected. Thanks Ilja van Sprundel
+  <ilja@suresec.org>.
+- Allow a (fake) reauth as the same user as the logged in user. Should resolve
+  .NET related report from Sabo Jim <Jim.Sabo@thomson.net>.
+- Tweak from Lucian Adrian Grijincu <lucian.grijincu@gmail.com> to take
+  unnecessary port calculations out of a loop.
+- Fix byte I/O accounting in the error path of do_file_send_rwloop, thanks to
+  <echen@siac.com>.
+- Don't log FireFox's attempts to RETR directories! Reported by
+  Nixdorf, Tim <tnixdorf@dnps.com>.
+- Fix STOU sending the same 150 status line twice - oops! Reported by
+  <yamazaki@iij.ad.jp>.
+- Fix xferlog format for virtual (guest) users, reported by Andy Fletcher
+  <andy@withnail.org>.
+- Fix bug with empty user list file and userlist_deny=NO. Reported by
+  Marcin Zawadzki/GlobalVanet.com <marcin.zawadzki@globalvanet.com>.
+- Pretend we have proper UTF8 support and respond positively to OPTS UTF8 ON.
+  Thanks Stanislav Maslovski <stanislav.maslovski@gmail.com>.
+- Add control over the file permissions used in the chown()ing of anonymous
+  uploads: chown_upload_mode (default 0600 as before). Suggestion from
+  An Pham <apham@medforcetech.com>.
+- Do a retry getting the active ftp socket in vsf_privop_get_ftp_port_sock();
+  should help buggy Solaris systems. Reported by Michael Masterson
+  <mjmasterson@xo.com>.
+- Add debug_ssl option to dump out some SSL connection details.
+- Use code 522, not 521, to indicate that the server requires an encrypted
+  data connection. Still does not seem to coax lftp to retry :(
+- Recognize OPTS pre-login.
+- A whole ton of SSL improvements, including ability to force requirement of
+  a client cert; data and control channel client cert cross checking. Ability
+  to require fully valid / authentic client certs. No cert-based auth yet.
+* Tue Mar 27 2007 mskibbe@suse.de
 - change path to firewall script (#247352)
-* Fri Mar 02 2007 - mskibbe@suse.de
+* Fri Mar 02 2007 mskibbe@suse.de
 - change path to firewall script (#247352)
-* Wed Feb 28 2007 - mskibbe@suse.de
+* Wed Feb 28 2007 mskibbe@suse.de
 - vsftpd - Support for FATE #300687: Ports for SuSEfirewall added
   via packages (#246932)
-* Mon Jan 15 2007 - mskibbe@suse.de
+* Mon Jan 15 2007 mskibbe@suse.de
 - fix cryptic symbol in package - description
 - build against libcap on suse < 10.1
-* Fri Jan 12 2007 - mskibbe@suse.de
+* Fri Jan 12 2007 mskibbe@suse.de
 - vsftp could not log any file name other then ascii (#229320)
-* Thu Jan 11 2007 - mskibbe@suse.de
+* Thu Jan 11 2007 mskibbe@suse.de
 - change path to xml service document (fate #301713)
-* Mon Jan 08 2007 - mskibbe@suse.de
+* Mon Jan 08 2007 mskibbe@suse.de
 - fix Bug #230220 - vsftp no debuginfo
-* Mon Jan 08 2007 - mskibbe@suse.de
+* Mon Jan 08 2007 mskibbe@suse.de
 - xml document should readable to all (fate #301713)
-* Wed Dec 06 2006 - mskibbe@suse.de
+* Wed Dec 06 2006 mskibbe@suse.de
 - add service xml document (fate #301713 )
-* Mon Oct 23 2006 - mskibbe@suse.de
+* Mon Oct 23 2006 mskibbe@suse.de
 - fix Bug 213894 - vsftpd and pam
-* Mon Sep 04 2006 - kukuk@suse.de
+* Mon Sep 04 2006 kukuk@suse.de
 - Include common PAM config files, add pam_loginuid.so
-* Fri Jul 14 2006 - mskibbe@suse.de
+* Fri Jul 14 2006 mskibbe@suse.de
 - udpate to version 2.0.5 which
   o IE should now show the login dialog again
   o configurable login attempt limits and delays were added
   o a bad intereaction with DMAPI filesystems was fixed and chained
   certs should now work.
-* Fri May 26 2006 - schwab@suse.de
+* Fri May 26 2006 schwab@suse.de
 - Don't strip binaries.
-* Thu Apr 20 2006 - hvogel@suse.de
+* Thu Apr 20 2006 hvogel@suse.de
 - revert the rename to vsftp for the xinetd config file. chkconfig
   knows on for init and xinetd. So this wasnt a bug but a misusage
   of chkconfig
-* Thu Apr 20 2006 - hvogel@suse.de
+* Thu Apr 20 2006 hvogel@suse.de
 - add support for DMAPI filesystems [#167632]
-* Wed Apr 19 2006 - hvogel@suse.de
+* Wed Apr 19 2006 hvogel@suse.de
 - rename xinetd config from vsftpd to vsftp to avoid name clashes
   in chkconfig [#165745]
-* Thu Feb 16 2006 - hvogel@suse.de
+* Thu Feb 16 2006 hvogel@suse.de
 - enable ssl for real [#151453]
-* Mon Feb 06 2006 - hvogel@suse.de
+* Mon Feb 06 2006 hvogel@suse.de
 - The switch to standalone should not happen in update.
   Installed xinetd config file again. The configuration file is
   marked as noreplace anyway so if you are updating you will
@@ -177,12 +213,12 @@ rm -rf $RPM_BUILD_ROOT
   for new installations. [#148201]
 - redirect standalone parent output to /var/log/rcvsftp.log
   so the init script can return properly.
-* Wed Jan 25 2006 - mls@suse.de
+* Wed Jan 25 2006 mls@suse.de
 - converted neededforbuild to BuildRequires
-* Fri Jan 13 2006 - hvogel@suse.de
+* Fri Jan 13 2006 hvogel@suse.de
 - Make use of Stack Protector
 - fix some uninitialized variables
-* Wed Jan 11 2006 - hvogel@suse.de
+* Wed Jan 11 2006 hvogel@suse.de
 - Update to version 2.0.4 including:
   o Add explicit "This FTP server does not allow anonymous logins"
   message.
@@ -196,19 +232,19 @@ rm -rf $RPM_BUILD_ROOT
   DNS resolved once at startup.
   o Apply patch to fix timezone issues (caused by chroot()
   interacting badly with newer glibc versions).
-* Wed Sep 28 2005 - mmj@suse.de
+* Wed Sep 28 2005 mmj@suse.de
 - Add init script, and make it standalone
-* Sun Sep 18 2005 - kukuk@suse.de
+* Sun Sep 18 2005 kukuk@suse.de
 - Add libcap-devel to nfb
-* Tue Aug 09 2005 - mmj@suse.de
+* Tue Aug 09 2005 mmj@suse.de
 - Document that /etc/xinet.d/vsftpd is for xinetd conf [#102953]
-* Mon Aug 08 2005 - uli@suse.de
+* Mon Aug 08 2005 uli@suse.de
 - build with -fPIE, not -fpie (fixes s390x)
-* Mon Jun 27 2005 - ro@suse.de
+* Mon Jun 27 2005 ro@suse.de
 - use libcap
-* Fri Jun 17 2005 - mmj@suse.de
+* Fri Jun 17 2005 mmj@suse.de
 - Compile with -fpie, link with -pie
-* Tue Apr 19 2005 - mmj@suse.de
+* Tue Apr 19 2005 mmj@suse.de
 - Update to 2.0.3 including:
   o Document what regex expressions are supported in the man page.
   o New settings rsa_private_key_file and dsa_private_key_file to
@@ -237,7 +273,7 @@ rm -rf $RPM_BUILD_ROOT
   passwords as credentials).
   o Use SSL BIO callbacks to fix data connection timeout checks;
   the checks weren't all occurring promply.
-* Thu Mar 03 2005 - mmj@suse.de
+* Thu Mar 03 2005 mmj@suse.de
 - Update to 2.0.2 including:
   o Emit data transfer status messages (success / failure)
   after flushing and waiting for the full data transfer to
@@ -258,10 +294,10 @@ rm -rf $RPM_BUILD_ROOT
   o Note that the SSL / bandwidth limiter bug fixed a much more
   serious bug: SSL data connection dropouts after
   data_connection_timeout seconds.
-* Fri Feb 18 2005 - mmj@suse.de
+* Fri Feb 18 2005 mmj@suse.de
 - Glibc doesn't cache the timezone as much as it used to, so export
   the TZ variable after doing chroot. [#49878]
-* Thu Aug 12 2004 - mmj@suse.de
+* Thu Aug 12 2004 mmj@suse.de
 - Update to 2.0.1 including:
   o Add -lcrypto for the SSL build; needed for some systems
   o Oops; fix session bale out if an empty length password is given.
@@ -270,7 +306,7 @@ rm -rf $RPM_BUILD_ROOT
   o Clarify licensing: I allow linking of my GPL software with the OpenSSL
   libraries.
   o Fix build where PAM build is enabled but PAM headers are missing.
-* Fri Jul 02 2004 - mmj@suse.de
+* Fri Jul 02 2004 mmj@suse.de
 - Update to 2.0.0 including:
   o Improve logging (log deletes, renames, chmods, etc. as
   requested by users).
@@ -303,9 +339,9 @@ rm -rf $RPM_BUILD_ROOT
   o Add documentation for new SSL options to vsftpd.conf.5.
   o Add support for CWD ~
   o Fix compile warnings.
-* Sun May 30 2004 - mmj@suse.de
+* Sun May 30 2004 mmj@suse.de
 - Add logrotate file [#41432]
-* Tue Apr 27 2004 - mmj@suse.de
+* Tue Apr 27 2004 mmj@suse.de
 - Update to 1.2.2 including:
   o Fix nasty issue resulting in listener instability under
   extreme load (root cause was re-entering malloc/free).
@@ -316,69 +352,69 @@ rm -rf $RPM_BUILD_ROOT
   doing.
   o For above run-as-launching-user support: make CDUP re-use CWD
   code so that deny_file of *..* is useful.
-* Mon Jan 26 2004 - hvogel@suse.de
+* Mon Jan 26 2004 hvogel@suse.de
 - reworked the log part of the conf file patch.
   Enabled syslog as default log destination, clarify xferlog
   settings.
-* Mon Jan 19 2004 - mmj@suse.de
+* Mon Jan 19 2004 mmj@suse.de
 - -D_LARGEFILE_SOURCE to get LFS support. Also make sure the
   offset bits are set correct.
-* Fri Jan 16 2004 - kukuk@suse.de
+* Fri Jan 16 2004 kukuk@suse.de
 - Add pam-devel to neededforbuild
-* Thu Nov 13 2003 - mmj@suse.de
+* Thu Nov 13 2003 mmj@suse.de
 - Update to 1.2.1
-* Wed Oct 15 2003 - mmj@suse.de
+* Wed Oct 15 2003 mmj@suse.de
 - Don't build as root
-* Mon Jul 28 2003 - mmj@suse.de
+* Mon Jul 28 2003 mmj@suse.de
 - Add EXAMPLE/ and FAQ
 - Don't strip explicitly
-* Fri May 30 2003 - mmj@suse.de
+* Fri May 30 2003 mmj@suse.de
 - Update to vsftpd-1.2.0 including:
   · IPv6 support, so drop our patch
   · Many bugfixes and tunings
   · Build fixes
-* Thu Mar 06 2003 - mmj@suse.de
+* Thu Mar 06 2003 mmj@suse.de
 - Fix the xinetd conf file [#24774]
-* Fri Feb 07 2003 - kukuk@suse.de
+* Fri Feb 07 2003 kukuk@suse.de
 - Use pam_unix2.so instead of pam_unix.so
-* Fri Jan 24 2003 - mmj@suse.de
+* Fri Jan 24 2003 mmj@suse.de
 - Correct xinetd conffile
-* Tue Jan 14 2003 - mmj@suse.de
+* Tue Jan 14 2003 mmj@suse.de
 - Install xinetd.d/vsftpd
-* Sat Oct 26 2002 - mmj@suse.de
+* Sat Oct 26 2002 mmj@suse.de
 - Use better configuration defaults, thanks henne.
-* Fri Oct 25 2002 - mmj@suse.de
+* Fri Oct 25 2002 mmj@suse.de
 - Add $RPM_OPT_FLAGS to CFLAGS when building
-* Thu Oct 24 2002 - mmj@suse.de
+* Thu Oct 24 2002 mmj@suse.de
 - Update to 1.1.2 including:
   o Addition of per-IP connection limits in standalone mode.
   o Add logging of refused connect due to global or IP connection limits.
   o Make connection limit exceeded messages nonblocking.
   o Don't exit the listener if fork fails.
-* Tue Oct 08 2002 - mmj@suse.de
+* Tue Oct 08 2002 mmj@suse.de
 - Update to 1.1.1
-* Fri Aug 02 2002 - mmj@suse.de
+* Fri Aug 02 2002 mmj@suse.de
 - Update to 1.1.0
-* Tue Jul 09 2002 - okir@suse.de
+* Tue Jul 09 2002 okir@suse.de
 - Added a patch to get rid of lots of warnings caused by -Wshadow
 - Added a patch to implement IPv6 support
-* Tue Apr 30 2002 - mmj@suse.de
+* Tue Apr 30 2002 mmj@suse.de
 - And now without detection of pam in /lib/libpam.so.0, which is
   bogus.
-* Sun Feb 17 2002 - mmj@suse.de
+* Sun Feb 17 2002 mmj@suse.de
 - Added a patch to the vsftpd library detection function to make
   it build with /usr/lib64. Fixes build on S/390.
-* Tue Feb 12 2002 - mmj@suse.de
+* Tue Feb 12 2002 mmj@suse.de
 - Remove Requires: ftpdir
-* Mon Feb 04 2002 - choeger@suse.de
+* Mon Feb 04 2002 choeger@suse.de
 - do not set e(x)ecute bit on textfiles
-* Fri Feb 01 2002 - choeger@suse.de
+* Fri Feb 01 2002 choeger@suse.de
 - declare config file as %%config(noreplace)
-* Thu Jan 17 2002 - mmj@suse.de
+* Thu Jan 17 2002 mmj@suse.de
 - Update to version 1.0.1
-* Fri Nov 30 2001 - mmj@suse.de
+* Fri Nov 30 2001 mmj@suse.de
 - Use /etc/pam.d/vsftpd
-* Tue Nov 13 2001 - mmj@suse.de
+* Tue Nov 13 2001 mmj@suse.de
 - Updated to version 1.0.0
-* Mon Oct 22 2001 - mmj@suse.de
+* Mon Oct 22 2001 mmj@suse.de
 - Initial package