1* vpnc-0.5.3.tar.gz Wed Nov 19 21:29:22 CET 2008 2 3 User visible changes: 4 5 * Don't crash while rekeying, by Maurice Massar 6 * Fix lifetime handling if both options are present, by Maurice Massar 7 * Support providing the destination network's netmask 8 * Working with concentrators that require a firewall capable 9 client might work, by Nicholas Reilly 10 * Fix a case where pcf2vpnc would create an incorrect config line, 11 by Wolfram Sang 12 * Make vpnc work with newer development versions of openvpn on 13 Windows, by Paolo Zarpellon 14 * print logmessages while opening tun to syslog as well as stderr 15 16* vpnc-0.5.2.tar.gz Wed Nov 19 17:49:46 CET 2008 17 18 User visible changes: 19 20 * Install the license file with the binary 21 * Fix routing issues in vpcn-script-win.js, by Paolo Zarpellon 22 * Fix Phase 2 rekeying, by various authors 23 * Improvements to debug messages, by various authors 24 * Support for the NEXT_PIN for SecureID, by Phil Dibowitz and Rob West 25 * Print hints on how to fix some error conditions 26 * Add --target-network option, by Stelian Pop and Tom Schneider 27 * Try to work around the "payload too short" message instead 28 of aborting, by John Williams 29 * Fix some problems with keepalives during xauth on SonicWall and 30 ScreenOS >= 6, by Johan Fischer 31 * Improvements to syslog messages, by various authors 32 * On Linux calculate the MTU size instead of hardcoding it, by 33 Tomas Mraz 34 * Remove pid file also when not running daemonized, by Martin von Gagern 35 * Always send FW_TYPE xauth attribute, by Johan Dahlin 36 * Fix default route while setting DNS on Darwin, by Felix Buenemann 37 38 Under the hood: 39 * Move decryption code into its own files, by Wolfram Sang 40 * Use ony awk instead of awk+sed in vpnc-script, by Jukka Salmi 41 * Fix some alignment errors on ARM, by Karzist 42 * Memory handling fixes, by various authors 43 44* vpnc-0.5.1.tar.gz Mon Sep 10 23:16:41 CEST 2007 45 46 * link against -lcrypto instead of -lssl, fix from: Christophe Thil 47 * fixed crashes on 64bit platforms by Tomas Mraz, report by Brian Downing 48 * fixes to keepalive code from Brian Downing 49 * generate options part of the manpage automatically, by Wolfram Sang 50 * fix dead peer detection problems with Sonicwall, by Gerald Hanusch 51 and Wolfgang Astleitner 52 * fix disconnect problems with Sonicwall (please test if it fixes the known 53 problems with Cisco), by Gerald Hanusch and Wolfgang Astleitner 54 * again special thanks Joerg Mayer for handling all patches since the 55 last release (-: 56 * various other fixes contributed by Scott Rankin, Markus Meschederu 57 58* vpnc-0.5.0.tar.gz Thu Aug 30 19:17:10 CEST 2007 59 60 * Dead-Peer-Detection support by Kyle McKay 61 * Hybrid-Auth support by Andreas Hoffmann, merged by Chris Walter 62 (depends on OpenSSL, deactivatable at compile-time) 63 * granted Joerg Mayer svn commit privileges, special thanks to him 64 for doing so much work on vpnc during the last month (-: 65 * various other fixes contributed by Petr Salinger, 66 Christian Faulhammer, Kyle McKay, Paolo Zarpellon, Joerg Mayer, 67 Marcus Obst, Mika Liljeberg, Eduard Bloch, Wolfram Sang, Jukka 68 Salmi, Gustavo Sverzut Barbieri, Soren Hansen, Mike Javorski. 69 * first round of a general code cleanup (far less global variables 70 / etc) 71 72* vpnc-0.4.0.tar.gz Mon Feb 19 22:22:22 CET 2007 73 74 * DragonFly BSD support by Hans-Werner Hilse 75 * Solaris 10 fixes by Sunil 76 * support to read obfuscated passwords from .pcf files, based on 77 work from "HAL-9000@evilscientists.de" 78 * granted Dan Villiom Podlaski Christiansen svn commit privileges 79 * Darwin support by Dan Villiom Podlaski Christiansen 80 * UDP IP keepalive support from FreeBSD port 81 * Juniper/ScreenOS support from Marc Huber 82 * replace "--disable-natt --force-natt --udp" with "--natt-mode" 83 * null cipher support from Simon Lipp 84 * Windows/Cygwin and tap support from Paolo Zarpellon 85 * rekeying support 86 * various other fixes contributed by Joerg Mayer, Heiko Stamer, 87 Plamen Todorov, Asgeir, Jukka Salmi, Wolfram Sang, Laurence 88 MOINDROT, Chris Osicki, Anton Altaparmakov, Adam Simpkins, Ken 89 Bell, Hanno Boeck, Kyle McKay, Dennis Schneider 90 91* vpnc-0.3.3.tar.gz Sat May 14 12:23:27 CEST 2005 92 93 * ignore \r in config files 94 * (hopefuly) fixed 64bit bugs (Nicolas Boichat and Zach Brown) 95 * added support for "Split-Net" Routing 96 * introduced vpnc-script and removed vpnc-connect 97 * always search for configfiles in /etc/vpnc/ expect if the 98 filename contains at least one "/" 99 * only read /etc/vpnc/default.conf and /etc/vpnc.conf if no other 100 configfiles are provided 101 * various other fixes contributed by Anton Altaparmakov, Randy 102 Chou, "krabat", Andre Vanha and Nikolay Sturm 103 104* vpnc-0.3.2.tar.gz Mon Nov 22 01:14:29 CET 2004 105 106 * added support for preshared without xauth 107 * fixed NAT-T support with IOS and PIX 108 * fixed IP-Len header (Christian Lackas) 109 * fixed reconnection problems with IOS and PIX 110 111* vpnc-0.3.1.tar.gz Sat Nov 13 01:46:42 CET 2004 112 113 * fixed segfault in --print-config 114 115* vpnc-0.3.tar.gz Sat Nov 13 01:16:37 CET 2004 116 117 * included IPSec over UDP and NAT-T support, thanks to Tomas Mraz 118 and Martin von Gagern 119 * added support for interactive authentication (security tokens for 120 example) 121 * fixed IOS support 122 * updated man-page 123 * updated TODO list 124 * fixed byte-order in debug ouput 125 126* vpnc-0.2-rm+zomb.1.tar.gz Thu May 13 23:34:09 CEST 2004 127 128 * Fixed an off-by-two bug, thanks to Christian Lackas for this 129 * Fixed Solaris7 supported (Solaris9 does not work probably because 130 of built-in IPsec support) 131 * added support for (NT-) Domain xauth attribute 132 * cleaned up and reformatted --help output 133 * Fixed Application Version vpnc sends, fixes problems with some 134 vpn-concentrator default config where vpnc is incorrectly 135 detected as hardware client.. 136 137* vpnc-0.2-rm+zomb-pre9.tar.gz Sun May 2 05:32:00 CEST 2004 138 139 * Fixed PIX supported (and PIXs are broken (-;) 140 * send and ignore lifetime update in isakmp-sa/ipsec-sa 141 * Fixed vpnc-connect to supporte load-balancing, see below 142 * added --script which gets all modecfg infos like dns-server. see 143 README 144 * automatically get pfs setting from server. --pfs should not be 145 needed anymore (broken PIXs excluded) 146 * single DES support can be enabled with --enable-1des 147 148* vpnc-0.2-rm+zomb-pre8.tar.gz Sun Apr 25 02:13:30 CEST 2004 149 150 * Fixed OpenBSD supported 151 * added support for "Cisco extension: Load Balancing" 152 * ignore lifetime update in phase1 153 154* vpnc-0.2-rm+zomb-pre7.tar.gz Wed Dec 17 20:58:51 CET 2003 155 156 * Fixed FreeBSD supported 157 * ignore "Cisco extension: XAUTH Vendor" XAuth-Attribute 158 * treat passcode as password 159 * filter "metric10 64" and the like from ip route get output 160 * updated to libgcrypt-1.1.90 161 * create /var/run/vpnc/ as necessary 162 163* vpnc-0.2-rm+zomb-pre6.tar.gz Sun Nov 2 02:15:56 CET 2003 164 165 * Fixed NetBSD supported (add routes like this: route add -host 166 131.246.89.7 -ifp tun0 131.246.89.7) 167 * cosmetic fixes 168 169* vpnc-0.2-rm+zomb-pre5.tar.gz Thu Oct 30 00:53:02 CET 2003 170 171 * created debug levels: 0 default/nothing, 1 basic, 2 control flow, 172 3 packet dump, 99 including username/password (hex encoded) 173 * small fixes to connect/disconnect scripts 174 * added --local-port to allow multiple instances of vpnc running 175 (use 0 to get a "random" port) 176 177* vpnc-0.2-rm+zomb-pre4.tar.gz Tue Oct 28 02:34:42 CET 2003 178 179 * fixed handling of errors at ipsec-sa-negotiation stage 180 * cleaned up option handling, help, version 181 * small fixes to connect/disconnect scripts 182 183* vpnc-0.2-rm+zomb-pre3.tar.gz Sun Oct 26 06:04:09 CET 2003 184 185 * added support for dh1 dh2 dh5 (pfs or ike-sa), sha1, aes128 186 aes192 aes256 187 * automatic negotiation of encryption/hash method (Note: dh-group / 188 pfs is not negotiable) 189 * cleaned up option handling 190 * small fixes to connect/disconnect scripts 191 192* vpnc-0.2-rm+zomb-pre2.tar.gz Fri Oct 24 20:27:56 CEST 2003 193 194 * debugging and detach configurable 195 * akward hanlding of options which don't require an argument 196 197* vpnc-0.2-rm+zomb-pre1.tar.gz Thu Oct 23 06:13:02 CEST 2003 198 199 * first version with libgcrypt instead of openssl (GPL compatible). 200 * far to much debugging enabled (-; 201 * works with a Version 4 VPN Concentrator. 202 * supports only 3des-md5-dh2 and no-pfs. 203 204* vpnc-0.1.tar.gz 205 206 * original version from Geoffrey Keating. 207 * doesn't work with a Version 4 VPN Concentrator. 208