Changeset 1027 for fwknop/trunk/ChangeLog

Timestamp:

03/12/08 07:54:14 (7 months ago)

Author:

mbr

Message:

- Added more granular source IP and allowed IP tests so that access to
particular internal IP addresses can be excluded in --Forward-access
mode. A new keyword "INTERNAL_NET_ACCESS" is now parsed from the
access.conf file in order to implemented these restrictions.
- (SPAPICT Group) Added BLACKLIST functionality to allow source IP
addresses to easily be excluded from the authentication process.

Files:

• fwknop/trunk/ChangeLog (modified) (2 diffs)

fwknop/trunk/ChangeLog

@@ -1 @@
-2/
+3/12
-    - Crypt::CBC adds the string "Salted__" to the beginning of the encrypted
-      text (at least for how fwknop interfaces with Crypt::CBC), so the fwknop
@@ -9 +9 @@
-      which would work for fwknop clients < 1.9.2 (as long as the port number
-      is not changed with --Server-port).
+    - Added more granular source IP and allowed IP tests so that access to
+      particular internal IP addresses can be excluded in --Forward-access
+      mode.  A new keyword "INTERNAL_NET_ACCESS" is now parsed from the
+      access.conf file in order to implemented these restrictions.
+    - (SPAPICT Group) Added BLACKLIST functionality to allow source IP
+      addresses to easily be excluded from the authentication process.
-    - (Grant Ferley) Submitted patch to handle SIGCHLD in IPTables::ChainMgr.
-    - (Grant Ferley) Submitted patch to handle Linux "cooked" interfaces for