1.0.0 99/03/12 Initial Release 1.0.1 99/03/17 Minor configuration changes to enable build on various distributions 1.0.2 99/03/29 new 'linktest' option for dialup systems (request by andreas@mtg.co.at) new 'oobfix' option (workaround for linux kernels < 2.0.36 which do have an out of band data processing bug, this is required for the linktest option) new 'peerroute' option for dialup systems (request by xml@mailandnews.com) routing code fixes (thanks to xml@mailandnews.com) 1.0.3 99/04/06 new 'suspend', 'rxmax' and 'txmax' options dynamic IP client sample configuration minor code fixes for 'linktest' option 1.0.4 99/04/15 fixed slip mode selection bug, users are adviced to upgrade immediately to ensure proper slip mode selection! fixed 'public domain' definition in file headers and readme (the web site did already make clear that the Wassenaar treaty sense was meant) vpnd now uses Unix98 pty/ttys if available (kernel must be compiled with CONFIG_UNIX98_PTYS and CONFIG_DEVPTS_FS, devpts must be mounted using 'mount -t devpts devpts /dev/pts'), note that you do NOT need glibc 2.1 to use Unix98 PTYs. Unix98 PTYs do increase security somewhat so please enable use if possible! fixed little/big endian problem (thanks to r.c.m.derooij@twi.tudelft.nl), this will break things on all big endian systems (e.g. Sparc)! users of big endian systems please upgrade immediately! new 'linkup', 'linkdown' and 'ipopts' options blowfish routines now available as optimized assembler for Intel x86 (486 or later), users of Intel 486 or later systems are adviced to upgrade to this version for increased performance and reduced system load 1.0.5 99/05/17 new 'sendbuf' and 'connwait' options, see vpnd.conf for details fixed minor bug in configure script split vpnd.c into multiple sources for more modularity and easier porting more optimized assembler for Intel x86 (486 or later), all core crypto functions are now implemented as optimized assembler new extended master key file format including extended session setup, please see the README file or use 'vpnd -h' for details fixed minor bug in slip interface termination code (bug had no effect on Linux but may affect ports to other operating systems) added missing checksum verification in datarecv routine (very minor fix, any error was detected anyway during next transmission) fixed bug related to keyttl, key replacement didn't take place when ttl expired but when ttl expired and new data should be sent from server to client, this bug is minor as it just delays key replacement when connection is anyway idle added missing client sanity reset of keyttl, using keyttl in client configuration otherwise may cause unexpected behaviour added optional user password for new extended master key file, use 'vpnd -h' or see README file for details various additions to the README file major code rework to reduce use of global variables in preparation for later key management (will use posix threads) lots of code optimizations 1.0.6 99/06/07 added detection for -fno-inline as this switch caused compilation on some systems to fail added dynamic calculation of structure offsets for cryptox86.s as there's differences between between libc5 and glibc based systems fixed some minor compiler warnings reported 1.0.7 99/07/04 fixed a function call missing a variable when compiling without compression library new 'hmac' option for HMAC authentication (HMAC-MD5, HMAC-SHA1 or HMAC-RIPEMD160) instead of fast checksum, see vpnd.conf for details performance tuning of fast checksum generation new 'slipup' and 'slipdown' options, see vpnd.conf for details lock file handling for serial line device file based on the code from prandini@spe.it fixed minor compression detection bug in the x86 assembler code (bug could actually never occur) data transmission modified for better performance over TCP connections. 1.0.8 99/07/31 missing definition of 'globals' in offsets.c fixed missing error case close() in crypto.c fixed added missing multi daemon info to vpnd.conf blowfish/md5/sha1/rmd160 speed improvements, see updated SPEED.TXT file fixed bug that zero key size required key file new -l command line parameter to allow the use of host names instead of IPs 1.1.0 99/11/19 fixed dns-ip conversion in tcp.c fixed missing newline in debug help info added new 'facility' option for syslog facility selection added syslog startup message with version number and compression info added compression info to -h command line argument changed configure script to warn if vpnd is built without compression fixed error message for incorrect file permissions fixed keyfile creation info message port to FreeBSD 3.3