* Change bugtracker address.
	  

	- Change bugtracker address.
	  

* Don't bail out if mailq or mailstats fails.
	  

	- Catch fatal errors from the Net::ACME2 module.
	- Improve pound configuration parser.
	- New options to the pound source: "--comment". "--type",
	and "--listener".  The "--comment" option instructs the
	program to issue certificates for hostnames marked by
	a specific pragmatic comment.  The "--type" option
	instructs it to process hostnames defined within listeners
	of a particular type ("http" or "https").  Finally,
	"--listener" selects listener by its tag.
	  

** Fix compilation with GDBM 1.18.1

** Support for Guile version 2.2.0 and later

Support for prior versions has been withdrawn.

** anubisusr requires GnuTLS

** New configuration statement: use-pam

Used in CONTROL section, this boolean statement enables or disables
the use of the Pluggable Authentication Module interface for
accounting and session management.

** New configuration statement: identd-keyfile

Sets the name of the file with shared keys used for decryting replies
from the auth service.  It is used in traditional mode if anubis
receives an encrypted response from the client's identd server
(e.g. if they are running pidentd with encryption).

** Bugfixes
	  

* Fix threshold calculation in the cleaner module.
* Refuse to start if another copy is already running.
	  

Initial release.
	  

* New command line option --done (-d)

This option is a counterpart of --init and supplies a cleanup
expression, i.e. an expression that will be evaluated when the
main loop has iterated over all nodes in the tree.

* New parser: DHCPD

A parser for dhcpd.conf file.

* Drop support for Guile versions prior to 2.2.0
	  

* Fix operation of --no-absolute-filenames --make-directories
* Restore access and modification times of symlinks in copy-in
  and copy-pass modes.
	  

* The gcide module

** idxgcide skips duplicated headwords

** Fixed some gcide entities, introduced missing ones

** Fixed Ancient Greek transliteration

** New option: "watch"

When supplied, the module will watch for modifications in the
dictionary corpus files and rebuild the index file when necessary.

** HTML output

HTML output is enabled by the "html" module option.  It is produced
only after "OPTION MIME" command command.

* Input conversions

The argument to DEFINE or MATCH command can optionally be modified
before being used in actual search.  This allows, for example, to
input search terms in transliteration instead of in the actual script.

Conversions are implemented by loadable modules and are associated
with individual databases.

This version is shipped with the new module "greek_kbd", which
implements Greek transliteration.

* Dicoweb

** Switch to Python 3.11+ with type hints
** Upgrade Django to version 4.2
** Improve desktop and mobile views using HTML5
** Implement a dark mode
** Use Poetry and pyproject.toml
** Integrate Pylint and Mypy for development
** Implement various fixes and improvements

* pcre module now requires libpcre2

Support for obsolescent libpcre has been withdrawn.

* Bugfixes

** GCIDE indexer

** Fix premature freeing of search argument in Python iterators

https://puszcza.gnu.org.ua/bugs/?595
	  

* Simultaneous execution limits

It is possible to limit number of command instances that are allowed
to run simultaneosly for a particular watcher.  This is done using
the 'max-instances' statement in 'watcher' section.

* Restore the nowait default

Unless given the 'nowait' option explicitly, watchers waited for the
handler to terminate.  It is now fixed and 'nowait' is the default, as
described in the documentation.

* Fix bug in generic to system event translation

* Fix sentinel code

In some cases setting the sentinel effectively removed the original
watcher.  That happened if the full file name of the original watcher
and its directory part produced the same hash.
	  

* Fix compilation with gcc 12.2.0
	  

* Fix EOF check with flex >= 2.6.1

* Fix multiple definitions of mimetypes_error_format

* Avoid runtime errors with recent versions of libmicrohttpd
	  

* Lifting resource limits

The special value ! used after resource letter in the '-l' option,
sets the limit to "infinity" (meaning "no limit").
	  

* Use explicit DESTROY with AUTOLOADs
	  

Initial release.
	  

Fix deadlock.
	  

* ftp

An old inability to allow other names than the canonical name has
been corrected.  This means that a machine entry in the .netrc file
will now be used as expected.  Previously any alias name was replaced
by the corresponding canonical name, before reading the .netrc file.

The internal command `hash' accepts a suffixed letter to the size
argument, like `12k', instead of 12288.  Made a minor change to the
syntax of the command itself, allowing size changes independently
of activation of hash markings.  After a transfer the summary gives
the speed as `Mbytes/s', `kbytes/s', or `bytes/s'.

The .netrc file can be overridden by the environment variable NETRC.
Of even higher precedence is the new option `-N/--netrc'.  The access
to the resulting file, whatever method, is now denied unless it is a
regular file.

* ifconfig

Better command line parsing on BSD and Solaris systems.  Touch only
changeable flags on all systems.

* logger

The ability to use numerical facilities is restored to full range.

* ping, ping6

The ability to specify a pattern as payload is corrected.

* syslogd

A new switch `-T/--local-time' makes the service ignore a time
stamp passed on by the remote host, recording instead the local
time at the moment the message was received.  As a short form of
`--pidfile', the switch `-P' is new.

In common with other syslogd implementations, rsyslogd and sysklogd,
there has for a long time existed an attack vector based on large
facility numbers, made public in CVE-2014-3684.  This is now mended
in our code base.

* telnetd

The ability to autologin a client, without using authentication,
is now functional in the expected manner, i.e., the prompt for a
user name is suppressed in favour of an immediate password prompt.

In a setting where the client is using a UTF-8 encoding, it was
common to observe strange characters in most responses.  This was
caused by the server daemon, due to incomplete purging of internal
protocol data.  The issue should now be resolved.

* whois

Improved cooperation with servers like `whois.arin.net', `whois.eu',
and `whois.ripe.net'.
	  

* Implement heartbeat event

* Add auxiliary program: ifactive

* Fix file descriptor leak
	  

* The program is installed in /usr/bin

Prior versions went to /usr/sbin, you will need to remove them
manually.

* Print /etc/issue before the prompt
* Sleep after incorrect password is input
* New options: -i (--issue), -s (--sleep), -c (--clear)
* Add a manpage
* Improve error checking and reporting
	  

* Arguments to prog action

Action hook is passed source location where the action was called.
Thus, its arguments are:

  1. Identifier of the action.
  2. SMTP code of the reply.
  3. Extended reply code.
  4. Textual message passed to the action.
  5. File name of the source location where the action was called.
  6. Line number of source location where the action was called.

* New debugging functions

  string stack_trace_format(string fmt)
  string stack_trace_top(string fmt)

These functions format the stack trace at the current point according
to the format string fmt.  stack_trace_format applies fmt to each
frame, and returns the concatenated string. stack_trace_top applies
fmt to the top-level frame.

* Fix the clamav function

The function used a deprecated interface that was removed in clamav
version 0.104.

* Callout: return the "less critical" answer if no MX gives a definite one.

For example, assume three MXs queried during a callout session
returned three different results: mf_timeout, mf_temp_failure, and
mf_failure.  Then, the result of callout_mx will be mf_temp_failure.

* Bugfixes

** Accept DNS replies containing forbidden characters

** $i macro is available for use in all handlers

This fixes a bug introduced in version 9.0.
	  

* Optionally create intermediate directories when creating mailboxes.

New stream flag is introduced: MU_STREAM_INTERDIR.  Used together with
MU_STREAM_CREAT, it instructs mailutils to create any missing intermediate
directories, when creating file.

* Creating home directories

New configuration statement "homedir" declares the action to take if
a user home directory does not exits.  E.g.:

homedir {
  # Create user home directory if needed.
  create true;
  # File mode for newly created directories.
  mode 755;
}

The statement is used by imap4d, lmtpd, mda, and putmail utilities.

* Imap4d configuration statements "create-home-dir" and "home-dir-mode"

These are declared obsolete.  Users are advised to use "homedir" section
instead.

* Sieve

** Fileinto action: new option :interdir

The option informs fileinto that it should create missing intermediate
directories when creating a mailbox.

* Variable expansions in configuration statements.

All statements that allow for variable expansion now support the following
shell-compatible constructs:

   ${variable#word}           Remove shortest prefix pattern.
   ${variable##word}          Remove longest prefix pattern.
   ${variable%word}           Remove shortest suffix pattern.
   ${variable%%word}          Remove longest suffix pattern.

Additionally, the following constructs are supported:

   ${variable/pattern/subst}
      Pattern substitution.  Expand all three parts, and replace the
      longest match of pattern against the expansion of variable with
      the expansion of subst.

   ${variable:|word1|word2}
      Expand to word1 if variable is set and not empty, and to
      word2 otherwise.

* New commands in string expansions

All statements that allow for variable expansion can now use the
following commands:

   localuser
      If argument is an email address with user and detail subparts in
      its localpart, this function returns the user name.  Otherwise, it
      is equivalent to localpart.

   detail
      If argument is an email address with user and detail subparts in
      its localpart, this function returns the detail part.  If no detail
      part is present, it returns an empty string.

* Changes in ldap.field_map configuration statement

This statement was originally intended to keep LDAP attribute name
associations.  Now, apart from attribute names, it's values can
store arbitrary strings.  These are so called "immediate values".

If the value after the equals sign begins with a letter, it is taken
as an LDAP attribute name.  Otherwise, it is an immediate value.  It is
expanded as described in subsection 3.2.2 "Configuration Variables" of
the documentation, and the resulting value is used as the attribute
value.  Expansion occurs after all LDAP attribute names have been
retrieved.  Their values are available as variables named after getpw*
column names (i.e. name, passwd, uid, gid, gecos, dir, shell, mailbox,
quota).

Single and double quotes are handled within field map values.

Example:

  field-map (
     "name=uid",
     "passwd=userPassword",
     "uid=uidNumber",
     "gid=gidNumber",
     "gecos=gecos",
     "dir=/usr/home/${name}",
     "shell=loginShell",
     "mailbox=\"maildir:/var/spool/mail/${name}\""
  );

In this field map, "dir" and "mailbox" are immediate values.

* Bugfixes

** Sieve: fix coredump on parsing "fileinto :permission" action.

** Sieve: fix optimizer.

** Library: fix parsing ls-compatible permission strings.

** Library: fix mu_sieve_machine_clone function.

** Configuration: use '\' to escape delimiters in some statements.

This affects statements whose arguments are colon- or comma-delimited
strings, e.g. ldap.field-map.

** Library: fix localized help output

Help entries now use the correct translation domain.  The bug was
originally reported and discussed in
https://mail.gnu.org.ua/mailman/listarchive/bug-mailfromd/2018-04/msg00027.html
	  

* Micron is a part of GNU project

* Take into account DST changes when computing job startup time

* Minor fix in crontab parser
	  

* Minor fixes in mysqlstat-setup
* Provide default values for NULL columns
	  

First actual release.
	  

* pam_fshadow: skip-password option

Based on the proposal of Mirsad Goran Todorovac, the new option
skip-password instructs pam_fshadow to check whether the user
being authenticated is present in the passwd and/or shadow files,
without verifying his password.  This way pam_fshadow can be used as
an auxiliary module in the stack, actual authentication being
performed by one of the modules before it.
	  

* New configuration keywords

** sigterm SIG

Available for use in "component" sections.  This statement defines
signal which pies should send to the running component instance in
order to terminate it.  Defaults to SIGTERM.

* Fix the component shutdown sequence

The shutdown sequence is determined taking into account dependencies
between components, so that all dependent components are stopped
before their prerequisite components.

* Fallback log file

Fallback log file is a place where pies writes out of band log messages,
i.e. messages about not being able to open syslog socket or send logs
to it.  Regular log messages are diverted to this file if syslog was
requested, but cannot be used because of a permanent error.

* Bugfixes

** Fix piesctl config reload

** Fix configuration preprocessing.

** Varios fixes in REST API server.
	  

* Fix handing of the Connection: HTTP handler (both server and client)
	  

* Support for Lua

Functions written in Lua can be used to implement complex request
matching conditions, modify requests and/or responses, and implement
new backends.  You will need Lua version 5.3 or newer.  By default,
configure will enable Lua support if it finds the necessary headers
and libraries.  This can be controlled using --disable-lua and
--enable-lua options.

At runtime, Lua sources are loaded using Load statement in the Lua
global section of the configuration file:

   Lua
      Load "impl.lua"
   End

A function returning boolean value can be used as a conditional:

   LuaMatch "myfun" "arg"

Any number of arguments (all of string type) can be provided.
Arguments undergo usual expansions prior to being passed to the
function.

Two more similar statements are added:

   LuaModify   - Applies a Lua function to modify the request (or
                 response).  It can be used in ListenHTTP,
                 ListenHTTPS, Service, Match and Rewrite statements.

   LuaBackend  - Calls a Lua function that implements a backend.

* Detached conditions

Detached condition is a set of conditional statements not associated
with any service, which is assigned a unique symbolic name.  Detached
conditions are defined using the Condition statement in the global
scope of pound configuration file, e.g.:

  Condition "protected"
     Path -beg "/admin"
     ACL -file "internal.acl"
     BasicAuth "htpasswd"
  End

Detached conditions can be invoked using the "Eval" statement, which
is allowed anyplace where the normal conditional is allowed.  Result
of evaluation is cached and reused in subsequent Eval statements
referring to the same condition.  E.g.:

  Service
     Eval "protected"
     ...
  End

Detached conditions provide a convenient way to define conditional
statements with are used repeatedly in multiple Service statements.

* New request modification statement: DeleteQuery

Removes query part of the request URL.

* One-argument form of SetQueryParam

When used with one argument (name of a query parameter), SetQueryParam
causes removal of that query parameter.

* Percent encoding and decoding

The Path and QueryParam conditional statements accept new option
-decode.  When given this option, the value will undergo
percent-decoding prior to comparison.  E.g.:

   QueryParam "t" -decode "?"

Similarly, SetPath and SetQueryParam statements accept new option
-encode.  When given this option, the value will be percent-encoded
prior to setting it.

* Relative pathname in SendFile statement.

If the argument to SendFile statement is not an absolute file name, it
is resolved relative to pound include directory.

* Turning PID file off.

To disable PID file creation, use PIDFile "-".
	  

Initial version.
	  

* Support for Guile 3.x.

* Improve testsuite.

* Improve docs.

* Various bugfixes.
	  

* Hostgroup stack

Rex now maintains a stack of hostgroups.  Once you push a hostgroup
name on stack, that hostgroup will be used by any subsequent rex
command, unless it is given the -g option.  The new command "group"
(see below) provides ways to pop items off the stack, swap arbitrary
element with the top of stack, select new hostgroups on the fly, etc.

* New command: rex group

The "rex group" command has the following forms:

  rex group push GROUP
    Push GROUP on stack.

  rex group pop
    Pop the topmost group off the stack.

  rex group swap N
    Exchange top of the stack with the Nth element (0-based).

  rex group drop N
    Remove Nth element from the stack.

  rex group select COMMAND ARGS...
    Create on top of the stack a temporary group that contains
    those hosts from the current hostgroup where the supplied
    shell command returns success, i.e. exits with code 0.

  rex group show
    List the contents of the hostgroup stack.

* Add configuration function for overriding PTR records from rc files
	  

* Syslog support

New option '-S FACILITY' switches diagnostic output to the given
syslog facility.
	  

* Use getgrouplist call, if available

* Fix in rush-po script

* Bugfixes
	  

* Support for Slackware 15.0
	  

* Support SNMPv3
* Default SNMP version is 2c
* Use newer Grecs
* Drop unneeded dependencies
* Variable assignments in expressions
* Detection of SNMP counter overflows
* Comma operator
* Support for indexed MIBs

This feature allows you to use symbolic names instead of the fixed MIBs
for MIBs that are part of SNMP subtrees.  For example, to get number of
packets sent over eth0 into variable "out", you would do the following:

    table iftable IF-MIB::ifDescr;
    variable out "IF-MIB::ifOutUcastPkts.$iftable[eth1]";

The first statement converts the subtree into a "table" named "iftable".
The second statement references an entry in this table that has
the value "eth1".  For example, if the SNMP tree has the following MIB

    IF-MIB::ifDescr.10: eth0

then the expression "$iftable[eth]" yields "10"

* Assertion syntax changed.

The assertion statement takes a single argument, which must be a
string consisting of the following three parts:

   <oid: string> [!]<opcode>[/i] <value: string>

The <opcode> part can be either an arithmetical operator (=, <, <=, >,
>=), or any of the following string operators:

    eq          string equality
    ne          string inequality
    prefix      oid value must begin with <value>
    suffix      oid value must end with <value>
    glob        <value> is a glob(7) pattern that oid value must match

Each of these can be suffixed with "/i" to request case-insensitive comparison.

A "!" in front of opcode reverts its meaning.

The <value> part must not include the type prefix.
	  

* Support for Guile 2.2

* Bugfixes

* Improved testsuite
	  

Initial release.
	  

* Fix check for hostname presence in the message
	  

* Per-service ttl

* tallyman: support for cgroups v2
	  

* Fail when building GNU tar, if the platform supports 64-bit time_t
  but the build uses only 32-bit time_t.

* Leave the devmajor and devminor fields empty (rather than zero) for
  non-special files, as this is more compatible with traditional tar.

* Bug fixes

** Fix interaction of --update with --wildcards.

** When extracting archives into an empty directory, do not create
   hard links to files outside that directory.

** Handle partial reads from regular files.

** Warn "file changed as we read it" less often.
   Formerly, tar warned if the file's size or ctime changed.
   However, this generated a false positive if tar read a file
   while another process hard-linked to it, changing its ctime.
   Now, tar warns if the file's size, mtime, user ID, group ID,
   or mode changes.  Although neither heuristic is perfect,
   the new one should work better in practice.

** Fix --ignore-failed-read to ignore file-changed read errors
   as far as exit status is concerned.  You can now suppress file-changed
   issues entirely with --ignore-failed-read --warning=no-file-changed.

** Fix --remove-files to not remove a file that changed while we read it.

** Fix --atime-preserve=replace to not fail if there was no need to replace,
   either because we did not read the file, or the atime did not change.

** Fix race when creating a parent directory while another process is
   also doing so.

** Fix handling of prefix keywords not followed by "." in pax headers.

** Fix handling of out-of-range sparse entries in pax headers.

** Fix handling of --transform='s/s/@/2'.

** Fix treatment of options ending in / in files-from list.

** Fix crash on 'tar --checkpoint-action exec=\"'.

** Fix low-memory crash when reading incremental dumps.

** Fix --exclude-vcs-ignores memory allocation misuse.
	  

Rewrite as a stand-alone snmpd agent.
	  

* New configuration statement: sentinel

The "sentinel" statement declares the name of a file which, when
present in the destination directory, informs vcsync that this
directory is exempt from the normal synchronization process.  The
presense of the sentinel file is an indication that the destination
directory is updated by other means.

* Full documentation added
	  

* Support for Varnish 7.1
	  

* Support for Varnish 7.1
	  

* Support for Varnish 7.1
	  

* Support for Varnish 7.1
	  

* Support for Varnish 7.1
* Drop support for Varnish versions prior to 6.0.0.
	  

* Support for Varnish 7.1
	  

* Support for Varnish 7.1
	  

Fix handling of archivation requests.
	  

* Fix parsing of po header fields

* Use the Language header instead of Language-Team.

Support for Language-Team and language tables is retained for
backward compatibility.

* Organizational change: repository moved to git

The repository along with links for cloning can be viewed online at
http://git.gnu.org.ua/cgit/wyslij-po.git.

See https://puszcza.gnu.org.ua/git/?group=wyslij-po for instructions.
	  

* Fix interation between macros and loops.