At long last, Polipo-1.1.0 is available from http://www.pps.univ-paris-diderot.fr/~jch/software/files/polipo/polipo-1.1.0.tar.gz http://www.pps.univ-paris-diderot.fr/~jch/software/files/polipo/polipo-1.1.0.tar.gz.asc
For more information about Polipo, please see http://www.pps.univ-paris-diderot.fr/~jch/software/polipo/ I'm not really happy about this version, since it still has a number of known bugs. However, it would appear to be better in all ways than the last stable version, so it doesn't make sense to delay it further. Please find a somewhat incomplete changelog attached. -- Juliusz Chroboczek 14 April 2014: Polipo 1.1.0: * Proper va_list handling for AMD64 and other RISC-like architectures (Juliusz Chroboczek and Aleksandar Kuktin). * Implemented work-around for broken Content-Range headers. * Use 1024 instead of 32 as the length of the listen queue. * Implemented the ability to control the permissions set on the log file. * Implemented the ability to scrub private information from logs. * Fixed a bug that could cause incorrect logging to syslog (thanks to Sami Farin). * Tweaked the portable version of mktime_gmt. This will hopefully fix the time issues on Windows. Thanks to MaxWell and Greg. * Changed chunk allocator to use larger arenas on 64-bit arches. * Fixed a bug that could prevent saving objects on disk. Thanks to Ming Fu. * Fixed a bug that could prevent parsing large headers. Thanks to Ming Fu. * Fixed an issue that could cause crash messages to go into the disk cache. * Fixed a bug that could cause the default chunk memory to be incorrect on FreeBSD machines. Thanks to Frank Behrens. * Fixed a number of bugs in the validation of Range requests. Thanks to Ken Brazier. * Inhibited range requests for non-200 instances, as this breaks some client software. Thanks to Ken Brazier. * Fix a integer overflow in processing client requests. * Implement authentication on tunnelled connections. Thanks to Stephen Dolan. * Implement ability to include Cache-Control: no-transform in all requests. Thanks to Nick Osborn. * Fix a bug in the DNS code that would cause us to ignore CNAMES after a DNS timeout. * Fixed a crash that occurs when a server sends a malformed Cache-Control: header (CVE-2009-3305). Thanks to Stefan Fritsch. * Removed support for read-only caches. Nobody ever used it. * Changed the default value of diskCacheWriteoutOnClose to 64kB. * Cleaned up naming of Windows support functions. Thanks to Honglei Jiang. * Added support for forbidden tunnels (thanks to Richard Zidlicky). * Fixed a bug that prevented parsing of extremely long literal IPv6 addresses (thanks to Jan Braun). * Added support for DOS-style absolute pathnames. Thanks to Gisle Vanem. * Fixed a bug that could cause infinite revalidation loops. Thanks to David Rothlisberger. * Fixed a bug that could provide incorrect caching information to clients. Thanks to William Manley. * Support MSVC 2010. Thanks to Greg Hazel. * Work-around buggy clients that send HTTP:// in uppercase. Thanks to David Rothlisberger. * Save Cache-Control values to the disk cache. Thanks to Ruben Alleres. * Allow ~ in logFile. Thanks to P.J. Hades. * Fixed a bug that could cause infinite revalidation loops with servers that perform sloppy packetisation (IIS, I'm looking at you). * Fail expectations on the local interface. This might or might not be what CVE-2011-3596 is about, difficult to say since nobody is speaking to me.
pgpEagTKMIYuK.pgp
Description: OpenPGP Digital Signature
------------------------------------------------------------------------------ Put Bad Developers to Shame Dominate Development with Jenkins Continuous Integration Continuously Automate Build, Test & Deployment Start a new project now. Try Jenkins in the cloud. http://p.sf.net/sfu/13600_Cloudbees
_______________________________________________ Polipo-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/polipo-users
