(I sent this to cosign-announce a week ago. I'm posting it here for
the sake of users who aren't subscribed to that list.)
The Cosign development team is pleased to announce the availability of
Cosign 2.1.0 release candidate 1.
This release features the following changes:
common: improved configure option passing
cgi: escape factors (xss)
cgi: use SERVER_NAME env variable rather than cosign_host config
cgi: support SPNEGO (Simon Wilkinson)
cgi: try passwords against multiple legacy methods (Simon Wilkinson)
cgi: report killed factors to user
cgi: moved Friend password incorrect message handling to main loop
cgi: don't escape ';'
cgi: bug in certificate-based authN variable substitution (Petr Lampa)
daemon: bug in kerberos ticket path handling (Petr Lampa)
daemon: bug in non-replication restart code (Petr Lampa)
daemon: improvement to replication error case under high load
filter: improved apxs 2 usage
filter: close connection more reliably (Petr Lampa)
filter: detect race where multple HTTP GETs cause overlapping
cosign CHECKS
filter: return from cosign_cookie_valid() if cosign_check_cookie()
returns anything other than COSIGN_OK (Petr Lampa)
filter: improve IP checking
Cosign 2.1.0rc1 may be downloaded here:
<http://prdownloads.sourceforge.net/cosign/cosign-2.1.0rc1.tar.gz?download
>
RIPEMD160(cosign-2.1.0rc1.tar.gz)=
ac3e0af25e0382d4e15872512e0d6188d35bd967
SHA1(cosign-2.1.0rc1.tar.gz)= d14e5715289a205243da36552ab95a351d8d70db
MD5(cosign-2.1.0rc1.tar.gz)= c64fc0cdd19ec14b75480143edd12eb4
Please report bugs on the SourceForge.net tracker.
Thanks for your support of Cosign.
andrew
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Cosign-discuss mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/cosign-discuss
