3.0.15 Fri, 18 Aug 2006 11:45:50 +0200 Version 3.0.14 was not announced. Changes since 3.0.13 ZMC Core: * Fixed window focus handling problem on Windows. Freetext: * Fixed link label behaviour in the freetext component. Host: * Do not allow converting ZMS host to cluster. PKI: * Fixed updating the Manage page after CA refresh. ZAS: * Added support for the 'NDS' scheme in the 'zas_db' authentication backend. Zorp: * Fixed doubling entries in basic authorizaton list when switching from an advanced policy. * Fixed certificate reference count error of copied classes on the Classes page. * Fixed code duplicaton in class editor when init or class section was preceeded by user text. * Fixed default instance parameters in the Service wizard. * Fixed some memory management errors possibly causing abnormal program termination. 3.0.13 Fri, 28 Apr 2006 12:16:40 +0200 Changes since 3.0.12 ZMC Core: * Command line arguments are handled on Windows. * Dynamic path can be set by command line parameter or environment variable. * Fixed the clipboard handling on Windows. * Fixed error dialog which was being insensitive when ZMC connection was aborted. Cluster: * Do not pop up the node selector on clusters with one node. Control: * Fixed error handling of Run program dialog. Freetext: * Fixed cursor handling problem of links in freetext component. * Fixed linking bug if UTF-8 characters are present. IPSec VPN: * Fixed collision detection of connections when an address is link. Mail Transport: * Made plugin dependent of 'Networking' komponens. * Empty value is permitted as the value of an advenced option. Management Server: * Fixed New/Edit user modality bug. Networking: * The list of activation scripts is orderable. * Fixed description display bug while moving a zone. Packet filter: * Made plugin dependent of 'Networking' komponens. * Fixed the reference handling of the skeleton generation. * Fixed the double clickable bug of the Ok/Cancel/Close button of Skeleton generation dialog. Time: * Fixed linked time server display bug. Zorp: * Fixed the indentation of the automatic code lines in the Zorp class editor. * Fixed the modality bug of the Class editor dialog. * Fixed user defined class handling in the service copy/paste. * Fixed Inbound and Outbound service removal on the Zones tab. * Fixed invalid movements in the instance hierarchy. * Fixed the quotation of the services pasted with listeners. * Transparent listeners can listen on vpn interfaces on alias interfaces. * Created warning dialog if ESC was pressed in Class editor dialog. * Fixed the reference handling of Authentication policies. * Fixed dirty handling bugs in the Zorp component. 3.0.12 Fri, 10 Feb 2006 16:24:08 +0100 Changes since 3.0.11 ZMC Core: * Display all DN style data from openssl oneline encoding to user readable unicode string. * Command line arguments enforced even if initialization of GTK+ failed. * Set the size of the core file unlimited. * Added icon to the menu entry in Linux. Mail Transport: * Fixed the response hanndling of input dialogs on Maps page. Networking: * Fixed DN checking when bootstrapping a new host if DN contains unicode characters. * Fixed the double click bug in the Zone selector dialog of the Listener dialog. Packet filter: * Fixed sensitivity handling of "Group" button. * Fixed skeleton generation if a deleted zone is connected. PKI: * Fixed sensitivity handling of PKI dialog not to became permanently insensitive. * Made sure the user selected CSR in "Sign a CSR" dialog. * Do not allow setting password for private key when refreshing certificate. * Set "Sign a CSR" window resizable. * Fixed CA-group selector window to show all CA certificates in a group. * The "Common name" column of PKI management tree is reorderable. ZAS * Added default port of ZAS2AuthenticationProvider to the 'New authentication provider' dialog. Zorp: * Fixed non-editable text paste in the class editor. * Fixed the size and usability of the 'New class' and 'Choose attribute' dialogs. * Fixed user defined chainer, router and listener class reference handling in the 'Class editor'. * Fixed locking in the 'New/Edit import' dialog and in the delete import action. * Fixed invalid regular expression handling in the 'Search for Services' dialogs. * Fixed the parameter checking of the NAT and Authentication policy * Fixed the sensitivity of the ratelimit widgets in the Listener dialog. 3.0.11 Tue, 22 Nov 2005 10:33:57 +0100 Changes since 3.0.10 ZMC Core: * Fixed a bug in initial database downloading to avoid a possible crash in Linux. * Fixed a window handling problem that may have caused the program to exit under certain window-managers. * The 'View configuration' dialog can be maximized. Cluster: * Cluster Recovery connection commits node property data on-demand. Mail Transport: * Made the entries of transport and virtual map reorderable. Networking: * Changed the network mask value of loopback type interface from 24 to 8. * Fixed non-alphanumeric character handling in interface names. PKI: * CAs having no private key are not shown in the PKI list. * Show issuer in CRL information in PKI management page. Zorp: * Fixed advanced listener editing. 3.0.10 Thu, 08 Aug 2005 17:00:00 +0200 Changes since 3.0.8 Mail Transport: * Default value of the option message_size_limit in main.cf changed to 0 from -1. 3.0.8 Wed, 17 Aug 2005 10:47:16 +0200 Changes since 3.0.7 WARNING: This release of ZMC is incompatible with ZMS versions prior to 3.0.8. Heartbeat: * Fixed the problem with the generation of warning time option. Networking: * Network and broadcast values of static interfaces are now linkable. * Fixed skeleton generation if the interface pointed to a cluster property. * Network and Broadcast addresses must be set if the address of the interface is a link pointing to a cluster property. Packet filter: * Obsolete source port filtering for heartbeat communication removed. * Fixed the rule searching of destination addresses if the option "include rule address" is set. Zorp: * Search Service dialog searches in portranges as well. * Fixed bugs in querying embedded instances. * Fixed storing problem of instances if an instance was selected. 3.0.7 Tue, 28 Jun 2005 17:00:00 +0200 Packet filter: * Fixed the owner chain of the IPSec VPN related rules created by the skeleton generation. * Added destination address to the rules in the LO chains. ZAS: * Fixed configuration generating problems in case of zas_db authentication backend. Zorp: * Disabled the Rule port entry in the Listener dialog if no packet filter rule is generated. 3.0.6 Wed, 11 May 2005 12:00:00 +0200 Zorp: * Added "." to the valid Zorp identifier characters. 3.0.5 Wed, 27 Apr 2005 18:00:00 +0200 ZMC Core: * Fixed a problem which might cause the upgrade process to stop on a slow connection. * Added command line options which specify the target ZMS server. * Added a relogin function which allows reconnection to a ZMS server without exiting ZMC. * Upload process pops up a confirmation dialog. * Connection dialog is more informative about the pending action. * Cluster and Node properties are groupped in link selector dialog. * Link selector supports reordering. * Enable the use of ZMC in restricted mode if the versions of the generator plugin and the configuration format do not match. * Fixed several menu sensitivity issues. * All newly opened windows are initially centered. Cluster: * Added Type and Subtype columns to the cluster property tree. * Added support for specifying the default values of cluster properties. * Only node- and no cluster properties are linkable from outside the cluster. * Fixed the problem which prevented uploading all configurations at once. Cluster: * Only enable linking node-properties instead of cluster-properties outside from the cluster. Control: * Added support for editing the name of the control script. Host: * Deletion of a component does no longer involve file collision check. Management Server: * Added a limit (10000) to the number of backup generations. Networking: * Added possibility to use links in host and aliases entries on the naming page. Packet Filter: * Description can be assigned to user-defined rules. * Added duplication check to skeleton generation, it will no longer generate the same rule multiple times. * Clarified DROP messages in spoof rules to include more details. * Fixed a segmentation fault when clicking the Cancel button in the target option editor. PKI: * Revocation of private keys also archives the Certificate Signing Request. * Edit certificate window is accessible from CA group and certificate selector windows. Site: * Double click activates the Select button in the Zone selector dialog. Time: * Added support for specifying the same NTP server multiple times. ZAS: * The filter entry in the zas_db backend can be empty, which means the substitution of the default value. * Fixed instance renaming problem, which occured only with the zas_db authentication backend. Zorp: * Fixed class export to also include class related hash tables. * Added 'abstract' type to the possible class types in the Class editor's New/Edit dialog. Abstract type classes will be shown only in the Class editor. * Fixed a possible segmentation fault in the NAT policy editor. * Fixed a problem on the zone listing page in the Zorp Service Wizard. * Added warnings to the NAT- and the Authentication policy editor page when removing policies still associated with services. * Retain the order of listeners while changing listener settings to avoid changing the order of packet filter rules. * Some fixes in certificate reference handling. * Fixed the advanced views for the Authentication and NAT policy editors. * Added "None" as a valid default value for class constructor parameters. * Extended the lower limit to the minimum integer value of the integer type editor dialog. * Fixed address checking in the Search service dialog. * Changed the default value of Verbosity level instance parameter to 3. * Fixed sensitivity of the Delete and Modify buttons on the Imports tab. * Fixed some Service and Listener copying problems. * The order of constructor parameters can be reordered in the class editor. * A change in the list of entry points of a class in the Class Editor is automatically reflected on the "Classes" tab for derived classes. * Added a "force" option to instance specific control actions, which is an equivalent for zorpctl force-stop and force-start respectively. * Added syntax highlighting support to the Class Editor. * Added support for specifying per-source or per-destination rate limits to Listeners. * Constant types can be added to the enum and the tuple types in the type editor wizard of the Class Editor. 3.0.4 Fri, 21 Jan 2005 15:37:41 +0200 * Fixed several Windows specific segmentation faults. 3.0.3 Tue, 21 Dec 2004 11:16:32 +0200 ZMC core: * Fixed host/site import containing a Management Server component. * Added tooltip for cluster property links displaying the actual per-node value of the property * Added a progress bar to the status line when downloading XML parts. * Added double-click support to various lists/trees. * Fixed several locking problems. * Fixed several linking problems. * Clarified the linking error messages. Control: * The control plugin now correctly handles sites. Heartbeat: * Added the possibility to assign resources to hosts, so the resource owner is not necessarily the master node. IPSec VPN: * Fixed default value for the leftnexthop parameter, instead of using '%defaultroute' leave the field empty, as %defaultroute causes problems for Openswan. Monitor: * The parameters of a job are now visible in the loal/remote jobs panel. * The job and trigger state panels are now aware of the host hierarchy, and display the data accordingly. * Enhanced time/interval editing. Networking: * Fixed the Check, Uncheck and Find button in the Zone selector dialog. * Added checks that the address field of the /etc/networks file is filled. Packet filter: * Target option parameters can be links. * Fixed link reference handling in skeleton generator and in delete rule function. * Fixed the Check, Uncheck and Find button in the Skeleton generator dialog. * User defined rules are put before the RETURN rule in the noise chain after Skeleton generation. * Added BC chains to the skeleton generation for the broadcast and network addresses. * Added Heartbeat handling to the skeleton generation. * Added ratelimit match generation to the zorp rules. * Enhanced the Rule search dialog to handle clusters. PKI: * Fixed some data refreshing problems. Mail Transport: * Use the new [target host]:target address format in the transport maps. Site: * Network addresses can contain 255. * Fixed bootstrap problem when using an existing certificate. * Fixed input checking for zone names. * Fixed Check, Uncheck and Find button in the MultiNetwork selector component. Zorp: * Fixed handling of certificates on all site in the class attribute editor. * Fixed Instance removal with 'Stop instance before removal' checked in. * Fixed Advanced Authorization editor dialogs. * Fixed several cerificate reference handling problems. * New zones created from within Zorp can be used without reloading the plugin first. * Authentication port must be filled. * Directed router handles UNIX domain sockets. * Added 'ratelimit' packet filter option to the Listeners. * Added support for distributing Private keys (privatekey type) and CA private keys (capair type), as required by the X509KeyBridge class. * Added support for some missing Zorp parameters: chroot, crypto-engine and stacksize. * Redesigned Zorp parameters dialog, added an easier to use method for entering log-specs. 3.0.2 Thu, 21 Oct 2004 11:16:32 +0200 This release requires at least ZMS 3.0.2. ZMC core: * Fixed status reporting about active connections in the Connections dialog. * The old "Migrate monitoring host" function was added to the Monitoring host editor, which is now available in Config view as well. * Fixed host->cluster conversion. * The message about mismatching versions were extended to contain more details. * Added 'Unlink' and 'Unlink as value' buttons to the link dialog. * Added font selection possibility to the Preferences dialog. * Various stability and GUI usability fixes. Cluster: * Added the possibility to create links to per-node values of cluster-properties directly. * Merged 'nodename' and 'hostname' link target type. The new type is called 'hostname' Heartbeat: * The order of the resources can be controlled. IPSec VPN: * Fixed next hop calculation for road warrior connections. * Fixed sensitivity of the subnet entry for road warrior connections. Management server: * Added a setting to control the number of backup generations. Monitor: * Various bugfixes. Networking: * Fixed name resolver configuration. * Fixed pointopoint setting for static interfaces. Packet filter: * Fixed skeleton generator not to generate noise rules for interfaces with a full netmask (255.255.255.255). Mail Transport: * Restriction action can be selected from a combo. Time: * Component can show and set date and time for each cluster node. Zorp: * Better support for copying services and listeners between different hosts or sites. * Fixed problem in refreshing of zone trees after editing zones. * Automatically follow interface ip address changes in listeners. * Fixed class name change refresh in the inherited classes. 3.0.1 Thu, 16 Sep 2004 19:03:49 +0200 ZMC core: * Configuration file location is changed on Windows platforms, instead of storing the files under C:\Windows\.zmsgui, it now defaults to %USERPROFILE%/Zmc/, this causes all previous preference settings to be lost. * The engine list in the login dialog is now sortable. * Agent connection setup method is changed. All changes in the Connections dialog is temporary, disabling/initiating transfer or monitor connections can only be done on the host/cluster configuration with two new checkboxes. * File attribute checking was changed not to warn on the change of the attributes that might be different for all nodes. * Changed host identification to include site name, this makes it possible to add a host with the same name to different sites. * Introduced a new warning if a config file is managed with more than on component. * Other bug- and usability fixes. Heartbeat: * Changed heartbeat interface selection method. Instead of selecting the IP address of the interface, select the interface name directly. IPsec VPN: * Fixed a problem in input validation when a correct configuration triggered an error. Monitoring: * Added periodic refreshing to trigger status dialog. * Couple of other bugfixes. * Always show triggers, even in the invalid state. Networking: * Added provider name to the interface list for ppp interfaces. Packet filter: * Fixed a copy & paste problem when copying chains, the default policy for these chains are set to '-'. * Added support in skeleton generation for local services with more than one port. PKI: * Fixed DER certificate export under Windows platforms. System logging: * Fixed a typo in the name of dns_cache_expire_failed. ZAS: * Fixed the names of the configuration files. Zorp: * Copy access control information with services. * Check the existance of all required options when an Authentication Policy is changed. 3.0beta3 Wed, 09 Jun 2004 13:00:10 +0200 ZMC core: * Host names and and node names in clusters are not required to be unique accross all sites. * Support links for all IP address entry elements. * Somewhat reorganized menu structure to make access to ZMC functions easier. * Pop up the cluster-node selector for Upload/View/Check/Control/Run functions where appropriate. * Run command became accessible from the context menu. * More detailed report on connection errors. * Links between configuration elements now detect self- and circular references. * More details in result dialogs when an error occurs. * Various small usability fixes, like support for the Escape button in all dialogs. Cluster: * Record and save the host information refresh interval while ZMC is running. * Automatically disconnect deleted cluster-nodes. * Do not allow renaming cluster-nodes. Control: * Run command now also works on clusters. Host: * New wizard to help the conversion of a host to a cluster. * Record and save the host information refresh interval while ZMC is running. * Do not show templates made for clusters when adding a new component. Packet Filter: * Removed the 'not' checkbox from target options as target options may not be inverted. * Spoof rules were reorganized into chains for better performance. * Changed default log prefix for generated LOG rules, to make it easier to analyze DROP logs. * Added an ACCEPT rule to the end of all 'PL' chains to avoid connections destined to the firewall enter the 'PR' chains. * Added support for generating interface matches in local services rules. Monitor: * Usability fixes in hosts-, groups-, triggers- and calendars dialogs. * Lock affected databases while editing to avoid data corruption when using multiple GUIs. * Refuse to start when the monitor engine is not initialized. * Several fixes for possible segmentation faults. Networking: * ZMC fills /etc/mailname by default PKI: * Added possibility to convert certificates to be visible on all ites. * Various locking fixes. Site: * Automatically disconnect deleted hosts and cluster-nodes. * New wizard to help the creation of a new site. Time: * Added non-editable default options for ntpd Zorp: * Enhanced performance for large-scale configurations (hundreds of zones, thousands of services). * Various small fixes in "Class editor" and in "New service wizard" * Changed configuration file permissions to root/zorp, 0640 to follow the defaults in the zorp package. 3.0.0 Wed Jul 14 14:08:21 2004 ZMC core: * Added Window icon to be displayed on the taskbar. * "Unlink as value" operation for cluster properties pops up the cluser-node selector * Remove external links and validate site/host references in imported or pasted components. * Correctly handle and warn about colliding filenames within a single host. * Lock database while conversion is taking place so concurrent updates to the database are made impossible * Keep last selections in the cluster-nodes selector. * Add link buttons for all linkable entries and combos. * Commit is rejected if the component has unresolvable links. * Fixed site removal. * Fixed a problem in pressing cancel in the Link dialog Cluster: * Added Shutdown button to halt or reboot the node in question. Host: * Added Shutdown button to halt or reboot the computer in question. Mail transport: * Automatically convert configuration as required by postfix2. Monitoring: * Fixed several possible segmentation faults. * Better locking support. Networking: * When removing an interface the GUI offers to automatically deconfigure it. * Fixed interface renaming problems. Heartbeat: * Set default values for various parameters. Packet filter: * Remove non-alphanumeric characters from chain names. * Added previously missing "head" group to the PL and LO chains. * Routing chain puts all local traffic to the LOlo chain. System logging: * The order of routers can be configured. Zorp: * Moved the source code editor from the Class editor window to the Edit class window. * Descriptions can be associated to user-defined rules. * Show missing self parameter in the __init__ function. * Fixed confusing outbound and inbound zone handling in the Zorp Service Wizard.