+Changes in 2.1-beta2
+====================
+* NEW: afpd: static generated AFP signature stored in afp_signature.conf,
+ cf man 5 afp_signature.conf
+* NEW: afpd: clustering support: new per volume option "cnidserver".
+* UPD: afpd: new volume options default: UNIX priveleges ("upriv") on
+* FIX: afpd: prevent security attack guessing valid server accounts. afpd
+ now returns error -5023 for unknown users, as does AppleFileServer.
+
Changes in 2.1-beta1
====================
* NEW: afpd: AFP 3.2 support
* NEW: afpd: Extended Attributes support using native attributes or
- using files inside .AppleDouble directories.
+ using files inside .AppleDouble directories.
* NEW: afpd: ACL support with ZFS
* NEW: cnid_metad: options -l and -f to configure logging
* NEW: IPv6 support
This is used as a cache and as a backup in case the database
is deleted or corrupted. It can be disabled with a new volume
option "nocnidcache".
+* NEW: afpd: sending SIGINT to a child afpd process enables debug logging
+ to /tmp/afpd.PID.XXXXXX.
* NEW: configure args to download and install a "private" Webmin instance
including only basic Webmin modules plus our netatalk.wbm.
* NEW: fallback to a temporary in memory tdb CNID database if the volume
- database can't be open.
+ database can't be opened.
* NEW: support for Unicode characters in the range above U+010000 using
internal surrogate pairs
* NEW: apple_dump: utility to dump AppleSingle and AppleDouble files
+* NEW: afpldaptest: utility to check afp_ldap.conf.
* UPD: atalkd and papd are now disabled by default. AppleTalk is legacy.
* UPD: slp advertisement is now disabled by default. server option -slp
SRVLOC is legacy.
* UPD: cdb/dbd CNID backend requires BerkeleyDB >= 4.6
+* UPD: afpd: default CNID backend is "dbd"
* UPD: afpd: try to install PAM config that pulls in system|common auth
+* UPD: afpd: symlink handling: never followed server side, client resolves
+ them, so it's safe to use them now.
+* UPD: afpd: Comment out all extension->type/creator mappings in
+ AppleVolumes.system. They're unmaintained, possibly wrong and
+ do not fit for OS X.
* FIX: rewritten logger
* FIX: afpd: UNIX permissions handling
* FIX: cnid_dbd: always use BerkeleyDB transactions
which is in our case the last configured one. atalkd now tries to
find the right one.
Note: now a misconfigured or plugged router can broadcast a wrong route !
-* REM: cnid_maint: use dbd [FIXME: s/dbd/INSERT NAME HERE/]
-* REM: cleanappledouble.pl: use dbd [FIXME: s/dbd/INSERT NAME HERE/]
+* REM: afpd: removed CNID backends "db3", "hash" and "mtab"
+* REM: cnid_maint: use dbd
+* REM: cleanappledouble.pl: use dbd
* REM: nu: use `macusers` instead
Changes in 2.0.5