summaryrefslogtreecommitdiff
path: root/ChangeLog
diff options
context:
space:
mode:
authorRobert James Kaes <rjkaes@users.sourceforge.net>2002-04-12 17:01:07 +0000
committerRobert James Kaes <rjkaes@users.sourceforge.net>2002-04-12 17:01:07 +0000
commit1685e9ca66f6ed06adeb80e2319fe5190da35c70 (patch)
tree2dbca0f004f31e1a29ddc4fa31f2611be4b19093 /ChangeLog
parentecb249f4247f1afa412bc7cc0acff4d92aa3675a (diff)
downloadtinyproxy-1685e9ca66f6ed06adeb80e2319fe5190da35c70.tar.gz
tinyproxy-1685e9ca66f6ed06adeb80e2319fe5190da35c70.zip
Changes regarding the new ConnectPort directive.
Diffstat (limited to 'ChangeLog')
-rw-r--r--ChangeLog14
1 files changed, 14 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index b779f2a..17ac88f 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,17 @@
+2002-04-12 Robert James Kaes <rjkaes@flarenet.com>
+
+ * src/scanner.l:
+ * src/grammar.y: Added code for the ConnectPort directive.
+
+ * src/reqs.c (add_connect_port_allowed):
+ (check_allowed_connect_ports): Added these two functions (breaking
+ by no new features rule) because they fix a security problem with
+ tinyproxy. These functions are needed to support the ConnectPort
+ configuration directives, which allows the admin to specify which
+ ports are allowed by a CONNECT method. This is needed to prevent
+ people from using tinyproxy to connect to mail servers (port 25)
+ to do "bad things."
+
2002-04-11 Robert James Kaes <rjkaes@flarenet.com>
* src/reqs.c (remove_connection_headers): Moved all the code for