Group :: System/Servers
RPM: havp
Main Changelog Spec Patches Sources Download Gear Bugs and FR Repocop
24 july 2009 Sergey Y. Afonin <asy at altlinux.ru> 0.90-alt0.M50.2
- Branch 5.0 update
- Rebuild with new clamav
- Update to 0.90
+ ClamAV library 0.95 support (recompile needed)
+ Support NOD32 version 3 (set NOD32VERSION 30 in config)
+ Add PRELOADZIPHEADER config (Squid 3.x might not work if enabled)
+ Add SYSLOGVIRUSLEVEL config - Switch to git
- Fix build with gcc4.4
- Update to 0.89
+ Fix possible retry loop and hang (thanks to Peter Warasin @ endian.it)
+ Always send Via: header, fixes some IIS problems (e.g. MSNBC) - Convert spec to UTF8
- Update to 0.88
+ ClamAV library 0.93 support (new option CLAMMAXSCANSIZE)
+ CLAMMAXFILESIZE default is now 100MB (so 0.93 even starts scanning big files)
+ Fix random seed issue (ClamAV generated some temporary file errors)
+ Added DISABLELOCKINGFOR config (fix for ZIP handling in ClamAV 0.93)
+ Arcavir version 2008 support (set ARCAVIRVERSION)
+ Log scanner errors to errorlog
+ Relaxed SSL/CONNECT port limits
(It is _not_ recommended to use --enable-ssl-tunnel, you should use Squid) - Convert README.ALT from koi8-r to utf8
- Update havp-0.90-alt.patch
- Update to 0.87
+ DrWeb scanner support
+ F-Prot support for v6.0 added (also check FPROTOPTIONS)
+ If false, X_FORWARDED_FOR drops also Via: header for privacy
+ Fix Avast and AVG bugs
+ Templates support <!--url--> and <!--clientip--> tags
+ Uses supplementary groups for user if defined
+ Added TRICKLINGBYTES config
+ Reduced *MAXFILES settings to 50 for performance
+ Add missing HTTP methods (MKACTIVITY, CHECKOUT, MERGE)
- Update to 0.86
- Add patch havp-0.90-alt.patch
- Move /usr/share/templates to /etc/havp/
+ Experimental support for chunked Transfer-Encoding, fixes some broken sites
+ Added IGNOREVIRUS config for whitelisting virus names
+ Added CLAMBLOCKBROKEN config
+ HAVP is killed if database reloading fails for Library Scanner
+ Log URL when crashed scanner process detected, for troubleshooting
+ Build system updated (--prefix --sbindir --sysconfdir --localstatedir)
- Add --prefix=/ in %configure
- Update to 0.85
+ Added support for ClamAV 0.90 library
- Update to 0.84
+ Fix bug in tcp buffer, requests could leak to other clients sometimes
+ Support for multiple IPs in hostnames, all are tried if necessary
+ Pass Proxy-Authorization header to parent proxy (thanks Mateus)
+ Ignore scanner errors if MAXSCANSIZE reached (thanks Vittorio)
+ Default for MAXSCANSIZE 5000000, not suggested to be 0 anymore
- Change Requires: clamav -> clamav-freshclam
- Update to 0.83
- Fix #10159, #10162
- Update to 0.82
- Improved ZIP handling (header pre-fetch, scans ZIPs larger than MAXSCANSIZE)
- Added SCANIMAGES config
- Ignore RAR errors from clamd
- Fixes to HTTP header handling
- Added syslog logging option
- Signal HUP re-opens logfiles, making rotation possible
- Fixed binding to low ports (<1024)
- Fixed FreeBSD, downloads that took longer than TRICKLING did not work
- Experimental FreeBSD support (no mandatory locking, KEEPBACK not supported!)
- Avast! scanner support
- Added MAXDOWNLOADSIZE config
- Added X_FORWARD_FOR config to control the header
- Added some archive scanning parameters for Trophie
- Added TCP support for clamd
- Ignore RAR errors from ClamAV (use ClamAV-devel if you want to scan RARv3)
- Fixed bug in socket buffer, sometimes caused nasty effects with POST etc.
- Fixed KeepAlive for HTTP/1.1 clients, now on by default
- Access logging format changed a bit
- update to 0.79
- MULTIPLE SCANNER SUPPORT! (see havp.config how to enable scanners)
- NOD32, Sophos and Clamd scanner support
- Parentproxy error on SSL tunneling is passed to browser
- Whitelisted sites can use HTTP Range requests (for Windowsupdate..)
- Added STREAMUSERAGENT/STREAMSCANSIZE config to reduce stream scanning
- Added SCANNERTIMEOUT option to catch scanners gone wild
- Added scanning options for ClamLib
- Change BIND_ADDRESS "NULL" to BIND_ADDRESS "127.0.0.1" as default
- Change stop priority to 9
- update to 0.78
- Added TEMPDIR, LOGLEVEL, FAILSCANERROR and WHITELISTFIRST config
- KEEPBACKTIME config added to complement KEEPBACKBUFFER setting
- Basic HTTP Keep-Alive support, improves network performance
- HTTPS/SSL tunneling support
- FTP is supported when FTP supporting parent proxy is used
- Logging improved
- Added reload-lists in /etc/rc.d/init.d/havp
- Add mount in loop
- Add REDME.ALT
- initial build