1 monkeysphere (0.15~pre-1) UNRELEASED; urgency=low
3 * porting work: clarifying makefiles, pruning dependencies, etc.
4 * added tests to monkeysphere-server diagnostics
6 -- Daniel Kahn Gillmor <dkg@fifthhorseman.net> Thu, 04 Sep 2008 19:08:40 -0400
8 monkeysphere (0.14-1) experimental; urgency=low
10 * changing debian packaging back to format 1.0 so we get automatic
11 tarballs, and easier inclusion in other build networks.
12 * no other source changes.
14 -- Daniel Kahn Gillmor <dkg@fifthhorseman.net> Thu, 04 Sep 2008 13:03:35 -0400
16 monkeysphere (0.13-1) experimental; urgency=low
18 [ Daniel Kahn Gillmor ]
19 * tweaks in /usr/bin/monkeysphere to handle odd secret keyrings.
20 * updated makefile to reflect the package building technique we've been
21 using for a month now.
23 [ Jameson Graef Rollins ]
24 * move location of user config directory to ~/.monkeysphere.
26 -- Daniel Kahn Gillmor <dkg@fifthhorseman.net> Wed, 03 Sep 2008 17:26:10 -0400
28 monkeysphere (0.12-1) experimental; urgency=low
30 [ Jameson Graef Rollins ]
31 * Improved output handling. New LOG_LEVEL variable.
33 [ Daniel Kahn Gillmor ]
34 * debian/control: switched Homepage: and Vcs-Git: to canonicalized
36 * updated documentation for new release.
37 * changed my associated e-mail address for this package.
39 -- Daniel Kahn Gillmor <dkg@fifthhorseman.net> Tue, 02 Sep 2008 18:54:29 -0400
41 monkeysphere (0.11-1) experimental; urgency=low
43 [ Jameson Graef Rollins ]
44 * fix bug in trustdb update on add/revoke-hostname.
46 [ Daniel Kahn Gillmor ]
47 * debian/control: added Build-Depends: git-core for the new packaging
49 * new subcommand: monkeysphere subkey-to-ssh-agent (relies on a patched
50 GnuTLS to deal with GPG's gnu-dummy S2K extension, but fails cleanly
53 -- Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net> Wed, 20 Aug 2008 11:24:35 -0400
55 monkeysphere (0.10-1) experimental; urgency=low
57 [ Jameson Graef Rollins ]
58 * brown paper bag release: invert test on calculated validity of keys.
60 -- Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net> Mon, 18 Aug 2008 16:22:34 -0400
62 monkeysphere (0.9-1) experimental; urgency=low
64 [ Daniel Kahn Gillmor ]
65 * implemented "monkeysphere-server extend-key" to adjust expiration
67 * removed "monkeysphere-server fingerprint". Use "monkeysphere-server
70 [ Jameson Graef Rollins ]
71 * fixed bug in user id processing that prevented bad primary keys from
72 being properly removed.
74 -- Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net> Mon, 18 Aug 2008 15:42:12 -0400
76 monkeysphere (0.8-1) experimental; urgency=low
78 [ Daniel Kahn Gillmor ]
79 * debian/control: switched Vcs-Git to use "centralized" git repo instead
81 * More monkeysphere-server diagnostics
82 * monkeysphere --gen-subkey now guesses what KeyID you meant.
83 * added Recommends: ssh-askpass to ensure monkeysphere --gen-subkey
84 works sensibly under X11
86 [ Jameson Graef Rollins ]
87 * fix another bug when known_hosts files are missing.
88 * sort processed keys so that "good" keys are processed after "bad"
89 keys. This will prevent malicious bad keys from causing good keys to
90 be removed from key files.
91 * enabled host key publication.
92 * added checking of gpg.conf for keyserver
93 * new functions to add/revoke host key user IDs
94 * improved list-certifiers function (now non-privileged)
96 -- Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net> Mon, 18 Aug 2008 12:43:37 -0400
98 monkeysphere (0.7-1) experimental; urgency=low
100 [ Daniel Kahn Gillmor ]
101 * Added monkeysphere-server diagnostics subcommand.
102 * rebuilding package using Format: 3.0 (git)
104 [ Jameson Graef Rollins ]
105 * fix how check for file modification is done.
106 * rework out user id processing is done to provide more verbose log
108 * fix bug in monkeysphpere update-authorized_keys subcommand where
109 disallowed keys failed to be remove from authorized_keys file.
111 -- Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net> Mon, 04 Aug 2008 10:47:41 -0400
113 monkeysphere (0.6-1) experimental; urgency=low
115 [ Jameson Graef Rollins ]
116 * Fix bug in return on error of ssh-proxycommand.
118 [ Daniel Kahn Gillmor ]
119 * try socat if netcat is not available in proxycommand.
121 -- Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net> Tue, 29 Jul 2008 10:27:20 -0400
123 monkeysphere (0.5-1) experimental; urgency=low
125 [ Daniel Kahn Gillmor ]
126 * updated READMEs to match current state of code
128 [ Jameson Graef Rollins ]
129 * Tweak how empty authorized_user_ids and known_hosts files are handled.
130 * Do not fail when authorized_user_ids or known_hosts file is not found.
132 -- Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net> Mon, 28 Jul 2008 10:50:02 -0400
134 monkeysphere (0.4-1) experimental; urgency=low
136 [ Daniel Kahn Gillmor ]
138 * Fixed return code error in openpgp2ssh
140 [ Jameson Graef Rollins ]
141 * Privilege separation: use monkeysphere user to handle maintenance of
142 the gnupg authentication keychain for server.
143 * Improved certifier key management.
144 * Fixed variable scoping and config file precedence.
145 * Add options for key generation and add-certifier functions.
146 * Fix return codes for known_host and authorized_keys updating
148 * Add write permission check on authorized_keys, known_hosts, and
149 authorized_user_ids files.
151 -- Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net> Tue, 22 Jul 2008 21:50:17 -0400
153 monkeysphere (0.3-1) experimental; urgency=low
155 [ Daniel Kahn Gillmor ]
158 [ Jameson Graef Rollins ]
159 * Move files in /var/cache/monkeysphere and GNUPGHOME for server to
160 the more appropriate /var/lib/monkeysphere.
162 -- Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net> Tue, 24 Jun 2008 00:55:29 -0400
164 monkeysphere (0.2-2) experimental; urgency=low
166 * added lockfile-progs dependency
168 -- Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net> Mon, 23 Jun 2008 19:34:05 -0400
170 monkeysphere (0.2-1) experimental; urgency=low
172 [ Daniel Kahn Gillmor ]
173 * openpgp2ssh now supports specifying keys by full fingerprint.
175 [ Jameson Graef Rollins ]
176 * Add AUTHORIZED_USER_IDS config variable for server, which defaults to
177 %h/.config/monkeysphere/authorized_user_ids, instead of
178 /etc/monkeysphere/authorized_user_ids.
179 * Remove {update,remove}-userids functions, since we decided they
180 weren't useful enough to be worth maintaining.
181 * Better handling of unknown users in server update-users
182 * Add file locking when modifying known_hosts or authorized_keys
183 * Better failure/prompting for gen-subkey
184 * Add ability to set any owner trust level for keys in server keychain.
186 -- Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net> Mon, 23 Jun 2008 17:03:19 -0400
188 monkeysphere (0.1-1) experimental; urgency=low
190 * First release of debian package for monkeysphere.
191 * This is experimental -- please report bugs!
193 -- Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net> Thu, 19 Jun 2008 00:34:53 -0400