2009-05-24 Markus Gutschke * Added SSL support for OpenBSD 2009-05-23 Markus Gutschke * Released version 2.8 2009-05-22 Markus Gutschke * Improved support for entering non-ASCII characters. 2009-05-20 Markus Gutschke * Fixed various issues with building on OpenBSD 2009-04-28 Markus Gutschke * Fixed variable expansion in service descriptions. 2009-04-27 Markus Gutschke * Released version 2.7 * Improved compatibility with some PAM configurations when running as a non-privileged user. * Fixed a bug that required shells to output data (e.g. a prompt) before they could read the first data. * Fixed a potential crash. 2009-04-12 Markus Gutschke * Released version 2.6 * The demo application is still incomplete, but starting to be somewhat functional. The BASIC interpreter supports variables, and can parse expressions. But it is still missing all flow-control commands, making it somewhat useless for writing real programs. 2009-03-30 Markus Gutschke * Added initial revision of demo application. * Show fatal error message even when running in "quiet" mode. * Make it easier to override parameters needed by the system startup scripts. 2009-03-29 Markus Gutschke * Added support for chained SSL certificates 2009-03-23 Markus Gutschke * Added an INSTALL.Debian file with Debian-specific instructions on how to build and install a package file. 2009-03-21 Markus Gutschke * Possible fix for IE problems with horizontal positioning of cursor if the line ends in spaces. * Work-around for an IE6 bug when doing HTTPS through proxies. 2009-03-21 Markus Gutschke * Released version 2.5 * More testing on older IE versions. 2009-03-19 Markus Gutschke * Fixed cursor positioning. Hopefully, more browsers will be happy with this, now. * Explicitly added no-cache headers to our responses. This might help with the IE6 problems. 2009-03-17 Markus Gutschke * Allow root to bind to privileged port. 2009-03-17 Markus Gutschke * Fixed IE6 support. * Fixed possible memory corruption, when sessions time out. 2009-03-16 Markus Gutschke * Fixed some compiler warnings, that newer versions of GCC issue. 2009-02-27 Markus Gutschke * Added fallback on old-style pty's, if /dev/pts is not mounted. * Work-around for systems that don't define a "nogroup" group. * Remove the dependency on fdopendir, which does not exist everywhere. 2009-02-16 Markus Gutschke * Include VCS revision number in user-visible version string. * Allow "configure" to select whether OpenSSL and PAM libraries should be used at all, dynamically searched-for at run-time, or linked as a regular dynamic library. * Fixed various bugs that prevents ShellInABox from running on FreeBSD 2009-02-12 Markus Gutschke * Released version 2.4 2009-02-11 Markus Gutschke * Fixed fatal compiler warning if compiling without SSL support. * Fixed cursor hiding and showing * Fixed various rendering glitches reported by Phil Endecott of Anyterm (http://anyterm.org) fame. * Made code more portable. In particular, fixed sed scripts. * Added explicit config.h file, instead of passing configuration options on the compiler's command line. * Fixed compilation issues on BSD systems. Code is still untested and unsupported on non-Linux systems at this time. 2009-01-21 Markus Gutschke * Released version 2.3 * Fixed a show-stopper bug that broke the --cert option. 2009-01-21 Markus Gutschke * Released version 2.2 * Fixed a bug that could result in the font getting corrupted. * Improved compatibility with more versions of the OpenSSL library. Previously, the feature test for TLSEXT did not always work correctly, resulting in compilation failures. * Improved support for embedding shellinaboxd into existing web services. SSL certificates can now be passed in through a file handle, and port and pid numbers can be retrieved from the CGI header. 2009-01-08 Markus Gutschke * Released version 2.1 * Fixed build errors mostly related to x86_64. * Added --no-beep command line option to avoid VLC plugin crashing Firefox/x86_64. * Fixed multi-line selections in Firefox. 2009-01-01 Markus Gutschke * Added CGI mode for demand-loading the shellinaboxd daemon from a web server. This also allows for the web server to perform authentication, instead of having shellinaboxd do so. * Tightened setuid-root operation to no longer allow switching to arbitrary users/groups. As before, setuid-root remains a non-standard configuration that is not currently recommended. * Fixed session management to deal better with torn down connections. Closed one bug that could have resulted in permanently orphaned connections, when the browser navigated away from the page. 2008-12-27 Markus Gutschke * First public release of the version 2.0 rewrite. This is the first release of ShellInABox that supports an AJAX interface instead of the original Java applet.