Index: stable/4/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml =================================================================== --- stable/4/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml (revision 100905) +++ stable/4/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml (revision 100906) @@ -1,434 +1,468 @@ &os;/&arch; &release.current; Release Notes $FreeBSD$ The FreeBSD Project 2000 2001 2002 The FreeBSD Documentation Project The release notes for &os; &release.current; contain a summary of the changes made to the &os; base system since &release.prev;. Both changes for kernel and userland are listed, as well as applicable security advisories for the base system that were issued since the last release. Some brief remarks on upgrading are also presented. Introduction This document contains the release notes for &os; &release.current; on the &arch.print; hardware platform. It describes new features of &os; that have been added (or changed) since &release.prev;. It also provides some notes on upgrading from previous versions of &os;. The &release.type; distribution to which these release notes apply represents a point along the &release.branch; development branch between &release.prev; and the future &release.next;. Some pre-built, binary &release.type; distributions along this branch can be found at . ]]> This distribution of &os; &release.current; is a &release.type; distribution. It can be found at or any of its mirrors. More information on obtaining this (or other) &release.type; distributions of &os; can be found in the Obtaining FreeBSD appendix in the FreeBSD Handbook. ]]> What's New This section describes the most user-visible new or changed features in &os; since &release.prev;. Typical release note items document new drivers or hardware support, new commands or options, major bugfixes, or contributed software upgrades. Security advisories for the base system that were issued after &release.prev; are also listed. Kernel Changes &man.acct.2; has been changed to open the accounting file in append mode, so that &man.accton.8; can be used to enable accounting to an append-only file. RLIMIT_VMEM support has been added. This feature defines a new resource limit that covers a process's entire virtual memory space, including &man.mmap.2; space. This limit can be configured in &man.login.conf.5; via the new vmemoryuse variable. Processor/Motherboard Support Boot Loaders Network Interface Support The &man.em.4; driver now supports the Intel 82545EM and 82545EB chips. It also has VLAN support. The &man.rp.4; driver has been updated to version 3.02 and can now be built as a module. Network Protocols Disks and Storage A bug which sometimes prevented &man.ata.4; tagged queueing from working correctly has been corrected. Filesystems PCCARD Support Multimedia Support Contributed Software Security Advisories A buffer overflow in the resolver, which could be exploited by a malicious domain name server or an attacker forging DNS messages, has been fixed. See security advisory FreeBSD-SA-02:28 for more details. A buffer overflow in &man.tcpdump.1;, which could be triggered by badly-formed NFS packets, has been fixed. See security advisory FreeBSD-SA-02:29 for more details. &man.ktrace.1; can no longer trace the operation of formerly privileged processes; this prevents the leakage of sensitive information that the process could have obtained before abandoning its privileges. For a discussion of this issue, see security advisory FreeBSD-SA-02:30 for more details. Userland Changes &man.dump.8; now supports a new flag to allow it to just print out the dump size estimates and exit. &man.finger.1; now has support for a .pubkey file. &man.finger.1; now supports a flag to restrict the printing of GECOS information to the user's full name only. + &man.finger.1; now supports the and + flags to specify an address family for + remote queries. + &man.fold.1; now supports a flag to break at byte positions and a flag to break at word boundaries. &man.ifconfig.8; now supports a command to fill in the lowermost 64 bits of an IPv6 address automatically. This makes &man.prefix.8; obsolete. + The &man.ls.1; program now supports a + flag to list files across a page, a flag to + force printing of a / after directories, and + a flag to sort filenames across a + page. + &man.nice.1; now uses the option to specify the niceness of the utility being run. &man.pam.opie.8; no longer emits fake challenges when the no_fake_prompts variable is specified. A &man.pam.opieaccess.8; module has been added. &man.pam.radius.8;, &man.pam.ssh.8;, and &man.pam.tacplus.8; have been synchronized with the versions in &os; -CURRENT as of 3 July 2002. &man.pam.unix.8; has been synchronized with the version in &os; -CURRENT as of 9 March 2002 (pre-OpenPAM). &man.pwd.1; now supports the flag to print the logical current working directory. The &man.renice.8; command implements a option, which specifies an increment to be applied to the priority of a process. &man.sed.1; now takes a option to enable in-place editing of files. + + &man.sh.1; now supports a option to + prevent existing regular files from being overwritten by output + redirection, and a to give an error if an + unset variable is expanded. + + The &man.sh.1; built-in cd command now + supports and flags to + invoke logical or physical modes of operation, respectively. + Logical mode is the default, but the default can be changed with + the physical &man.sh.1; option. + + The &man.sh.1; built-in jobs command now + supports a flag to output PIDs only and a + flag to add PIDs to the output. + + The &man.sh.1; built-in export and + readonly commands now support a + flag to print their output in + portable format. + + &man.split.1; now supports a option to + specify the number of letters to use for the suffix of split + files. &man.su.1; now has support for Kerberos V authentication. &man.tr.1; now has basic support for equivalence classes for locales that support them. &man.unexpand.1; now supports a to specify tabstabs analogous to &man.expand.1;. &man.who.1; now has a number of new options: shows column headings; shows &man.mesg.1; state; is an equivalent to ; shows idle time; to list names in columns. &man.xargs.1; now supports a replstr option that allows the user to tell &man.xargs.1; to insert the data read from standard input at specific points in the command line arguments rather than at the end. (A &os;-specific option is similar, but is now deprecated in favor of the more portable option.) &man.xargs.1; now supports a option to force its utility argument to be called after some number of lines. Contributed Software BIND has been updated to 8.3.3. gcc has been updated to 2.95.4. libpcap has been updated to 0.7.1. The FTP daemon from NetBSD, otherwise known as lukemftpd 1.2 beta 1, has been imported and is available as &man.lukemftpd.8;. &man.m4.1; has been imported from OpenBSD, as of 26 April 2002. The OPIE one-time-password suite has been updated to 2.4. OpenSSH has been updated to version 3.4p1. Among the changes: The *2 files are obsolete (for example, ~/.ssh/known_hosts can hold the contents of ~/.ssh/known_hosts2). &man.ssh-keygen.1; can import and export keys using the SECSH Public Key File Format, for key exchange with several commercial SSH implementations. &man.ssh-add.1; now adds all three default keys. &man.ssh-keygen.1; no longer defaults to a specific key type; one must be specified with the option. A privilege separation feature, which uses unprivileged processes to contain and restrict the effects of future compromises or programming errors. Several bugfixes, including closure of a security hole that could lead to an integer overflow and undesired privilege escalation. The default SSH protocol to use is now Version 2 (with a fallback to Version 1), rather than Version 1 (with a fallback to Version 2). sendmail has been updated from version 8.12.3 to version 8.12.5. GNU tar has been updated to 1.13.25. tcpdump has been updated to 3.7.1. Ports/Packages Collection Release Engineering and Integration A bug that caused /usr/share/examples to be incompletely populated on fresh installs has been fixed. Upgrading from previous releases of &os; If you're upgrading from a previous release of &os;, you generally will have three options: Using the binary upgrade option of &man.sysinstall.8;. This option is perhaps the quickest, although it presumes that your installation of &os; uses no special compilation options. Performing a complete reinstall of &os;. Technically, this is not an upgrading method, and in any case is usually less convenient than a binary upgrade, in that it requires you to manually backup and restore the contents of /etc. However, it may be useful in cases where you want (or need) to change the partitioning of your disks. From source code in /usr/src. This route is more flexible, but requires more disk space, time, and technical expertise. More information can be found in the Using make world section of the FreeBSD Handbook. Upgrading from very old versions of &os; may be problematic; in cases like this, it is usually more effective to perform a binary upgrade or a complete reinstall. Please read the INSTALL.TXT file for more information, preferably before beginning an upgrade. If you are upgrading from source, please be sure to read /usr/src/UPDATING as well. Finally, if you want to use one of various means to track the -STABLE or -CURRENT branches of &os;, please be sure to consult the -CURRENT vs. -STABLE section of the FreeBSD Handbook. Upgrading &os; should, of course, only be attempted after backing up all data and configuration files.