Last Build Date: Fri, 17 Oct 2003 02:03:22 -0000
Fri, 17 Oct 2003 02:03:22 -0000
Well, we added an ACL system inside hidprox. It works quite nicely.
Syntax of the acl.conf file:
where level is the type of ban. Level can currently be either "ICMP", "proxy", or "all" (without the quotes). An ICMP ban bans the user from logging in, but the user can still use an existing proxy. A proxy ban bans the user from using an existing proxy, but allows the user to login. The all ban bans the user from login in and using an existing proxy.
The IP address takes the form of a dotted-decimal IP address. The subnet takes the form of a dotted-decimal IP address, but with an asterix (*) on the last (fourth) octet.
Sat, 11 Oct 2003 02:13:34 -0000
We're almost there. It works, yet it doesn't work.
We had to switch from ICMP to TCP for initial transactions (Windows didn't like my custom ICMP packets). It listens on port 80 (most firewalls allow port 80 (HTTP)) by default.
User-authentication isn't working, yet. The program segfaults when trying to load the userlist, for some strange reason.
The main proxy stalls on a pending recv(). I need the UNIX alarm() function to be ported to Windows. I'm researching on that currently, and if I don't find anything, I may have to come up with another solution...
Other than those two problems, hidprox-windows is going great. I hope to see it fully ported within the next two to three weeks.
Mon, 29 Sep 2003 02:22:09 -0000
Hidprox 3.2.0 has been released. The proxy now uses pthreads. This improves speed at least 10%. It is not neccessary to upgrade to this version; however, it is recommended.
There is one thing that was forgotten. DEBUG is being defined when compiled. Edit the Makefile in the src directory, and remove "-DDEBUG", and it should work fine.
Wed, 24 Sep 2003 13:10:45 -0000
Due to some unfixable flaws in code, AES has been taken out. But don't worry, we switched to another secure protocol, CRAM-MD5. For information about the CRAM-MD5 protocol, look at rfc2195.
Hidprox 3.1.0 is NOT compatible with 3.0.0 and previous releases.
Mon, 22 Sep 2003 15:52:50 -0000
We are VERY excited to release hidprox 3.0.0. We have rewritten about 90% of the code. This version contains roughly 1800 lines, whereas 2.0.0 contained roughly 2600 lines.
The TCP communications between the client and the server is much more secure. The server doesn't send a random AES key to the client. Instead, the client asks the user for the AES key, and encrypts the username/password. The server will then try to decrypt the username/password according to all the AES keys in the database.
The main part of the server uses pthreads, while the proxy still uses fork(). Once the proxy is switched over to pthreads, porting to Windows will start. Pthreads ins't native to Windows, but we have found a DLL that allows us easy portability between UNIX/Linux pthreads and Windows pthreads.
We hope this release will be as successful (if not, more) then previous releases.
Thanks for all your patience,
Tue, 09 Sep 2003 22:26:50 -0000
Well, we are very excited and pleased to release this version of hidprox. We have added module (plugin) support. You can now write your own proxies, addins, and functions to hidprox at your desire (for information on how to do this, look at doc/plugins.txt).
We have tested it out in Linux extensively, and we are quite sure it's a Linux-related problem. About 50% of the time, it will not even try to load/run the plugins.
We will also be opening up a new release section, called "modpack" for pre-coded, pre-tested plugins that you may wish to run. We are currently working on an SMTP proxy plugin and an IRC proxy plugin.
Thank you for your patience,
Sun, 31 Aug 2003 15:27:31 -0000
Well, our module system (plugin system) works 100% in FreeBSD. However, in Linux, it doesn't not work. So, I'm trying to see what the problem is (been trying to figure that our for the past week).
Once it works in Linux, or once I feel it's time to release version 2.0.0, this new modular hidprox will be released. That can take anywhere from 1 day to 2 weeks.
Sorry for the delay and thanks for being patient,
Wed, 27 Aug 2003 02:39:38 -0000
the hidprox-current branch (only available to developers) is now modularized.
This means, that if there's something that you want included, yet the developers haven't included it, you can code your own set of functions, compile, and put the compiled file into a directory, and your set!
It took 4 hours to do, and it's stable. Version 2.0.0 may be released within the next couple days, or in a week or so. We are bumping the version up to 2.0.0, because we feel hidprox is stable enough, and with modular code coming out, this is going to revolutionize hidprox.
We are currently working on getting a set of modules for people to use at their whim.
Thanks for your patience,
Tue, 26 Aug 2003 04:32:10 -0000
hidprox 0.4.3 was released today. hidprox is now cross-portable to Linux.
We now include functionality for max connections (fixing the DoS condition so that the admin doesn't have to remotely login). Check hidprox.conf for more info.
Thank you for your patience,
Tue, 19 Aug 2003 22:21:49 -0000
Due to MD5 hashes, we are now BSD-only. We are going to be working on importing other MD5 code (instead of relying on the system's library).
Work is being done to port hidprox to both Windows and Linux. But, for now, hidprox is BSD-only.
We are currently using FreeBSD 5.1-RELEASE to build hidprox.