1.6.1:
	* sh_schedule.c: bugfix (executes only after first day) 
	* rm obsolete WITH_TRACE stuff
	* new dlog() function for debug logging
	* some more descriptive error messages

1.6.0:
	* omit the -fomit-frame-pointer option (bugs in some gcc versions ?)
	* sh_error.c: fix escape mode when logging to database
	* sh_forward.c: fix error (twice escape) in recv_syslog_socket
	* sh_tools.c: change escape mode for server-received data
	* sh_mem.c: change ulong -> size_t in sh_mem_malloc()
	* configure.in: fix localstatedir if --prefix=USR
	* sh_hash.c: snprintf() -> sl_snprintf()

1.5.5:
	* sh_err_log.c: fix incorrect xml syntax for client messages 
	  logged by server
	* sh_err_log.c: fix incorrect '</trail>' entries on client EXIT
	* sh_files.c: introduce file_class_next
	  this fixes the problem that a policy for the directory
	  inode erroneously becomes a policy for the directory itself.

1.5.4:
	* sh_hash.c: fix buffer overflow with (micro-)stealth
	* sh_database.c: set path[] 1024 -> 12288
	* sh_database.c: set query[] 2048 -> 16383
	* sh_database.c: set values[] 1024 -> 16383
	* sh_forward.c: larger limit for message size (16 kB)
	* trustfile.c: set MAXFILENAME 2048 -> 4096
	* fixed a bug in the handling of filenames with embedded newlines
	* sh_files.c: fix missing sh_util_safe_name() in debug output
	* --with-sender can specify a full address
	* fix xml log in a backwards compatible way

1.5.3:
	* fix combination of stealth and sql logging
	* fix some more places where invalid UIDs/GIDs trigger errors

1.5.2:
	* include solaris config file from (sean [at] boran d.o.t com)
	* test for files/dirz defined twice in the configuration file
	* option to disable reverse lookup on outbound connections
	* option to use socket peer as client name (with name resolving)
	* sh_html.c: fix an HTML bug (twice </head><body>)
	* sh_suidchk.c: fix warning on AIX b/o dirname()
	* allow logging server -> syslog if yule is NOT configured to 
	  receive syslog messages
	* define PRIi64 to "lld" if undefined
	* invalid UIDs: use gid/uid as name, error level SeverityNames
	* minor fixes for connect_port
	* sh_hash.c: flush output of db listing before _exit()
	* configure.in: fix incorrect default ${install_name} for server
	* configure.in: try harder to find mysql.h / libpq-fe.h
	* sh_files.c: sh_files_checkdir: 
	  closedir() early to not exhaust OPEN_MAX
 
1.5.1a:
	* fix missing LSB init script

1.5.1:
	* fix '-t update' option

1.5.0a: 
	* fix configure.in

1.5.0 (22-05-2002):
	* include solaris nosuid patch from (nathoo [at] co d.o.t ru)
	* similar fix for bsd nosuid
	* speed up -t update
	* convert manual to DocBook, distribute html and ps
	* fix some more problems with configure.in, Makefile.in
	* fix testsuite, add tests for udp, mysql
	* MSG_TCP_MSG: host -> remote_host
	* convert to autoconf 2.53
	* make c_bits.sh exit with status 0
	* sh_database.c #include "mysql.h" --> <mysql.h>, ditto libpq-fe.h
	  to avoid dependency tracking problems
	* samhain.c remove *YULE* #ifdefs
	* acconfig.h remove *YULE* #undefs
	* samhain.c: procdirSamhain: lstat --> stat (allow symlink)
	* configure.in: add checks for correct user input
	* Makefile.in: add automatic dependency tracking
	* depend-gen: tool to figure out dependencies
	* chkconfig comments in redhat start scripts

1.4.8:
	* sh_database.c: fix missing attr_old, attr_new, (from)host columns
	* configure.in, Makefile.in: fix an error in the configfile
	  definition with REQ_FROM_SERVER
	* sh_err_console, sh_err_log: avoid recurrent failure messages
	* timeout on read from files (/proc)
	* fix errrors with setjmp/longjmp/alarm
	* fix memory leak in server (~20 byte/file download in sh_tools, 930)
	* check gpg signature for files downloaded from server, add a
	  regression test
	* fix chown in solaris bootscript
	* provide second scheduler for file check
	* provide scheduler for file check
	* provide scheduler for SUID check

1.4.7 (08-04-2002):
	* make daemon control LSB-compliant (arguments, exit status)
	* set log_ref = 0 for server messages
	* boolean option SetDBServerTstamp to disable entering server
	  timestamps for received client messages into database
	* sh_suidcheck: check for "nosuid" mount option if getmntent is used
	* fix logrotate script in manual (reported by Scott Worthington)
	* don't strip numerical IP addresses
	* check item->status_now != CLT_TOOLONG in client_time_check()
	* set log_host to client in db client message

1.4.6a (20-03-2002):
	* define prefix in deploy.sh

1.4.6 (19-03-2002):
	* modify samhain_hide.c to hide processes on new Linux kernels
	* better error diagnostics in kern_head.c
	* fix compile error in all_items ()
	* check length of install-name in enable-khide (max is 15)
	* define exec_prefix in deploy.sh.in
	* make configure a bit more cross-compiler friendly	
 
1.4.5:
	* Make sure missing file is reported even if ptr->reported == S_TRUE 
	  because the file has been added.
	* propagate 'reported' flag from sh_files_checkdir() into file list
	* close checkfd in sh_gpg_check_file_sign()
	* sh_derr(): kill(parent, SIGCONT) after ptrace(PT_DETACH,...)
	* use sh.srvcons.name in dbg() to get debugging info from daemon
	* option to log file timestamps with localtime instead of GMT
	* comment out MSG_FI_ADD in sh_dirs_chk () - obsoleted by mandatory
	  sh_files_filecheck(directory) that triggers MSG_FI_ADD in sh_hash.c
	* set ptr->reported = S_FALSE; for reappeared files in sh_files_chk()
	  to make sure re-disappearing will get reported
	* new function sh_hash_set_missing() to remove file record
	  without (duplicate) 'missing' message
	* make sure all items are reported for added files
	* fix stealth mode with sh_kern (encode sh_ks.h -> sh_ks_xor.h)
	* clarify in the documentation which gpg options to use for signing

1.4.4:
	* check that parent process has exited before writing PID file
	* promote MGG_W_CHDIR to SH_ERR_ERR
	* add error message to sh_unix_testlock
	* fix missing _() macro in sh_aud_set_functions

1.4.3:
	* don't check attributes for symlinks (may cause device access)
	* add USE mysql; USE samhain; to samhain.mysql.init
	* point out the MessageHeader/mysql problem in manual
	* add -lz to LIBS for mysql
	* strip after install, avoid double strip

1.4.2:
	* support for EGD
	* fix some more problems with install-deploy / deploy.sh
	* fix a bug in profiles/suselinux_i386/bootscript (INSTALL_NAME_)
	* fixed the 'external logging' test (init rather than none in rc file)

1.4.1:
	* SuSE: include run level 4+5
	* install location of hiding kernel modules changed - some insmod
	  variants do not test for /lib/modules/$(uname -r)/module_name.o
	* new make targets 'install-deploy', 'uninstall-deploy'
	* fixed make targets 'deploydir', 'deploydirfast'
	* bail on unsupported CL option in deploy.sh
	* fix various bugs in deploy.sh
 
1.4.0:
	* fixed missing 'dirname' on Mac OS X
	* fixed && tested for/with postgres
	* 'user=' -> 'userid=' (reserved word in sql)
	* fix the endianess + size of file database; this changes db format
	  for any non-Linux OS
	* --enable-old-format for old (V1.3) database format
	* getopt, samhain.c, samhain.h: option -f to loop if not daemon 
	* sh_hash: list numeric + char data to allow file db update on
	  server side
	* sh_database: modify handling of integer (long) data
	* sh_database: datetime in database
	* sh_database: hash field in database
	* sh_database: rewrite database insert string construction
	  [use INSERT INTO log (fields) VALUES (values);]
	* makefile suse 7.x runlevel entries

1.3.7:
	* fix incorrect escape in sh_tools_safe_name
	* fix sh_error_handle (4. argument) in sh_extern.c

1.3.6c:
	* fix segfault in sh_database (mysql logging) on solaris

1.3.6b:
	* fix syntax error ('==')  in Makefile.in
	* fix configure.in (path for /lib/modules/$(uname -r)/build/include)
	* fix sh_kern.c (redeclaration of 'j')

1.3.6:
	* sh_kern.c: check integrity of int 80h vector 
	  (SucKIT rootkit - Phrack 58)
	* make sure childs in sh_kern are wait()'ed for
	* provide start/stop/restart/reload/status interface
	* fix a potential segfault (dereferenced NULL pointer) in the server
	* use sh_util_flagval for sh_unix_setdaemon
	* documentation for logging to SQL database
	* configure.in: check for -I/lib/modules/$(uname -r)/build/include
	* fix trustfile.c to ignore invalid users
	* separate 'make install-samhain' and 'make install-yule'
	* separate default log/pid/config files for server/client
	  - less problems running server and client on same host
	* rewrite deploy.sh(.in): 
	  - don't use (make|install) if deploying
	  - use command line options
	  - better integrate into server environment
	  - write install db
	* always write a pidfile if daemon
	* don't use server's config file as fallback for downloading client
	* don't overwrite config file when doing 'make install'

1.3.5:
	* fix --enable-message-queue for newer glibc versions
	* log to SQL database: implemented, but undocumented yet,
	  needs to be tested further
	* xml: escape received syslog messages
	* xml: rename 'time' to 'tstamp'
	* make targets: make [un]install-[boot-]yule 
	  (for server-only installation)
	* fix samhain_hide.c for 2.4 kernel
	* fix sh_kern for updated samhain_hide.c 
	* new option -j to just list the logfile
	* sh_getopt.c: recognize -Dt check for -D -t check
	* sh_tiger0.c: fix compiler warning (memmove) on Solaris

1.3.4:
	* sh_suidchk.c: option to limit files per second
	* sh_unix.c: option to limit (kilo)bytes per second
	* sh_hash.c: fix potential problem with '\n' in filename
	  (not backward compatible if there are filenames with '=')

1.3.3:
	* sh_readconf.c, samhain.h, samhain.c, sh_suidchk.c:
	  option SetNiceLevel to set scheduling priority
	* sh_hash.c: bugfix for database listing on Solaris
	* taus_seed: bugfix for emergency backup rng seed
	* sh_util_safe_name: fix for XML
	* sh_utmp_set_login_activate: use sh_util_flagval
	* sh_utils.c: sh_util_obscurename: rm 'space' from list
	* more backtrace macros
	* sh_util_flagval: fix bug to recognize 1/0
	* fix test scripts testtimesrv.sh, testext.sh (test.sh 6/5)
	* rm stray debug fprintf in sh_srp.c

1.3.2:
	* sh_hash.c: fix an error introduced in 1.3.1
	* set RLIMIT_CORE to RLIM_INFINITY if --enable-debug

1.3.1:
	* slib.c: get backtrace with --enable-debug 
	* sh_unix.c: allow core dumps when --enable-debug
	* configure.in: fix default message queue permissions
	* sh_suidchk.c: automatically include suid/sgid files in database
	* sh_suidchk.c: check all suid/sgid files
	* sh_hash.c: don't insert duplicates when reading the database
	* sh_utmp, sh_kern, samhain: fix 1sec offset in timer
	* sh_unix.c: don't require /dev/random to be non-world-writeable
	* server: fix segfault in zAVLTree.c if avltree == NULL (no clients)
	* client: fix segfault on Solaris if path_conf == NULL
	* testrun_1b.sh: \(^/.*\) -> \(/.*\)  for Solaris sed

1.3.0:
	* support compiling with GNU gmp library
	* set 3 sec timer on client_time_check to avoid excessive (and
	  unnecessary) calls under heavy load
	* replace sl_strlen with a macro
	* store client_t structure in AVL tree
	* database format incompatible with previous format, up the magic#
	* sh_html.c: cache entry template for speedup
	* slib.c: reset islong(double) in sl_printf_count
	* sh_hash.c: report on rdev change
	* sh_hash.c: print size in 64 bit
	* sh_hash.c: save in absolute size types
	* sh_unix.c: get values as appropriate type (time_t, dev_t, ...)

1.2.10:
        * update MANUAL
        * sh_unix.c: tiger_hash -> tiger_generic_hash
        * sh_readcon.c: DigestAlgo option
        * sh_tiger0.c: add MD5 and SHA1
        * sh_unix.c: fix minor problem with win2k/cygwin

1.2.9:
        * fix problem with entry template/empty hostname
        * fix MASK_USER_ (MTM -> ATM)
        * typo fixed in configure.in (${install_name} -> {install_name})
        * bugfix group_old -> size_old in XML code
        * skip armor header in signed files

1.2.8:
	* Mac OS X: in sh_getopt.c, rename table[] to op_table[] to avoid
	  obscure compiler warning
	* Mac OS X: fix test scripts
	* Mac OS X: import newest config.guess, config.sub from ftp.gnu.org
	* implement deadtime in syslog recv code to protect against flooding
	* sh_err_log: sl_close(fd) if lock|forward fails
	* compliance with Filesystem Hierarchy Standard -- Version 2.2 final
	* add policies User0, User1
	* fix compile problem (FreeBSD) in sh_suidchk.c
	* macro to check for debugger breakpoints (linux/i386)
	* check for solaris (does not work) in sh_derr (--enable-ptrace)
	* option to listen on 514/udp for syslog, drop root
	  irrevocably if compiled thus
	* use (check_mask & MODI_ATM) to decide whether to reset utime
	* reset the policy masks on sighup
	* option to write XML log messages
	* cleanup of message catalog
	* modified error messages for BADCONN
	* error messages for Rijndael
	* block recursive error messages within sh_error_handler()
	  - would hang the machine ... -
	
1.2.7:
	* sh_files, sh_utils: check top level directory
	* sh_kern, sh_cat, kern_head: check syscall code, fork subprocess
	  for reading from /dev/kmem
	* include /boot in default samhainrc
	* change source distribution signing/packaging system
	* Makefile, README, MANUAL: adhere to file system standard, 
	  document new locations
	* fix a bug in samhain_hide.c

1.2.6:
	* reset list of trusted users before config file re-read
	* TrustedUser=... can be a list
	* fix severity for files missing from IgnoreAll

1.2.5:
	* include example_pager.pl, example_sms.pl scripts
	* explain paging/sms setup in docs
	* allow manual exclusion of a directory in suidcheck
	* automatically track all file changes
	* remove missing files from in-memory database
	* add  $(KERN) to DEPLOYFILES

1.2.4:
	* log IP address for login/logout events, if supported by the OS
	* release block in globerr (callback)

-------------

1.2.3:  
	* fix problem with reading stealth configuration
        * fix a few formats in sh_cat.c
	* always use strncmp for file system type check in sh_suidchk.c
	  (trailing 'fs' may be system specific for some types)
	* no bare LF in messages (RFC 2822)
	* no lines longer than 998 chars (RFC 2822)
	* fix error in testrc_1

1.2.2:
	* make tmp file directory a compile time option
	* fix minor bugs in tmp file allocator (potential memory leak,
	  double slash if root directory)
	* obsolete testpipe script removed 

1.2.1:
	* fix memory alignment in rijndael-api-fst.c: blockEncrypt()
	* fix byte order in HMAC code (compatibility fix for Linux/HP-UX)
	* removed a debug fprintf()

1.2.0:
	* fix a bug in the HMAC implementation (thanks to Cesar Tascon
	  for help in tracking down this one)
	* module to check the file system for SUID/SGID files

1.1.16 (never released):
	* fix the recursion depth -1 option as described in the manual
	* optional database reload on SIGHUP
	* fix a race condition when checking that /dev/random is a charakter
	  device
	* redirect stderr to /dev/null for c_random 
	  (AIX may segfault in netstat...)
	* check whether /dev/random is a charakter device in c_random.sh
	  (we know at least one sysadmin who has set up a fake /dev/random ...)
	* don't give NULL as 2. and 3. arg to execve if not Linux - some
	  Unices (notably Solaris) don't like it
	* init ptr = NULL in my_malloc (compiler warning)
	* make the bitmask for tests configureable (suggestion by A. Dunkel)
	* make the bitmask for tests a static variable
	* make (database/logfile/lockfile) path configurable
	  (to run multiple instances of samhain from an NFS share - on the
	  wishlist of J. Patton)

1.1.15 (never released):
	* fix minor error in testcompile.sh (rm test_log only at start)
	* return from subroutines on sig_terminate == 1 
	  (faster exit on SIGTERM)
	* fix re-configuration of addresses
	* use sh_util_flagval() in sh_mail_setFlag and sh_kern_set_activate
	* SysV message queue as compile option
	* config file option to set console device
	* removed the pre 1.1.9 code bloat
	* don't print the LOGKEY to the console

1.1.14:
	* fix an error in the setup consistency check
	* make target to uninstall runtime files
	* trustfile.c: check return code of readlink(), fix off-by-one error
	* sh_files.c: fix placement of terminator after readlink() call
	* sh_files.c: fix a missing set_suid()/unset_suid()
	  - suid should work, but is not recommended -
	* more debug statements in c/s code
	* avoid re-entry in sh_unix_sigexit
	* put a block around free() and malloc() in wrapper functions
	* ditto for glob()/globfree(), regcomp()/regfree(), fdopen()/fclose()
	  - i.e. avoid corrupting the heap from a signal handler -

1.1.13:
	* optimized the size of the configure script somewhat
	* modify the compile and hash test scripts
	* read '\0's in sh_unix_getline
	* exponential schedule for connection attempts
	* make stealth working properly with signed files
	  - config file should be signed now before embedding in picture -
	* fix a race in using signed files
	* updated err messages for PWNULL, GRNULL
	* add missing shell script for test 11
	* add mandatory source file/line info with -p debug 
	* add mandatory source line info with BADCONN
	* fix a latex error in the manual

1.1.12:
	* debug output to console if compiled with --enable-debug and
	  running as daemon
	* make reportonlyonce=true the default
	* make sure state changes of a file are always reported, even
	  with reportonlyonce=true
	* Linux kernel modules (samhain_hide, samhain_erase)
	* fixed incorrect return value of sh_util_flagval
	* fixed an error in sh_files.c: happens with -t init and first
	  file that is checked does not exist 
	* revised install/uninstall targets in the Makefile
	* module to check for clobbered kernel syscalls (tested on Linux 2.2)
	* more diagnostic error messages in sh_gpg.c
	* more diagnostic error messages in sh_mail.c
	* error in mail.c fixed 
          (address -> address_list[i] for multiple recipients)
	* docs updated, better(?) explanation of signed files
	* skip over path in gpg checksum output
	* check client name against IP address and FQDN
	* fix for --disable-* in config file
	* fixed a server crash (MSG_TCP_OKMSG without arg)
	  if the server is run with debug level output threshold
	* catch EAGAIN in sh_gpg.c pipe reader
	* fix the 'external logging' test to make it work on BSD 
	* error message if no local path to init DB
	* check for i86/Solaris in configure (vsnprintf prototype)
	* make SRP the default

1.1.11:
	* make log file verification more convenient
	* fix problem with message classes in stealth mode
	* linux: do not try to read file attributes for devices
	* handle the root directory correctly (avoid "//" in listing)
	* fix problems with blockin on FIFOs/char dev 
	  pointed out by I. Rogalsky (rog@iis.fhg.de)
          - open in nonblocking mode for read, then set to blocking
	  - open file only if regular
	* fix alignment in memory profiler

1.1.10:
	* minor code cleanup
	* fix an error in trustfile.c (handling of empty/incomplete 
	  group entries in /etc/group, bug report by A. Capriotti )

1.1.9:
	* compatibility option for old behaviour (plain hash instead
	  of HMAC, ECB instead of CBC mode)
	* use CBC rather than ECB mode for encryption
	* use HMAC-TIGER for message authentication codes
	* handle NULL data in sh_tiger_hash
	* option to set syslog facility (default is LOG_AUTHPRIV)
	* longer timeout (300 sec) on /dev/random if no /dev/urandom
	* fix minor output error with stealth option
	* option not to log names of config/database files on startup

1.1.8:
	* fix error in syslog routine
	* fix missing 'test' in configure.in
	* fix error in replace_tab() in sh_html.c
	* fix minor memory leak in sh_util_regcmp()

1.1.7:
	* timeout on read_mbytes (from /dev/random; fallback to /dev/urandom)
	* fix for FreeBSD: ut_user -> ut_name in sh_utmp.c
	* fix for Alpha: consider $ac_cv_sizeof_unsigned_int_ in configure.in
	* fix for Alpha: format string in sh_tiger0.sh
	* on Linux, now compiles cleanly with 
	  -Wall -W -Wstrict-prototypes -Wcast-align
	* fix problem with recursion depth
          (pointed out by Vic <hvicha@mail.ru>)
	* #include "sh_tools.h" in sh_unix.c and fix the 
	  --with-timeserver option (reported by Vic <hvicha@mail.ru>)
	* place read_port(), MSG_TCP_NETRP outside ifdefs
	* close fd/zero skey before execve
	* verify client name against socket peer
	* ... with configureable error priority
	* use strcmp() rather than strncmp() in search_register()
	* fix race between lstat() and open() for checksum
	  (reported by dynamo <dynamo@ime.net>, 
	  JJohnson <JJohnson@penguincomputing.com>)
	* enable globbing for filenames
	* fix Solaris problem: siginfo_t may be NULL
	* fix missing SL_EBADGID in tf_trust_check
	* test case for external scripts, fix flushing pipe
	* fix a typo in sh_ext_type
	* do an fdexec w/checksum on Linux if calling external program
	* even safer tmp file creation
	* allow db update
	* fix compile options for --enable-debug
	* fixed a spelling error in the output
	* test program for full CS support (config/database download)
	* tell which file is searched for cs download

1.1.6:
	* fix bug in sh_readconf_line (segfault on erroneous config lines)

1.1.5:
	* sh_unix.c: sh_unix_getinfo_attr: f -> flags
	* use gettimeofday as last resort
1.1.4: 
	* fix AIX compiler warning in sh_forward (cast arg1 of sh_tiger_hash
	  to (char *)
        * configure: add static link flags for some more os (from tar)
        * don't strip twice (some stupid systems abort)
        * fix for reading from /dev/random on non-Linux systems (untested)
        * sh_mail.c: end all message lines with \r\n
	* stealth: ignore \r, \"
	* take out tracing from --enable-debug (presently useless anyway)
	* fix some remaining cleartext with debug && stealth combined
	* fixed a small memory leak in sh_err_log.c

1.1.3:
	* fixed circular logic in taus_seed() (fallback method only)
	* fix for missing _SC_OPEN_MAX (runaway close())

1.1.2:
	* implement message classes
	* let server recognize client message severity and class
	* secondary log server
	* keep database in memory (allows to close file 
	  if retrieved from server)
	* encrypt client/server communication
	
1.1.1:
	* Compilation problems with native Solaris compiler fixed
	* fill in euid/ruid variable
	* manual.pdf --> MANUAL.pdf
	* debug sh_util_formatted()
	* http refresh 120sec for server stat page
	* trace/debug options
	* fixed problem with utmp.c options
	* fixed problem with sh_mail_setaddress
	* option for custom message header
	* fixed problem in compdata
	* fixed problem in mail verification
	* remove eventual trailing '/' in file names
	* fixed problem with report string for modified files
	* option to report in full detail
 
1.1.0:
	* Move error messages to catalog
	* Make error message format more uniform
	* Wrap sytem calls that could be interrupted by signals
	* Warn on append to database
	* Option for full details on mod. files
	* Option to report only once on mod. files
	* Generally speaking, major modifications with potential new bugs

0.9.5:
        * sh_hash.c: fixed erroneous checksum for config file
        * sh_html.c: fixed erroneous timestamp (last)
        * sh_tools.c: fixed connect_port (set port for cached address)
        * sh_srp.c: fix for '00' (='\0') in pw
          (last two fixes by Andreas Piesk)

0.9.4:
        * samhain.c: fcntl(1, ..) -> fcntl(2, ..)
        * sh_hash.c: copy 12 instead of 10 byte for c_attributes
        * 'empty directory' WARN -> INFO

0.9.3:
	* FreeBSD fixes:
	  - c_random.sh: make sure /dev/random provides something 
            rather than nothing
	  - check for <netinet/in.h> and include it
	  - include <sys/types.h> early
          - sh_utmp.c: fixed an occurence of ut_user
	  - sh_utmp.c: #ifdef HAVE_UTTYPE static char terminated_line #endif
	  - sh_forward.c: EBADMSG -> ENOMSG
	* sh_unix.c: check return value of gethostbyname
	* sh_entropy.c: fallback on /dev/urandom if /dev/random blocks for
	  more than 30 sec
	* ... and fix the timestamp format ...

0.9.2:
	* ISO 8601 timestamps
	* Bugfix in sh_utmp (timestring overwrite)
	* don't use siginfo_t on Linux (garbage as of 2.2.14)
	* check for Linux capabilities bug when dropping root
	* include README for gcc compiler bug (pointed out by A. Piesk)
	* explicitely set -fno-strength-reduce with gcc
	* fixed ignoring missing files with the IgnoreAll policy

0.9.1:
	* more ext2flags (breaks backward database compatibility on Linux)
	* IgnoreAll policy modified - missing/added files reported with
	  SeverityIgnoreAll (to handle files that may or may not be present)
	* Check all files, not only regular ones 
	  (bug in sh_files, originally introduced because checksum of
	  regular files only is computed)

0.9:
	* use O_NOATIME if supported
	* --with-nocl takes argument (PW to re-enable CL parsing)
	* no daemon mode if initializing database
	* fixed segfault in yule with 'unknown file type' request
	* enlarged MAX_GLOBS 24 -> 32 and made the array linear
	* server uses last registry entry for any given client now
	* deploy.sh script to deploy clients to remote hosts
	* enhanced signal handling: SIGUSR1/SIGUSR2/SIGABRT/SIGQUIT/SIGHUP
	* allow y/Y/n/N for login monitoring (in addition to 0/1)
	* external logging scripts/programs
	* trustfile.c: define STICKY on Linux
	* reset signal mask when initializing
	* EINTR_RETRY wrapper
	* slib: sl_read, sl_write EINTR update
	* use sstrip when installing
	* more compact database format (breaks backward database compatibility)
	* larger download packets
	* TcpFlags unsigned char
	* cast to (char *) head in write_port
	* m(un)lock cast to (char *)
	* (1 << 31) --> (1UL << 31)
	* support e2fs attributes on Linux
	* fixes for AIX and Solaris native compilers
	* fixed Makefile for non-GNU make (pattern rule --> suffix rule)

0.8.1:
	* fixed 'is_numeric()' return value	

0.8:
	* added option for static compilation
	* added option for stealth with non-hidden config file
	* added option for disabling command line parsing
	* all options can be set in the configuration file now
	* stealth: xor strings in database file
	* fixed bug in mailer code ([] in HELO)
	* print timestamp when asking for key
	* 'micro' stealth mode (no hidden configuration file)
	* simplified slib
	* int->long for uids/gids in trustfile
	* moved mailkey from data to code
	* shell script for entropy (stronger default key)
	* general code cleanup
	* better error checking in client/server code
	* detect out-of-sync messages
	* check state across protocol passes in server
	* make sure authentication is mutual
	* file download to client
	* reserve six file descriptors in server
	* mlock queue buffer if LOG_KEY
	* improved robustness in bignum (don't fail on free())
	* per-directory recursion depths
	* RFC821 compliance: empty line at end of header, To field, Date field
	* RFC821 compliance: make e-mail transfer relieable
	* fix detection of hardlink changes
	* checksum verification for calling gpg/pgp 
	* CL option '-S' not required for server-only binary
	* eliminate CL options that may leak privileged information
	  if the program is SUID
	* skip leading white space in configuration file
	* allow nested conditionals in configuration file
	* allow whitespace before and after '=' in configuration file
	* don't leak file descriptors to child processes
	* make message transfer relieable
	* always report error on abnormal termination of connection

0.7:
	* support for alpha machines
	* stop TCP logging after exit message
	* limit connections in server (DoS attacks)
	* move string handling to slib
	* move file handling to slib
	* timestring without space
	* changed report format
	* SUID bugfix - use euid when checking logfile ownership
	* SUID bugfix - get root for lstat()
	* SUID bugfix - get root for opendir()
	* store number of hardlinks
	* send no message if polling empty queue
	* include tiger 64-bit implementation             (portability)
	* codes for error conditions
	* mail check: handle multiple, overlapping audit trails
	* security fix: no append to database if SUID
	* fix sh_entropy.c (BUFSIZ -> BUF_ENT)
	* read command line before config file
	* PGP signing of config/database files
	* checksum of config file reported
	* checking for attributes only

0.6:
	* more syslogish priority specification 
	* fixed segfault in sh_mem_check, apparently this was also
	  the reason for the segfault in atexit()
	* allow for compilation with SRP authentication
	* fixed tiger checksum computation
	* fixed broken logfile verification for second and further audit trails
	* test program added
	* documentation improved
	* sh_forward_make_client: bug fixed in[8]->in[i]
	* sh_error.h: fixed missing #include <errno.h>
	* configure.in: fixed missing strerror() test
	* sh_utmp.c: check logins/logouts
	* check for missing files
	* only reset access time if necessary
	* O_EXCL in open()
	* limit environment to TZ in execve (sh_entropy.c, not used on Linux)
	* use trustfile() to determine whether logfile dir is trustworthy
	* strip head instead of tail for numerical address
	* store messages in fifo during log server outage
	* re-init session key after server outage

0.5:
	* added option for mail relay server
	* own popen() implementation in sh_entropy()      (portability)
	* fixed error in sh_util_basename() (returned NULL for base == "/")
	* fixed segfault in strlcpy/strlcat (check for src == NULL)
	* FILENAME_MAX -> PATH_MAX                        (HP-UX 10.20)
	* use TIGER for 32-byte compilers                 (portability)
	* fixed hash function (do not include stdlib.h)
	* flush buffer before write in mailer code        (IBM AIX 4.1)
	* make mailer code non-forking
	* cast argument of is...() to int                 (portability)
	* return() after _exit() for braindead compilers  (portability)
	* optionally use inet_addr                        (portability)
	* check for broken mlock()                        (HP-UX 10.20)
	* minor code cleanups
	* fixed incorrect size of munlock()'ed memory in sh_error_string()
	* fixed a buffer overflow in the error printing routine
	* fixed a buffer overflow in sh_util_safe_name ()
	* implement SRP session key exchange
	* implement client/server facility
	* implement @host/@end construct in configuration file
	* preferably use uname(), and do gethostbyname() for FQDN
	* make vernam cipher base numeric
	* make OnlyStderr private in sh_error
	* test -e "/dev/random" --> test -r "/dev/random" (portability)
	* check for libsocket                             (portability)
	* add #defines for IPPORT_SMTP, IPPORT_TIMESERVER (portability)
	* eliminate superfluous /proc test 
	* some unreachable code removed
	* cast to (byte*) replaced by cast to (word64*) in sh_tiger_hash()
	* check for setresuid() if no seteuid()           (HP-UX 10.20)  

0.4:  
	* make sure output from /dev/random has no NULL's
	* one-time pad encryption for emailed keys
	  (better than nothing ...)

0.3:
	* logfile readable for group
	* verify signatures for any file
	* signature block in tarball
	* use select() in time server routine
	* better protection for session keys (mlock)

0.2:
	* fixed incorrect man page
	* fixed incorrect example rc file
	* recursive error logging should work now

0.1:
	* initial release -- on Samhain 1999, of course
