File: Changelog — Documentation for ftpd (2.1.0)

This is the change log for the main branch of ftpd, which supports Ruby 1.9 and greater. For ruby 1.8.7, please use the latest version before 0.8.0.

2.1.0 2017-07-23

Introduced Release::VERSION and Release::DATE constants
Fixed all known warnings in tests and example

2.0.5 2017-07-23

Fix DOS caused by fast socket disconnects (thanks iblue)
Tests pass in Ruby 2.4

2.0.4 2017-07-17

Fix gem description

2.0.3 2017-07-17

Fix erroneous gem release date in gemspec

2.0.2 2017-07-17

Fix high CPU use by bin/ftpdrb (#47)
ftpdrb now runs from installed gem
Fix tests hanging in ruby 2.1.7 through 2.1.10

2.0.1 2016-11-02

Redact password in log (thanks ukolovda)

2.0.0 2016-06-01

Breaking changes:

Freeze strings by default. This is an unlikely but potential breaking change for users of Ruby >= 2.3.

Non-breaking changes

Added option #nat_ip to configure the advertised IP for passive mode connections.
Added option #passive_ports to configure the port range for passive mode server sockets.

1.1.1 (2014-11-22)

Administration

Correct Changelog

1.1.0 (2014-11-22)

Features

Added Server#exception_handler= (thanks akelmanson)
Added Server#join (thanks akelmanson)

1.0.1

Less strict gem dependencies

1.0.0

Administration

Update gem versions
Declare stability (v. 1.0.0)

0.17.0

This release is brought to you by Mike Ragalie. Thanks, Mike!

Features

Streaming file transfers (issues #12 and #26)

API Changes

These breaking API changes are for streaming file transfers. Custom file systems will notice these changes. Nobody else should.

The FileSystemErrorTranslator has been removed. Instead, the file system may raise FtpServerError with a message and an optional error code.
DiskFileSystem#write now takes an Ftpd::Stream object instead of a String.
DiskFileSystem#read expects to receive a block and yields an IO object to the block.

0.16.0

Bug fixes

Fix Errno::ENOTSOCK error in Ruby 2.1.2 (issue #25)

0.15.0

Bug fixes

Ignore Errno::ENOTCONN on socket shutdown (issue #24)

Administration

Remove examples/foo.rb (accidental commit)

0.14.0

Administration

Remove markdown link (but leave its text) in package description

0.13.0

Administration

Remove badges from package description

0.12.0

Bug fixes

Fix Errno::EADDRINUSE when reusing port (issue #23)

0.11.0

Bug fixes

Fix Bad file descriptor exception on stop (issue #20)
CWD returns 250, not 257 (issue #18)

Enhancements

MDTM command (issue #19)
SIZE command (issue #19)

0.10.0

Bug fixes

Do not die when implicit SSL connection disconnects (issue #13)

API Changes:

Change default interface from "localhost" to "127.0.0.1".

0.9.0

Enhancements

Added example showing ftp used as a test harness with rspec
Ignore LIST/NLST switches such as "-a"
Support IPV6

0.8.0

Administration

Split Ruby 1.8 into separate branch
Upgraded gems

0.7.0

Bug fixes

Gracefully handle Errno::ENOTCONN during socket shutdown (fixes gh-1)

0.6.0

Enhancements

Configurable maximum connections (defaults to unlimited).
Configurable maximum connections per IP (defaults to unlimited).
Configurable disconnect after too many failed login attempts (defaults to unlimited)
Delay after failed login (configurable).

API Changes

Changes to Ftpd::FtpServer attributes should now only be made before calling #start. The effect of setting these attributes after #start is undefined.
Added Ftpd::FtpServer#max_connections
Added Ftpd::FtpServer#max_connections_per_ip
Added Ftpd::FtpServer#max_failed_logins
Added Ftpd::FtpServer#failed_login_delay
Support FEAT (feature list)
Support OPTS (set options)

0.5.0

Bug fixes

Replies are sent with the correct line ending ("\r\n" instead of "\n")
Do not hang on out-of-band commands.
When data connection disconnects, send "426 Connection closed" response instead of ending the session.

Enhancements

Now unconditionally compliant
Configurable session timeout (see Ftpd::FtpServer#session_timeout). Defaults to 5 minutes.
Disable Nagle algorithm on control connection to decrease latency. This makes the tests run much faster.
Support STAT (server status).
Example has --timeout option for session idle timeout.
Write log to Logger (see Ftpd::FtpServer#log).
Disallow active-mode connections to privileged ports (configurable). See RFC 2577 section 3.
Added benchmarks.
Support telnet sequences.

API Changes

Added Ftpd::FtpServer#server_name
Added Ftpd::FtpServer#server_version
Removed #debug and #debug_path from Ftpd::FtpServer. They have been replaced with #log # Added Ftpd::FtpServer#allow_low_data_ports

0.4.0

Enhancements

Improved driver and file-system documentation.
Added read only disk file system
Example can be run with a read-only file system
Supports three different levels of authentication:
- User
- User + Password
- User + Password + Account
Added --auth switch to the example to select the authentication level.
Support APPE
Support TYPE "A T" (ASCII/Telnet)
Support TYPE "LOCAL 8"
Added switches to example to set authentication values
- --user
- --password
- --account

API changes

authenticate now takes three parameters (user, password, account). For compatability, it can be defined to take only two, provided you are not doing account authentication.
Added Ftpd::FtpServer#auth_level option
Added Ftpd::DiskFileSystem::Append

0.3.1

API changes

The file system interface for directory listing was completely rewritten. It no longer shells out to ls, which removes potential command injection security holes, and improves prospects for portability.

Removed Ftpd::DiskFileSystem::Ls
Removed Ftpd::DiskFileSystem::NameList. NLIST now uses the functions in Ftpd::DiskFileSystem::List.
Removed Ftpd::DiskFileSystem::List#list. The formatting of directory output is now done by ftpd, not by the file system driver.
Added Ftpd::DiskFileSystem::List#file_info, used by LIST.
Added Ftpd::DiskFileSystem::List#dir, used by LIST and NLST.

Bug fixes

LIST and NLST support globs again.
STOU (store unique) works in Ruby 1.8.7

Enhancements

The output of the "LIST" command can be customized (see Ftpd::FtpServer#list_formatter)

0.2.2

Bug fixes

Respond with sequence error if RNFR is not immediately followed by RNTO
Respond with sequence error if USER is not immediately followed by PASS
Open PASV mode data connection on same local IP as control connection. This is required by RFC 1123.
Disabled globbing in LIST (for now) due to a command (shell) injection vulnerability. This patch also disables globbing in NLST, but NLST probably shouldn't do globbing. Thanks to Larry Cashdollar for the report.

Enhancements

Support STOU (store unique)
Support HELP

0.2.1

API changes

Introduced PermanentFileSystemError and TransientFileSystemError exceptions.
Deprecated FileSystemError (use PermanentFileSystemError instead).
DiskFileSystem errors generate 550 responses, not 450

Enhancements

Support MKD and XMKD (make directory)
Support RMD and XRMD (remove directory)
Support RNFR/RNTO (rename/move file/directory)
Support XCUP (alias for CDUP)
Support XPWD (alias for PWD)
Support XCWD (alias for CWD)
Test implicit TLS

Bug Fixes

Passive mode transfers bind to the correct interface. They were erroneously binding to the local interface, which kept passive mode transfers from working when the client was on another machine.
CDUP responds with syntax error if given an argument.
RNTO checks that RNFM was called.
Tests pass in Ruby 2.0.

0.2.0

API changes

Renamed two of the file system methods:
- list_long -> long
- list_short -> short

This will affect anyone who has written their own disk system. Anyone using Ftpd::DiskFileSystem won't notice this change.

Enhancements

Some commands are now optional, depending upon the file system. These are RETR, DELE, LIST and NLST. See the comments in Ftpd::DiskFileSystem for what command depends upon what method.
Better text in example's ephemeral README
Divided the DiskFileSystem into mixins.
Improved documentation.
Support SYST
Support ALLO
Removed dead code
Added more tests

0.1.1

Enhancements

Improved documentation.
Gemfile: development gems no longer lock down version

0.1.0

First usable release