Opengate History

Ver.0.10 at 1999.8.30

Initial Version. In this version, the Java applet is sent first and the applet accepts the password.

Ver.0.11 at 1999.9.19

Stable Version. Reformed program.

Ver.0.12 at 1999.11.2

Support firewalls IPF and IPFW.

Ver.0.20 at 1999.9.16

Abandoned version.

Ver.0.30 at 1999.10.16

Changed to accept password with CGI. IPF support is discarded.

Ver.0.31 at 1999.10.26

Reformed User Interface. Java applet shows own window.

Ver.0.32 at 1999.11.1

Support for IPF.

Ver.0.33 at 2000.6.17

Support for IP forwarding. Discarded IPF support.

Ver.0.40 at 2000.6.19

Support for multiple authentication servers.

Ver.0.41 at 2000.6.23

Added function to close firewall when no packets were passed for a set timespan.

Ver.0.42 at 2000.6.28

Added function to close firewall on abnormal server termination.

Ver.0.50 at 2000.12.11

Added function to exchange hello message with terminal. Firewall is closed, when the client does not reply. Java output is included in html window.

Ver.0.51 at 2000.12.22

Support for POP3 authentication.

Ver.0.52a at 2001.1.19

Exclusive execution of ipfw command. Deny multiple authentication requests from a terminal. Change the method to get Java connection address. Modified string sizes in the program. Many small modifications.

Ver.0.52b at 2001.1.24

Reformed UNP library.

Ver.0.52c at 2001.1.26

Added DEBUG flag. Modified Directory setting.

Ver.0.52d at 2001.1.30

Modified no packet time setting.

Ver.0.52e at 2001.2.5

Corrected wrong comment.

Ver.0.53a at 2001.2.7

Directory setting integrated in Makefile. Support for logging MAC address.

Ver.0.53b at 2001.2.8

Added check for empty userID or password.

Ver.0.53c at 2001.2.10

Replaced one accept window to two overlapping windows.

Ver.0.53d at 2001.2.13

Small modification on MAC address acquisition.

Ver.0.54a at 2001.2.15

Serious error (Ports destroyed during long execution) found and fixed.

Ver.0.55a at 2001.3.19

Show messages in JavaApplet field.

Ver.0.56a at 2001.3.29

Detached UNP library (Many modifications to source)

Ver.0.56b at 2001.4.14

Modified document. (No modification to source)

Ver.0.56c at 2001.4.24

Reformed HTML to improve authentication response time. (Modification to accept.html)

Ver.0.56d at 2001.4.29

Declaration of GPL. Added English documentation. (No modification to source)

Ver.0.57a at 2001.5.10

Removed loop in ipfw-delete. (Modification to comm-ipfw.c)

Ver.0.57b at 2001.5.11

Changed Lockout time for ipfw exec. (Modification to opengatesrv.h)

Ver.0.57c at 2001.5.25

Display message when Java/JavaScript is disabled. (Modification to accept.html)

Ver.0.57d at 2001.11.21

Changed timeout values (Modification to opengatesrv.h)

Ver.0.57e at 2002.2.13

Fixed redirect error in IE (Modification to topindex.html)

Ver.0.60a at 2002.6.17

Added authentication protocols: RADIUS, PAM, POP3S (Modifications: Makefile, comm-auth.c, utilities.c, opengatesrv.h, opengatesrv.conf. Additions: auth-pam.c, auth-pop3s.c, auth-rad.c)

Ver.0.60b at 2002.6.18

Added comments.

Ver.0.70a at 2002.6.19

Modified to control multi-language environment (Modifications: Makefile, comm-cgi.c *.html Opengate.java)

Ver.0.71a at 2002.6.24

Refined installation procedure (Modifications: Makefile, comm-cgi.c *.html)

Ver.0.72a at 2002.7.1

Messages are terminated with CR and LF (Modifications: comm-cgi.c Opengate.java)

Ver.0.73a at 2002.7.4

Added jar (java archive) file, modified some documents (Modifications: comm-cgi.c Makefile Add: Opengate.jar)

Ver.0.73b at 2002.7.10

Recovery of error messages added in Ver.0.57c but forgotten in Ver.0.70a (Modifications: accept.html)

Ver.0.73c at 2002.7.12

Changed some documents

Ver.0.73d at 2002.7.15

More careful detaching from web server. (Modifications: main.c comm-cgi.c)

Ver.0.73e at 2002.8.7

Fixed a serious bug in java applet introduced in Ver.0.70a. The applet did not return hello to hello request in English message mode.(Modifications: Opengate.java) Save index.html created during web server installation. (Modifications: Makefile)

Ver.0.80a at 2002.8.19

Added Perl script for more flexible firewall control (Modifications: main.c comm-ipfw.c opengatesrv.h Makefile, Additions: conf/opengatefw.pl) Fixed a small mistake in debug mode (Modifications: auth-pam.c) Modified installation procedure. Opengate directory can be set in Makefile (Modifications: Makefile, *.html). Added document to describe the system flow (Additions: doc/progflow.html).

Ver.0.80b at 2002.8.26

Fixed a bug for checking overlapping requests (Modifications: comm-ipfw.c)

Ver.0.81a at 2002.8.26

Added link to close network in No-java mode (Modifications: accept.html, Makefile, comm-cgi.c, comm-java.c, main.c ,opengatesrv.h)

Ver.0.81b at 2002.8.27

Removed userid from terminate link string (Modifications: comm-cgi.c, comm-java.c), Modified accept page design (Modifications: accept.html)

Ver.0.81c at 2002.9.5

Faulted Version. Removed.

Ver.0.81d at 2002.9.9

Fixed a mistake in URL string in HTML file. (Modifications: ja/accept.html) Removed reference HTML document from archive. Added description for maxuser=0 in installation document.

Ver.0.81e at 2002.9.10

Added checking for execl failure (Modifications: comm-ipfw.c, comm-arp.c, main.c)

Ver.0.82a at 2002.9.25

Added skeleton routine to get user properties (Modifications: opengatesrv.h, Makefile, main.c, comm-ipfw.c, opengatefw.pl, Additions: comm-userdb.c)

Ver.0.83a at 2002.10.7

Do not permit reply to hello more than once (Modifications: comm-java.c, opengatesrv.h)

Ver.0.83b at 2003.1.6

Add documentation about maximum number of TCP connections (Modifications: install.html, install-e.html)

Ver.0.90a at 2003.5.6

Added duration input field in auth page, allowing prolonged usage without java. To cope with hijacking and notting, mac-address and packet-count are checked periodically. (Modifications: index.html, index-ssl.html, accept.html, comm-cgi.c comm-java.c, comm-arp.c, main.c, opengatesrv.h)

Ver.0.90b at 2003.5.7

Reset the DEBUG option. It was left out in the previous version.(Modification: opengatesrv.h)

Ver.0.90c at 2003.5.15

Simplified the logic. (Modification: comm-java.c)

Ver.0.90d at 2003.8.27

Changed message in auth page. (Modification: index.html, index-ssl.html)

Ver.0.90e at 2003.9.24

Display (firewall-rule-Number,userID,IPaddress) in process title.(Modification: main.c)

Ver.0.90f at 2003.9.25

Added documentation (Modification: errcheck.html,errcheck-e.html)

Ver.0.90g at 2003.11.28

Fixed PAM-include error occurred on FreeBSD 5 (Modification: auth-pam.c)

Ver.0.90h at 2003.12.8

Fixed Applet-NoReply error occurring in some browsers when removing applet page. Modified install document (Modification: Opengate.java and the compiled files, install.html,install-e.html)

Ver.0.90i at 2003.12.16

Modified parameters and documentation (Modification: opengatesrv.h, makefile, index.html, index-ssl.html, accept.html, accept2.html, install.html, install-e.html, qa.html, qa-e.html, errcheck.html, errcheck-e.html)

Ver.0.90j at 2004.9.21

Fixed communication error occurring on some pop3/pop3s servers (Modification: comm-auth.c, auth-pop3s.c)

Ver.0.90k at 2005.2.3

Added links to accept.html to cope with pop-up-blocked and java-optional browser (Modification: accept.html)

Ver.0.90l at 2005.2.4

Fixed communication error with ftpserver sending back multi-line greeting. Added error reporting code for fork/exec (Modification:comm-auth.c, comm-ipfw.c)

Ver.0.90m at 2005.2.7

Added error check code for ipfw response (Modification:comm-ipfw.c)

Ver.0.90n at 2005.3.21

Added no-cache option to authentication pages (Modification:index.html, index-ssl.html)

Ver.1.0.0 at 2005.5.21

Stable version is released (Modification: README)

Ver.1.1.0 at 2005.5.27

Added many parameters in conf file. Added test-programs. (Addition: get-param.c,test-get-param.c,test-comm-auth.c,test-comm-ipfw.c,test-comm-java.c,test-console.sh Modification: README,main.c,comm-auth.c,comm-ipwf.c,comm-java.c,Makefile)

Ver.1.1.1 and 1.0.1 at 2005.5.30

Recompiled Java Applet with option '-target 1.1' to be compatible with MicrosoftVM (Modification: Opengate.class, OpengateClient.class, Opengate.jar)

Ver.1.1.2 at 2005.7.13

Commented out server parameter setting in config file (modification:opengatesrv.conf)

Ver.1.1.3 at 2005.12.1

Fixed error when executing the child process. Thanks to K.Eguchi and S.Uematsu (modification:comm-java.c, opengatefw.pl)

Ver.1.2.0 at 2005.12.2

Added IPv6 support [contributed by K.Eguchi]

Ver.1.2.1 at 2005.12.15

Changed NDP command option to be recognized by new NDP [contributed by K.Eguchi]

Ver.1.2.2 at 2006.1.6

Fixed error occurring when a cgi has no argument. Added MRTG function [contributed by K.Eguchi]

Ver.1.1.4 and Ver.1.2.3 at 2006.2.2

Added FTPS authentication.

Ver.1.2.4 at 2006.3.14

Modified documentation and comments.

Ver.1.3.0 at 2006.3.22

Changed address acquisition method for IPv4/IPv6 dual stack and others.

Ver.1.3.1 at 2006.3.27

Simplified logic. Modified rulechk script.

Ver.1.3.2 at 2006.4.3

Changed Config file to XML form. Almost all parameters can now be set in the file.

Ver.1.3.3 at 2006.4.7

Put back syslog setting to fixed value, and some bugs were fixed.

Ver.1.3.4 at 2006.4.11

Changed accept page description.

Ver.1.3.5 at 2006.4.13

Modified the errcheck and qa documentation. Added time information in address encoding. Added retry information page.

Ver.1.3.6 at 2006.4.14

Changed syslog setting to config file, and some bugs were fixed.

Ver.1.3.7 at 2006.4.20

Added code and info to cope with abnormal actions, and some bugs were fixed.

Ver.1.3.8 at 2006.4.26

Added code to remove overlapping rules and processes.

Ver.1.3.9 at 2006.4.27

Modified Java Applet to display long message.

Ver.1.3.10 at 2006.5.1

Added userID pattern-match function. Fixed bug when checking parameters.

Ver.1.3.11 at 2006.5.3

Added code to match the duration max value in conf file with auth page.

Ver.1.3.12 at 2006.5.12

Changed link in deny page from external site to auth page.

Ver.1.3.13 at 2006.5.17

Use FILE and LINE macro in error message. Fixed abnormal termination bugs.

Ver.1.3.14 at 2006.5.23

Removed close-error message. Modified QA document.

Ver.1.3.15 at 2006.10.14

Fixed browser's long waiting after sending accept page and other small bugs.

Ver.1.4.0 at 2006.10.16

Added client watch to http keep-alive, which is the alternative to the watch with java applet. Use carefully, as this is a preliminary release.

Ver.1.4.1 at 2006.10.18

Changed JavaScript to run on some systems.

Ver.1.4.2 at 2006.10.19

Ignore Http watch mode on HTTP/1.0 browser.

Ver.1.4.3 at 2006.10.20

Moved JavaScript from html-file to external js-file. Modified some messages.

Ver.1.4.4 at 2006.10.25

Added automatic start of java applet on failing http keep-alive. Modified http-get format. Added session-id. Fixed read bug.

Ver.1.4.5 at 2006.10.28

Added function to indicate disable clients for http/java watch.

Ver.1.4.6 at 2006.11.11

Changed dir mode to install properly. Added mac check. Fixed small bugs.

Ver.1.4.7 at 2006.11.18

Fixed small bugs and modified pages. Added processing time measurement for research.

Ver.1.4.8 at 2006.11.19

Fixed small bugs and modified pages and measurement items.

Ver.1.4.9 at 2006.12.20

Changed hello timing control from client side to server side.

Ver.1.4.10 at 2006.12.26

Changed parameter's name and value in config file.

Ver.1.4.11 at 2007.2.2

Added ldap/ldaps authentication. Fixed malfunction in exceptional terminals.

Ver.1.4.12 at 2007.2.4

Removed watch-mode selection in authentication page.

Ver.1.4.13 at 2007.2.17

Added change to select time watch mode when the duration value is entered.

Ver.1.4.14 at 2007.3.2

Fixed bug when IPv6 disabled. Shortened the default duration for time watch mode.

Ver.1.4.15 at 2007.3.22

Fixed bug when dumping micro-second time information.

Ver.1.4.16 at 2007.4.16

Fixed bug for delayed favicon.ico request, occurring on IE7.

Ver.1.4.17 at 2007.4.18

Refined the bug fix of favicon.ico error.

Ver.1.4.18 at 2007.4.23

Added favicon.ico installation.

Ver.1.4.19 at 2007.5.24

Modified control of favicon.ico.

Ver.1.4.20 at 2007.6.1

Modified web pages to guide the users in the right direction.

Ver.1.4.21 at 2007.6.14

Modified Makefile and install document. Abort when unloading the httpkeep page.

Ver.1.4.22 at 2007.6.26

Removed ipfw pass rule for established packets.

Ver.1.4.23 at 2007.7.2

Added config setting for multiple auth servers and auth server timeout.

Ver.1.4.24 at 2007.11.28

Added seteuid control. Show auto time setting in auth page.

Ver.1.4.25 at 2007.12.21

Fixed typo in Makefile (change from Lockfile to LockFile).

Ver.1.4.26 at 2008.2.29

Fixed error on 64 bit machine.

Ver.1.4.27 at 2008.3.3

Fixed error when setting the default pam service name. Fixed previous fix.

Ver.1.4.28 at 2008.3.8

Fixed error in pam authentication.

Ver.1.4.29 at 2008.3.17

Added code to perl script to prevent multiple logins.

Ver.1.4.30 at 2008.3.18

Fixed error in tools/mrtg.

Ver.1.4.31 at 2008.4.10

Modified ReconnectTimeout value in conf to fix disconnection issue in some browsers.

Ver.1.4.32 at 2008.5.22

Fixed segmentation-fault in opengatefwd.

Ver.1.4.33 at 2008.5.29

Fixed install documentation.

Ver.1.4.34 at 2008.6.27

Removed ip6fw from default.

Ver.1.4.35 at 2008.7.9

Fixed browser's hangup on closing.

Ver.1.4.36 at 2008.7.17

Changed value of ActiveCheckInterval. Modified install.html.

Ver.1.4.37 at 2009.8.18

Fixed Radius error.

Ver.1.4.38 at 2009.8.28

Modified english document.(No modification to source) [Contiributed by M. Hawk]

Ver.1.5.0 at 2009.9.11

Removed JavaApplet mode. Removed ip6fw command. Added firewall tag rule. Added Sqlite3 database. Added cookie authentication. Added function to return to requested url. Use carefully, as this is a preliminary release.

Ver.1.5.1 at 2009.9.15

Modified english document. Removed disabled item in conf file.

Ver.1.5.2 at 2009.10.4

Fixed malfunctions caused by remaining cookie and null http_host.

Ver.1.5.3 at 2009.10.19

Fixed mutex error in sqlite3.

Ver.1.5.4 at 2009.10.20

Fixed error in perl script parameter.

Ver.1.5.5 at 2010.4.1

Fixed error in ldap on AMD machine [contributed by K.Iwao]. Modified install.html.

Ver.1.5.6 at 2011.4.1

Fixed error in pop3s and ftps. Changed Japanese char-code from jis to utf-8.

Ver.1.5.7 at 2011.4.20

Fixed error in tools/rulechk [contributed by S.Horikawa].

Ver.1.5.8 at 2011.5.9

Fixed error on arp entry expiring [contributed by S.Horikawa].

Ver.1.5.9 at 2011.5.13

Fixed errors at including many cookies and in retry.html [contributed by S.Horikawa].

Ver.1.5.10 at 2011.5.25

Fixed error on needless connections [contributed by S.Horikawa].

Ver.1.5.11 at 2011.5.27

Fixed error on requesting favicon [contributed by S.Horikawa].

Ver.1.5.12 at 2011.6.16

Fixed error on reconnecting [contributed by S.Horikawa].

Ver.1.5.13 at 2011.9.29

Added Shibboleth/HttpBasic authentication.

Ver.1.5.14 at 2011.10.4

Added detection of NAT/Router using opengatemd

Ver.1.5.15 at 2011.12.23

Modified Shibboleth authentication to get IdP info.

Ver.1.5.16 at 2012.1.18

Added retry on accidental disconnection. Added userid as comment on ipfw rule

Ver.1.5.17 at 2012.2.13

Removed 2 error messages.

Ver.1.5.18 at 2012.2.28

Modified treatment of overlapped sessions. Fixed bugs.

Ver.1.5.19 at 2012.3.19

Added version display (at execution with -v in shell). Added client address in INFO log.

Ver.1.5.20 at 2012.4.6

Added replacing the parameter redirectedurl in some html files.

Ver.1.5.21 at 2012.4.11

Added message to avoid popup blocking in httpkeep page.

Ver.1.5.22 at 2012.7.17

Modified a variable name to avoid misunderstanding.

Ver.1.5.23 at 2012.11.21

Fixed error at loading httpkeep page.

Ver.1.5.24 at 2012.11.29

Modified string at address conversion error in opengatefwd.

Ver.1.5.25 at 2012.12.14

Fixed small bugs in http header and parameter[contributed by M.Tagawa].

Ver.1.5.27 at 2013.2.27

Modified to deny plural ipfw rules for one ip address. Added ipfw rule in syslog message. Added udp sending to opengatemd(need to set udp port in conf file). Added dummy html for network connectivity check of iOS.

Ver.1.5.28 at 2013.3.1

Modified shibboleth setting.

Ver.1.5.29 at 2013.3.4

Added patterns matching to extra set in conf.

Ver.1.5.30 at 2013.4.1

Added code to remove cookie at deny [contributed by M.Tagawa].

Ver.1.5.31 at 2013.6.26

Modified code for authentication recheck when extraset exists.

Ver.1.5.32 at 2013.7.11

Fixed error to ingore duration value in extra set.

Ver.1.5.33 at 2014.9.29

Added checking of null language string. Changed strncpy/strncat to strlcpy/strlcat.

Ver.1.5.34 at 2015.6.10

Fixed CLang warning messages. Modified ipfw rules.Moved some documents to Web.

Ver.1.5.35 at 2015.9.11

Modified comments.

Ver.1.5.36 at 2016.5.6

Replaced signal function to NO-RESTART one.

Ver.1.5.37 at 2016.6.19

Modified code to prevent inflation of Database (delete old records of session table).

Ver.1.5.38 at 2016.7.15

Added a null pointer check in alarm control.

Ver.1.5.39 at 2019.8.22

Fixed a linker error of undefined reference.

Please see GIT on osdn.jp to check the differences between versions.