Opengate History

Ver.0.10 at 1999.8.30: Initial Version. In this version, the Java applet is sent first and the applet accepts the password.
Ver.0.11 at 1999.9.19: Stable Version. Reformed program.
Ver.0.12 at 1999.11.2: Support firewalls IPF and IPFW.
Ver.0.20 at 1999.9.16: Abandoned version.
Ver.0.30 at 1999.10.16: Changed to accept password with CGI. IPF support is discarded.
Ver.0.31 at 1999.10.26: Reformed User Interface. Java applet shows own window.
Ver.0.32 at 1999.11.1: Support for IPF.
Ver.0.33 at 2000.6.17: Support for IP forwarding. Discarded IPF support.
Ver.0.40 at 2000.6.19: Support for multiple authentication servers.
Ver.0.41 at 2000.6.23: Added function to close firewall when no packets were passed for a set timespan.
Ver.0.42 at 2000.6.28: Added function to close firewall on abnormal server termination.
Ver.0.50 at 2000.12.11: Added function to exchange hello message with terminal. Firewall is closed, when the client does not reply. Java output is included in html window.
Ver.0.51 at 2000.12.22: Support for POP3 authentication.
Ver.0.52a at 2001.1.19: Exclusive execution of ipfw command. Deny multiple authentication requests from a terminal. Change the method to get Java connection address. Modified string sizes in the program. Many small modifications.
Ver.0.52b at 2001.1.24: Reformed UNP library.
Ver.0.52c at 2001.1.26: Added DEBUG flag. Modified Directory setting.
Ver.0.52d at 2001.1.30: Modified no packet time setting.
Ver.0.52e at 2001.2.5: Corrected wrong comment.
Ver.0.53a at 2001.2.7: Directory setting integrated in Makefile. Support for logging MAC address.
Ver.0.53b at 2001.2.8: Added check for empty userID or password.
Ver.0.53c at 2001.2.10: Replaced one accept window to two overlapping windows.
Ver.0.53d at 2001.2.13: Small modification on MAC address acquisition.
Ver.0.54a at 2001.2.15: Serious error (Ports destroyed during long execution) found and fixed.
Ver.0.55a at 2001.3.19: Show messages in JavaApplet field.
Ver.0.56a at 2001.3.29: Detached UNP library (Many modifications to source)
Ver.0.56b at 2001.4.14: Modified document. (No modification to source)
Ver.0.56c at 2001.4.24: Reformed HTML to improve authentication response time. (Modification to accept.html)
Ver.0.56d at 2001.4.29: Declaration of GPL. Added English documentation. (No modification to source)
Ver.0.57a at 2001.5.10: Removed loop in ipfw-delete. (Modification to comm-ipfw.c)
Ver.0.57b at 2001.5.11: Changed Lockout time for ipfw exec. (Modification to opengatesrv.h)
Ver.0.57c at 2001.5.25: Display message when Java/JavaScript is disabled. (Modification to accept.html)
Ver.0.57d at 2001.11.21: Changed timeout values (Modification to opengatesrv.h)
Ver.0.57e at 2002.2.13: Fixed redirect error in IE (Modification to topindex.html)
Ver.0.60a at 2002.6.17: Added authentication protocols: RADIUS, PAM, POP3S (Modifications: Makefile, comm-auth.c, utilities.c, opengatesrv.h, opengatesrv.conf. Additions: auth-pam.c, auth-pop3s.c, auth-rad.c)
Ver.0.60b at 2002.6.18: Added comments.
Ver.0.70a at 2002.6.19: Modified to control multi-language environment (Modifications: Makefile, comm-cgi.c *.html Opengate.java)
Ver.0.71a at 2002.6.24: Refined installation procedure (Modifications: Makefile, comm-cgi.c *.html)
Ver.0.72a at 2002.7.1: Messages are terminated with CR and LF (Modifications: comm-cgi.c Opengate.java)
Ver.0.73a at 2002.7.4: Added jar (java archive) file, modified some documents (Modifications: comm-cgi.c Makefile Add: Opengate.jar)
Ver.0.73b at 2002.7.10: Recovery of error messages added in Ver.0.57c but forgotten in Ver.0.70a (Modifications: accept.html)
Ver.0.73c at 2002.7.12: Changed some documents
Ver.0.73d at 2002.7.15: More careful detaching from web server. (Modifications: main.c comm-cgi.c)
Ver.0.73e at 2002.8.7: Fixed a serious bug in java applet introduced in Ver.0.70a. The applet did not return hello to hello request in English message mode.(Modifications: Opengate.java) Save index.html created during web server installation. (Modifications: Makefile)
Ver.0.80a at 2002.8.19: Added Perl script for more flexible firewall control (Modifications: main.c comm-ipfw.c opengatesrv.h Makefile, Additions: conf/opengatefw.pl) Fixed a small mistake in debug mode (Modifications: auth-pam.c) Modified installation procedure. Opengate directory can be set in Makefile (Modifications: Makefile, *.html). Added document to describe the system flow (Additions: doc/progflow.html).
Ver.0.80b at 2002.8.26: Fixed a bug for checking overlapping requests (Modifications: comm-ipfw.c)
Ver.0.81a at 2002.8.26: Added link to close network in No-java mode (Modifications: accept.html, Makefile, comm-cgi.c, comm-java.c, main.c ,opengatesrv.h)
Ver.0.81b at 2002.8.27: Removed userid from terminate link string (Modifications: comm-cgi.c, comm-java.c), Modified accept page design (Modifications: accept.html)
Ver.0.81c at 2002.9.5: Faulted Version. Removed.
Ver.0.81d at 2002.9.9: Fixed a mistake in URL string in HTML file. (Modifications: ja/accept.html) Removed reference HTML document from archive. Added description for maxuser=0 in installation document.
Ver.0.81e at 2002.9.10: Added checking for execl failure (Modifications: comm-ipfw.c, comm-arp.c, main.c)
Ver.0.82a at 2002.9.25: Added skeleton routine to get user properties (Modifications: opengatesrv.h, Makefile, main.c, comm-ipfw.c, opengatefw.pl, Additions: comm-userdb.c)
Ver.0.83a at 2002.10.7: Do not permit reply to hello more than once (Modifications: comm-java.c, opengatesrv.h)
Ver.0.83b at 2003.1.6: Add documentation about maximum number of TCP connections (Modifications: install.html, install-e.html)
Ver.0.90a at 2003.5.6: Added duration input field in auth page, allowing prolonged usage without java. To cope with hijacking and notting, mac-address and packet-count are checked periodically. (Modifications: index.html, index-ssl.html, accept.html, comm-cgi.c comm-java.c, comm-arp.c, main.c, opengatesrv.h)
Ver.0.90b at 2003.5.7: Reset the DEBUG option. It was left out in the previous version.(Modification: opengatesrv.h)
Ver.0.90c at 2003.5.15: Simplified the logic. (Modification: comm-java.c)
Ver.0.90d at 2003.8.27: Changed message in auth page. (Modification: index.html, index-ssl.html)
Ver.0.90e at 2003.9.24: Display (firewall-rule-Number,userID,IPaddress) in process title.(Modification: main.c)
Ver.0.90f at 2003.9.25: Added documentation (Modification: errcheck.html,errcheck-e.html)
Ver.0.90g at 2003.11.28: Fixed PAM-include error occurred on FreeBSD 5 (Modification: auth-pam.c)
Ver.0.90h at 2003.12.8: Fixed Applet-NoReply error occurring in some browsers when removing applet page. Modified install document (Modification: Opengate.java and the compiled files, install.html,install-e.html)
Ver.0.90i at 2003.12.16: Modified parameters and documentation (Modification: opengatesrv.h, makefile, index.html, index-ssl.html, accept.html, accept2.html, install.html, install-e.html, qa.html, qa-e.html, errcheck.html, errcheck-e.html)
Ver.0.90j at 2004.9.21: Fixed communication error occurring on some pop3/pop3s servers (Modification: comm-auth.c, auth-pop3s.c)
Ver.0.90k at 2005.2.3: Added links to accept.html to cope with pop-up-blocked and java-optional browser (Modification: accept.html)
Ver.0.90l at 2005.2.4: Fixed communication error with ftpserver sending back multi-line greeting. Added error reporting code for fork/exec (Modification:comm-auth.c, comm-ipfw.c)
Ver.0.90m at 2005.2.7: Added error check code for ipfw response (Modification:comm-ipfw.c)
Ver.0.90n at 2005.3.21: Added no-cache option to authentication pages (Modification:index.html, index-ssl.html)
Ver.1.0.0 at 2005.5.21: Stable version is released (Modification: README)
Ver.1.1.0 at 2005.5.27: Added many parameters in conf file. Added test-programs. (Addition: get-param.c,test-get-param.c,test-comm-auth.c,test-comm-ipfw.c,test-comm-java.c,test-console.sh Modification: README,main.c,comm-auth.c,comm-ipwf.c,comm-java.c,Makefile)
Ver.1.1.1 and 1.0.1 at 2005.5.30: Recompiled Java Applet with option '-target 1.1' to be compatible with MicrosoftVM (Modification: Opengate.class, OpengateClient.class, Opengate.jar)
Ver.1.1.2 at 2005.7.13: Commented out server parameter setting in config file (modification:opengatesrv.conf)
Ver.1.1.3 at 2005.12.1: Fixed error when executing the child process. Thanks to K.Eguchi and S.Uematsu (modification:comm-java.c, opengatefw.pl)
Ver.1.2.0 at 2005.12.2: Added IPv6 support [contributed by K.Eguchi]
Ver.1.2.1 at 2005.12.15: Changed NDP command option to be recognized by new NDP [contributed by K.Eguchi]
Ver.1.2.2 at 2006.1.6: Fixed error occurring when a cgi has no argument. Added MRTG function [contributed by K.Eguchi]
Ver.1.1.4 and Ver.1.2.3 at 2006.2.2: Added FTPS authentication.
Ver.1.2.4 at 2006.3.14: Modified documentation and comments.
Ver.1.3.0 at 2006.3.22: Changed address acquisition method for IPv4/IPv6 dual stack and others.
Ver.1.3.1 at 2006.3.27: Simplified logic. Modified rulechk script.
Ver.1.3.2 at 2006.4.3: Changed Config file to XML form. Almost all parameters can now be set in the file.
Ver.1.3.3 at 2006.4.7: Put back syslog setting to fixed value, and some bugs were fixed.
Ver.1.3.4 at 2006.4.11: Changed accept page description.
Ver.1.3.5 at 2006.4.13: Modified the errcheck and qa documentation. Added time information in address encoding. Added retry information page.
Ver.1.3.6 at 2006.4.14: Changed syslog setting to config file, and some bugs were fixed.
Ver.1.3.7 at 2006.4.20: Added code and info to cope with abnormal actions, and some bugs were fixed.
Ver.1.3.8 at 2006.4.26: Added code to remove overlapping rules and processes.
Ver.1.3.9 at 2006.4.27: Modified Java Applet to display long message.
Ver.1.3.10 at 2006.5.1: Added userID pattern-match function. Fixed bug when checking parameters.
Ver.1.3.11 at 2006.5.3: Added code to match the duration max value in conf file with auth page.
Ver.1.3.12 at 2006.5.12: Changed link in deny page from external site to auth page.
Ver.1.3.13 at 2006.5.17: Use FILE and LINE macro in error message. Fixed abnormal termination bugs.
Ver.1.3.14 at 2006.5.23: Removed close-error message. Modified QA document.
Ver.1.3.15 at 2006.10.14: Fixed browser's long waiting after sending accept page and other small bugs.
Ver.1.4.0 at 2006.10.16: Added client watch to http keep-alive, which is the alternative to the watch with java applet. Use carefully, as this is a preliminary release.
Ver.1.4.1 at 2006.10.18: Changed JavaScript to run on some systems.
Ver.1.4.2 at 2006.10.19: Ignore Http watch mode on HTTP/1.0 browser.
Ver.1.4.3 at 2006.10.20: Moved JavaScript from html-file to external js-file. Modified some messages.
Ver.1.4.4 at 2006.10.25: Added automatic start of java applet on failing http keep-alive. Modified http-get format. Added session-id. Fixed read bug.
Ver.1.4.5 at 2006.10.28: Added function to indicate disable clients for http/java watch.
Ver.1.4.6 at 2006.11.11: Changed dir mode to install properly. Added mac check. Fixed small bugs.
Ver.1.4.7 at 2006.11.18: Fixed small bugs and modified pages. Added processing time measurement for research.
Ver.1.4.8 at 2006.11.19: Fixed small bugs and modified pages and measurement items.
Ver.1.4.9 at 2006.12.20: Changed hello timing control from client side to server side.
Ver.1.4.10 at 2006.12.26: Changed parameter's name and value in config file.
Ver.1.4.11 at 2007.2.2: Added ldap/ldaps authentication. Fixed malfunction in exceptional terminals.
Ver.1.4.12 at 2007.2.4: Removed watch-mode selection in authentication page.
Ver.1.4.13 at 2007.2.17: Added change to select time watch mode when the duration value is entered.
Ver.1.4.14 at 2007.3.2: Fixed bug when IPv6 disabled. Shortened the default duration for time watch mode.
Ver.1.4.15 at 2007.3.22: Fixed bug when dumping micro-second time information.
Ver.1.4.16 at 2007.4.16: Fixed bug for delayed favicon.ico request, occurring on IE7.
Ver.1.4.17 at 2007.4.18: Refined the bug fix of favicon.ico error.
Ver.1.4.18 at 2007.4.23: Added favicon.ico installation.
Ver.1.4.19 at 2007.5.24: Modified control of favicon.ico.
Ver.1.4.20 at 2007.6.1: Modified web pages to guide the users in the right direction.
Ver.1.4.21 at 2007.6.14: Modified Makefile and install document. Abort when unloading the httpkeep page.
Ver.1.4.22 at 2007.6.26: Removed ipfw pass rule for established packets.
Ver.1.4.23 at 2007.7.2: Added config setting for multiple auth servers and auth server timeout.
Ver.1.4.24 at 2007.11.28: Added seteuid control. Show auto time setting in auth page.
Ver.1.4.25 at 2007.12.21: Fixed typo in Makefile (change from Lockfile to LockFile).
Ver.1.4.26 at 2008.2.29: Fixed error on 64 bit machine.
Ver.1.4.27 at 2008.3.3: Fixed error when setting the default pam service name. Fixed previous fix.
Ver.1.4.28 at 2008.3.8: Fixed error in pam authentication.
Ver.1.4.29 at 2008.3.17: Added code to perl script to prevent multiple logins.
Ver.1.4.30 at 2008.3.18: Fixed error in tools/mrtg.
Ver.1.4.31 at 2008.4.10: Modified ReconnectTimeout value in conf to fix disconnection issue in some browsers.
Ver.1.4.32 at 2008.5.22: Fixed segmentation-fault in opengatefwd.
Ver.1.4.33 at 2008.5.29: Fixed install documentation.
Ver.1.4.34 at 2008.6.27: Removed ip6fw from default.
Ver.1.4.35 at 2008.7.9: Fixed browser's hangup on closing.
Ver.1.4.36 at 2008.7.17: Changed value of ActiveCheckInterval. Modified install.html.
Ver.1.4.37 at 2009.8.18: Fixed Radius error.
Ver.1.4.38 at 2009.8.28: Modified english document.(No modification to source) [Contiributed by M. Hawk]
Ver.1.5.0 at 2009.9.11: Removed JavaApplet mode. Removed ip6fw command. Added firewall tag rule. Added Sqlite3 database. Added cookie authentication. Added function to return to requested url. Use carefully, as this is a preliminary release.
Ver.1.5.1 at 2009.9.15: Modified english document. Removed disabled item in conf file.
Ver.1.5.2 at 2009.10.4: Fixed malfunctions caused by remaining cookie and null http_host.
Ver.1.5.3 at 2009.10.19: Fixed mutex error in sqlite3.
Ver.1.5.4 at 2009.10.20: Fixed error in perl script parameter.
Ver.1.5.5 at 2010.4.1: Fixed error in ldap on AMD machine [contributed by K.Iwao]. Modified install.html.
Ver.1.5.6 at 2011.4.1: Fixed error in pop3s and ftps. Changed Japanese char-code from jis to utf-8.

Please see CVS on SourceForge.net to check the differences between versions.