
0.4.2       -- 20010429    + You can filter a specified port on all IPs
                              eg: "ettercap -Nzs ANY:23"
                           + Logging all data to specific file(s)
                           + Added the "demonization" feature (--quiet)
                           + Packet filtering/dropping/search/replace            (as requested by Neuromancer)
                              - for both TCP and UDP
                           + Improved the user/password hunting in datadecode module
                           + Tuning of Doppelganger poison/rearp
                           + NEW plugin :
                              - lurker  (try to find ettercap traces in the LAN)
                           + NEW password collector for:
                              - NNTP    (news)
                              - X11     (MIT-MAGIC-COOKIE)
                              - NAPSTER (yumh yumh... my mp3 player is hungry)   (as requested by LnZ)
                              - IRC     (OPER, MODE +k, JOIN #chan pass)
                              - RIP     (Routing Information Protocol)
                              - BGP     (Border Gateway Protocol)
                              - SOCKS 5 (you know what it is...)
                              - IMAP 4  (Internet Message Access Protocol)
                              - VNC     (Virtual Network Computing)
                           + ENHANCEMENT in the password collector for:
                              - POP     (added APOP auth)
                              - SMB     (added LMHASH support)
                           + !! fixed a bug in the fingerprint for *BSD
                           + !! fixed the handling of eth aliases
                           + !! fixed the activation/deactivation of Active Dissectors


0.4.0       -- 20010409    + full duplex SSH man-in-the-middle support !!
                              our inizial goal was reached... ;)
                           + new startup mode (--broadping).
                           + new sniffig metod (PublicARP)
                           + Injector now supports escape sequences.             (as requested by DaCool)
                           + netmask switch added.                               (as requested by Tego)
                           + added support for getopt_long even on *BSD
                           + NEW password collector for :
                              - SSH    (oh yeah !!)
                              - SMB    (Server Message Block) (samba)
                              - RLOGIN (rlogin, rexec, rsh)
                              - HTTP   (Authorization: Basic)
                              - ICQ    (ICQ 2000 v5)                             (as requested by LnZ)
                              - MySQL  (the pass is encrypted in one way)


0.3.1       -- 20010323    + !! fixed a nasty bug sniffing/sending big packets
                           + !! fixed telnet dissector


0.3.0       -- 20010319    + Ported on OpenBSD 2.7
                           + UDP support
                           + OS Fingerprint
                           + Network Adapter Fingerprint
                           + Password collector for:  FTP, POP, TELNET
                           + Injection interface redesigned
                           + Connection list speeded up
                           + Possibility to check if you are in a switched lan or not.
                           + Changed installation path for plug-ins.
                              now the default is ${prefix}/share/ettercap/
                           + Improved make process for plugins
                           + !! various bugfix


0.2.4       -- 20010309    + Ported on FreeBSD 4.x
                           + Enhancement of Inet_Forge_icmp()
                           + Plugin version control
                           + Added -x option for hex mode in command line
                           + Removed -1 and -2 options (better getopt parsing)
                           + Ability to sniff in all direction (no more two hosts limit)
                           + Silent mode (--silent or -z) (no arp storm on start up)
                              if you already know the ip and/or mac of the host you
                              want to sniff, you can bypass the host list creation
                           + !! Connection status visualization -- bugfix


0.2.1       -- 20010223    + Scrolling window for plugin output
                           + Detailed packets view in hex mode (SEQ, ACK and FLAGS)
                           + Identification of connections type (FTP, telnet, ecc)
                           + Ability to kill a connection from connection list
                           + ARP poisoner (doppleganger) tuned up.
                              - force an entry in the arp cache before poisoning it.
                           + !! sigfault hitting return and no plugin were found -- bugfix


0.2.0       -- 20010219    + Inet module totally rewritten and redesigned.
                              - New API for Packet Socket
                              - modularization of architecture-dependend functions
                              - Ready for BSD porting
                              - Downported to 2.0.x Linux Kernels (EXPERIMENTAL)
                              - Added support for glibc 2.0.x  2.1.x  2.2.x
                           + Illithid rewritten and fixed
                              - after injection the connections are cleanly RSTted
                           + Doppleganger rewritten
                           + Scroll back in sniffing window (*very* *very* usefull !!)
                           + Plug-In support ( very cool... )
                           + Buffer in shared memory
                             - !! data loss when sniffing -- bugfix
                           + Code cleanup.


0.1.1       -- 20010209    + !! too much bugfix to be listed here...
                           + !! with openwall it sigsegv on start -- bugfix
                           + this is a candidate stable release. on all the machine
                             we tested it works. but there are out there tons of different
                             configurations and distros... so if you get an error, please
                             notify it to us. thanks all !!


0.1.1.beta  -- 20010129    + !! kernel version miss-detected by configure -- bugfix
                           + !! possible sigfault making host list -- bugfix
                           + default network interface is now the first up
                              and running, no more hardcoded eth0
                           + detect if there is another man-in-the-middle in the LAN


0.1.0.beta  -- 20010125    + first public release
                           + Documentation (README and ettercap.8)
                           + !! set/unset the promisc mode -- bugfix
                           + !! set/unset ip_forwarding -- bugfix


0.0.9       -- 20010122    + characters injection in an established connection !
                           + !! ACS_ visualization on console -- bugfix
                           + !! Illithid_ARPBased_GetConnection -- bugfix
                           + !! Doppleganger_ReARP mac source -- bugfix
                           + various Illithid and Doppleganger function moved
                              to the more appropriate module Inet
                           + better error handling (ec_error.c)


0.0.8       -- 20010108    + dinamyc list of connection between source and
                              destination host
                           + connection attribute (ACTIVE or silent)
                           + !! bogus interface aliasing (eth0:x) -- bugfix
                           + !! buffer overflow in Datadecode -- bugfix
                           + !! evil wprintw(..., NULL) sigsegv -- bugfix
                           + IP based sniffing
                              - filter support, U can select only source, only
                                 dest, or nothing (to sniff all connections)
                           + MAC based sniffing (for connection with gateway)
                              - only between two host (must use -1 and -2)
                           + ARP based sniffing now fully working
                              - only between two host (must use -1 and -2)
                           + Simple interface totally re-designed
                              - better visualization
                              - host:port selection ( host:0 for all port )
                              - ascii & hex view (key 'a' & 'x')
                              - stop/cont sniffing (key 's')
                           + Enhanched Hex data dumping


happy new year 20010101    + welcome to the 3rd millennium !


0.0.7       -- 20001227    + Modularization & integration of Illithid
                           + Doppleganger is no more a separate executable, now
                              it forks from ettercap
                           + !! bad args parsing in Doppleganger -- bugfix
                           + !! 100% CPU usage on sniffing -- bugfix
                           + Data Sniffer interface (ec_interface_sniff_data.c)
                              - simultaneous source-dest sniffing
                              - log to file feature
                              - sniff data in ascii or hex mode
                           + enhancements in ec_simple.c module
                           + config.h to avoid huge command line for gcc
                           + ettercap.spec file for RPM building



uh oh...    -- 20001217    + Shit happens !!
                              Dug Song has released dsniff-2.3
                              It does ssh intercept/sniffing...
                              Our "revolutionary" idea is now obsolete...
                           + We'll continue to code our project, because
                              ettercap is going to have more feature and a more
                              confortable interface than sshmitm !


0.0.6       -- 20001215    + Illithid (the sniffer) was born but still unstable
                           + Doppleganger (arp poisoner) was born
                           + !! corrupted visualization -- Bugfix
                           + Sniffer interface (ec_interface_sniff.c)


0.0.5       -- 20001212    + Host_In_Lan is now dinamic, no more upper limit.
                           + !! ARP pinging doesn't work properly -- Bugfix
                           + Address resolution added
                           + U can now select the network interface (eth)
                           + Check on start up
                              - at least 25x80 screen
                              - UID must be 0 (root)
                           + updated configure.in


0.0.4       -- 20001209    + !! Huge memory usage on refresh -- Bugfix
                           + Code optimization in ec_interface.c
                           + Debug_msg supports va_list
                           + On line help with 'h' key


0.0.3       -- 20001208    + Interactive mode is now the default option
                              use -N for NON interactive mode (without ncurses)
                           + Interface now supports vertical scrolling in order
                              to handle number_of_hosts_in_lan > main_window lines
                           + Hosts are now numbered
                           + !! number_of_hosts_in_lan is incorrect -- Bugfix
                           + Selection with return key
                           + Connection with 'c' key


0.0.2       -- 20001204    + MAX_HOST_IN_LAN = 255
                           + Ncurses Interface now rulez ;) (ec_interface.c)
                              - now U can select an IP with arrow keys and
                                switching between panel with TAB
                              - support for CTRL+L refresh and SIGwinch
                           + Added the Inet module (ec_inet.c)
                              (the real code begins to view the light...)
                           + Default debug file is ./ettercap_debug.log
                              (use tail -f ./ettercap_debug.log for live view)
                           + Added support for NON-ncurses systems
                              - getopt & getopt_long
                              - Simple module (ec_simple.c)
                           + configure.in improvements (for non-ncurses)


0.0.1.alpha -- 20001127    + First attempt to write an ncurses interface
                           + Added Debugging module (ec_debug.c) with IP tracing
                           + Now SIGTERM & SIGSEV are caught by a signal handler
                           + First version of configure.in for autoconf


0.0.0       -- 20001125    + The idea was born.
                             the goal is to make an ssh sniffer-interceptor.
                             to do so, we need to implement the man-in-the-middle
                             technique. so our first goal is the arp-poisoning.