* version 1.3.5		( 13 Apr 2016)
  + BUGFIX: pwd_mkdb errors were not handled correctly on BSD 
  + kyua test scripts added 

* version 1.3.4		( 23 Nov 2014 )
  + Cracklib configuration checking has been improved
  + LDFLAGS is passed to the linker correctly

* version 1.3.4pre1	( 15 Sep 2013 )
  + Enable PAM on FreeBSD 7.3 or above  
  + Enable PAM on NetBSD 6.0 or above
  + xmalloc updated to support systems with non GNU compatible malloc

* version 1.3.3		( 24 Jan 2008 )
  + BUGFIX: md5 passwords on BIG ENDIAN systems were not calculated correctly

* version 1.3.2		( 30 Aug 2007 )
  + changepass improved
  + added formail directive
  + BUGFIX: lock dir is detected correctly
  + BUGFIX: corrected compile warnings
  + BUGFIX: vacation_cgi example has been update to work with newer
            versions of perl/cgi module

* version 1.3.1		( 13 jul 2004 )
  + BUGFIX: install.sh will now ask to create the cgi-bin directory
            (Thanks to Koen de Jong for reporting this problem)
  + BUGFIX: configure --disable-pam works now on PAM systems
  + BUGFIX: fixed compile problem on non-PAM systems
            (Thanks to Peter Hübert for reporting this problem)
  + Dutch translation added  (Thanks to Koen de Jonge)   

* version 1.3.0	        ( 26 Apr 2004 )
  + Documentation updated

* version 1.3.0rc2	( 10 Mar 2004 )
  + PAM: the pam functions should now work on Solaris 9+ 

* version 1.3.0rc1	( 6 Jan 2004 )
  + autoconf has been upgraded to 2.57: the build host is auto-detected
  + new variables:
        _POST[] array : An associative array of variables with the original
	                HTTP POST
        post_string   : A string with the original HTTP POST
	message       : A string with the default message
  + new directives to enable more advanced mail configuration scripts:
    run_viewmailcfg, mailcfg_check. a sample perl vacation script is included.
  + set_script_filename and unset_script_filename directives 
    ( useful if you want to use a php script )

* version 1.3.0pre4    	( 30 May 2003 )
  + new forward method to avoid mail looping

* version 1.3.0pre3    	( 28 Apr 2003 )

  + BUGFIX: setuid(0) added before the passwd run_success script, to
    re-enable smbpasswd support. which was broken in the previous release.

* version 1.3.0pre2    	( 31 Mar 2003 )
  
  + NetBSD support
  + BUGFIX: 1.3.0pre1 didn't compile on FreeBSD
  
  + merged from CGIpaf 1.2.1
   
     - example in Brazilian Portuguese added ( Thanks to Fabricio Machado )
     - improved forward_to emailaddress testing
     - added test for mail headers like 'Precedence: bulk' to avoid replying 
       to maillinglists etc.
     - code cleanup

* version 1.3.0pre1     (  2 Jan 2003 )
  + linuxconf virtual mail password files support added

* version 1.2.0         (  7 Dec 2002)
  + 1.2.0RC1 has been released as 1.2.0 

* version 1.2.0RC1      ( 26 Nov 2002 )
  + setreuid(user_uid,0) added in cgipaf.c 
    passwd.cgi should now support all pam options in the PAM configuration 
    (cracklib, minimum/ maximum password length etc.) on all systems with PAM
    support.

  + The set_PAM_CHANGE_EXPIRED_AUTHTOK directive is obsolete and will be 
    removed in the next releases of CGIpaf

* version 1.2.0pre1     ( 24 Oct 2002 )
  + Access Control List added ( AclOrder, AllowUsers, AllowGroups, DenyUsers
    DenyGroups directives )

* version 1.1.0         ( 17 Sep 2002 )
  + Documentation update

* version 1.1.0rc2      (  07 Aug 2002 )
  + The ability to list words in /etc/cgipasswd that should not be a part of
    new passwords  ( Thanks to Daniel R for his patch )

* version 1.1.0rc2pre1  (  24 Jul 2002 )
  + FIXED: run_after_mailcfg was executed before the mail configuration

* version 1.1.0rc1      (  15 Jul 2002 )
  + changepass utility added

* version 1.1.0pre2      ( 26 Jun 2002 )
  + new run_mailcfg directive added to support other mail configurations than 
    procmail a sample script with vacation support is included.

* version 1.1.0pre1      ( 18 Jun 2002 )
  + new run_before_mailcfg and run_after_mailcfg directive
  + new use_statefile directive

* version 1.0.1          (  4 Jun 2002 )
  + improved cracklib detection

* version 1.0.1rc1       ( 21 May 2002 )
  + updates to configure
  + documentation update

* version 1.0.1rc1pre2   ( 17 May 2002 ) 
  + FreeBSD support

* version 1.0.1rc1pre1   ( 29 Apr 2002 )
  + md5 password support on non-pam systems ( Slackware )

* version 1.0.0          ( 23 Apr 2002 )
  + faq
  + documentation update
  + new install script

* version 1.0.0pre1.2    ( 3 Apr 2002 )
  + more logging in debug mode
  + documentation update

* version 1.0.0pre1.1    ( 28 Mar 2002 )
  + new password unchanged directive
  + updates to pass.c to support more non-GNU/Linux Unices

* version 1.0.0pre1.0    ( 19 Mar 2002 )
  + new cracklib_dictpath directive
  + FIXED cgipaf did't compile on systems where CRACKLIB_DICTPATH wasn't 
    defined
  + update to configure

* version 1.0rc5         ( 28 Jan 2002 )
  + documentation update
  + php files update

* version 1.0rc5pre2     ( 16 Jan 2002 )
  + new pam conversation function
  + new set_PAM_CHANGE_EXPIRED_AUTHOK directive

* version 1.0rc5pre1     ( 20 Dec 2001 )
  + cracklib support
  + support for all common pam messages ( cracklib, minimum password length etc )

* version 1.0rc4     ( 4 Dec 2001 )
  + documentation update

* version 1.0rc4pre5 ( 28 Nov 2001 )
  + new pam_service directive, you can change the pam service name.
  + added test for gdbm/ndbm.h header file
  + fixed: mailcfg.cgi failed, if it couldn't determine the domain name.
  
* version 1.0rc4pre4 ( 11 Nov 2001 )
  + new forwarding method to avoid mail looping
  + fixed: it wasn't possible to use special characters ( $ space ) as the
    loginname / password.

* version 1.0rc4pre3 ( 27 oct 2001)
  + fixed: run_success, run_locked didn't always work due a buffer overflow in
    xstring.c
  + fixed: typo the sample samba passwd script the configuration file & 
    documentation the second %{password} have to terminated with a "\n".

* version 1.0rc4pre2 ( 23 oct 2001 )
  + fixed: mailcfg.cgi failed, if another cookie exists

* version 1.0rc4pre1 ( 22 oct 2001 )
  + fixed: mailcfg.cgi crashed if the syslog directive wasn't set
  + fixed: setgid() failed because it was performed after setuid()

* version 1.0rc3 ( 18 oct 2001)
  + improved PAM detection ( thanks to Gary for reporting his installation
    problem )
  + loglevel + debug messages
  + fixed: accessdb bug, the database wasn't always closed  ( thanks to 
    Andreas Liebe for his patch )
  + it is possible to use the mailcfg.cgi for user with with non-interactive 
    shell such as /bin/false ( thanks to Andreas Liebe for his patch )

* version 1.0rc2 ( 18 Sep 2001 )
  + fixed: configure doesn't work on non-PAM systems
  + syslog messages

* version 1.0rc1 ( 18 Aug 2001 )
  + initial release


COPYRIGHT NOTICE

   The documentation for CGIpaf is licensed under the terms of
   the FreeBSD Documentation License.

   The FreeBSD Documentation License

   Copyright (c) 2001 - 2020 Staf Wagemakers

   Redistribution and use in source (plaintext, HTML) and 'compiled' forms
   (SGML, HTML, PDF, PostScript, RTF and so forth) with or without
   modification, are permitted provided that the following conditions are
   met:

   1. Redistributions of source code (plaintext, HTML) must retain the
      above copyright notice, this list of conditions and the following
      disclaimer.

   2. Redistributions in compiled form (transformed to other DTDs,
      converted to PDF, PostScript, RTF and other formats) must reproduce
      the above copyright notice, this list of conditions and the following
      disclaimer in the documentation and/or other materials provided with
      the distribution.

   THIS DOCUMENTATION IS PROVIDED "AS IS" AND ANY EXPRESS OR IMPLIED 
   WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF 
   MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 
   IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
   DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
   DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE
   GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
   INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER
   IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
   OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,
   EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

