tor (0.2.0.34-1) unstable; urgency=high

  * New upstream version:
     - Avoid a potential crash on exit nodes when processing malformed
       input.  Remote DoS opportunity (closes: #514579).
     - Fix a temporary DoS vulnerability that could be performed by
       a directory mirror (closes: #514580).

 -- Peter Palfrader <weasel@debian.org>  Mon, 09 Feb 2009 09:53:48 +0100

tor (0.2.0.33-1) unstable; urgency=high

  * New upstream version:
    - Fixes a possible remote heap buffer overflow bug (closes: #512728)
      (Secunia Advisory [SA33635]).
    - better resist DNS poisoning.
    - and more - see upstream changelog.

 -- Peter Palfrader <weasel@debian.org>  Fri, 23 Jan 2009 12:05:06 +0100

tor (0.2.0.32-1) unstable; urgency=high

  * New upstream version.
    - Properly drops privileges when being configured to do
      so (closes: #505178).
  * No longer set now obsolete Group setting in built-in debian config.

 -- Peter Palfrader <weasel@debian.org>  Fri, 21 Nov 2008 23:33:15 +0100

tor (0.2.0.31-1) unstable; urgency=low

  * New upstream version.
  * Tweak a few error messages in the init script to use the proper variables
    (not that it should matter, the Right One has the same value, but still)
    and to list more possible error reasons.

 -- Peter Palfrader <weasel@debian.org>  Tue, 09 Sep 2008 09:56:54 +0200

tor (0.2.0.30-2) unstable; urgency=low

  * Stop requiring that the binary in /usr/sbin/tor is still the same as the
    one that actually is the running tor when we try to stop or reload the
    daemon using the init script.  If the process is called tor, running as
    debian-tor, and the pid file agrees too then it probably is the Tor you
    want to stop (closes: #491246).

 -- Peter Palfrader <weasel@debian.org>  Fri, 18 Jul 2008 01:50:37 +0200

tor (0.2.0.30-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Wed, 16 Jul 2008 02:19:08 +0200

tor (0.2.0.29-rc-2) unstable; urgency=low

  * Upload to unstable.

 -- Peter Palfrader <weasel@debian.org>  Tue, 15 Jul 2008 22:16:08 +0200

tor (0.2.0.29-rc-1) experimental; urgency=low

  * New upstream version.
  * Warn the admin if the number of file descriptors on his system is
    tiny.

 -- Peter Palfrader <weasel@debian.org>  Wed, 09 Jul 2008 14:02:06 +0200

tor (0.2.0.28-rc-1) experimental; urgency=low

  * New upstream version.
  * Remove debian/patches/11_tor_as_root_more_helpful.dpatch as
    it is no longer needed:  We now setuid() to the Tor user
    when run as root and it all just works.
  * Add comments to the dpatch headers so lintian shuts up.
  * Add patches/14_fix_geoip_warning: Change geoipdb open failed message.
  * Require unit tests to pass again.

 -- Peter Palfrader <weasel@debian.org>  Fri, 13 Jun 2008 10:28:36 +0200

tor (0.2.0.27-rc-1) experimental; urgency=low

  * New upstream version.
  * Add tor-geoipdb arch: all package for the geoip database.
  * Update debian/rules so that there now is a binary-common target
    and the binary-indep and binary-arch targets call make with
    proper DH_OPTIONS options.  This is taken from the template
    that dh_make nowadays uses for multi-binary packages.
  * Unit tests are broken, yay.
  * Use ${binary:Version} to depend on the right tor binary package from
    the tor-dbg package instead of ${Source-Version}.  Some guy on the
    internet said the latter was deprecated.
  * Add Homepage: https://www.torproject.org/ field to control file.
  * And mention www.tp.o instead of the old tor.eff.org in the long
    description.
  * No longer ignore failure of make clean in the clean target.
  * Support passing of parallel=<n> in build options.
  * Change declared Standards-Version to 3.8.0.

 -- Peter Palfrader <weasel@debian.org>  Fri, 06 Jun 2008 01:11:33 +0200

tor (0.2.0.26-rc-1) experimental; urgency=critical

  * New upstream version.
  * Conflict with old libssls.
  * On upgrading from versions prior to, including, 0.1.2.19-2, or
    from versions later than 0.2.0 and prior to 0.2.0.26-rc do the
    following, and if we are a server (we have a /var/lib/tor/keys
    directory)
    - move /var/lib/tor/keys/secret_onion_key out of the way.
    - move /var/lib/tor/keys/secret_onion_key.old out of the way.
    - move /var/lib/tor/keys/secret_id_key out of the way if it was
      created on or after 2006-09-17, which is the day the bad
      libssl was uploaded to Debian unstable.
  * Add a NEWS file explaining this change.

 -- Peter Palfrader <weasel@debian.org>  Tue, 13 May 2008 16:11:21 +0200

tor (0.2.0.24-rc-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Wed, 23 Apr 2008 02:25:22 +0200

tor (0.2.0.23-rc-1) experimental; urgency=low

  * New upstream version.
  * Mention OpenBSD_malloc_Linux.c in debian/copyright.
  * Add a recommends on logrotate.

 -- Peter Palfrader <weasel@debian.org>  Tue, 25 Mar 2008 09:34:37 +0100

tor (0.2.0.22-rc-1) experimental; urgency=low

  * New upstream version.
  * Work around fig2dev failing to build the images on all archs
    (re #457568).
  * Build with --enable-openbsd-malloc, unless no-enable-openbsd-malloc is
    found in DEB_BUILD_OPTIONS.  Hopefully this deals with some of the
    horrible memory fragmentation that glibc's malloc causes.

 -- Peter Palfrader <weasel@debian.org>  Wed, 19 Mar 2008 08:03:47 +0100

tor (0.2.0.21-rc-1) experimental; urgency=low

  * New upstream version.
  * Run --verify-config before start/reload/restart as root.  No longer
    su - to debian-tor tor run it.  Given that we now even start Tor as
    root (it setuids later on) this should be fine (closes: #468566).

 -- Peter Palfrader <weasel@debian.org>  Mon,  3 Mar 2008 13:36:59 +0100

tor (0.2.0.20-rc-1) experimental; urgency=low

  * New upstream version.
  * Change the default for MAX_FILEDESCRIPTORS in our init script to depend
    on the number of system-wide available file descriptors:
    /proc/sys/fs/file-max is bigger than 80k, set ulimit -n to 32k, if it's
    greater than 40k set the limit to 16k, and when greater than 10k our limit
    shall be 8k descriptors.  If there are less than 20k FDs in the entire
    system default to a limit of only 1024.

    Big servers at the moment regularly use more than 10k FDs, so our old
    default of 8k no longer is sufficient.  On the other hand we don't want
    lower end systems to run out of FDs on Tor's account.
  * If we run as root also apply debian defaults.
  * Add User=debian-tor and Group=debian-tor to debian defaults.  That allows
    us to start Tor as root and have it setuid/setgid to the target user.
  * Change the init script to start Tor as root.  Now we should be able to
    bind to low port.

 -- Peter Palfrader <weasel@debian.org>  Mon, 25 Feb 2008 13:54:58 +0100

tor (0.2.0.19-alpha-1) experimental; urgency=low

  * New upstream version.
  * It's 2008.  Now is the time to add copyright statements for 2007.
  * Forward port 03_tor_manpage_in_section_8.dpatch.

 -- Peter Palfrader <weasel@debian.org>  Sun, 10 Feb 2008 01:12:04 +0100

tor (0.2.0.18-alpha-2) experimental; urgency=low

  * Work around fig2dev failing to build the images on mipsel like we do on
    sparc and s390 (re #457568)
  * Fix postinst find command that chowns stuff to the right user.  Find
    does weird things in the presence of !.

 -- Peter Palfrader <weasel@debian.org>  Sun,  3 Feb 2008 18:17:16 +0100

tor (0.2.0.18-alpha-1) experimental; urgency=low

  * New upstream version.
  * postinst: Remove the check that requires the debian-tor user
    to have a uid between 100 and 999.  There is no good reason
    to require this.  If the local admin moves the system users/uid-space
    to some other range then they probably have a good reason for that.
  * postinst: change wording if debian-tor's homedir is wrong, do not
    print anything if it is ok.
  * postinst: We were only fixing the permissions of /var/{lib,run,log}/tor
    when we were not upgrading.  Unfortunately the check doesn't work all
    that well usually in cases where the package was removed (not purged)
    and then later re-installed again.  Now we ensure proper ownership
    and modes for all the directories and files below /var/{lib,run,log}/tor
    (the dirs themselves included) every time we run postinst.
  * postinst: if we reboot between unpacking and configuring on some smart
    systems this will mean that we just lost /var/run/tor - creating it
    in the maintainer script if it doesn't exist.
  * Create logfiles in logrotate so that they come into the world with the
    correct mode (o-r).

 -- Peter Palfrader <weasel@debian.org>  Thu, 24 Jan 2008 15:15:32 +0100

tor (0.2.0.17-alpha-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Thu, 17 Jan 2008 21:42:25 +0100

tor (0.2.0.15-alpha-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Tue, 25 Dec 2007 08:53:25 +0100

tor (0.2.0.14-alpha-1) experimental; urgency=low

  * New upstream version.
  * Remove 13_r12907-fix-unit-tests.dpatch (Fix unit tests from HEAD) again -
    it's included upstream.
  * Work around fig2dev failing to build the images on sparc like we do on
    s390.

 -- Peter Palfrader <weasel@debian.org>  Sun, 23 Dec 2007 13:45:41 +0100

tor (0.2.0.13-alpha-1) experimental; urgency=low

  * New upstream version.
  * Fix unit tests from HEAD (13_r12907-fix-unit-tests.dpatch).

 -- Peter Palfrader <weasel@debian.org>  Fri, 21 Dec 2007 11:52:43 +0100

tor (0.2.0.12-alpha-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Sun, 18 Nov 2007 11:49:06 +0100

tor (0.2.0.11-alpha-1) experimental; urgency=low

  * New upstream version.
  * remove 12_r12235_do_not_crash_when_myfamily_is_set again, it's
    now part of upstream.

 -- Peter Palfrader <weasel@debian.org>  Thu, 15 Nov 2007 11:07:06 +0100

tor (0.2.0.9-alpha-2) experimental; urgency=low

  * Do not separate required lsb facilities with commas in the
    init script (closes: #448001).
  * Add 12_r12235_do_not_crash_when_myfamily_is_set.dpatch,
    from trunk/head.

 -- Peter Palfrader <weasel@debian.org>  Sun, 28 Oct 2007 00:03:21 +0200

tor (0.2.0.9-alpha-1) experimental; urgency=low

  * New upstream version.
  * Only create pid dir if we are about to start Tor (Luca Capello,
    closes: #447508).

 -- Peter Palfrader <weasel@debian.org>  Fri, 26 Oct 2007 14:29:56 +0200

tor (0.2.0.8-alpha-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Sat, 13 Oct 2007 16:27:04 +0200

tor (0.2.0.7-alpha-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Mon, 24 Sep 2007 23:50:14 +0200

tor (0.2.0.6-alpha-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Mon, 27 Aug 2007 15:41:31 +0200

tor (0.2.0.5-alpha-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Sun, 19 Aug 2007 15:10:49 +0200

tor (0.2.0.4-alpha-1) experimental; urgency=high

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Thu,  2 Aug 2007 07:09:36 +0200

tor (0.2.0.3-alpha-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Tue, 31 Jul 2007 07:03:00 +0200

tor (0.2.0.2-alpha-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Sun,  3 Jun 2007 02:31:29 +0200

tor (0.2.0.1-alpha-1) experimental; urgency=low

  * New upstream version.
  * Forward port 06_add_compile_time_defaults.
  * teTeX is no more, long live TeX Live:
    - remove build depends on tetex-bin, tetex-extra,
    - add build depends on texlive-base-bin for dvips and bibtex,
      texlive-latex-base for latex, and texlive-fonts-recommended for fonts
      like ptmr7t.

 -- Peter Palfrader <weasel@debian.org>  Sat,  2 Jun 2007 14:31:15 +0200

tor (0.1.2.19-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Thu, 17 Jan 2008 20:57:42 +0100

tor (0.1.2.18-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Mon, 29 Oct 2007 20:36:38 +0100

tor (0.1.2.17-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Fri, 31 Aug 2007 03:14:33 +0200

tor (0.1.2.16-1) unstable; urgency=high

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Thu,  2 Aug 2007 06:43:09 +0200

tor (0.1.2.15-1) unstable; urgency=low

  * New upstream version.
  * Change build-depends from tetex to texlive suite.

 -- Peter Palfrader <weasel@debian.org>  Thu, 19 Jul 2007 22:33:43 +0200

tor (0.1.2.14-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Fri, 25 May 2007 21:49:20 +0200

tor (0.1.2.13-3) unstable; urgency=low

  * Always give a shell (/bin/sh) when we use su(1) in our init script
    (closes: #421465).

 -- Peter Palfrader <weasel@debian.org>  Sun,  6 May 2007 14:44:11 +0200

tor (0.1.2.13-2) unstable; urgency=low

  * In options_init_from_torrc()'s error path only config_free() options
    if they already have been initialized (closes: #421235).

 -- Peter Palfrader <weasel@debian.org>  Fri, 27 Apr 2007 13:06:37 +0200

tor (0.1.2.13-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Tue, 24 Apr 2007 21:21:10 +0200

tor (0.1.2.12-rc-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Sat, 17 Mar 2007 11:35:31 +0100

tor (0.1.2.10-rc-1) experimental; urgency=low

  * New upstream version.
  * Change recommends on privoxy to privoxy | polipo (>= 1) (closes: #413728).

 -- Peter Palfrader <weasel@debian.org>  Fri,  9 Mar 2007 10:57:40 +0100

tor (0.1.2.8-beta-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Mon, 26 Feb 2007 11:50:49 +0100

tor (0.1.2.7-alpha-1) experimental; urgency=low

  * New upstream version.
  * Install all the spec files into usr/share/doc/tor/spec now.
    They moved to doc/spec/* from just doc/* in the source too.

 -- Peter Palfrader <weasel@debian.org>  Tue, 13 Feb 2007 18:51:14 +0100

tor (0.1.2.6-alpha-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Tue,  9 Jan 2007 17:39:15 +0100

tor (0.1.2.5-alpha-1) experimental; urgency=low

  * New upstream version.
  * Disable 02_add_debian_files_in_manpage.dpatch for now.

 -- Peter Palfrader <weasel@debian.org>  Sun,  7 Jan 2007 13:57:37 +0100

tor (0.1.2.4-alpha-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Mon,  4 Dec 2006 00:13:37 +0100

tor (0.1.2.3-alpha-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Mon, 30 Oct 2006 11:06:52 +0100

tor (0.1.2.2-alpha-1) experimental; urgency=low

  [ Peter Palfrader ]
  * New upstream version.

  [ Roger Dingledine ]
  * Minor update of debian/copyright.

 -- Peter Palfrader <weasel@debian.org>  Tue, 10 Oct 2006 03:26:00 +0200

tor (0.1.2.1-alpha-1) experimental; urgency=low

  * Forward port 07_log_to_file_by_default.dpatch.
  * Previously our defaults for DataDirectory, PidFile, RunAsDaemon, and
    Log differed from upstreams.  Now Tor behaves just like before (with
    our own DataDirectory and all) only when run as the debian-tor user.
    If invoked as any other user, Tor will behave just like the pristine
    upstream version.
  * Tell users about the init script when they try to run Tor as root.
    Should we also do this when they try to run their Tor as any other
    (non root, non debian-tor) user? - add 11_tor_as_root_more_helpful
  * Use tor --verify-config before start and reload.  Abort init script
    with exit 1 if config does not verify.
  * Change Standards-Version to 3.7.2.  No changes required.

 -- Peter Palfrader <weasel@debian.org>  Tue, 29 Aug 2006 22:38:29 +0200

tor (0.1.1.26-1) unstable; urgency=high

  * New upstream version (Stop sending the HttpProxyAuthenticator string to
    directory servers when directory connections are tunnelled through Tor).

 -- Peter Palfrader <weasel@debian.org>  Fri, 15 Dec 2006 20:24:07 +0100

tor (0.1.1.25-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Sat,  4 Nov 2006 17:16:08 +0100

tor (0.1.1.24-1) unstable; urgency=low

  * New upstream version.
  * Update debian/copyright:
    - tree.h has vanished somewhere along the current branch
    - ht.h is new and credits Christopher Clark
    - We didn't mention Matej Pfajfar's copyright before.
  * Forward port 07_log_to_file_by_default.

 -- Peter Palfrader <weasel@debian.org>  Fri,  6 Oct 2006 23:32:45 +0200

tor (0.1.1.23-1) unstable; urgency=medium

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Thu,  3 Aug 2006 03:13:24 +0200

tor (0.1.1.22-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Thu,  6 Jul 2006 02:55:37 +0200

tor (0.1.1.21-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Sun, 11 Jun 2006 18:27:13 +0200

tor (0.1.1.20-1) unstable; urgency=low

  * New upstream stable release: The 0.1.1.x tree is now the new stable
    tree.  Upload to unstable rather than experimental.

 -- Peter Palfrader <weasel@debian.org>  Tue, 23 May 2006 20:16:25 +0200

tor (0.1.1.19-rc-1) experimental; urgency=low

  * New upstream version.
  * Remove support for my nodoc DEB_BUILD_OPTIONS variable.  It clutters
    stuff and I haven't used it in ages.
  * Update debian/tor.docs file.

 -- Peter Palfrader <weasel@debian.org>  Fri,  5 May 2006 16:27:48 +0200

tor (0.1.1.18-rc-1) experimental; urgency=low

  * New upstream version.
  * update debian/tor.doc:
    - no longer ship INSTALL and README files, they are useless now.
    - doc/stylesheet.css, doc/tor-doc-server.html, doc/tor-doc-unix.html,
      doc/tor-hidden-service.html, doc/tor-switchproxy.html got replaced
      by doc/website/stylesheet.css and doc/website/tor-* which is more
      or less the same, only taken from the website.  Some links are
      probably broken still, but this should get fixed eventually.

 -- Peter Palfrader <weasel@debian.org>  Mon, 10 Apr 2006 12:00:50 +0200

tor (0.1.1.17-rc-1) experimental; urgency=low

  * New upstream version.
  * Forward port patches/07_log_to_file_by_default.

 -- Peter Palfrader <weasel@debian.org>  Tue, 28 Mar 2006 09:48:04 +0200

tor (0.1.1.16-rc-1) experimental; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Mon, 20 Mar 2006 02:03:29 +0100

tor (0.1.1.15-rc-1) experimental; urgency=low

  * New upstream version.
  * Apparently passing --host to configure when not cross-compiling
    is evil now and greatly confuses configure.  So don't do it unless it
    actually differs from --build host.

 -- Peter Palfrader <weasel@debian.org>  Sat, 11 Mar 2006 20:04:36 +0100

tor (0.1.1.14-alpha-1) experimental; urgency=low

  * New upstream version.
  * Include 0.1.0.17 changelog in experimental tree.
  * doc/FAQ is no longer shipped, so remove it from debian/tor.docs.

 -- Peter Palfrader <weasel@debian.org>  Tue, 21 Feb 2006 05:16:21 +0100

tor (0.1.1.13-alpha-1) experimental; urgency=low

  * New upstream version.
  * Forward port patches/02_add_debian_files_in_manpage.
  * Forward port patches/03_tor_manpage_in_section_8.
  * Create /var/run/tor on init script start if it does
    not exist already.
  * Set default ulimit -n to 8k instead of 4k in /etc/default/tor.
  * Print that we're raising the ulimit to stdout in the init script.
  * Add CVE numbers to past issues in the changelog where applicable.

 -- Peter Palfrader <weasel@debian.org>  Fri, 10 Feb 2006 14:38:11 +0100

tor (0.1.1.12-alpha-1) experimental; urgency=low

  * New upstream version, that was a quick one. :)
  * Forward port patches/02_add_debian_files_in_manpage.

 -- Peter Palfrader <weasel@debian.org>  Thu, 12 Jan 2006 02:53:27 +0100

tor (0.1.1.11-alpha-1) experimental; urgency=low

  * New upstream version.
    - Implement "entry guards": automatically choose a handful of entry
      nodes and stick with them for all circuits.  This will increase
      security dramatically against certain end-point attacks
      (closes: #349283, CVE-2006-0414).
  * Forward port patches/07_log_to_file_by_default.
  * Forward port 0.1.0.16 changelog and change to copyright file.

 -- Peter Palfrader <weasel@debian.org>  Wed, 11 Jan 2006 12:08:25 +0100

tor (0.1.1.10-alpha-1) experimental; urgency=low

  * New upstream version.
  * doc/tor-doc.css and doc/tor-doc.html are no longer in the upstream
    tarball, remove them from debian/tor.docs.
  * add the following new files to tor.docs: doc/socks-extensions.txt,
    doc/stylesheet.css, doc/tor-doc-server.html, doc/tor-doc-unix.html

 -- Peter Palfrader <weasel@debian.org>  Sun, 11 Dec 2005 14:02:41 +0100

tor (0.1.1.9-alpha-1) experimental; urgency=low

  * New upstream version.
  * Remove 08_add_newlines_between_serverdescriptors.dpatch.
  * Update 06_add_compile_time_defaults.dpatch
  * Use bin/bash for the init script instead of bin/sh.  We are using
    ulimit -n which is not POSIX  (closes: #338797).
  * Remove the EVENT_NOEPOLL block from etc/default/tor.
  * Add an ARGS block to etc/default/tor as suggested in #338425.

 -- Peter Palfrader <weasel@debian.org>  Tue, 15 Nov 2005 23:29:54 +0100

tor (0.1.1.8-alpha-1) experimental; urgency=low

  * New upstream version.
  * Add patch from CVS to
    "Insert a newline between all router descriptors when generating (old
    style) signed directories, in case somebody was counting on that".
    r1.247 of dirserv.c, <20051008060243.85F41140808C@moria.seul.org>

 -- Peter Palfrader <weasel@debian.org>  Sat,  8 Oct 2005 20:24:39 +0200

tor (0.1.1.7-alpha-1) experimental; urgency=low

  * New upstream version.
  * More merging from 0.1.0.14+XXXX:
    - The tor-dbg package does not really need its own copy of copyright
      and changelog in usr/share/doc/tor-dbg.
  * Forward port 03_tor_manpage_in_section_8.dpatch

 -- Peter Palfrader <weasel@debian.org>  Wed, 14 Sep 2005 17:52:35 +0200

tor (0.1.1.6-alpha-2) experimental; urgency=low

  * Merge 0.1.0.14+XXXX changes.

 -- Peter Palfrader <weasel@debian.org>  Wed, 14 Sep 2005 15:05:16 +0200

tor (0.1.1.6-alpha-1) experimental; urgency=low

  * Experimental upstream version.

 -- Peter Palfrader <weasel@debian.org>  Sat, 10 Sep 2005 10:17:43 +0200

tor (0.1.1.5-alpha-cvs-1) UNRELEASED; urgency=low

  * Even more experimental cvs snapshot.
  * Testsuite is mandatory again.
  * Forward port 03_tor_manpage_in_section_8.dpatch
  * Forward port 06_add_compile_time_defaults.dpatch

 -- Peter Palfrader <weasel@debian.org>  Fri,  9 Sep 2005 23:22:38 +0200

tor (0.1.1.5-alpha-1) UNRELEASED; urgency=low

  * Experimental upstream version.
  * Allow test suite to fail, it's broken in this version.
  * Update list of files from doc/ that should be installed.
  * Forward port debian/ patches.

 -- Peter Palfrader <weasel@debian.org>  Fri, 12 Aug 2005 17:02:23 +0200

tor (0.1.0.17-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Sat, 18 Feb 2006 02:49:45 +0100

tor (0.1.0.16-1) unstable; urgency=low

  * New upstream version.
  * Update copyright file for 2006.

 -- Peter Palfrader <weasel@debian.org>  Tue,  3 Jan 2006 13:59:34 +0100

tor (0.1.0.15-1) unstable; urgency=low

  * New upstream release.
  * Forward port 03_tor_manpage_in_section_8.

 -- Peter Palfrader <weasel@debian.org>  Sat, 24 Sep 2005 15:15:34 +0200

tor (0.1.0.14-2) unstable; urgency=low

  * Ship debugging information in a separate package now, instead
    of simply not stripping tor.  This is still useful while tor is
    young.  Ideally it would go away some time.
  * Add LSB comments to init script as suggested by Petter Reinholdtsen
    on the debian-devel list:
    - http://lists.debian.org/debian-devel/2005/08/msg01172.html
    - http://wiki.debian.net/?LSBInitScripts
  * Work around broken chroots that do not resolve localhost or resolve
    it to the wrong IP.  We now catch such cases in debian/rules, shout
    at the buildd maintainer, and ignore the result of our test suite.

 -- Peter Palfrader <weasel@debian.org>  Wed, 21 Sep 2005 10:23:25 +0200

tor (0.1.0.14-1) unstable; urgency=high

  * New upstream version - changes, among others:
    - Fixes the other half of the bug with crypto handshakes (CVE-2005-2643).
  * Since gs-gpl on s390 is broken (#321435) and unable to
    build PDFs of our images for the design paper this version
    ships them in the source and uses them on s390, should building
    them from source really fail.
  * Increase standards-version from 3.6.1 to 3.6.2.  No changes
    necessary.

 -- Peter Palfrader <weasel@debian.org>  Mon,  8 Aug 2005 23:55:05 +0200

tor (0.1.0.13-1) unstable; urgency=high

  * New upstream version:
    - Explicitly set no-unaligned-access for sparc in configure.in.
      it turns out the new gcc's let you compile broken code, but
      that doesn't make it not-broken (closes: #320140).
    - Fix a critical bug in the security of our crypto handshakes.
      (Therefore set urgency to high).
    and more (see upstream changelog).
  * Slightly improve init script to give you proper error messages when
    you do not run it as root.

 -- Peter Palfrader <weasel@debian.org>  Fri,  5 Aug 2005 01:27:49 +0200

tor (0.1.0.12-1) unstable; urgency=medium

  * New upstream version:
    - New IP for tor26 directory server,
    - fix a possible double-free in tor_gzip_uncompress,
    - and more (see upstream changelog).

 -- Peter Palfrader <weasel@debian.org>  Tue, 19 Jul 2005 17:36:24 +0200

tor (0.1.0.11-1) unstable; urgency=high

  * New upstream version (closes: #316753):
    - Fixes a serious bug: servers now honor their exit policies -
      In 0.1.0.x only clients enforced them so far.  0.0.9.x is
      not affected.
  * Build depend on libevent-dev >= 1.1.
  * Urgency high because 0.0.9.10-1 did not make it into testing after
    like 3 weeks because of an impending ftp-master move.  So I might
    just as well upload this one.

 -- Peter Palfrader <weasel@debian.org>  Mon,  4 Jul 2005 17:53:48 +0200

tor (0.1.0.10-0.pre.1) UNRELEASED; urgency=low

  * New upstream version.
  * Add a watch file.
  * Forward port 03_tor_manpage_in_section_8.
  * Forward port 06_add_compile_time_defaults.
  * Add libevent-dev to build-depends.
  * Update URL to tor in debian/control and debian/copyright.
  * Add a snippet to disable epoll in etc/default/tor, commented out.
  * Add a snippet to set nice level in etc/default/tor.
  * Wait for 60 seconds in init stop.  35 is too little.
  * Don't depend on python anymore - tor-resolve is C now.
  * If "with-dmalloc" is in DEB_BUILD_OPTIONS we build against libdmalloc4.
    Of course the -dev package needs to be installed.
  * Update README.Debian to say that upstream now does have a default
    for DataDirectory.
  * Don't fail in the init script when we cannot raise the ulimit.
    Instead just warn a bit (closes: #312882).

 -- Peter Palfrader <weasel@debian.org>  Wed, 15 Jun 2005 16:38:06 +0200

tor (0.0.9.10-1) unstable; urgency=high

  * While we're waiting for a newer libevent to enter sid, make another
    upload of the 0.0.9.x tree:
    - Refuse relay cells that claim to have a length larger than the
      maximum allowed. This prevents a potential attack that could read
      arbitrary memory (e.g. keys) from an exit server's process
      (CVE-2005-2050).

 -- Peter Palfrader <weasel@debian.org>  Thu, 16 Jun 2005 22:56:11 +0200

tor (0.0.9.9-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Sat, 23 Apr 2005 23:58:47 +0200

tor (0.0.9.8-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Fri,  8 Apr 2005 09:11:34 +0200

tor (0.0.9.7-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Fri,  1 Apr 2005 09:52:12 +0200

tor (0.0.9.6-1) unstable; urgency=low

  * New upstream version.
  * Upstream used newer auto* tools, so hopefully the new config.sub
    and config.guess files (2003-08-18) are good enough to build
    tor on ppc64 (closes: #300376: FTBFS on ppc64).

 -- Peter Palfrader <weasel@debian.org>  Fri, 25 Mar 2005 01:34:28 +0100

tor (0.0.9.5-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Thu, 24 Feb 2005 09:45:52 +0100

tor (0.0.9.4-1) unstable; urgency=low

  * New upstream version.
  * Set ulimit for file descriptors to 4096 in our init
    script.
  * Use SIGINT to shutdown tor.  That way - if you are a server -
    tor will stop accepting new connections immediately, and
    give existing connections a grace period of 30 seconds in
    which they might complete their task.  If you just run a
    client it should make no difference.

 -- Peter Palfrader <weasel@debian.org>  Fri,  4 Feb 2005 00:20:25 +0100

tor (0.0.9.3-1) unstable; urgency=low

  * New upstream version.
  * Forward port 07_log_to_file_by_default.

 -- Peter Palfrader <weasel@debian.org>  Sun, 23 Jan 2005 16:01:58 +0100

tor (0.0.9.2-1) unstable; urgency=low

  * New upstream version.
  * Update debian/copyright (it's 2005).
  * Add sharedscripts tor logrotate.d/tor.

 -- Peter Palfrader <weasel@debian.org>  Tue,  4 Jan 2005 11:14:03 +0100

tor (0.0.9.1-1) unstable; urgency=low

  * New upstream version.

 -- Peter Palfrader <weasel@debian.org>  Thu, 16 Dec 2004 00:16:47 +0100

tor (0.0.8+0.0.9rc7-1) unstable; urgency=medium

  * New upstream release (candidate).
    For real this time.  Looks like our rc6 orig.tar.gz
    was in fact the rc5 one.
  * forward port patches/07_log_to_file_by_default

 -- Peter Palfrader <weasel@debian.org>  Wed,  8 Dec 2004 15:22:44 +0100

tor (0.0.8+0.0.9rc6-1) unstable; urgency=medium

  * New upstream release (candidate).
    - cleans up more integer underflows that don't look exploitable.
      But one never knows (-> medium).
  * Remove those 'date' calls in debian/rules again that were
    added in rc5-1.

 -- Peter Palfrader <weasel@debian.org>  Mon,  6 Dec 2004 11:11:23 +0100

tor (0.0.8+0.0.9rc5-1) unstable; urgency=medium

  * New upstream release (candidate).
    - medium because it fixes an integer overflow that might
      be exploitable, but doesn't seem to be currently.
  * Add a few 'date' calls in debian/rules, so I can see how long
    building the docs take on autobuilders.

 -- Peter Palfrader <weasel@debian.org>  Wed,  1 Dec 2004 10:02:08 +0100

tor (0.0.8+0.0.9rc3-1) unstable; urgency=low

  * New upstream release (candidate).

 -- Peter Palfrader <weasel@debian.org>  Thu, 25 Nov 2004 10:33:42 +0100

tor (0.0.8+0.0.9rc2-1) unstable; urgency=low

  * New upstream release (candidate).
  * Nick's patch is now part of upstream, remove it from
    the debian diff.

 -- Peter Palfrader <weasel@debian.org>  Wed, 24 Nov 2004 09:03:13 +0100

tor (0.0.8+0.0.9rc1-1) unstable; urgency=low

  * New upstream release (candidate).
  * Apply nick's patch against config.c (1.267) to handle
    absense of units in BandwidthRate.

 -- Peter Palfrader <weasel@debian.org>  Tue, 23 Nov 2004 11:57:49 +0100

tor (0.0.8+0.0.9pre6-1) unstable; urgency=low

  * New upstream (pre)release.
  * Install control-spec.txt into usr/share/doc/tor/.

 -- Peter Palfrader <weasel@debian.org>  Tue, 16 Nov 2004 04:49:32 +0100

tor (0.0.8+0.0.9pre5-2) unstable; urgency=low

  * Symlink tor(8) manpage to torrc(5).
  * Make logs readable by the system administrators (group adm).
  * Point to /var/log/tor (the directory) instead of a single
    file (/var/log/tor/log) in the debian patch of the manpage.
  * Do not patch the default torrc to include settings we really want.
    Instead modify the compiled in default options.  Those settings are

    - RunAsDaemon is enabled by default.
    - PidFile is set to /var/run/tor/tor.pid.  No default upstream.
    - default logging goes to /var/log/tor/log instead of stdout.
    - DataDirectory is set to /var/lib/tor by default.  No default upstream.

    This is also documented in the new debian/README.Debian.
  * Remove /usr/bin/tor-control.py from the binary package, it is
    not really useful yet, and wasn't meant to be installed by
    default.
  * Change init startup script to properly deal with tor
    printing stuff on startup.

 -- Peter Palfrader <weasel@debian.org>  Fri, 12 Nov 2004 18:30:50 +0100

tor (0.0.8+0.0.9pre5-1) unstable; urgency=low

  * New upstream (pre)release.
  * 04_fix_test can be backed out again.
  * Make sure all patches apply cleanly.
  * No longer use --pidfile, --logfile, and --runasdaemon
    command line options.  Set them in the configfile instead.
  * Change the description slightly, to say "don't rely on the current Tor
    network if you really need strong anonymity", instead of "Tor will not
    provide anonymity currently".

 -- Peter Palfrader <weasel@debian.org>  Wed, 10 Nov 2004 04:43:10 +0100

tor (0.0.8+0.0.9pre4-1) unstable; urgency=low

  * New upstream (pre)release.
  * Apply patch from cvs to fix a segfault in src/or/test
    (test.c, 1.131).

 -- Peter Palfrader <weasel@debian.org>  Sun, 17 Oct 2004 19:04:31 +0200

tor (0.0.8+0.0.9pre3-1) unstable; urgency=high

  * New upstream (pre)release.
  * Fixes at least one segfault that can be triggered remotely,
    a format string vulnerability which probably is not exploitable,
    and several assert bugs.

 -- Peter Palfrader <weasel@debian.org>  Thu, 14 Oct 2004 13:36:45 +0200

tor (0.0.8+0.0.9pre2-1) unstable; urgency=low

  * New upstream (pre)release.

 -- Peter Palfrader <weasel@debian.org>  Sun,  3 Oct 2004 01:29:13 +0200

tor (0.0.8+0.0.9pre1-1) unstable; urgency=low

  * New upstream (pre)release.
  * Built depend on zlib1g-dev.

 -- Peter Palfrader <weasel@debian.org>  Fri,  1 Oct 2004 21:28:49 +0200

tor (0.0.8-1) unstable; urgency=low

  * New upstream release.

 -- Peter Palfrader <weasel@debian.org>  Fri, 27 Aug 2004 14:08:10 +0200

tor (0.0.7.2+0.0.8rc1-1) unstable; urgency=low

  * New upstream release candidate.
  * Install design paper in usr/share/doc/tor, not usr/share/doc.  Ooops.

 -- Peter Palfrader <weasel@debian.org>  Wed, 18 Aug 2004 09:59:13 +0200

tor (0.0.7.2+0.0.8pre3-1) unstable; urgency=low

  * New upstream (pre)release.
  * Ship AUTHORS, doc/CLIENTS, doc/FAQ, doc/HACKING, doc/TODO,
    doc/tor-doc.{css,html}, doc/{rend,tor}-spec.txt with the binary package.
  * Build tor-design.{pdf,ps}, wich adds new build-dependencies:
    tetex-{bin,extra}, transfig, and gs.
  * Support DEB_BUILD_OPTIONS option 'nodoc' to skip building tor-design.
    With nodoc the build will not need tetex-{bin,extra}, transfig, and gs.
  * Support DEB_BUILD_OPTIONS option 'nocheck' to skip unittests
    ('notest' is an alias')
  * Enable coredumps by default, this is still development code.
  * Modify 02_add_debian_files_in_manpage to still apply.

 -- Peter Palfrader <weasel@debian.org>  Sun,  8 Aug 2004 15:03:32 +0200

tor (0.0.7.2+0.0.8pre2-1) unstable; urgency=low

  * New upstream (pre)release.
  * Depend on python as we now have a python script: tor_resolve

 -- Peter Palfrader <weasel@debian.org>  Wed,  4 Aug 2004 20:09:26 +0200

tor (0.0.7.2-1) unstable; urgency=medium

  * New upstream release.
    Fixes another instance of that remote crash bug.
  * Mention another reason why stop/reload may fail in the init script.

 -- Peter Palfrader <weasel@debian.org>  Thu,  8 Jul 2004 03:21:32 +0200

tor (0.0.7.1-1) unstable; urgency=medium

  * New upstream release.
    Fixes a bug that allows a remote crash on exit nodes.
  * Logrotate var/log/tor/*log instead of just var/log/tor/log, in
    case the admin wants several logs.

 -- Peter Palfrader <weasel@debian.org>  Mon,  5 Jul 2004 19:18:12 +0200

tor (0.0.7-1) unstable; urgency=low

  * New upstream version
    closes: #249893: FTBFS on ia64

 -- Peter Palfrader <weasel@debian.org>  Mon,  7 Jun 2004 21:46:08 +0200

tor (0.0.6.2-1) unstable; urgency=medium

  * New upstream release (breaks backwards compatibility yet again).
  * Recommend socat.
  * Since tor is in /usr/sbin, the manpage should be in section 8, not
    in section 1.  Move it there, including updating the section in
    the manpage itself and the reference in torify(1).
  * Update debian/copyright file.

 -- Peter Palfrader <weasel@debian.org>  Sun, 16 May 2004 10:47:20 +0200

tor (0.0.6.1-1) unstable; urgency=medium

  * New upstream release (breaks backwards compatibility).

 -- Peter Palfrader <weasel@debian.org>  Fri,  7 May 2004 00:24:49 +0200

tor (0.0.6-1) unstable; urgency=low

  * New upstream release (breaks backwards compatibility).

 -- Peter Palfrader <weasel@debian.org>  Sun,  2 May 2004 23:58:36 +0200

tor (0.0.5+0.0.6rc4-1) unstable; urgency=low

  * New upstream release candidate.

 -- Peter Palfrader <weasel@debian.org>  Sun,  2 May 2004 14:36:59 +0200

tor (0.0.5+0.0.6rc3-1) unstable; urgency=low

  * New upstream release candidate.

 -- Peter Palfrader <weasel@debian.org>  Thu, 29 Apr 2004 11:52:07 +0200

tor (0.0.5+0.0.6rc2-1) unstable; urgency=low

  * New upstream release candidate.
  * Mention upstream website and mailinglist archives in long
    description.

 -- Peter Palfrader <weasel@debian.org>  Mon, 26 Apr 2004 12:23:20 +0200

tor (0.0.5-1) unstable; urgency=low

  * New upstream release.
  * Upstream installs a torrc.sample file now, rather than torrc.
    Keep using torrc as dpkg handles conffile upgrades.

 -- Peter Palfrader <weasel@debian.org>  Tue, 30 Mar 2004 20:54:00 +0200

tor (0.0.4-1) unstable; urgency=low

  * New upstream release (how the version numbers fly by :).

 -- Peter Palfrader <weasel@debian.org>  Fri, 26 Mar 2004 23:46:09 +0100

tor (0.0.3-1) unstable; urgency=low

  * New upstream release.
  * Also mention that tree.h is by Niels Provos in debian/copyright.

 -- Peter Palfrader <weasel@debian.org>  Fri, 26 Mar 2004 20:36:08 +0100

tor (0.0.2-1) unstable; urgency=low

  * New upstream release.
  * Uses strlcpy and strlcat by Todd C. Miller, mention him in
    debian/copyright.

 -- Peter Palfrader <weasel@debian.org>  Fri, 19 Mar 2004 12:37:17 +0100

tor (0.0.1+0.0.2pre27-1) unstable; urgency=low

  * New upstream release.

 -- Peter Palfrader <weasel@debian.org>  Mon, 15 Mar 2004 05:19:16 +0100

tor (0.0.1+0.0.2pre26-1) unstable; urgency=low

  * New upstream release.
  * Mention log and pidfile location in tor.1.

 -- Peter Palfrader <weasel@debian.org>  Mon, 15 Mar 2004 02:21:29 +0100

tor (0.0.1+0.0.2pre25-1) unstable; urgency=low

  * New upstream release.

 -- Peter Palfrader <weasel@debian.org>  Thu,  4 Mar 2004 23:05:38 +0100

tor (0.0.1+0.0.2pre24-1) unstable; urgency=low

  * New upstream release.
  * Do not strip binaries for now.
  * Add "# ulimit -c unlimited" to tor.default
  * Always enable DataDirectory.
  * Actually use dpatch now (to modify upstream torrc.in)
  * Wait for tor to die in init stop.  Let the user know if it doesn't.

 -- Peter Palfrader <weasel@debian.org>  Wed,  3 Mar 2004 14:10:25 +0100

tor (0.0.1+0.0.2pre23-1) unstable; urgency=low

  * New upstream release.
  * The one test that always failed has been fixed:  removed comment from
    rules file.

 -- Peter Palfrader <weasel@debian.org>  Sun, 29 Feb 2004 12:36:33 +0100

tor (0.0.1+0.0.2pre22-1) unstable; urgency=low

  * New upstream release.
  * Upstream has moved tor back to usr/bin, but we will keep it in
    usr/sbin.  That's the right place and it doesn't break my tab
    completion there.

 -- Peter Palfrader <weasel@debian.org>  Fri, 27 Feb 2004 01:59:09 +0100

tor (0.0.1+0.0.2pre21-1) unstable; urgency=low

  * New upstream release.
  * 0.0.2pre20-2 removed the Recommends: on privoxy rather
    than tsocks (which is now required) by mistake.  Fix that.
  * package description: Mention that the package starts the OP by default and
    that OR can be enabled in the config.
  * tor moved to sbin, updating init script.

 -- Peter Palfrader <weasel@debian.org>  Wed, 18 Feb 2004 10:08:12 +0100

tor (0.0.1+0.0.2pre20-2) unstable; urgency=low

  * Add torify script, documentation, and config file.  Means we also
    depend on tsocks now rather than just recommending it.  Right now
    we install it in debian/rules, but upcoming versions might install
    it in upstream's make install target.
  * There's an upstream ChangeLog file now.  Enjoy!
  * Add a README.privoxy file that explains how to setup privoxy to
    go over tor.
  * As is the case too often, the INSTALL file not only covers
    installation, but also basic usage and configuration.  Therefore
    include it in the docs dir.
  * Add a lintian override for the INSTALL file.

 -- Peter Palfrader <weasel@debian.org>  Tue, 17 Feb 2004 02:32:00 +0100

tor (0.0.1+0.0.2pre20-1) unstable; urgency=low

  * New upstream version.
    - various design paper updates
    - resolve cygwin warnings
    - split the token bucket into "rate" and "burst" params
    - try to resolve discrepency between bytes transmitted over TLS and actual
      bandwidth use
    - setuid to user _before_ complaining about running as root
    - fix several memleaks and double frees
    - minor logging fixes
    - add more debugging for logs.
    - various documentation fixes and improvements
    - for perforcmance testing, paths are always 3 hops, not "3 or more"
      (this will go away at a later date again)
  * Add dependency on adduser which was previously missing.
  * Change short description to a nicer one.

 -- Peter Palfrader <weasel@debian.org>  Sat, 31 Jan 2004 10:10:45 +0100

tor (0.0.1+0.0.2pre19-1) unstable; urgency=low

  * Initial Release  (closes: #216611).

 -- Peter Palfrader <weasel@debian.org>  Sat, 10 Jan 2004 11:20:06 +0100