1999/05/04	== Released 0.2.1 ==

1999/05/04
  - Stuffed up the documenation to reflect the actual status. No change
    in functionality.

1999/04/30	== Released 0.2.0 ==

1999/04/30
  - Adjusted the changes in smtp*.c to Wietse's indentation style.
  - Sorry, the documentation about the client side has by now to be
    taken from sample-tls.conf. The documenation has to be rearranged
    in a larger scale.

1999/04/29
  - Finished client support for STARTTLS in smtp; some testing done.
  - Fixed a race condition in smtpd: When in PIPELINE mode, the connection
    was switched back from SSL to normal mode before the buffers were
    flashed.
  - Adjusted the code in pfixtls.[ch] and additions in smtpd*.c to
    Wietse's indentation style.

1999/04/28
  - Incorporated skeleton of STARTTLS support into smtp.
  - Introduced variables to control client STARTTLS to configuration.

1999/04/15	== Released 0.1.5 ==

1999/04/15
  - Adjusted pfixtls.diff to postfix-19990317-pl04.

1999/04/14
  - Ported from OpenSSL the BIO_callback functions to dump out the negotiation
    and transmission for debugging purposes. The functions are triggered
    by the the new loglevels 3 and 4.
  - Call SSL_free() to get rid of the SSL connection structure not used
    anymore.

1999/04/13	== Released 0.1.4 ==

1999/04/13
  - Based on a hint in the openssl-users list added an SSL_set_accept_state()
    before the actual SSL_accept(). I don't really understand why, but the
    documentation of SSL is a bit short anyway.

1999/04/11
  - Some more comments on certificates in the documentation.

1999/04/10
  - Moved initialization of the pfixtls_server_engine to the pre_jail_init()
    section of smtpd, so that it is called with root privileges to read the
    key and cert information. The secret key of the server can now be protected
    by "chown root secretkey.pem; chmod 400 secretkey.pem".
    Additionally, this makes it possible to run smtpd in chroot jail, even
    though I didn't test that, yet. All information is read at smtpd startup
    time except the CAcerts in tls_CApath, which are checked at runtime.
    I have to look into that.
  - Updated documentation accordingly.
  - Rewrote the documentation with regard to the certificate setup and
    explaining the different types of certificates.

1999/04/09
  - Introduced pfixtls_print_errors() which imitates BIO_print_errors()
    (the typical way to print error information in OpenSSL) but writes
    to syslog instead of a file handle.
    Hence we can get more informative error information.

1999/04/08	== Released 0.1.3 ==

1999/04/08
  - Stuffed up the documentation by reworking the references.
  - Added contributed script for automatic addition of fingerprints.
  - Added ACKNOWLEDGEMENTS file

1999/04/06	== Released 0.1.2 ==

1999/04/06
  - Portability: removed call of "snprintf()", as it is not available on
    some (older) UNIX versions (in this case Solaris 2.5).
  - Removed calls to "select()" when in TLS mode: Even though no new bytes
    arrive, there might be bytes left in the SSL buffer -> possible hang.

1999/03/30	== Released 0.1.1 ==

1999/03/30
  - Added disclaimer about export restrictions.
  - Fixed a bug in util/match_ops.c:
    When using dictionary lookup the compare was case sensitive by accident.
    Effect: Fingerprint matching did not work with databases, only for plain
    file.
    Bug report submitted to postfix author.

1999/03/29	== Released first version 0.1.0 ==
