The main focus of this release is on security, with minor changes to service startup scripts and featuring an SELinux policy module for ktserver (supported out-of-the-box on RHEL/CentOS, but maybe usable on other Linux distributions as well).
Kyoto Tycoon's security model is based on serving clients on a internal network as, by design, it provides no authentication mechanism. The new SELinux policy module intends to prevent a malicious client from exploiting ktserver to attack other services on the same machine, or other machines on the same network. It's a safeguard against unknown security vulnerabilities.
Full list of changes:
- Added an SELinux policy module for
ktserverand matching.rpmpackage (make rpm-selinux) - Fix startup failure when the local machine's hostname isn't resolvable
- Fixed minor compilation warnings (bugs)
- Fixed minor documentation issues
- Added automatic log rotation to
.deband.rpmpackages - Log to
journaldon RHEL/CentOS 7 (.rpmpackage) - Fixed minor issues with packaging and service startup scripts
- Speed up build on macOS and FreeBSD