This release features vastly improved stats gathering for both reader and
feeder, efficient (optional) NEWNEWS support in reader, group restrictions per
reader definition, new reader authentication types, a hook for C filter for
local posts, many bug fixes, and many other minor enhancements. It also
includes a completely rewritten spool system that allocates articles to spool
objects (directories/partitions) with a very flexible expiry mechanism that
allows different expire methods and times based on newsgroups, article size,
article type, etc. This also includes an experimental compressed spool type.
The filtering mechanisms were vastly improved with 3 different filter types and
full configuration of which articles are sent to each type of filter with the
same options as newsfeeds.
The reader part has had some bugfixes. Support for PGP 6.5i has been added. The 'spool disk full' error handling has been improved. The Message-ID that was supplied is now included due to some problems with INN feeders.
The main purpose of this release is a security fix for feeder authentication that allowed hostname spoofing. This problem exists in all previous versions of Diablo until 2.1-REL, including the 1.xx releases. Upgrading to this release is strongly recommended as there is no patch for versions prior to this release (yet). Other changes since 2.0-REL, include a fix to multiple spool directory usage in feeder/spool, fixed idle/session timeout in reader, control messages retrieved in reader, added compile-time auth option to allow CDB lookups for reader usernames, improved (and unified) rc.news script for feeder and reader, optional new overview expiry method based on calculating the article count from the number of articles and age of articles, use of '400' response when reader client is allowed to connect later, and many other minor bugfixes.
