|
|
|
|
HISTORY |
|
|
|
VERSION 2.0.1 |
|
04/23/08 |
|
|
|
 IMPROVED: Database classes now explicitally close and release all resources, without relying on the garbage collector of the VM. This prevents resource leak specifically with MySQL and newer JDBC3 drivers.
FIXED: Some version 2 serial numbers were not being recognized at startup.
|
|
|
|
|
|
|
|
|
VERSION 2.0 |
|
03/25/08 |
|
|
|
Compatible with Director 11 MultiUserXtra and Unicode (UTF8) strings. See this technote for details.
IMPROVED: the server code was upgraded to use the new concurrency functionality in Java platform 1.5 or later, and newer JDBC interfaces, and compiled in 1.5 bytecode format. The result is increased reliability and compatibility with current Java implementations.
ADDED: Support for #All encryption support, which allows encryption of all messages transmitted between Nebulae and the MU Xtra. Previously only standard (login) encryption was available.
ADDED: PreventUserIdSpoofing setting. See the comments on Nebulae.cfg for more information. Fix for a known vulnerability in the SMUS protocol that affects both previous versions of Nebulae and all releases of Macromedia SMUS server.
ADDED: EnableFloodPrevention and FloodDetectionThreshold settings. See the comments on Nebulae.cfg for more information. Implements functionality to filter and disconnect users suspected of flooding the server with inconsistent or duplicate messages.
CHANGED: Hsqldb support for internal databases was upgraded to the latest available version in the 1.8 series. The hsqldb.jar classes are also delivered in a separate file, and can be upgraded or modified independently of the main Nebulae server code, for increased flexibility. |
|
|
|
|
|
|
|
|
VERSION 1.2.7 |
|
01/19/06 |
|
|
|
IMPROVED: the server now spawns an internal thread that checks the health of several server subsystems periodically, at each IdleTimeOut interval. This allows automatic re-spawning of critical subsystems that might have been damaged, for example by receiving unhandled exceptions from ServerSideScript objects or by other unexpected condition.
FIXED: some connection errors were returning a generic value (invalid movie id for example was returning a generic connection error.) These events now return more specific MUSErrors, making it easier for authors to report better error status messages to the user.
ADDED: experimental directive ReducedThreadsSynchronousMode. See the comments on Nebulae.cfg for more information. This server mode may be dropped in future releases, as it is not as reliable as the standard Asynchronous handling (still the default.) |
|
|
|
|
|
|
|
|
VERSION 1.2.6 |
|
08/31/05 |
|
|
|
FIXED: This release fixes a bug related to user authentication and duplicated users that was introduced in version 1.2.5. All users are advised to upgrade. |
|
|
|
|
|
|
|
|
VERSION 1.2.5 |
|
08/29/05 |
|
|
|
ADDED: DropUserWhenReconnectingFromSameIP has been added to Nebulae.cfg. This lets the server operator determine the behavior of Nebulae when a connection is initiated with the same username and IP address, avoiding a potential denial of service attack if multiple machines are behind the same public IP. Please examine the comments in the configuration file for more information.
FIXED: A malicious user running on the same public IP (same machine or network with NAT) could trigger the disconnection of an authenticated user without a valid password. This is no longer possible.
ADDED: James Newton submitted a few modifications to the Administrator Tool included in the NebulaeTools.zip archive. The login details for the last server are now saved for future sessions. |
|
|
|
|
|
|
|
|
VERSION 1.2.4 |
|
10/25/04 |
|
|
|
ADDED:
MaxLoginWait property has been added to Nebulae.cfg. This option is
used by the server to determine the maximum allowed time for each
client that tries to login to the server, in order to avoid an issue
where a lost or malformed login packet would hang the login thread.
The default value for this property is 15 seconds, and after this
time the user socket is automatically disconnected if a successful
login could not be completed.
FIXED:
Improved group disconnection code when the user leaves a movie: this
avoids a rare issue where an user could be disconnected from a movie
but would still be present on some groups created by server side scripts.
FIXED:
Changed error handling when using encrypted login messages. Encryption
keys shorter than 20 characters were not being handled correctly,
generating an exception in the server. |
|
|
|
|
|
|
|
|
VERSION 1.2.3 |
|
06/22/04 |
|
|
|
IMPROVED: Mac OSX Startup scripts have been updated to include the -Dfile.encoding=ISO-8859-1 option, necessary for Nebulae to translate characters correctly on machines running the Japanese/Chinese/Korean versions of OSX and Java 1.4 virtual machines.
FIXED: Some JDBC drivers could throw a NullPointerException error when they receive an empty list as the parameter for an SQL.executeQuery message.
FIXED: Contrary to what the documents indicate, messages sent to a ServerSide script user directly or via a group always had the ServerSideScript user listed in the "sender" parameter of the incomingMessage handler. This behavior has been fixed, and the correct sender is now available. |
|
|
|
|
|
|
|
|
VERSION 1.2.2 |
|
12/01/03 |
|
|
|
FIXED: Under certain circumstances the server was issuing incorrect responses to a system.group command containing multiple groups in the content portion of the message. The server was responding with multiple messages addressed to the last group queried, instead of one message for each group specified. This bug was introduced in 1.2.1 and is now addressed.
NEW FEATURE: Ability to automatically load default movies and associated server side script classes when the server starts, with the addition of the StartupMovies directive in the Nebulae.cfg file.
CHANGED: Login queue thread priority enhanced |
|
|
|
|
|
|
|
|
VERSION 1.2.1 |
|
11/05/03 |
|
|
|
FIXED: Using system.server.restart no longer causes a high cpu usage in Java 1.4.1 VMs.
FIXED: Thread leak introduced in 1.2 is addressed
FIXED: Dropped messages count in the log file is now reset between state reports
INTERNAL REWRITE: Login queue is now isolated for additional protection to server objects from a DOS attack
INTERNAL REWRITE: Dispatcher queue is now configurable and runs on a separate thread with maximum priority
NEW CONFIGURATION OPTIONS: MaxLoginMsgQueue and MaxDispatcherMsgQueue added to Nebulae.cfg |
|
|
|
|
|
|
|
|
VERSION 1.2 |
|
10/13/03 |
|
|
|
INTERNAL REWRITE: Portions of Nebulae messsage handling and internal structures were rewritten to take advantage of enhancements in the Java 2 platform, including better support for concurrency access to shared objects. The external ServerSideScript interfaces were not affected, and all content developed for Nebulae 1.1 is still supported, including database files.
NEW REQUIREMENT: Java 2 (JDK 1.2 or later )
HSQL engine is now completely embedded
NEW FEATURE: Default class at ScriptMap.cfg
NEW FEATURE: User configurable message queues for user, group and database messages (see Nebulae.cfg)
ENHANCED: server log now with additional state reports, including in and out traffic (measured in bytes) and the total number of messages received, dispatched and discarded at an user-configurable interval.
Uses Java 2 Concurrently package from oswego.edu (Doug Lea) for increased reliability and enhanced performance under heavy utilization scenarios. |
|
|
|
|
|
|
|
|
VERSION 1.1 |
|
01/25/02 |
|
|
|
NEW FEATURE: Java Server Side Scripting enabled
NEW FEATURE: SQL gateway capabilities
NEW FEATURE: System.server.sendEmail command |
|
|
|
|
|
|
|
|
VERSION 1.0 |
|
11/26/01 |
|
|
|
First public release. |
|
|
|
|
|
|
