Mixminion

- Windows support
- The Mixminion command-line interface now works on MS Windows, at
least for me. It has been tested on Windows 2000, and should work
on any platform running Windows 98 or later. There are probably
some lingering bugs, especially when running a server.

- Improved security
- SURB keys are now rotated periodically.

- The client now _always_ shuffles packets before delivery, and sends
them in a random order.

- Improved robustness
- Servers are now addressed by hostname rather than IP. It is now
feasible to run a Mixminion server with a dynamic IP address.
Support for old-style routing will be deprecated in 0.0.7.
(Servers use a DNS-farm abstraction to avoid blocking on slow
DNS lookups. MMTP connections are still authenticated, so attacks
against DNS can at worst delay packets from arriving.)

- The path generation logic has been largely rewritten to use the
optimal routing method for each server-to-server pair.

- The path generation code now chooses good paths for fragmented
messages and messages with specific requirements on their exit
nodes.

- Client queues are generally less buggy.

- Consistency enforcement between fragmentation and other modules.

- Better spec compliance.

- Improved performance
- When flushing messages from the client queue, it is no longer
necessary to load them all into RAM at once.

- User interface tweaks
- When running as a client, Mixminion now displays servers by nickname
in addition to IP:port whenever possible. Servers will gain this
behavior in a later version, once they begin downloading
directories.

- The behavior of 'mixminion list-servers' has been changed: its
default output is far terser and easier to parse than before, though
output _even more_ verbose than previous can be selected. Also,
whereas the old implementation only listed servers by their
lifetime, capabilities, and status, it is now possible to list
arbitrary 'features' of the servers in the directory.

- Error messages for timeouts are more reasonable; timeouts themselves
should now work a little better than before.

- A longstanding typo in the MMTP server's logging code has been
resolved: running at DEBUG should be far terser and more reasonable
than before.

- Users can now send fragmented messages for reassembly by their
recipients rather than exit servers. (Client side reassembly is
not yet implemented, however.)

- Many error messages have been cleaned up, including a few related to
SSL errors, Windows internals, corrupt databases, unsupported
databases.

- Build improvements
- Use the preferred version of Python if one exists.

- Add build target to output test vectors for crypto functionality.

- Support the DESTDIR environment variable

- Check SHA1 digest on downloaded OpenSSL 0.9.7c.

- Other bugfixes too numerous to mention.

- Allow exit servers to decide whether to support user-supplied from
addresses.
- Fail more gracefully when we try to deliver mail and the the local MTA
is down.

- Fix a harmless but hard-to-detect bug that showed up when running
unittests on certain platforms.

- Fix for a bug that would crash exit servers trying to upgrade from
certain older versions.

- Improved error messages for several cases.

- Add a draft man page (credit goes to George Danezis).

- Support for email headers. 'Subject', 'In-Reply-To', and 'References'
are fully supported. 'From' support is limited, as documented in
'E2E-spec.txt'.

- Limited support for K-of-N message fragmentation and reassembly. Right
now, clients can send large fragmented messages for servers to
reassemble them. Not yet supported are independent paths, fragmented
reply messages, and client-side fragment reassembly.

- UI improvements
- Path generation can now create random-length paths
- Support for removing old messages from client queues.
- 'Mixminion shell' command to wrap other commands on platforms with
iffy terminals or shells. Poor substitute for a real GUI.

- Improved portability
- All client and server functionality works properly on Cygwin.
- Everything should work on win32 too. (But it won't be supported till
I can get Py2Exe working.)
- The build system should work on more unixes.

- Improved configurability
- Support for suppressing directory permission messages.

- Improved performance
- Server RAM usage should be way down, except while reassembling large
messages.

- Improved testability
- Server descriptors now describe the server's platform and
configuration.

- Bugfixes too numerous to mention. Server pools in general should be
significantly more robust.

NEW IN FINAL 0.0.4 RELEASE:
BUGFIXES:
- Fixed a bug that would sometimes give a useless error message when
trying to build a message with a too-long path.

BUGFIXES:
- Improved error message on nonexistent directory.
- Fixed a bug (found by Mike Gurski) that could kill a server if a message
was received for an old key in between deleting the old key's replay cache,
and deleting the old key itself.
- Fixed a bug in setting up server directories.