================================================================
Version 1.5
================================================================

Medusa Core Updates:
  -Provides additional information about current account check (e.g. 172.22.110.58 (60 of 104, 51 complete))
  -Support for simple resume by host. 
  -Bug fix for "-e" option
  -Bug fix for displaying hostname vs. IP
  -Added function for printing a specified length of binary data in hex

Module Updates:
  AFP
  -Added new module for Apple Filing Protocol from pmonkey

  HTTP
  -NTLM auth bug fix
  -Digest authentication support (MD5 and MD5-sess)

  IMAP
  -STARTTLS extension support
  -NTLM support

  MYSQL
  -Misc. bug fixes

  POP3
  -STARTTLS extension support
  -Better handling of connections dropped by remote server
  -Support user-supplied domain names
  -LOGIN, PLAIN, and NTLM support

  SMBNT
  -Created framework for different authentication levels (e.g. LM, NTLM, etc).
  -Support for basic LM authentication to allow for case insensitive bruting
  -NTLMv2/LMv2 support (Vista bruting)
  -Fix for guest user check
  -Support for "DOMAIN\USER" and "DOMAIN\\USER" style names

  SMTP
  -Renamed SMTP-AUTH to SMTP
  -NTLM support

  SMTP-VRFY
  -Misc. bug fixes

  SSH
  -Honor number of user specified retries
  -Restart connection when server fails to respond with auth modes after several attempts

  TELNET
  -Basic AS/400 Telnet / TN5250 support
  -Log hosts supplying only a password prompt (non-AAA)

  VMAUTHD
  -Misc. bug fixes

  WEB-FORM
  -Misc. bug fixes for user-supplied FORM-DATA value

Misc. Updates:
  -Added ZSH Functions file
  -Updated Medusa ebuild version and added new module dependencies.

================================================================
Version 1.4
================================================================

Medusa Core Updates:
  -Major re-working of the autoconf setup. Modules can now be enabled/disabled 
   individually. Also, modules for which the base dependencies are not 
   satisfied are simply not built. In the past they were compiled, but left in 
   a non-functional state. The default is to build all "stable" modules.
  -APR version detection
  -Misc bug fix in networking code
  -SSL socket rework. Fixes issue with concurrent mixed SSL and non-SSL 
   connections (FTPS).

Module Updates:
  FTP
  -Added support for explicit and implicit SFTP
  -Better handling of FTP banners

  HTTP
  -Now leaves user specified value intact within Host: header
  -Minor code cleanup

  IMAP
  -LOGIN AUTH support
  -Added TAG module parameter 
  -No longer restarts connection after each attempt

  NNTP
  -Added module with AUTHINFO support

  POP3
  -No longer restarts connection after each attempt

  MySQL
  -Misc bug fixes / error handling
  -Added MySQL pre-4.1 pass-the-hash support

  NCP
  -Misc bug fixes
  
  SMBNT
  -Misc bug fixes
  
  SMTP-AUTH
  -AUTH PLAIN support
  -AUTH LOGIN (e.g. Exchange) support

  SSH
  -Handles new libssh2 error messages
  -Libssh2 (0.18) should no longer cause Medusa to hang on SSHv1 hosts or when
   the target refuses to send its banner. 
  -Added banner parameter verification (Luciano Bello)

  VNC
  -Misc bug fixes

  WEB-FORM
  -Added new module from Luciano Bello

  WRAPPER
  -Better handling of failed attempts within oracle.pl script

================================================================
Version 1.3
================================================================

Medusa Core Updates:
  -Module listing fix for OpenBSD/AMD64
  -Autoconf tweaks for NCP & SVN checks
  -Autoconf tweaks for Solaris/OpenBSD
  -Removed unnecessary IP address checks
  -Other minor bug fixes

================================================================
Version 1.2
================================================================

Moved following modules to stable:
  NCP, VNC, PostgreSQL, SVN, CVS, VmAuthd, SNMP

Medusa Core Updates:
  -Compile on x86_64, Mac OS X.
  -Minor bug fixes.
  -Modified license with OpenSSL GPL exemption.

Module Updates:
  SMBNT
  -Added AS/400 target support.
  -Global "-e" option now works with module "PASS:HASH".

  FTP
  -Modified response parsing code to support AS/400 brute-forcing.

  REXEC
  -Modified response parsing code.

  Wrapper
  -Added oracle script.
  -Added SMB NULL session script.

================================================================
Version 1.1
================================================================

Added following modules (unstable): 
  CVS, NCP, PostgreSQL, SMTP/VRFY, SNMP, SVN, VmAuthd, VNC

Moved following modules to stable:
  PcAnywhere, FTP, IMAP, RSH, REXEC, RLOGIN, and generic wrapper

Medusa Core Updates:
  -Display module list sorted alphabetically
  -Compiles on OpenBSD
  -Added delayed receive functions which allow the modules to specify the timeout
   for both the initial socket read and the second "is any more data there?" check.
  -Modified SSL connect function. The function now takes an already existing socket 
   and switches it over to SSL. This is needed for modules like VMAUTHD.
  -Major rework of network receive function. Original code was copied from Hydra and
   seemed to have some issues.
  
Module Updates:
  HTTP
  -Added check for 301 error code (success)
  -NTLM authentication support

  IMAP
  -Minor code cleanup

  MySQL
  -Added support for testing accounts without password

  PcAnywhere
  -Added sleep to deal with servers freaking out when attempts arrive too quickly

  POP3
  -Added AS/400 mode. Examines error codes to give us better information about 
   account status.

  SMBNT
  -Added check to detect non-existent accounts when auditing an XP client

  Telnet
  -Moved receive functions to new delayed receive functions. This is slower, but
   we should actually be able to brute devices with long logon banners now.

  Wrapper
  -Added support for scripts to pass error messages back to Medusa.

Misc. Updates:
  Rdesktop
  -Added better success/failure detection
  -Added support to detect various error messages
  -Added basic W2K support
  -Added basic OS detection
  
  Ebuilds
  -Updated libssh2 ebuild based on bugs.gentoo.org feedback.
  -Updated Medusa ebuild based on bugs.gentoo.org feedback.
  -Updated Medusa version and added new module dependencies.
  -Modified ncpfs ebuild for "install-dev" option.

================================================================
Version 1.0
================================================================

Initial release
Modules (stable): HTTP, MS-SQL, SMBNT, SSHv2, Telnet, POP3 and MySQL
Modules (unstable): RSH, RLOGIN, REXEC, FTP, IMAP, PcAnywhere, and generic wrapper