• Fix major networking problem in 0.9.3 where devices are improperly started
• Once again attempt to solve the autologin relogin problem with qingy (this time completely strip out the code that does a timestamp check, if the file exists then do not re-login, period
• When shutting down or rebooting, make sure to tell all sshd connections to close and turn off network devices
• Network scripts did not stop dhcpclient, wpa_supplicant, and hostap if it was running when the network script was stopped
• /etc/hosts was being used instead of /etc/network/hosts
• Fixed initrd boot process problems
• Removed floating_root parameter from squish and squash boot options, making floating_root unconditional for squash and squash booting

• Added joy2key
• Added vala
• Added gstreamer (which doesn't really work anyway..)
• Added webkit
• Added midori (replacing seamonkey)
• Added libvpx
• Added tunctl
• Added bind (replacing maradns)
• Added celt
• Added links back now that it appears to be actively maintained once again
• Added strace to the toolchain
• Added libpki
• Added openca-ocspd
• Added libotr and pidgin-otr for encrypted chat support

• Removed seamonkey
• Removed maradns (does not support dnssec, so it was replaced with bind)
• Removed ps3-utils
• Removed tcl/tk
• Removed pidgin-encryption in favor of pidgin-otr

• Removed support for /etc/network/proc_settings
• Added network device setting file auto-generation and auto-degeneration support
• Prevent already started or stopped network devices from being re-started or re-stopped
• Add extension support to dns resolver
• Add non-standard port support for ipv4 dns resolver

• Shortened udev settle time to 4 seconds
• Added support for /etc/sysctl.conf (this also replaces /etc/network/proc_settings)
• Desktop build now adds fewer xorg video drivers
• Now supports custom xorg.conf.d directories at /etc/X11/ (This helps enable KMS)

• Device mapper names are now properly recreated once udev is started after a pivot_root from the initrd
• /lib/libcap.so* are now using the public group; This fixes a permissions issue for users and services that do not have the permissions group
• Added lighttpd server to the ldap group so that ldap support works properly
• Removed midori from the webbrowser scripts and appropriate *.desktop files
• Made /boot/ world executable so that symlink-based subroots work properly
• The incomplete --state NEW firewall changes were accidentally included in the router system, causing network problems
• The router system was built with -mtune=geode, weird things were happening with the kernel modules so now -mtune will not be used
• Fixed mistake where the cko kernel patch accidentally created 3 menu entries
• Ensure that the main terminal is started last (Note: this might cause xorg to take longer to start)
• If an existing username such as 'root' were specified anywhere in the KiWI configure process that had the same name as an existing group, a conflict would apper; A users groups are now prefixed with u_ to prevent this
• /share/applications/mimeinfo.cache was being overwritten by some other package
• Removed duplicate menu entries from xfce menu
• KiWI failed to properly install when using the encrypted schema
• KiWI did not update the /etc/network/hosts file with the new system name
• The network script was improperly processing bridge parameters
• The network script had an improper world execute umask
• The random function in the network script was using % 15 and should have been using % 16 to generate random hex digits
• Dbus was improperly configured and was also not being started by default
• The default qingy settings file was defining the temporary data location to be /var/lib/misc, when it should have been set to /tmp/qingy
• Htop was not compiled with unicode support
• Properly install keymap tools and provide appropriate configuration options

• Added ssl generation script to assist in generation of ssl certificates
• Added jfs support through jfsutils
• Added the pidgin-gpg pidgin plugin
• B.A.T.M.A.N.
• Added viewnior
• Added qemu
• Added b43-fwcutter
• Added scummvm

• Removed cdcd
• Removed chntpw
• Removed mac-fdisk
• Removed unrar
• Removed Python from tools toolchain
• Removed wireless_tools
• Removed cabextract
• Removed ms-sys
• Removed clamav
• Removed net-tools
• Removed slang
• Removed ristretto
• Removed cdrtools

• Added mdadm to the initrd such that the initrd can handle booting to a software raid array
• Added cpio and file to the maintenance initrd so that squash files can be regenerated from within the initrd
• Rewrote group permissions to match the new group permissions (unfortunately, this is not yet dynamic)

• Renamed bond to bridge in network configuration scripts and files as I meant bridging where I had bond
• Proper bond support has been added
• Enable bridging support in network tools
• Added virtual device support in default-device file
• Numbers are no longer appended to nameserver names, each nameserver line (be it blank of filled) are read from top to bottom and are processed in that order
• The network script now only pulls the first found occurance of a setting and ignores all other duplicate lines unless the given setting expects multiple occurances (such as nameserver)
• The network script now uses iw instead of iwconfig, solving a lot of wireless connection problems
• WPA supplicant support for the network script was rewritten for improved functionality
• Improved functionality of firelog script

• Firewall has been updated to utilize --state NEW
• Include support for the ecdsa algorithm in ssh
• Removed redundant "You may now begin the installation.." step after successfully configuring kiwi
• Kernel modules now use the suffix .modules instead of .sfs
• The fll library sources need to be in .tbz format instead of .txz
• Add 64-bit support
• Added a bootstrap process to the tkis installation scripts so that the new dependencies can be met automatically on foreign hosts
• During compilation of the system Python gets installed to a temporary location to prevent packages from auto-including it while still allowing for Python compile time dependencies
• Added the requestpolicy addon to Seamonkey
• Use xz as the default kernel and initrd compression
• /home/services has been renamed to /home/targets
• The permissions system has been overhauled and now uses prefixes for structural organization
• Due to the permission changes, the kernels compiled for this version will not be backwards compatible (security-wise)
• The first 100 uid/gid numbers are now reserved for kernel use only. Anything assigned to these first 100 numbers will not change from this release forward
• The TKIS now adds target users only when installing their packages instead of having a pre-created static list of target users

• Xrandr returns "out of memory" (due to an invalid malloc(0) live pointer)
• Fixed wireshark packet capturing where for some reason wireshark stopped reporting packets after the first pass!
• Fixed ario segfault (caused by bug in libxml2 2.7.6)
• Fixed a long overlooked bug when doing a chroot root from TKIS while not root
• Fxed a few bugs with application icons
• Fixed problem where some autoconf scripts were using the temporary toolchain perl instead of the systems toolchain perl
• Finally updated nmap to a more recent version, also removed sticky-bit from nmap (increases security and fixes a bug)
• Fixed typo in single_execution tkis script
• Fixed a bug with cddb.pl that where 'fatal error: No such file or directory' was displayed
• Nmap is no longer sticky bit, improves security and fixes a bug with zenmap tempfile creation for non-root users

• Added synergy-plus
• Added xfce terminal
• Added ncat from nmap (now installing on desktop build)
• Added checksum_validate script to help automate the system checksum validation process
• Added ddrescue, also adding it to the maintenance initrd
• Added KiWI (Kevux Weird Installer)
• Added openldap

• Removed xterm (replaced by the xfce terminal)
• Removed yeahconsole (depended on xterm and will be missed)
• Removed xawtv
• Removed curlftpfs
• Removed netcat in favor of nmaps ncat
• Removed mysql because it has become too much of a pain to try to keep up to date and compile
• Removed blobandconquer for the time being because it has been crashing consistently of late
• Removed links due to security concerns of an unmaintained webbrowser

• Enable widechar (utf8) support in ncurses
• Bash is now linked to the widechar version of ncurses
• Readline now has widechar support enabled

• Tools like ifconfig and route now have inet6 enabled
• Ping now has ipv6 support (via ping6)

• Removed some non-linux partition data in order to make the desktop kernel focus more on being linux only
• SSH server now generates the ssh host keys at start if they do not already exist and should no longer need to be manually generated
• Added lzma-squashfs to squashfs-tools
• Encrypted booting now works with LABEL and UUID values
• Initngs net/network_proc boot script now handles most of the sysctl network commands for both ipv4 and now ipv6 as well
• Removed some functionality to kernel builds to decrease their size and complexity
• Added alix-specific kernel config file
• Reverted udevs removal of the ability to change device names and fixed udev rules to work with latest udev version
• Added serial ports to default static devices for /dev/ and the initrds
• Fixed nmap to use eth-linux instead of eth-none so that nmap will actually do something!
• Removed framebuffer drivers from kernel (If this causes xorg display problems, then this will be reverted)

• Updated to latest NPTL release, fixing numerous small bugs here and there.
• Fixed some of the Seamonkey problems, namely the history and add-on manager now open up properly.
• Plugged a minor security hole in the firewall scripts that prevented device specific firewall rules from being processed.
• Fixed an infinite loop in the FSS processing code.

• Pidgin now has a few more plugins available

• The Turtle Kevux Installation scripts now require the FSS processing programs from the FLL project.
• This will be inconvenient for users building under any other distribution or a kevux system older than 0.9.1.
• This significantly decreases build time of the system.
• This is the first step towards getting a package manager for Kevux.
• Now using Mesa-7.8.1, which should bring improved graphics acceleration support.
• There were a number of other bug fixes, but were minor and I had foolishly forgotten to write notes on what they were.

• A large number of random crashes and deadlocks have vanished with the switch to uClibc-nptl
• Details documenting how to utilize encrypted booting are now added
• xarchiver no longer crashes randomly
• mpd no longer crashes randomly
• seamonkey no longer crashes randomly (the start script has been updated)
• seamonkey now restarts properly
• xfce-settings-manager and similar xfce programs no longer segfault due to a thread linking issue
• /share/fonts/font.dir now exists
• /etc/network/hostname now has permissions of network_public and not network

• Now using a git-based nptl version of uClibc
• Now using the latest shadow utils in favor of using maintained software
• Wine is now supported and present on the everything release

• acpitool has been temporarily removed, due to bugginess and lack of maintainance
• perl is no longer present in the desktop build (but does exist in the toolchain and thus is only semi-removed)

• The system now supports the resolution options timeout and retry
• To better cope with how the internet has grown, the system now supports up to 6 DNS nameservers
• This allows one to have their ISP provided nameservers (2), googles nameservers (2), and still have two nameserver slots left over for any private DNS uses
• Theoretically one could further utilize this to have a large number of nameservers that are queried at once and cross-referenced for security purposes

• (fixed) the blacklist/whitelist is truncating the last character for each line

• As a direct result of using the latest shadow utils, blowfish is no longer supported; instead sha512 is used
• To simplify things on my end, there are now two primary kernels (desktop-pc and server-pc)
• The server-pc is the same as the smp-pc and has all SCSI drivers.
• The desktop-pc is almost identical to the server-pc except the SCSI drivers have been removed to favor a smaller footprint and faster boot times
• The failsafe kernel is not being built anymore
• The grub boot process now references kernels without the version numbers and symbolic links are used
• This should help make kernel updates much easier
• Doing this means that the menu.lst will never need to be edited by some script and can be changed in any way by the end-user
• Now that ntpd is not being used by default, disable the port by default (ntpdate is still called at boot to properly set the time)