- - If the user specifies a remote-host for both the source and destination,
- we now output a syntax error rather than trying to open the destination
- hostspec as a filename.
-
- - When --inplace creates a new destination file, rsync now creates it with
- permissions 0600 instead of 0000 -- this makes restarting possible when
- the transfer gets interrupted in the middle of sending a new file.
+ - Fixed the sanitizing of acceptable ../ dirs in 2 cases where an rsync
+ daemon is receiving files when "use chroot" is not enabled and the
+ destination dir is not at the top of the module's path: both the value
+ of a symlink and the arg of the --FOO-dest options (i.e. --link-dest,
+ --copy-dest, and --compare-dest) now know how deep the destination dir
+ is in the module, and allow a safe number of ../ references instead of
+ preventing the references from leaving the destination hierarchy (use
+ the age-old --safe-links for that behavior).
+
+ - Fixed a bug where a deferred info/error/log message could get sent
+ directly to the sender instead of being handled by rwrite() in the
+ generator. This fixes an "unexpected tag 3" fatal error, and should
+ also fix a potential problem where a deferred info/error message from
+ the receiver might bypass the log file and get sent only to the client
+ process. (These problems could only affect an rsync daemon that was
+ receiving files.)
+
+ - Make sure that the --link-dest option can still do its job even when -I
+ or --size-only is specified.