proftpd-ldap-1.3.8b-bp154.3.12.1 4>$  ApeK!M@eee#ovcvkWZHƌ'q'")[q N1dp1zA ߩ^){TeXy8eC8ZkM3F!]'9H\6v8lMQɫ'~fϟI*ɨ]1Na28c371b6b379e9ec1e96cb27ecff4a5ea54f294599a9e0f076deb692dc26cb949ac381a024e9d7315f99cf620f8c7f9ba2ca14cPeK!M@eee%+Ic : FlZP2)-L=zq1B&{ǑRx%S/Q{N9ݏlZne[y D<+9v2l73X?擹$e-[ix"598tzbl]jF/o?P vxZf|M.VI&лߗdIXyq!a@V~ W ?s ۚpSd-i,صȦbA$9Ax@=R <>p>4|?4ld # ;`dpt      Y \`ej   (&80$9$:>$F1lG1H1I1X1Y1\1]1^1b1c2d31e36f39l3;u3Pv3Tw3x3y3z4 44 4&4hCproftpd-ldap1.3.8bbp154.3.12.1LDAP Module for ProFTPDThis is the LDAP Module for ProFTPDeK{i02-armsrv3;SUSE Linux Enterprise 15openSUSEGPL-2.0-or-laterhttp://bugs.opensuse.orgProductivity/Networking/Ftp/Servershttp://www.proftpd.org/linuxaarch64;eKx1b331f11de8572e799f9a3f558be94faf24e614f100088221ad21df232aa4076rootrootproftpd-1.3.8b-bp154.3.12.1.src.rpmproftpd-ldapproftpd-ldap(aarch-64)@@@@@@    ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)liblber-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)proftpdrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)1.3.8b3.0.4-14.6.0-14.0-15.2-14.14.3eeC@cc<@cbL@b@Qb?@b ap_^@^3^S^5h@^C]@]o]@]D%]\@\+@[E@[DYqYC@X@XӸXO@XX~@X{d@WW/*@W/*@Ujchris@computersalat.dechris@computersalat.dechris@computersalat.deStefan Schubert chris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.deJohannes Segitz Dominique Leuenberger chris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.deMartin Hauke Bernhard Wiedemann chris@computersalat.dechris@computersalat.deJan Engelhardt Jan Engelhardt chris@computersalat.dechris@computersalat.debwiedemann@suse.comnmoudra@suse.comchris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.de- 1.3.8a - Released 19-Dec-2023 * http://proftpd.org/docs/NEWS-1.3.8b * Implemented mitigations for "Terrapin" SSH attack (CVE-2023-48795). - rebase patch * proftpd-no_BuildDate.patch- 1.3.8a - Released 08-Oct-2023 * http://proftpd.org/docs/NEWS-1.3.8a * Fixed builds when using OpenSSL 3.x- 1.3.7f - Released 04-Dec-2022 * Issue 1533 - mod_tls module unexpectedly allows TLS handshake after authentication in some configurations. * Bug 4491 - unable to verify signed data: signature type 'rsa-sha2-512' does not match publickey algorithm 'ssh-rsa'.- Migration of PAM settings to /usr/lib/pam.d.- Update proftpd-basic.conf.patch * remove obsolete config option, LoginPasswordPrompt - rework proftpd-dist.patch- 1.3.7e - Released 23-Jul-2022 * Issue 1448 - Ensure that mod_sftp algorithms work properly with OpenSSL 3.x. - 1.3.7d - Released 23-Apr-2022 * Issue 1321 - Crash with long lines in AuthGroupFile due to large realloc(3). * Issue 1325 - NLST does not behave consistently for relative paths. * Issue 1346 - Implement AllowForeignAddress class matching for passive data transfers. * Bug 4467 - DeleteAbortedStores removes successfully transferred files unexpectedly. * Issue 1401 - Keepalive socket options should be set using IPPROTO_TCP, not SOL_SOCKET. * Issue 1402 - TCP keepalive SocketOptions should apply to control as well as data connection. * Issue 1396 - ProFTPD always uses the same PassivePorts port for first transfer. * Issue 1369 - Name-based virtual hosts not working as expected after upgrade from 1.3.7a to 1.3.7b. - rebase proftpd-no_BuildDate.patch- fix deps for SLES- remove configure --disable-static- Update to version 1.3.7c: * http://proftpd.org/docs/NEWS-1.3.7c * http://proftpd.org/docs/RELEASE_NOTES-1.3.7c - Update patches * harden_proftpd.service.patch * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch * proftpd.spec * proftpd_env-script-interpreter.patch- Added hardening to systemd service(s) (bsc#1181400). Added patch(es): * harden_proftpd.service.patch Modified: * proftpd.service- Update to version 1.3.6e: + Invalid SCP command leads to null pointer dereference. - Do not limit to openSSL < 1.1: proftpd has had support for openSSL 1.1 sice version 1.3.6a. - Rebase proftpd-no_BuildDate.patch.- update to 1.3.6d * Issue 857 - Fixed regression in the handling of `%{env:...}` configuration variables when the environment variable is not present. * Issue 940 - Second LIST of the same symlink shows different results. * Issue 959 - FTPS uploads using TLSv1.3 are likely to fail unexpectedly. * Issue 980 - mod_sftp sends broken response when CREATETIME attribute is requested. * Bug 4398 - Handle zero-length SFTP WRITE requests without error. * Issue 1018 - PidFile should not be world-writable. * Issue 1014 - TLSv1.3 handshake fails due to missing session ticket key on some systems. * Issue 1023 - Lowercased FTP commands not properly identified. - rebase proftpd-no_BuildDate.patch- fix for boo#1164572 (CVE-2020-9272, gh#902) - fix for boo#1164574 (CVE-2020-9273, gh#903) - update to 1.3.6c * Fixed regression in directory listing latency (Issue #863). * Detect OpenSSH-specific formatted SFTPHostKeys, and log hint for converting them to supported format. * Fixed use-after-free vulnerability during data transfers (Issue #903). * Fixed out-of-bounds read in mod_cap by updating the bundled libcap (Issue #902). - remove obsolete proftpd-tls-crls-issue859.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch * proftpd_env-script-interpreter.patch- cleanup tls.template * remove deprecated NoCertRequest from TLSOptions- fix changes file * add missing info about boo#1155834 * add missing info about boo#1154600 - fix for boo#1156210 * GeoIP has been discontinued by Maxmind * remove module build for geoip see https://support.maxmind.com/geolite-legacy-discontinuation-notice/ - fix for boo#1157803 (CVE-2019-19269), boo#1157798 (CVE-2019-19270) * add upstream patch proftpd-tls-crls-issue859.patch- fix for boo#1154600 (CVE-2019-18217, gh#846) - update to 1.3.6b * Fixed pre-authentication remote denial-of-service issue (Issue #846). * Backported fix for building mod_sql_mysql using MySQL 8 (Issue #824). - update to 1.3.6a * Fixed symlink navigation (Bug#4332). * Fixed building of mod_sftp using OpenSSL 1.1.x releases (Issue#674). * Fixed SITE COPY honoring of restrictions (Bug#4372). * Fixed segfault on login when using mod_sftp + mod_sftp_pam (Issue#656). * Fixed restarts when using mod_facl as a static module - remove obsolete proftpd-CVE-2019-12815.patch * included in 1.3.6a (Bug#4372) - add proftpd_env-script-interpreter.patch * RPMLINT fix for env-script-interpreter (Badness: 9)- fix for boo#1155834 * Add missing Requires(pre): group(ftp) for Leap 15 and Tumbleweed * Add missing Requires(pre): user(ftp) for Leap 15 and Tumbleweed- Update proftpd-dist.patch to use pam_keyinit.so (boo#1144056)- fix for boo#1142281 (CVE-2019-12815, bpo#4372) arbitrary file copy in mod_copy allows for remote code execution and information disclosure without authentication - add patch * proftpd-CVE-2019-12815.patch taken from: - http://bugs.proftpd.org/show_bug.cgi?id=4372 - https://github.com/proftpd/proftpd/commit/a73dbfe3b61459e7c2806d5162b12f0957990cb3- update changes file * add missing info about bugzilla 1113041- Fix the Factory build: select the appropriate OpenSSL version to build with. (fix for boo#1113041)- Reduce hard dependency on systemd to only that which is necessary for building and installation. - Modernize RPM macro use (%make_install, %tmpfiles_create). - Strip emphasis from description and trim other platform mentions.- update to 1.3.6 * Support for using Redis for caching, logging; see the doc/howto/Redis.html documentation. * Fixed mod_sql_postgres SSL support (Issue #415). * Support building against LibreSSL instead of OpenSSL (Issue #361). * Better support on AIX for login restraictions (Bug #4285). * TimeoutLogin (and other timeouts) were not working properly for SFTP connections (Bug#4299). * Handling of the SIGILL and SIGINT signals, by the daemon process, now causes the child processes to be terminated as well (Issue #461). * RPM .spec file naming changed to conform to Fedora guidelines. * Fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - New Modules: * mod_redis, mod_tls_redis, mod_wrap2_redis With Redis now supported as a caching mechanism, similar to Memcache, there are now Redis-using modules: mod_redis (for configuring the Redis connection information), mod_tls_redis (for caching SSL sessions and OCSP information using Redis), and mod_wrap2_redis (for using ACLs stored in Redis). - Changed Modules: * mod_ban The mod_ban module's BanCache directive can now use Redis-based caching; see doc/contrib/mod_ban.html#BanCache. - New Configuration Directives * SQLPasswordArgon2, SQLPasswordScrypt The key lengths for Argon2 and Scrypt-based passwords are now configurable via these new directives; previously, the key length had been hardcoded to be 32 bytes, which is not interoperable with all other implementations (Issue #454). - Changed Configuration Directives * AllowChrootSymlinks When "AllowChrootSymlinks off" was used, only the last portion of the DefaultRoot path would be checked to see if it was a symlink. Now, each component of the DefaultRoot path will be checked to see if it is a symlink when "AllowChrootSymlinks off" is used. * Include The Include directive can now be used within a section, e.g.: Include /path/to/allowed.txt DenyAll - API Changes * A new JSON API has been added, for use by third-party modules. - remove obsolete proftpd_include-in-limit-section.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch- update to 1.3.5e * Fixed SFTP issue with umac-64@openssh.com digest/MAC. * Fixed regression with mod_sftp rekeying. * Backported fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - remove obsolete patch * proftpd-AllowChrootSymlinks.patch (now included) - rebase patches * proftpd-dist.patch * proftpd-no_BuildDate.patch * proftpd_include-in-limit-section.patch- Sort SHARED_MODS list to fix build compare (boo#1041090)- Removed xinetd service- fix for boo#1032443 (CVE-2017-7418) * AllowChrootSymlinks not enforced by replacing a path component with a symbolic link * add upstream commit (ecff21e0d0e84f35c299ef91d7fda088e516d4ed) as proftpd-AllowChrootSymlinks.patch - fix proftpd-tls.template * reduce TLS protocols to TLSv1.1 and TLSv1.2 * disable TLSCACertificateFile * add TLSCertificateChainFile- Remove --with-pic, there are no static libs. - Replace %__-type macro indirections. - Replace old $RPM shell vars by macros.- fix and update proftpd-basic.conf.patch - add some sample config and templates for tls * proftpd-tls.template * proftpd-limit.conf * proftpd-ssl.README- backport upstream feature * include-in-limit-section (gh#410) * add proftpd_include-in-limit-section.patch- update to 1.3.5d * gh#4283 - All FTP logins treated as anonymous logins again. This is a regression of gh#3307.- update to 1.3.5c * SSH rekey during authentication can cause issues with clients. * Recursive SCP uploads of multiple directories not handled properly. * LIST returns different results for file, depending on path syntax. * "AuthAliasOnly on" in server config breaks anonymous logins. * CapabilitiesEngine directive not honored for / sections. * Support OpenSSL 1.1.x API. * Memory leak when mod_facl is used. -rebase proftpd-no_BuildDate.patch- fix systemd vs SysVinit- Remove redundant spec sections - Ensure systemd-tmpfiles is called for the provied config file- fix for boo#970890 (CVE-2016-3125) - update to 1.3.5b: http://www.proftpd.org/docs/RELEASE_NOTES-1.3.5b * SSH RSA hostkeys smaller than 2048 bits now work properly. * MLSD response lines are now properly CRLF terminated. * Fixed selection of DH groups from TLSDHParamFile. - rebase proftpd-no_BuildDate.patch- fix for boo#927290 (CVE-2015-3306) - update to 1.3.5a: See http://www.proftpd.org/docs/NEWS-1.3.5a - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch - remove gpg-offline dependency - fix permissions on passwd file * unable to use world-readable AuthUserFile '.../passwd' (perms 0644): * 0644 -> 0440i02-armsrv3 17037587151.3.8b-bp154.3.12.11.3.8b-bp154.3.12.1mod_ldap.so/usr/lib64/proftpd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protectionobs://build.opensuse.org/openSUSE:Maintenance:18243/openSUSE_Backports_SLE-15-SP4_Update/29326f0a9898109fd4501ffd8c7ccddf-proftpd.openSUSE_Backports_SLE-15-SP4_Updatecpioxz5aarch64-suse-linuxELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=b621ee083c921978242741ea8940a2c9970e8380, not strippedRRRRRR{Y#fByrHutf-8cfeefc9b961c3ca0887f4fa3f397d191ff317a6042dcec3adff82933b04f4e44? 7zXZ !t/*Kn^څ \|f6AAN`Qp2%9MZ,$NG$mfȩqs{hMtSu:&@Y ߔFNMzGW {puIqFH6=E)/C1C?Sv{Ig! UurKN/+1#(aC\+w BM}in2.`^7,T-BQNB.?V Z%X{$2HMx9w1)( S2VXL/+*[SPYĘ v(vWe2:.ɒI4o"[b<@q'Ϛl!ss=u"pGT#,t7xY' )Nd=H kJEB1/&t$7p4fZ2FBT)@&B @u84 BdxcOBap,JZ=:$v!u8W}pO#ܛUhn)YiI\ntXN;S%%tWW=m%IBSt9X-; -rev[tCDIdPG$Q NJ{vIzņGk;&,n *֬d`U-91 =}G"H,."4})y.:7U]>!2mMf5FLKs52 Ӑ4Binxe'X|Ec.d3˩G4* '8~3}Y@񅗄Sc`~`Z|mlz~E"(.]pc`6n⊐/GC?'bnE,P/vcyjeܮsn|].n67VK*CLFp16{]0. $U6K0 G9٭E 0uQ_QCx [yјI ~w5+ 6܇D1Ev P]&m@ 'iu$N!X%nl*+>j6a 9X,f(1o |ϡsǻ|ʦ싋T@􃋴qcV8`# lM4t{TK|~m.$eAX\/%ǡ3D{j bq^7@`(;HMl?t>*^:D9Uo 1l Ԗ@L7Cq9K+s:(T@P+Uuu?*_d+þ3;2R.׍3bIvz@thɭ99@֟ ԰I$LnĽboqV/Ec7@@!vڬPJPU0sKcDw1/qsC<" U< *E0+?5iE_Ԫ*8`F0Τ(,({eِ.h}#” yA/z5E*s.8;2'-fR"cWZrA4!u![‚%0қ!XctYݙ]{sr:G"+k)bsozb%J} F~6ޑ/]Ҁ.)D.ftwo"p&9qFo%G/tl4)wJ74nIj\2z=[ P./ 7[$/@LEIOjB],l!OðLp]t67߰m)(;4yX%Rx4UFiIiI+4l'cIiwZt~ɉbh43Qc92kq큐Tݎѷ̪[l' p'%\:[F50B MWBH(nK,1|E4/Q26{2$OSG8¯=N ڍǨRZKp}jq1g떏'{L_˴+,eȆ)ܙIIQSpKEXtT@<}g8J@\} T'\ٍ#mBB.!_ha M؈nc<_.NjLM TBjk[>B"B~'}|9 c(w +H^K/?eʵ+hZnfXD}0wJX pBi}g*7W̫yAWW7ɯ<Ͳ9^V-g~eW,+l*+edz6n3P%9ʆ?AC>8&o!.~LW)3wV{VcoxXؠH j|BJK0E! /#5/MxrSx7iUItO^F."$1V l(fZoe,%\jaҨ{~RcR/J(e)$I !uXg"3JgrvNyI*50xAџ(F@{>p'9,yWUsRw|)Fдc=yĤqޫ)J`H*ͅjiȥm 3xb .w\)jҸ`ʔ8MLLixv8nP"= Tvk( ͔#L #w-]4oI"}60lo)o2c\LFUS+;5 ƲlF'N9ޖ>N]Bj( c5f~-F_=̤RT 1;LeŊ>I ʯnRї#4)3)V{5PI#̗E:?@(W]wnH)6)3/Ls0b6t~pCxLWumZ?y^5={u+̨dJcEvO5mZ 9$,I;`l$z:ӐM}હ11o|4DW™D3|p *># G+ 3MuNKkɹ+&NO f4To~*'nZ% f"VwC1?L9]bL# G+-x}y*P.'Uܲ] uSj-Ѵ)`DGWrϯDApaY {yK{B@>¿UY,`GXV EX0!!gw-qY̍- uE[ah4^_}>l֘U] ]0m5Kn&݁x 2u8e؃;z2{`ԁ\ .̈GF+!N 0|6F Q#ՠOQӽ:q[1G |8y`=2h:1SKa3fcYh#^+uvdkZшJR/ǞWqoƲY#X$!aƆIt1Ht?S#"#XG#kn%(FIO7)Qx&~P'yk1dYi,:V hAIƞS[O2(: q dѧObZG.ayZ6ack_HGlUk.WX}v ĶѰzPhHdZN>KhX"/-o`vS W5ҠKq%jP3{DdW:HmQHl&|PN;;'(BHVݙ,V5-dvWDţw_ܸA\!5E Q]9ä3NRČpp)i~Va-I'DM 4$uyƨYr<7`X8bw'10)4.RǦ&Qrcϒ|[ :m`Z%t)3] |8GȺfjGndSG+@z%TdP)n8hb)Fܣt[_ 7]M#{' a/O-$Ƕxaxa^dVXkc5EHd {֥hW%Ί;rl/IAHt n=oFu1:PJ$ = BB)G_fR>RN8:IJ6ъbx۷ZG)"xg.5,ԟj E8׷6QดР `Q"T no'Ȯt78UvnwSEɈ JX_pD^Fn 2CŶ',3=ڠ|z w.1"g卓HĈ~$4JDI\IEn)#3Y1&U@}+ t@ogPZ>=('x/ˁ7V1\J_\5Xɹ zU%GO\s0YxGK4 9y@ ;)7;Z ;.ॱH` Ky+~I{9Wd{"BRŇrnPQP¿λn`+Jq6lp%%L.!^%= \oCWM tz/T{y_RIL_Bez4̚dNbQ8ZBoDowQ{i{Œҏ OLM[d[M'"݁qb= va!>g=!1۬RxdQಯd}#ŞVB2پ縃vA)cJ! oBW#򔯽>T=[`q n.JL)0Ϻn* 4x /r%շ[Ya4Bݟl r'XN$ SnAea"YI,_JF rH/96G6A&"ǚ F X7&l5km6p)YBN.fЕKt7Gh5lY SDBV2|ՑܺIk-Z9I[؞26j3ezHI{ I_q PH}c%bMbu:eG+u^A>z|qtO۾n|u9cׁvϛsbL9?s_/W@+JKALӽ"|ݽT!v@<rb{J۷||ʽE*#a Xvy#/eeJWPRChaԯ@p0+׵Lє*f?xh/D18S.)dm؇PMRp9-2#-P)i2x[e,#]WmOx:'Lc]8%Dˮ}tC򝱟6{ bz!h})4hJ]Kw*[ o6j6$s:>m8O+-ُ|9V$IuPȪi iatZĦeë 0n tjUU44T8FDg[K'@@t)q^B !(^lfM`H KBF).Ý8UNn+cku4o6 J.>SE)Mgc,j=XZop"{zdn!UxIXM uC,_If`aq~ |9iW Eͥ ,@ 4L0*̭\b"ih#l,#aJI+V˰b۬qmձ؋N^Yާ5fc" ke it,9:/ +smzhVR=p i Lo ]M퍧T6ErzE 20`xTf 1n-I UgwAӡ@q0lgqJJo+B !(Bˎ_^y.FiMzZrVy\g "8ֳœ."aK,!J":\VܣM(KrBuXe wK43w] w'% SQ ?wFh2n:fvfK"it#+ PjY5!f'ξrl+㥀JGEq``LKUUfOʹ+Ca$L~^+ GE蜎<Q 3T_-E[3)w{S'j!vj_ZY+x%u| s0єq֝-h|OVL瞣Sĸ)NHoZD9N00w36z7#.ͭӀq7 >fZbw#q"w7bBWZkЏ ͚ALW$fCT˄ѿaq"^c4P4[{Kk 6G O-eF(բL:#oP:!S Gxʶ@)0Fӳ\j6MiZRzǴSA'xh1D|!yvٔ<:Y>ȑ]|ŧ' meccT Hj!CVh|6ӥh8c?e&(br,@xhp8@(|r4#4¡ֈ=Lk˒0XD*HSԸ9c2,%;>g[#VmCCe"/&Yo Sp,ayb}Tr ĔSd ֳO#ʁHDa^?WdiU0]m͒F;gnaċ7=k-iI4k}='UaE=evh,X];@2iy-K~f1t(rdl|Dp)e FB ,?c ֿd35v,I}+;?Ix['%eP$U75uMSHNWHl%/pg)v[)s9_ Ҿ\rR3!8 "tsl:tmF`nHrf;]זt<8[B˖{r7t> lA+BU?@LaPvSE@*p>gTM* l~\L] !Y4ǵ2I\Gr8)9~c$2rAJk^{7#Gfb E vs Os-?|gua)2%c(œA ,Xս?p%#ORP-Ku5yvcL1keN,Cxu[S^FYڭZIcX=zR^2 Rn$J{od g~I z8'c/B\u˳#7y۲H|nsu%t#'Y]*fS, {/x3wO`; vpSoѼh]:9Kѳ+lGahA["F6`ES"ym~(~騘0;= 2=(5ʋk]K o$ӄN5܇|[>e6SE# =c+ʼS}iU)6=bQZ>,TP,h!% +Qʹ]B} LА19=}JcBX׆TxhҮ \+ZkE/āvP{8)l܌A9oȽOդ<]<׿EPC)Ш6}™:R/LmpU:w4b2פ"qj5o]'QYRt}~!B.)Yţo巾KRH\T('R7J!Jž߅[O)E!A-PlܸȂvng><gh08۪Ew+6. hof6 tvLYI|?ˡt-tCO WXDǬ P -ל;U8|B9A$jqӻ2U=[:oXL<#aG9;ň[4(ekA^m%N@aGPS؜17)]=kTBW1TD?K$Rg@lPE+ ^*=$z 2/׽P--DDם)-b,YmA`&؁3]GN(.W˶f_?;R:yk79s<~<FfQ%qC0bNO9. ;KRfZ9KACD8Z UDX\ W6{bN]{Cĩ|9pFS95>dՋT/rִθيfIMܾ09"'e5M_zӉ#--x^DŽ7ДZmN(dKc|o;P)]z*6pI5\_ɱLyJrm܏8r8WS|4@Fʣ?7ػCX6'JMm FR/b76bK\NG$-mr@Ir(/S?i^wtVb^Y=H* ҟ|qq7v?^[KU7loy n!ہZPGs@57,k1Q}_Xi(k[5Yfe{1{6  /C%-ʾuɭvƙPNLBOaҡ: 4#C(nm)X/$KpvYB 7]鞥ĬՁʡ XߠD~E_Uwy+Ycg9>h(1,~IrLAͰ?jٴI-!p&/Pg*j~jۙFLN2Ce]`{l#$KUL{$`>-o,/7yrBLG$'+ENv&9:4՟mt VuibQ=$9ӱ*x {O @-? iw02UfQ=o.>S#a_"jF z7ODtGzAY'=n)ˑ^̠i<*J]z>e u::%l%|4'mV&$'d?_}^^|mFܤu$X^g<$"Bm.fE,+S-{+ jTvzm Z9 e[>(؃-7Yw^Wsf  %\kD(8d^,3J{T;œl uZA=d1&cаNn^ S ^u$ƅMҽQMmhxaZrӻq@v9W!գRŬ^+z-q1`%[ތf纳Z)!$1UdP͒OƋy6|oKZdVĖJv'IE͓=gܵ#X$Ɏz(7@⹖,:H|Dnթ,(~qa {k0Rb7 &byԍ7hDZt zdp]FX*k=a'B,d7rYWTZY~R/ &C>59j(W-o^lTT6gxQO@ApLUOD|EG_ukd?|aBlj9/fCp⡰,[dܽmSX9#M|4՘YqY_63_oGGԬgϟ+Wԙq$=&B JJɒ35;ۓqdRG_OG= pl~lg@mrUo?iv5n|sLD mIP$g`y ({=%PV}2qMxVܵ"S>YDw?nQ1?oyjE񫟕C`?:&AD{"{cɥ)y)7=Λ]Ety,&"yTiSsJ!Jͬڊ*P{y)lJ)~WGy+t [bN4/n^H)b.+ KsEjR5~[̤'z>%mh# H3x"Ͽ['IuaΒkQT\q}b@NA؇\\;VUQR׶@EЈ„m 0 &&u~$m3"C"T.I\HJJU2Crpќ;Vȡp)@ɘQRs~zQhc}Ҿ7 2{$:fnHVZ,EJf2w! D? z,IˈKbl|xEȗ樣yKT3A$'?[Z(~зֶN5e-<#RYOTo-|!)EzfSжڷ AMQA vd&%ii;7k*h,%ȥ~ &iR#IH0>@NT 3SOy. >a' aGhf,GSѡZ7<7r ҩ\P3 "1.O/v|Ln]7{ӞYTaTv 1@V쑓zc ܜj / M0K3sI~@b b4{_\h1b0d%s=|JJu|FEZ#5Ѯyvwzq7^imw@>\&f*mfPom쯌eqGUD U tY1ض5쮱&sܫ+g&|<;eI i\D˂ AS+l:foRzE<{""لO*_Ixbma*8D9YsΤ3f&A@ep{)͗::L)sH2_8w\m[F`U d؏M(FdCbyos bw4Ydy{%p߭ r̊دhnV)s2}ʜH9 }k?Qjqf֖jI/O"j$4X_xReW?-$cĺJ m//lf`)>`SgVLt 'K?Q@܁kPZ5~$"8c3Vvy6 skG. | |eq4R.O=m9A :=hVDޱxizWzͬ6{~3ǼAXX(>A;#ME2A[ 7ϰE9-yrKR QM| tC!RԱP?5OYBH^ L#Q,$F~3(j \i(26Nϋ޾%Nϭ|PjD/ o,#2}}̓g>¸] ~Yv&E(m>[VeO9$|\cI3i+ 26`Mk҇xp]K̄/ v5%;uX-$%YelTl팘8-$ ~lWU= PIl8wr̛LO, 6)ĉřAW[xۇ:ܠ {MeBWd*Ss/|BKuIR8# N1jdMMW-1HbVdHU͑u1ctnF1U] M3B>>Ҳ,eB‚6Kb ٵx[j<w*?K<^D%f?31J3=gߏ=SY=x1&/Kxj§_' nZ@ ;~k4;LLB"I> -䕑˦BMg5N4JXX@K!̘ rqKu HVz R7&^%B>t? khtkY%/fȂɪnhy*OX-Ă#?rx0ı\f-&k߸ -%}Q!:pAtF%"x`)Yrځ pٕ10av.dy姞c87z(J/Π%KΏCk*"\U$@7̀}~ LֹT{X30'. )HVfʪHD9qGq ؟{"ȆfYakJ~|S湨#9R;<p:yŭk%yxO>g܇ѵxNv7{aHt5>+= ՇnJO.N%@8!.z]&f%Ԋ*']UE9U{JcjR }(V>Fd4'l@U0qBAvT$~:!RsuCRpӉ;dj;k 5b]`4lΩU pmmbbuğr"H)[*ųC/4MS1U-p|ܒhmH=S<򥎄7eL(+}6PrGFJ(aשq-`47 z;E2XuikWFs}y$v[f^` .ɞ!I4CLst;HUj`\ʰ +Wi@:lB.._Us=?9NA\Oˡ}j:ez`(f !PtOO1P}L a3rp;~988 %\Rv5 hR l&pk?~D\w;`9,Lr'}X6hws3,x 3]Ԝ1 ME "#'o¯ݐJٳ:K_(4`NGLdCڼq]ՙt_~ y~8֊+d4.عsJAR.&`g4)۝ lG7*Q$V8wۃcI9MpV4R*kã)Yu*\(XbD[at•w<#9R_ek9,yF? H,uzH-_vWBU٨N`C ^ד8u%_̃Rq?s'اt$6eg9Xo΀C]@w][!^֙!( [UR?&Lļ]oڷ( pAoʅVfW JJI(L.b])B8(HaCz_plTIgֹ4kT9 rR\(޲ȵ`S^yb=ʳεj*Y C{;2NCmcC? jy%P­ڐЂx9dKsI9zYriXyq ^ ,d۩:]J.HkGn4E4&ve%)K؈P e=rѸVO.w^۹];9.hJl?D+~9HǑm7>l%! Gn}z!SZ̶8"Iaz׎q n;}QgW%[®)aIOAVnKp:^OH=X.}dr\Jɡd9Z; ݋ h:o4_ayV 3[k+{'KӖ_:d<ByjӳMQswA='i=TQuYc3w?$M9lr/N;.g+(W}eZg*# .@t"b @5]p*=h[g)s#X z[w lw%sոAHίdM8 9NU/,K|2$?r5UaλiGLb*'?ϒ~uWOtлa 9IT7=6U'wt{{m+w(z{Υַw޸A.CB4IZyv #%gʐHhU)#Pps$E,\ߣo0f5zQIQZ,FK/[ CX)u2_?ݔ,Rav3ީp),\#U \_PkOeY|sy`<aЭ2}<6WM7Z_+^&zTlp)߰`]dE^RmpCn$U:$KѻԆ4/Ԫs@d}x[w@C_ڝ=D5TXV@ ŕG!r^d8ː T15G6ϙW*SyNɰ(0+`R~5ShAXSbzbQc~ys3^~&}JU8u_hB"HLZfQ#Hߛfsɞ;uJA6VJ̟@RT|ti"A0Z64_qf:@TR< ڃn VUzgZ%-Po?HZׯ B8gsȋLzE,O":@SBك#y/! K.Jү*[yLjb.!>`9"riDA"7u0qk^ƺu +#JBo%زbI|<6fPPfI\۫&"%оF/3jP__Ő2j+v?RLۙ~!w{[{r9{@-a6 n8@K)w+#p޼QDn'Ős 06ݔqc] jK$mL:yA^b(Ҷ/VU0s 7f;Z~UsqCǷ'ԙ&%NZ΍ػ:i Yo \?QkÅGy+c&Ysw8zewo2 2?0cPI&<˜_M˧tMo$jlm#o.w\Y>"H06ڲ~Gy@Ho M["@{WXh0jųa8CZmXFۑ٦Y(R;#!:_mer[$&rcfšG"ԓ7K,aZ5ӄD/5J)FHƿ;aY1G[LH $4T]ʍZ1J)*kjLZP];2ue%+ +oCv~(\nӷ4gdkn1$Zd !.r$Rr keE[%or %"cKiJw1s\= hs'>&b ,O809뀿), geC"ʙ}ĂU͖tw =y/ԯ$ZDMé%:MY/ K3q`86 gA ] 1[?xo |-N8ǒ=ޢbUgW#Ϙ٪<5SGALVWBVV4LG_%i9r_]x -[eAZ# 9"5V9^b72X6n-  cC#<AR_a&ȨdrCNŤC<϶ YZ