proftpd-radius-1.3.7e-bp154.3.3.1 4>$  Apb!M@eee%~h蹳C@74D-~~e 0[UF$7 ̇/EYna@ZR3.y@8P`Sf%`_5Y[iY7U~戍Fj+"k`4Uo)ݧ氍z3vMxwmw,8nƧ K8vko'9\y^pJ`^FRjc8xp9PCRQ0M⪍Hɞ*7ByFXV7$KR=o ʍ02WlPJb5_>qsqӷ9y[/R{\ͪaE|1϶.GY )dSv- IYgtkB0+$>p>0?0d $ >dhtx      Y \`ej   (8(9:F-G.H.I. X.Y.\.@].D^.Rb.fc/d/e/f/l/u/v/w0hx0ly0pz00000Cproftpd-radius1.3.7ebp154.3.3.1Radius Module for ProFTPDThis is the Radius Module for ProFTPDbDs390zp21SUSE Linux Enterprise 15openSUSEGPL-2.0-or-laterhttp://bugs.opensuse.orgProductivity/Networking/Ftp/Servershttp://www.proftpd.org/linuxs390xb02bd0008e7d2d4f565f78dedbbdc5acdcde0d102d6234874a6e94e8ea095a07b9rootrootproftpd-1.3.7e-bp154.3.3.1.src.rpmproftpd-radiusproftpd-radius(s390-64)@@@@@@    libc.so.6()(64bit)libc.so.6(GLIBC_2.15)(64bit)libc.so.6(GLIBC_2.2)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)proftpdrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)1.3.7e3.0.4-14.6.0-14.0-15.2-14.14.3bL@b@Qb?@b ap_^@^3^S^5h@^C]@]o]@]D%]\@\+@[E@[DYqYC@X@XӸXO@XX~@X{d@WW/*@W/*@Ujchris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.deJohannes Segitz Dominique Leuenberger chris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.deMartin Hauke Bernhard Wiedemann chris@computersalat.dechris@computersalat.deJan Engelhardt Jan Engelhardt chris@computersalat.dechris@computersalat.debwiedemann@suse.comnmoudra@suse.comchris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.de- 1.3.7e - Released 23-Jul-2022 * Issue 1448 - Ensure that mod_sftp algorithms work properly with OpenSSL 3.x. - 1.3.7d - Released 23-Apr-2022 * Issue 1321 - Crash with long lines in AuthGroupFile due to large realloc(3). * Issue 1325 - NLST does not behave consistently for relative paths. * Issue 1346 - Implement AllowForeignAddress class matching for passive data transfers. * Bug 4467 - DeleteAbortedStores removes successfully transferred files unexpectedly. * Issue 1401 - Keepalive socket options should be set using IPPROTO_TCP, not SOL_SOCKET. * Issue 1402 - TCP keepalive SocketOptions should apply to control as well as data connection. * Issue 1396 - ProFTPD always uses the same PassivePorts port for first transfer. * Issue 1369 - Name-based virtual hosts not working as expected after upgrade from 1.3.7a to 1.3.7b. - rebase proftpd-no_BuildDate.patch- fix deps for SLES- remove configure --disable-static- Update to version 1.3.7c: * http://proftpd.org/docs/NEWS-1.3.7c * http://proftpd.org/docs/RELEASE_NOTES-1.3.7c - Update patches * harden_proftpd.service.patch * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch * proftpd.spec * proftpd_env-script-interpreter.patch- Added hardening to systemd service(s) (bsc#1181400). Added patch(es): * harden_proftpd.service.patch Modified: * proftpd.service- Update to version 1.3.6e: + Invalid SCP command leads to null pointer dereference. - Do not limit to openSSL < 1.1: proftpd has had support for openSSL 1.1 sice version 1.3.6a. - Rebase proftpd-no_BuildDate.patch.- update to 1.3.6d * Issue 857 - Fixed regression in the handling of `%{env:...}` configuration variables when the environment variable is not present. * Issue 940 - Second LIST of the same symlink shows different results. * Issue 959 - FTPS uploads using TLSv1.3 are likely to fail unexpectedly. * Issue 980 - mod_sftp sends broken response when CREATETIME attribute is requested. * Bug 4398 - Handle zero-length SFTP WRITE requests without error. * Issue 1018 - PidFile should not be world-writable. * Issue 1014 - TLSv1.3 handshake fails due to missing session ticket key on some systems. * Issue 1023 - Lowercased FTP commands not properly identified. - rebase proftpd-no_BuildDate.patch- fix for boo#1164572 (CVE-2020-9272, gh#902) - fix for boo#1164574 (CVE-2020-9273, gh#903) - update to 1.3.6c * Fixed regression in directory listing latency (Issue #863). * Detect OpenSSH-specific formatted SFTPHostKeys, and log hint for converting them to supported format. * Fixed use-after-free vulnerability during data transfers (Issue #903). * Fixed out-of-bounds read in mod_cap by updating the bundled libcap (Issue #902). - remove obsolete proftpd-tls-crls-issue859.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch * proftpd_env-script-interpreter.patch- cleanup tls.template * remove deprecated NoCertRequest from TLSOptions- fix changes file * add missing info about boo#1155834 * add missing info about boo#1154600 - fix for boo#1156210 * GeoIP has been discontinued by Maxmind * remove module build for geoip see https://support.maxmind.com/geolite-legacy-discontinuation-notice/ - fix for boo#1157803 (CVE-2019-19269), boo#1157798 (CVE-2019-19270) * add upstream patch proftpd-tls-crls-issue859.patch- fix for boo#1154600 (CVE-2019-18217, gh#846) - update to 1.3.6b * Fixed pre-authentication remote denial-of-service issue (Issue #846). * Backported fix for building mod_sql_mysql using MySQL 8 (Issue #824). - update to 1.3.6a * Fixed symlink navigation (Bug#4332). * Fixed building of mod_sftp using OpenSSL 1.1.x releases (Issue#674). * Fixed SITE COPY honoring of restrictions (Bug#4372). * Fixed segfault on login when using mod_sftp + mod_sftp_pam (Issue#656). * Fixed restarts when using mod_facl as a static module - remove obsolete proftpd-CVE-2019-12815.patch * included in 1.3.6a (Bug#4372) - add proftpd_env-script-interpreter.patch * RPMLINT fix for env-script-interpreter (Badness: 9)- fix for boo#1155834 * Add missing Requires(pre): group(ftp) for Leap 15 and Tumbleweed * Add missing Requires(pre): user(ftp) for Leap 15 and Tumbleweed- Update proftpd-dist.patch to use pam_keyinit.so (boo#1144056)- fix for boo#1142281 (CVE-2019-12815, bpo#4372) arbitrary file copy in mod_copy allows for remote code execution and information disclosure without authentication - add patch * proftpd-CVE-2019-12815.patch taken from: - http://bugs.proftpd.org/show_bug.cgi?id=4372 - https://github.com/proftpd/proftpd/commit/a73dbfe3b61459e7c2806d5162b12f0957990cb3- update changes file * add missing info about bugzilla 1113041- Fix the Factory build: select the appropriate OpenSSL version to build with. (fix for boo#1113041)- Reduce hard dependency on systemd to only that which is necessary for building and installation. - Modernize RPM macro use (%make_install, %tmpfiles_create). - Strip emphasis from description and trim other platform mentions.- update to 1.3.6 * Support for using Redis for caching, logging; see the doc/howto/Redis.html documentation. * Fixed mod_sql_postgres SSL support (Issue #415). * Support building against LibreSSL instead of OpenSSL (Issue #361). * Better support on AIX for login restraictions (Bug #4285). * TimeoutLogin (and other timeouts) were not working properly for SFTP connections (Bug#4299). * Handling of the SIGILL and SIGINT signals, by the daemon process, now causes the child processes to be terminated as well (Issue #461). * RPM .spec file naming changed to conform to Fedora guidelines. * Fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - New Modules: * mod_redis, mod_tls_redis, mod_wrap2_redis With Redis now supported as a caching mechanism, similar to Memcache, there are now Redis-using modules: mod_redis (for configuring the Redis connection information), mod_tls_redis (for caching SSL sessions and OCSP information using Redis), and mod_wrap2_redis (for using ACLs stored in Redis). - Changed Modules: * mod_ban The mod_ban module's BanCache directive can now use Redis-based caching; see doc/contrib/mod_ban.html#BanCache. - New Configuration Directives * SQLPasswordArgon2, SQLPasswordScrypt The key lengths for Argon2 and Scrypt-based passwords are now configurable via these new directives; previously, the key length had been hardcoded to be 32 bytes, which is not interoperable with all other implementations (Issue #454). - Changed Configuration Directives * AllowChrootSymlinks When "AllowChrootSymlinks off" was used, only the last portion of the DefaultRoot path would be checked to see if it was a symlink. Now, each component of the DefaultRoot path will be checked to see if it is a symlink when "AllowChrootSymlinks off" is used. * Include The Include directive can now be used within a section, e.g.: Include /path/to/allowed.txt DenyAll - API Changes * A new JSON API has been added, for use by third-party modules. - remove obsolete proftpd_include-in-limit-section.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch- update to 1.3.5e * Fixed SFTP issue with umac-64@openssh.com digest/MAC. * Fixed regression with mod_sftp rekeying. * Backported fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - remove obsolete patch * proftpd-AllowChrootSymlinks.patch (now included) - rebase patches * proftpd-dist.patch * proftpd-no_BuildDate.patch * proftpd_include-in-limit-section.patch- Sort SHARED_MODS list to fix build compare (boo#1041090)- Removed xinetd service- fix for boo#1032443 (CVE-2017-7418) * AllowChrootSymlinks not enforced by replacing a path component with a symbolic link * add upstream commit (ecff21e0d0e84f35c299ef91d7fda088e516d4ed) as proftpd-AllowChrootSymlinks.patch - fix proftpd-tls.template * reduce TLS protocols to TLSv1.1 and TLSv1.2 * disable TLSCACertificateFile * add TLSCertificateChainFile- Remove --with-pic, there are no static libs. - Replace %__-type macro indirections. - Replace old $RPM shell vars by macros.- fix and update proftpd-basic.conf.patch - add some sample config and templates for tls * proftpd-tls.template * proftpd-limit.conf * proftpd-ssl.README- backport upstream feature * include-in-limit-section (gh#410) * add proftpd_include-in-limit-section.patch- update to 1.3.5d * gh#4283 - All FTP logins treated as anonymous logins again. This is a regression of gh#3307.- update to 1.3.5c * SSH rekey during authentication can cause issues with clients. * Recursive SCP uploads of multiple directories not handled properly. * LIST returns different results for file, depending on path syntax. * "AuthAliasOnly on" in server config breaks anonymous logins. * CapabilitiesEngine directive not honored for / sections. * Support OpenSSL 1.1.x API. * Memory leak when mod_facl is used. -rebase proftpd-no_BuildDate.patch- fix systemd vs SysVinit- Remove redundant spec sections - Ensure systemd-tmpfiles is called for the provied config file- fix for boo#970890 (CVE-2016-3125) - update to 1.3.5b: http://www.proftpd.org/docs/RELEASE_NOTES-1.3.5b * SSH RSA hostkeys smaller than 2048 bits now work properly. * MLSD response lines are now properly CRLF terminated. * Fixed selection of DH groups from TLSDHParamFile. - rebase proftpd-no_BuildDate.patch- fix for boo#927290 (CVE-2015-3306) - update to 1.3.5a: See http://www.proftpd.org/docs/NEWS-1.3.5a - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch - remove gpg-offline dependency - fix permissions on passwd file * unable to use world-readable AuthUserFile '.../passwd' (perms 0644): * 0644 -> 0440s390zp21 16603244201.3.7e-bp154.3.3.11.3.7e-bp154.3.3.1mod_radius.so/usr/lib64/proftpd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:17605/openSUSE_Backports_SLE-15-SP4_Update/0711e2c285cc944eb170ac455c6ad665-proftpd.openSUSE_Backports_SLE-15-SP4_Updatecpioxz5s390x-suse-linuxELF 64-bit MSB shared object, IBM S/390, version 1 (SYSV), dynamically linked, BuildID[sha1]=344d012c762b5236ed2ffe65af1966e377ef5cbd, strippedRRRRRRH5Y[p>nutf-8e6dee73f77b8af012d566fdfce44568a83d62b7d4ee67f8e774640abc17d4fb5? 7zXZ !t/#E] crv9wPJSlsWHYD?LJcO<,ߘPhK$S}<(ʒuy#o7Uٚhˀ7RtU-掩iЍ)8r$=#^g\T| sPZxq9+0kkm rZ+D*׷\=')!mc,$Y 0*-srbʏ$5O7'0W9C<*-Vo4뇰7ZDU, 'w2:<%ڂO nVgЙ4ڟ%O6$S}} yʍ~ _u+ b{ʣ&i5d%4' 26ߜp픏VDfBE¾k;쿺dZZK#TnmF>Q2O[q e\FG߭↙ǚx3̃~+d\_wg%{ޓΜ!-D9tl*n]k[ R31Ry DϪܱ-W|EɢFp<ب$dcMI?/OxvL߲Kn4j%b7y[0:킹L\L/΋f|0C?Cj7LfpJ`N0`?ˬI V;p,ٍo:f'@6bCmv{u5M9ɇV |ClaUKöUԅNP(l$=!E姚4c;ki;/fKWI{f.6HKL>5OO\xLF 8\(K فM /S+~>mC|%,$zqMm <6ViM!Kkx70yr\$[Nx?@hZ(f!?ԐI:o繴C𶭉j'|&%~,.|G'*]W[0tjR?}ǫ:7AN0YG(lowiRelэ{tz2]%$pN(g e5jCDMmkud.lu֖skY1܏m~bMy7F~JQ̕0[D# %:c*$#C҃}R5K쓇&׏&zBQb/st /13RkX$Q\FJ̜`+PI}rZ~ma錋)H8Gp4|Iy,Bي[c_S-3#O@}j=)DalO(ceƧ<ڪY7 q) +꧃Io0IW̺/ܷi׬|iuP)AO"n\X'(tˆR{PR7-P~1i8<œ,DGq40taԞqt4t=g ^7Qng^85^B$)+ެk{@?IbR l` 2!\`lRh2ZYe T0xcn53N/b,!Cbf^C2~0';l>ehσCseV2'gH/cvc Oo^^ %5W Z L)QY6hUڏChJ. 9†PcKu#\N EgfT:э-5Sk`/x2A]wB!Q5THi瑽 g%{M]@<}Aa߉ _Cx}:[0@,bL!,,ޭҴ`W1DWBs tŞ/^x[!>FQ ^0/nU%o>eAm(GXU?v@ޖ3_kaڙ;#)`nqTd H`MAbc#߿ҩ ϥ#ȶDDK!, hOndUwKWHb%:4+F):*ỜY\I.%UQyP1M ;8Æ0ĭ_;T 4~Ԥ7%a SpR5{}'(<1=v8݈l1X{ ]Q2q1?gf*){a0AlCheC7N%}o~Xo)9+kls j!: hiZ.jG9WVK 1d عݺ[f)7ƶ/%S,X蝴Hh#1X%ߞ '&O\BtEPLi͵byO1i/sz BqAXhi{ & ܛc`XL2wn8ݜP| l{MGrmJa/|E/uF&b K}| JmwQ(@fy𝚧H7 wecB`΀vOL LxSKZv)/B 4gdu*'X-V(%#) 7Y=HW0םD~{ _gPXĩ| Y!~^)J; [KȔq-XI4wTF@\]2Ax9+sYAt EV^^3hȿJ,~"&A R`@M+/#VxEv,D~}?6"?'اNR"z? C:ph$ 쿭 !Q~OD%N"5ayPRIՐRelr=j,3Vsz"Vd|JdYVٮx#Ѩ$|E^5RIK n7q?׈J{O=S̚H#q<.*#9#cb-Qq}`lF18*8K (y\)J?r&1hʎҒ`,-Tˣmt|(36qM@:~LdanH5X,s ՖLMI`v<ԑ>}j@3{"^e!oQ/6[Peb-Jʧ2yFTl%Nvq&Z[y^Jn)pYo2(k}OՏb׶6#+I](w7&xu-fE=apa)ɢ`Zݰ9 5Aa]9i=k_)ɿQ:e/銾\##D}i.<}|tF|qstp 0}cU/R%U{IԠRf@GLsCvʊG<ظ?t۱=ӄcBqޜ!A gr d(?Ɉf˄P2_̳џe #'a"[zj7I VӠUTSvU]w qd<,=B`V;gJ 6x.0`#h~gDص4~yu3 +N f$E뺷<푺7KO,rsHߺ7uI|JT~jEH ɿvc}3SHvNCJQpx)7c#X)1oMi-`)^a,Y8m(Q!Y[gf+7?A2{~ggib Z]QD4&~dw_U|~q)̩XFx FE7J=K.gDЦ蹎/6r_{FJp4T_BϚq8(noEWue5+Ŏ(}jf`7w(Wzfر#֮(Siq8@?]*h3BCRL-;~.3Sκ&mI:3HKwjopPHusn`c͢#0r`R=$EU0OlX?9Y$My) Oo85VL5JMB`LVUo8z1$N!4dc ,Rl}Vhy_3k B`!'BЇ%)h/yC>4Ed@#=Ku96q ,{0 S|'<"#P)ydB_]-ŝ a-nl4+ [LQ莕aRPni+7˴_6 ^zʷQ2ISdC ӥb(Q"Ӵb~V#Vb>K`]v~2B'(CyECxZcվK7EMVsKM([P#8 II/6k+4Vl= q+gID-Q;~M  ه ^HU39-P|C©䮇v!L'.38NJXfI FTSd=EKW@ {[U<{7+Wwc tk5( |a'?|4E\{5} P2em )z21 |+/#,%Pkť'o⪸_b JPkZ"qӳ߂TjD k0%ڃ3 \nǝta Hq~{+=\H^#3%X~tySU1x<.FSޜu ʫTY{v=ưhO§$ ?Qف@R)yޭiiˢ̾6Fh('`hž`^.S?BE!<=-YI!I?PTX ?wR ܽkfNn4jL+p a?)F]+;]Wb?i9 p$iO5xv* VfMy$ p'eG@%ueoͷdE8nП Mص[_e2f0lL$i@xw lg{p頶pFaiUDttT,m;dUg$;^[ɋ<'2y6Xbm看b{3dM1'G/Р%NJ}h6[ޔSAf{$'7BuySb/qULy~e߫Z(iX3Du'_ZaՊɺ҇)l> o++uUu],WeM2<^"U^ƪ^b Ҭg\+8rP*c2GxuNJbRK B6C$6/"XcȜAFqHWBJ0y?RY=^n}L[PU%$am4]=6Yܕ'J5Dr(FڢE6YCfOsmGYǓzi2Q"Wie#[[Om\ׁ' ՀhZuZZV9)~5v`IA'F (O'`~% *޴aHa'~?4+7 2"c'UsUΐ*)ʕ;XQSVgn7 EOL([;(\fD OIr- ԾG7nmּCU+UHf;RXu~Tk݈bm4&+mSaxw‹ 'U0"gۏ:N%$nu<&*q/uTAa&7 [ EpKۇ(rLEMD'ŒűɻZ 8g֚R7OBDDeG%x-(zT*_7 KZ)*ȉ)>ln'yߕわF'faIgO ffywYtBG`Ut&z}+V>!;3"&urNޢE֞fa\­7O7h"=m6͗uƯiA?D]ܙ u:`O hУJ$x*|)#v]b3:ܪ>ui}c>ׇMX(FR`RușH4񆶗SNAi eCϬ",HPe(U= 5p ;4vL8E$8ܳ:u'KH? CEꍝ :$Ay"dͳ g4fHT즹O7ՙm'8WA@a8-s2(.607&4,ކ%wGaju|oh"2yk^h0 R?3!ܤI5r OqzydqlY;WB{ zmc IqrvdGS4. @z 6O"H N+'-Z>}qQ4.S0CkX-Bs%P̮Dh{. քi .螇zDUJsK*Rч#F0_*a!vh[ k  2ٱ}[hw,xY='KXC ztSFmLDAZvWhZʆMAe̡$Z@]sB"xrGKvTYwM:.~BWtL!-X2<òAb-> >&y#(0Uv. C:. *o:"M5 ib|BBQjlq-^wVvF&r0tP:Bޘנf +_ ҳ߆*lLKٯ(;72 pS81fo>ִl6fg&=cօݠfzIS-h o`'L,辍6lTQmof=?y1kv7׆ć~;|zeR7bITM} Y ʹ_MKU Wn~ӱ8g+8H3TM +Cơ7.N^FtLbb!l` <-ח 6P֗%3={V_&}_JV-x|,7qty1?З0BN=yՔ<9vae/^$4&%TCA`ȭaIui)@G_cq7)ߠOЦWmw{iqAq=p `ƣI=\oߎ,'[<+O, A9~sl'RçjL}-1-ccGhwf}=02\9R1{$)׶6A'yd 7*+`;|W`xnENCs}O=PBQ>P^2|HVŔ Ծa2k[2`Yuq8bUhrFޥq oBrVv59%ܳh ?eݳ͜nlnw+U>ᘯcY,7%`svY !5V4;"ݯtC6ŪWA0}ĞCa8Kc :BʪTX6}42/C1G#$c~̭/*XMw'2 ƆӰUZԩOViyRPBtkÒ*7lŭdlLpX=1cq&Ctwj |7,S;lx?8v!SI6G_T47Bv{`!KC⣷/uǭ+$+~)m g;%oH^!촨RuB!z/Ԕ4TbISl_ƅz!n4܀eNl"vkLS{pwӽ3OU?8{+OR0?Y,) ?Gr=RaTdb4/w{&p/zzGԬJ6Go -#x') sIEO~<:dT-uQM0\1Bn[(]Jp#Kf'eP4wBQ^aRrS>Wg-NaC ցa:u,s"6S:''DQ(51ƕbs /?=灝AWyuїI*,P3Z2n!`UF,5v@D`3*UH\n,`»_z5Ё)̭Ybɔɔw\Lݽ3b>QC}_KRk},evL S/bţHZ'mk l xҫ`# HMSxc|܃̪զgXޏh1ҐQ",lթ4C]ʀ_bJ蹠yZv;)SVa,Vp Ti=W9~#1{+n5ԣ|=N^ah ~%8?/hH|%^:-[t<]ݬPH EC6`eHb63בGjyzŔ-<7.]ElՊ|?5ʀFJ %S,U75pi ·b"d@ǭV\gR%b,OP$Es}@1?Ye 6ơVovZxS0 `NWV8V/k(ԈzZ:QXa5T>~o= 5_ ނ|N(qESsYqDJ8ʴ6v%e:&A=>u+Pc5YܮV=[f'k^daHϊB ]4V@7F,퓧2$X~ѰP=p b Y:XBn:vYl9M-f#2 {уçlKqMC7tvg/BgnF س c-JqĠ<>;ÙL%(egW i : .)u m00}|,(; 3]pa;mJR2Ph3xk܉7u5E'淺fܰfn5'e0 $pt<][P.T*~kS {%FY0e4:wgE'z#N R_pb{D Z C _wU"b,%PgP lj7*, sg*g1ٲBvA#znuUy"[7B@X[.}_1Jg͖J<=@d'lDlx}\kpVՅvY; ڢHVd#Po v5Pȼv(46¹E+ɼt6p\p<.CB&c.Y>=8$g31hAv.!t[ƥ X 8ޜ+0t36LcjTq_QQp $|c@&pYué`w(3Rщ }eےAmHk *nP %8'NQ"o9ʭ Z>pөuޅ!bPD.C15,tVe |S ͨh>TvF;1.׺ߣfvP~KVIV\^4zK@ ]*fP`BEb=Ӄ{j5ᵉ}4ifn+⨣Bd @`W<ũJaw'֙4r="p5։ ;r[BB?Ch]C~?V61ln2M և4".rLyԕf3oQ90ȂSc$](Acq;W8SӜϓ3'vTH] 84ɛ%7pǃqb&{4?OK!sSc 8,Ҏ%Q1.XUH-}J@/|w-Z:wHQ "eft ~9P+bo_ Him X2bW:=U3JV{{aΠcctU.ۇÆ/.] okkA )][˟>Uj׊ tƢ:bj>tV,>&f&U8\N NY+FqKeUKBr3*.y|}{bLPЎTB,4W(jʹ?D"k2yY CEƒQ*/C6Wa: =0 ߐ4J/WjH3k\ߓ@y5^o0Lxa׿5^$M;o:w,6xO 84̊xd @6ȍMUas , [jTqtdrTL}Mn/ҭn1?^q¸FcE|.!]`ܧ9(n78T|e͕㪈5% 5,T1쀫w\ނLLyH9^S~^0  '5̚ .e`f_2d l}]V9xNe%z0U9UWݨvH(-oQ y HPT,M##Y: m2nz^F՞d_{ 9SB j71;Ha*0]Qȋs&TREi ˵_U^FpҚBl52>+XE'ZS_}# 1/iD2 B"ż7i N<{ f`A'R\JI%$W`"w1M J.y&n( R2Cj֤CV-sp26Y9gMF)Gݹ#:/^'͏)Oq G33>BR71n\3sGI,FiC捩 jrDyZ(k9 VLcksMX' ͈ (S٨ L 2Y?N2k{\݃S(5Kisl՞oʪ=z<2YqG jwUG})ڡi}CtɻC'hH]%EE E,*s>1qgWO9 IwxpdU!?J %-!)At}bNs:r<\H{KfcmM|A9ǯy]_;KX YɵwG{KC{%ZEoĪ+\d8+ sg *ʀIo Hx&]kHȾu(<@Q-&tII߭ z>t]dRΐ7  ro/)8 cϜ_w0j~zv]2+E| ľ~Ȯ!toJ:^^2>x2z gL~e b^ƽ khw//wscd)! LfMS{\" !KOȉኰ?$42=΁IzsG=0;V#^H_ yExù!4r+xV*gI#J2oa޴O .5cd gN|e+ڤ,LTJ-`PW>8$J^!!>!>Fw9/;42^Zg\oʹzT4RH7gJ0 mOfJ>*!1_S+}*G/|a|k*6ovp2^U;H&Tz_`(@j7<ŮJ2nQyQBXͪR8OJG/VXJ_>| ZLp}Qϗ1ަ0Y?cأi[}«nv2^|拹V=g 6n̬.=:n+KK9@! NRpqtlhtKDݓ3FeB'U@8}BН}YV_'mwne z1- %Ps7BxEIq4:I )@ܼ,BӳSX$phft<c=qW>ۙFgxTC^cؖ%$z{w+ML$Yqek͢*Xig "uȌR>m&փx&ᬃbڮoIrsJY3r!?\F8z[vn_ՒL2mp1)Ҿۅ^ذ`|* ec?H0u~xR5p@J>pȝ3.$o:1_҈"v#6}l{9wV9[*৩nX1o&h(%BE*g\aNAp˹|[zaz |Ujy|'D [?qVus_rp=E|'_i5J3CN&eRFNv+qf;dh\AhJGlLlb8Re^-%I| ~Akły^m[eY9 ׳rx[O2O|I \ On<"VbR7>n>_*# |afk?2eS2VU]AQ FVd%oL>rV'{XccEm+崑KmL% VA\&5DOA;)JO7n xd^A {e 4C2gxeRU*W9m_ڀuEMn}jK=@Mݳ%¶>YWP,anPl^a08Ob1[|h