proftpd-radius-1.3.7e-bp154.3.3.1 4>$  Apb,!M@eee;xJ_#Uw}d&IA =2{a^jޓi4*#YX6NUrYM;LZm6jDp(g ?qÚՇ z8O?is)vkGqA24̒sDx%~ =$%uQ_&LCe ]$qEWVto?8@􋾖%;yC șugf+Uae6ff3ff7680e4de4039f1c184d6f941e598de0e0d4fd9c1f6197667d7430c0d12b893eb19a28f3929801cccca120ba4fdc09ac1ab,!M@eeeM Fk4) u*B!Fuz2 #KNܥYn m,Q~bM;ֻZDų { :*j)kx\D3}G. ;JN b@;B7JW ?@њP͈yQ]TWl5HyI vO]2,[߅}ïNJ[@ƐL2x^6>CV3Y޲'M!1ka F Dp~ "_;>p>1 ?1d $ >dhpt      Y \`ej   (B8L9:F.G.(H.,I.0X.4Y.<\.d].h^.vb.c/3d/e/f/l/u/v/w0x0y0z00001 Cproftpd-radius1.3.7ebp154.3.3.1Radius Module for ProFTPDThis is the Radius Module for ProFTPDblamb08SUSE Linux Enterprise 15openSUSEGPL-2.0-or-laterhttp://bugs.opensuse.orgProductivity/Networking/Ftp/Servershttp://www.proftpd.org/linuxx86_64b4ce52d2e73d1936e2383626441c528d3d70f613e99b30a41621969a4c77366e3rootrootproftpd-1.3.7e-bp154.3.3.1.src.rpmproftpd-radiusproftpd-radius(x86-64)@@@@@@@    libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.15)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)proftpdrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)1.3.7e3.0.4-14.6.0-14.0-15.2-14.14.3bL@b@Qb?@b ap_^@^3^S^5h@^C]@]o]@]D%]\@\+@[E@[DYqYC@X@XӸXO@XX~@X{d@WW/*@W/*@Ujchris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.deJohannes Segitz Dominique Leuenberger chris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.deMartin Hauke Bernhard Wiedemann chris@computersalat.dechris@computersalat.deJan Engelhardt Jan Engelhardt chris@computersalat.dechris@computersalat.debwiedemann@suse.comnmoudra@suse.comchris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.de- 1.3.7e - Released 23-Jul-2022 * Issue 1448 - Ensure that mod_sftp algorithms work properly with OpenSSL 3.x. - 1.3.7d - Released 23-Apr-2022 * Issue 1321 - Crash with long lines in AuthGroupFile due to large realloc(3). * Issue 1325 - NLST does not behave consistently for relative paths. * Issue 1346 - Implement AllowForeignAddress class matching for passive data transfers. * Bug 4467 - DeleteAbortedStores removes successfully transferred files unexpectedly. * Issue 1401 - Keepalive socket options should be set using IPPROTO_TCP, not SOL_SOCKET. * Issue 1402 - TCP keepalive SocketOptions should apply to control as well as data connection. * Issue 1396 - ProFTPD always uses the same PassivePorts port for first transfer. * Issue 1369 - Name-based virtual hosts not working as expected after upgrade from 1.3.7a to 1.3.7b. - rebase proftpd-no_BuildDate.patch- fix deps for SLES- remove configure --disable-static- Update to version 1.3.7c: * http://proftpd.org/docs/NEWS-1.3.7c * http://proftpd.org/docs/RELEASE_NOTES-1.3.7c - Update patches * harden_proftpd.service.patch * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch * proftpd.spec * proftpd_env-script-interpreter.patch- Added hardening to systemd service(s) (bsc#1181400). Added patch(es): * harden_proftpd.service.patch Modified: * proftpd.service- Update to version 1.3.6e: + Invalid SCP command leads to null pointer dereference. - Do not limit to openSSL < 1.1: proftpd has had support for openSSL 1.1 sice version 1.3.6a. - Rebase proftpd-no_BuildDate.patch.- update to 1.3.6d * Issue 857 - Fixed regression in the handling of `%{env:...}` configuration variables when the environment variable is not present. * Issue 940 - Second LIST of the same symlink shows different results. * Issue 959 - FTPS uploads using TLSv1.3 are likely to fail unexpectedly. * Issue 980 - mod_sftp sends broken response when CREATETIME attribute is requested. * Bug 4398 - Handle zero-length SFTP WRITE requests without error. * Issue 1018 - PidFile should not be world-writable. * Issue 1014 - TLSv1.3 handshake fails due to missing session ticket key on some systems. * Issue 1023 - Lowercased FTP commands not properly identified. - rebase proftpd-no_BuildDate.patch- fix for boo#1164572 (CVE-2020-9272, gh#902) - fix for boo#1164574 (CVE-2020-9273, gh#903) - update to 1.3.6c * Fixed regression in directory listing latency (Issue #863). * Detect OpenSSH-specific formatted SFTPHostKeys, and log hint for converting them to supported format. * Fixed use-after-free vulnerability during data transfers (Issue #903). * Fixed out-of-bounds read in mod_cap by updating the bundled libcap (Issue #902). - remove obsolete proftpd-tls-crls-issue859.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch * proftpd_env-script-interpreter.patch- cleanup tls.template * remove deprecated NoCertRequest from TLSOptions- fix changes file * add missing info about boo#1155834 * add missing info about boo#1154600 - fix for boo#1156210 * GeoIP has been discontinued by Maxmind * remove module build for geoip see https://support.maxmind.com/geolite-legacy-discontinuation-notice/ - fix for boo#1157803 (CVE-2019-19269), boo#1157798 (CVE-2019-19270) * add upstream patch proftpd-tls-crls-issue859.patch- fix for boo#1154600 (CVE-2019-18217, gh#846) - update to 1.3.6b * Fixed pre-authentication remote denial-of-service issue (Issue #846). * Backported fix for building mod_sql_mysql using MySQL 8 (Issue #824). - update to 1.3.6a * Fixed symlink navigation (Bug#4332). * Fixed building of mod_sftp using OpenSSL 1.1.x releases (Issue#674). * Fixed SITE COPY honoring of restrictions (Bug#4372). * Fixed segfault on login when using mod_sftp + mod_sftp_pam (Issue#656). * Fixed restarts when using mod_facl as a static module - remove obsolete proftpd-CVE-2019-12815.patch * included in 1.3.6a (Bug#4372) - add proftpd_env-script-interpreter.patch * RPMLINT fix for env-script-interpreter (Badness: 9)- fix for boo#1155834 * Add missing Requires(pre): group(ftp) for Leap 15 and Tumbleweed * Add missing Requires(pre): user(ftp) for Leap 15 and Tumbleweed- Update proftpd-dist.patch to use pam_keyinit.so (boo#1144056)- fix for boo#1142281 (CVE-2019-12815, bpo#4372) arbitrary file copy in mod_copy allows for remote code execution and information disclosure without authentication - add patch * proftpd-CVE-2019-12815.patch taken from: - http://bugs.proftpd.org/show_bug.cgi?id=4372 - https://github.com/proftpd/proftpd/commit/a73dbfe3b61459e7c2806d5162b12f0957990cb3- update changes file * add missing info about bugzilla 1113041- Fix the Factory build: select the appropriate OpenSSL version to build with. (fix for boo#1113041)- Reduce hard dependency on systemd to only that which is necessary for building and installation. - Modernize RPM macro use (%make_install, %tmpfiles_create). - Strip emphasis from description and trim other platform mentions.- update to 1.3.6 * Support for using Redis for caching, logging; see the doc/howto/Redis.html documentation. * Fixed mod_sql_postgres SSL support (Issue #415). * Support building against LibreSSL instead of OpenSSL (Issue #361). * Better support on AIX for login restraictions (Bug #4285). * TimeoutLogin (and other timeouts) were not working properly for SFTP connections (Bug#4299). * Handling of the SIGILL and SIGINT signals, by the daemon process, now causes the child processes to be terminated as well (Issue #461). * RPM .spec file naming changed to conform to Fedora guidelines. * Fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - New Modules: * mod_redis, mod_tls_redis, mod_wrap2_redis With Redis now supported as a caching mechanism, similar to Memcache, there are now Redis-using modules: mod_redis (for configuring the Redis connection information), mod_tls_redis (for caching SSL sessions and OCSP information using Redis), and mod_wrap2_redis (for using ACLs stored in Redis). - Changed Modules: * mod_ban The mod_ban module's BanCache directive can now use Redis-based caching; see doc/contrib/mod_ban.html#BanCache. - New Configuration Directives * SQLPasswordArgon2, SQLPasswordScrypt The key lengths for Argon2 and Scrypt-based passwords are now configurable via these new directives; previously, the key length had been hardcoded to be 32 bytes, which is not interoperable with all other implementations (Issue #454). - Changed Configuration Directives * AllowChrootSymlinks When "AllowChrootSymlinks off" was used, only the last portion of the DefaultRoot path would be checked to see if it was a symlink. Now, each component of the DefaultRoot path will be checked to see if it is a symlink when "AllowChrootSymlinks off" is used. * Include The Include directive can now be used within a section, e.g.: Include /path/to/allowed.txt DenyAll - API Changes * A new JSON API has been added, for use by third-party modules. - remove obsolete proftpd_include-in-limit-section.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch- update to 1.3.5e * Fixed SFTP issue with umac-64@openssh.com digest/MAC. * Fixed regression with mod_sftp rekeying. * Backported fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - remove obsolete patch * proftpd-AllowChrootSymlinks.patch (now included) - rebase patches * proftpd-dist.patch * proftpd-no_BuildDate.patch * proftpd_include-in-limit-section.patch- Sort SHARED_MODS list to fix build compare (boo#1041090)- Removed xinetd service- fix for boo#1032443 (CVE-2017-7418) * AllowChrootSymlinks not enforced by replacing a path component with a symbolic link * add upstream commit (ecff21e0d0e84f35c299ef91d7fda088e516d4ed) as proftpd-AllowChrootSymlinks.patch - fix proftpd-tls.template * reduce TLS protocols to TLSv1.1 and TLSv1.2 * disable TLSCACertificateFile * add TLSCertificateChainFile- Remove --with-pic, there are no static libs. - Replace %__-type macro indirections. - Replace old $RPM shell vars by macros.- fix and update proftpd-basic.conf.patch - add some sample config and templates for tls * proftpd-tls.template * proftpd-limit.conf * proftpd-ssl.README- backport upstream feature * include-in-limit-section (gh#410) * add proftpd_include-in-limit-section.patch- update to 1.3.5d * gh#4283 - All FTP logins treated as anonymous logins again. This is a regression of gh#3307.- update to 1.3.5c * SSH rekey during authentication can cause issues with clients. * Recursive SCP uploads of multiple directories not handled properly. * LIST returns different results for file, depending on path syntax. * "AuthAliasOnly on" in server config breaks anonymous logins. * CapabilitiesEngine directive not honored for / sections. * Support OpenSSL 1.1.x API. * Memory leak when mod_facl is used. -rebase proftpd-no_BuildDate.patch- fix systemd vs SysVinit- Remove redundant spec sections - Ensure systemd-tmpfiles is called for the provied config file- fix for boo#970890 (CVE-2016-3125) - update to 1.3.5b: http://www.proftpd.org/docs/RELEASE_NOTES-1.3.5b * SSH RSA hostkeys smaller than 2048 bits now work properly. * MLSD response lines are now properly CRLF terminated. * Fixed selection of DH groups from TLSDHParamFile. - rebase proftpd-no_BuildDate.patch- fix for boo#927290 (CVE-2015-3306) - update to 1.3.5a: See http://www.proftpd.org/docs/NEWS-1.3.5a - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch - remove gpg-offline dependency - fix permissions on passwd file * unable to use world-readable AuthUserFile '.../passwd' (perms 0644): * 0644 -> 0440lamb08 16603238401.3.7e-bp154.3.3.11.3.7e-bp154.3.3.1mod_radius.so/usr/lib64/proftpd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:17605/openSUSE_Backports_SLE-15-SP4_Update/0711e2c285cc944eb170ac455c6ad665-proftpd.openSUSE_Backports_SLE-15-SP4_Updatecpioxz5x86_64-suse-linuxELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=c7f4984e3552262bfcf38f720f567392fbb48555, strippedRRRRRRRGtGKa}= utf-871fbc75ffbcb2f8c46739b0e62e381b53c880d6a8222e955af149eadb2a9735d? 7zXZ !t/M] crv9wPJS}iXNvK[D\jA1\>j&ۮ,}UA&!RWe4G1  8 r@dfs 9zqvDZ^L=$ykp8 bzfPK;:6F&*EhjskGJ.#KSt~7$laaea.я6*bŨL9R t jް\DE?jP/FXZ1~uhoY}Yp-w(1xm)Il5= } 1BlXOY+?& D.n 6GsE[p/ΐ^KҬW5O;'h׃"~bm_œ7;D/%Kf5`TD2*(u*"S=`߶EX5AXҳxt7lZZΥK;ZZ-F-z~Th |Hz74c&hXG|DǗ1Fvu4~O KTגgvZ{ S T{!|u}R)~䈊2%qLG`Q17.hjlJ1ӺB$RvfY0ta*ʚFQ;c.GKI uYZt!uiP(g]Ձ[uj( ֱ>ín.]aPR\M AP]:fUr &_> m^JRĺ=MtfZ@y>.ջ^#03^ ,|Cv$v'viCt0AU&f7z 4my̨vzƅicZp[FJZU"2#\7ӕ)/Kmc<_"bI.S|=EpRha d |kNm<^خSǖ^ս"KdoVQvBmwqZtyW-wG"_5J عB~KͥHZ| ?ys~xS> u2؍ݱBl/}4E< iM6ѫ3Jw}lW![ ^ȋs{q`eT:h-DDOvo#'NJ )ϷL־ەtc,j0Oɫ#q䕫k9K~7E3e(Eק=ύfmd㈵qۆwD=3&xm;m´=Zl8dS?rYKx+FWd}UuSR9ڭ(d܆ ̀αh]o@ק  *janFЋ!t> Z 'i~jJ7&'V2> etQi늫#c*1^6hTOջ(.?g2?qrVCbCY^s-ăJ©r^ 5Lծ(?Z"qF_ QbğFuPSDnyctzJ SىHd@ P?ݳp(3 SW,KsM~@|fͰ[Xߍl$tݴRdC(f޵Ϙ#"zp>.F c a !ϭ,jE;Oe F)o@@EZj[܁T4K!Ы&uᲘȟaDexpIuin;}/g2Sr^aFisiR>9 ֯q.IyhaZI^flr~Dab8keG@wu gEU|xi)+2z6RF>pfug^q"#hϣ5Ba5%V3 kxXswb.\xt⒀؈Pu %=)n٠Y .ob! \;H?ץhUzIQwDRd\ O>]{w _cOqȋpw]<^{eIfdEt{ آXSG+s_p8K< m(#/cv RA,,jW+":oݛ [Tj.Oc*q:rF1CR+T2z;A%p]4;;zY{!`a|պMg&npɲ0dhy,@ HͅĶuYE}_Eg[Ee0T97lALZP} !D>h\ pÐh„v1k.^ fKʯth[/g~I+w~ NUamA܎/NaVJg3m*=e u$TSP*KC9RaƦNhgx9;Ek [feZ)cx iry$K)Dugc6`, [ \3J>Ṋd(C|=$<*,_{z˗Cf"< \ݭo%&7-VQk'颙Yg,ދ)h٣ONHvClU^\i:Y1ѳ) UReYS k@o^&4Ä(Jԥpn8ΰETc:^.Aw/,$kڏVIn>HLU ɥ%\Hh6(ѝŁAi5[Q >B wp|Ι0   yæ,KҞ&\pj 0g g93;i/1rڗ}󲜲N1e# 3 ްwEܧVr5);Q" "H"f*G,hM ı:G|+6q!u [T?|hj^f [(QⴄmaŸKցB0>;v2qx,]P0^X([cvҖ& ݑbJUy֧L1D$t2+Soy51ALb<ā^s;tiؠmueZP𵎛;Z~ӐY3)|q]m;)\`Ў&{q2fwrx- E TUOӢu3RJ=c4v`r.+DGn⌉KG>l 1!n^&_d\7n]i|G^GB2A(~td ZrlקV\ 6p^o3!+qW6*j⓯vK/rz4ѺH.E*eJx)]L+1K| ΏD WoTŒ@m3+&%鲋u 0^)J\~&qWS} RN\pRj~8>`wj_& M˓ߖ~4vYE`'2 K)REi@)RvO[~OOҊԦqR!8d9MQ#1?9Tsy2w39 9tis8Z5+.e^&P,rp" иp>5Hc8ʖ#| /U2WF$|BW- 6,_X5Mq~*7dDb8I=qCE K/sƬĨ8jpwVm䕰L"i9S *F>ZY9OaB+ †}V/NG+|cիRICA81 J%HsϢg}gF7-XGF zV*tĬAbmQЧŔ" GZ?PMk"fԘRMEL`Խξ7)FںY4"pGYZ"~i kv̍UatFg}K"[:qC $\  V^˧w'3vlš{2S6 (>c"3M@<%i?TJΏq.:Ol_g藊a> .BqK D +Nspᵾse<"7~=Im=a<8H}c凫'r)2', TGW\*H|Z svA{zdޑez|G ԣ5UpנPF)vMuX4$䷰T>auGCK"S9Y破#_9+JKK谣׽7+]R~Ƚm$;qˁ3T)bU}鮨t kНhr 1},W3 ѭYOi嵹G|"|'WjXհx ~2>'u 5@ ^( YuxMe=#.Oʺ&6s紖ti%*RJeVdAlvSOYmŠ^EɻKk4pv{2ľ19q_:qѯ:oʔ %0 v4J'ݯV!8iݛ!gr꽆py.^':CbX)4-?^XMCGp԰]0 *,A.HZig<<2p| ÒfC^CyBg!TZWHG،"*qNwX ҆*mb y;QAWCkZƝ 3F| a` \3q^Dݎ^}G13 M$(sjf.SţN3eMp~iV:18(lt%EܬygzviԫO>Ľ2?Cf c!'Zl0v\c'n>Qu\>JBjBj}\ӯ^۠D,8ȋ#'=Wr e!> ?_%ɉs^o|{FrVۻE4BH+Zbfn԰t[$&IDJn"! {Ah$c}fliG:8؍xl\\y_[lVc|l&QNatsVGvoaHfm ,'Y sqUv]|~(X˨ڤIbrw9,#@~TDNp8qC׾{Fnŀ*Z0У%Y.nG8loLuE\8,\ǥf0%[@-c蘖W5v̓5 ޹ -?쾱R:Lhs6O2,_ЎprN* @RʨCedju`_JgeLc~nWWG+jSi^m&۬MkSRLR^4oJdsj>P^ەZkʹ?]{2E;9p=L R%c `LTY@IgcZﷶ eC*xlY/&]GK+%E8 F۴H+r>D:cђ@?/-yQvU#тtw5*MoO]*:Y/l1 W$mpl# Pn,).#_?Ub?yj'75®5g?ސ}J[iKwR%hE#PnƏV犑SL,rQ Z[a,+VXaZb/"ǥ3Ş|lKYB(nbZҼa1M:M>;<'Hh^H*}YJGbrYb'6Ԩ^SoX;MV\Դ1E >wgF1.Z&jZrWA7#ѳEcw wރl!K(uvjNK- a;@O m[n,j%kGrJwu˸Y'6]3פ- Mfjul BfşF['%P&jUI-nmvdbNy2]]hFf@\pұ XdU5X5E WD~XR&a2׺\[_^)'R}CTビj5P#w%Y mc~Ÿ%;S/ez#{+5J2)Ŗ,r8@^)QD3%TgH0|پ8 4Аҩ+dfSdN+vƷW8P.мGi!z+.' /NMH2q?Z Ovh`lPْM vXi5q:X4plMzDɟn?4ԓcyV^itO"Y8ъ: }O t3&sɳE&P\*_o=B)3f?mT.K1WWڎ;I6L7!yRrkhEZ|eŒl#n*1rUD*IS7vRBs"/-57!Zp5S5KMa6lOtƟayN-y ,7Mn׌9ܮe6V4 xF $N͸$Rʽ˛/ڰ4P)WK̜:q2_Ц  jMG+Gql=x=*7+YLg-JN#=jw>\hlnCKdB؉16eI/Y)Eq6D >KoZQ'U8T4|$VPӛPX@U@%钿O5`5@2*Aud_YW9H ^-؉ƀ5CЦY_:o\1s"U9<8WjN;'*[ kH m'| FP1j`O8ːI,-V,b ҩpb0'7{!~Hb]?[0Sƙуkܸ;ܡ8݂.RTL݈tx4V;+U:Q 9BJՙLѼ3TnU7QJS68yjhR:▼Y'i{rĈ?۷S7>5I y%fy^TЦ`wQ0c'M0 }u22jS}V.g18ُ'ƘI< (y*=HG#kUSKjԢvQ1 BKwqB*[+JW=P"+9nuR s l%@ud}f+16XͯmxmHՠKTԑ|Т 9%+c3I =2۫Knw"O85" 8tzCY*#!E@6;ڹ -}D)y54jLIVwuHԿ.Qz&Svtla 講*G9h0SCabP R D7#@)8ؘy=[M7hV@XFTn-ܨBr#KXUz%0NZSoeuRdBI]Ҳi*35A{Kz$o-bv+]Ǖc]oY} !?4+&\C>8sa#&|)ْ^"&$:V{TXyTӟS&dlBz4T{/tAT?՚x'Yv$0jq?e(:5ѨH S꿋$t,<+AiܘKLlfnBH h4Ig+5QI.wIsA Ԑ/HL?42e^ռȸő;4r/V؅ZGAIF/ g<`HWJa i\x?vX]:iӕ+ 8wh [5mbv^}~nOhy4, IGۏڸ#i]  &~\N.G[}(QrSFTfˋ\xݔYHKB-1<3ͫzZ}XсqבQνòQO[:܂z.FsTs$&:QЛyѯݮ7XKEyʓ.M-zfD̆*F F Zb&D(^,U>IyApW+/<=|hf',wC4 [ xQ3+{LVbd!A|zHѱRSlv fQ&-g$ ygn?>XzC ;J5$Ȥ aL8՘-BW(7{˳  *@b5B))虈4DW)2Z?7PJOU5X0wZr q5t} VODO܂lԦ)%C'Ko^8sڳ`.ʛMBF5q w ;ER̠a м%@7TAuDBw>>@4algHpM|Njӷ, \ D;WuY0Q̪9$p/#0v&`@#ArS<*w=~iۓB8r(PiQNQ!/?5P?M#uNB7TwҲ !vVKsVΰ'6;.y)+kIԹ@&Ff\ !Sd5[P51@?L Zɀ]/9VfkH6twWA _[t+u ԋq#2`d6h`6TV"Jlx5-h=:92CoAU=0&g?QA依1l?WOh"Zi= t[} LxhE.+$gSl P%Y&zEb 'Uw$WIޑ2v_HۑA߄9NM7_#ʴ6gR{3%p,U<ȎxZ z4W C!ܜ M~E&*Vxm!t _-,mh6}sB-'A˼6 ;6a}^n\Pmjn,9rBwxlkGku6$1\%|/~cv&$){]!0oW- [3hL`Qs`,>>pBNZkL:xaړMʔHú]U_bûDrCT-;s=k8z-5v\$D0=n@ !ljdbWߥUKOe?ǡ#2~sl7dZEݝE#l5p ɡi2-^qވ\$85G{+2J*LSv?L9^!D^F2~+-#v@UA[;0K |l4^O+|GF)$S+ iq4mK u{jx#t?X[;_M쫓]#7jO\':G CBppXBK'=QB#TtkQ 3B}e e\ 6w*Qe/ ([Z_1Qn=kbKa~* ͌}1Q@;֛V+M¿E3j@5a<,˾/[uAҦgAج17ٞQ L9$ %".YCv䑰өIkR82n؛aCxgs7Mjfr⌝HVra=8MC4.*n,Zh}ӌ: hP1'Wpόу53)-sHéC(aZG8^D0aR2`~3Q+ T̋xYKv-hqt3!B7H8hǰG1.#dEޒ̗wV&MiEN㲕G)lp5~LV~I&lxdQ71!_DԈԢjݍ;$N|t3!N/ fQ231HFG1Ű/;0sTbs,rrL6yS'Hցek;}h*͹ߝ?싻 ^Wq^GDw w- a_m:fS0Oib`1l $ F&~^ nϨ>dW%@aHL.(~&&ʊj?L˞*̢3s?akAVNR!an_8 {KW-O U#h;8.mJl}~23fbBf;7Ϛ,ˢSnd,[ KDXx$.RKO &v sL<+"4E>ϓ *10768cwwPy\= ,*c+TF'}ԡ/^ߪVj={TԫaS+ n8~ GhFU&gexb$V,n^ cQfoRB %ǛvnV m,uj@`hJpdZElFR䡁 4B_a Kf %t\' Ys<c3lbeő/̂qr4!R4˞9 %SmGX9*mM`Zȱ6ܗsL^..:_q-tKKLr|P|(bG=BAyiwIW"I&Lc1}c\Jb7mTA6I*WXPB4dNWZjy\zUon4ks}.Kc@,[APPAT8:6F"=n^42-7+*`5i}汮!cOL>%bS2HE ޡh aܩMȄ|ʳr~/~IsX`ISY"{\ .sx^ nMNMK#hHY޲iL&Wm1NI>Bd"Kg&!*gsK73'Y1fX+ŒեBDk"wX%jm??2rg!Hqk4-$9eOSp<^a#t+2G>Ɍ,pߚCym'6*<%2v x|Jq<4+:LG <SS-Dd)D*^,i)3ISCp*43Ira H慱f2_ںAyŠUgi d4j2GW(?qI '\je?,H ~s#ެ]>ZEK͠`{e2PDW@gǧv-,f/@ml Ye_?0y"f~yع"fWs>k6Q`!u^Gic 4e俊"RvE`s+fmK\XjNgyiSyR( ܗb-I=8fBTo6 Gf'6 /fj*хu(Edyu6^wH;$ c/k[<V.+JQ#<ݭyWgv YY@cCrnv~be*&wb^1 :X$!6Gn~^MkbH2ԨDme%dojIPfJzj;TyC*D5EI63H ;uOo}ᗘ;lgpbr8Ӳv(xif* -`r/#=jZV1a>Q"ݏ-!nlAW!( :bЋ&һ qz `0-`<ͱY+ 7V)y|)Z8|^VP'H!Bu~GkNRΝFzO&'v) -EeaȜ\'MHV3R~tv63حܳ±@*?i ~.Z\Jh 2zo.$6?:SR24iiMNϤ{ւL5857 KOu>iK|Af[aL ݬ'#/)k9~.І,kt#t|rqmZ; iw DHfQ]82ĩKѐ0߫^\`6U8ʞ{!RE[E rH$@nߡ>Zw@,~M dSTJHF|&gI%Q.9 t%Q$o٪ EG[Tq1xg`\ׂ'k2_ < ڷbCpEWP=_whHhog֡mwcdlFIWT@Wp@劆XZeF,=\pkߓm~O$ly\ת0x&)q t< |&P[V?;ɚF?a YZ