proftpd-radius-1.3.7e-bp154.3.6.1 4>$  Apch!M@eeem%lpX$F۸W:0V">(܄jt^#ƽiM֙%1=]:p>1?1d $ >dhtx     ] `din   (F8P 9 : F.G.H.I.X.Y.\.]/^/b/"c/d0re0wf0zl0|u0v0w1$x1(y1,z1H1X1\1b1Cproftpd-radius1.3.7ebp154.3.6.1Radius Module for ProFTPDThis is the Radius Module for ProFTPDc?old-cirrus4SUSE Linux Enterprise 15openSUSEGPL-2.0-or-laterhttp://bugs.opensuse.orgProductivity/Networking/Ftp/Servershttp://www.proftpd.org/linuxx86_64c7d45378218d5eb7a538ebb2d71cf9e6d43dfa45db9ecf387e129809d506c857derootrootproftpd-1.3.7e-bp154.3.6.1.src.rpmproftpd-radiusproftpd-radius(x86-64)@@@@@@@    libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.15)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)proftpdrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)1.3.7e3.0.4-14.6.0-14.0-15.2-14.14.3cbL@b@Qb?@b ap_^@^3^S^5h@^C]@]o]@]D%]\@\+@[E@[DYqYC@X@XӸXO@XX~@X{d@WW/*@W/*@Ujchris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.deJohannes Segitz Dominique Leuenberger chris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.deMartin Hauke Bernhard Wiedemann chris@computersalat.dechris@computersalat.deJan Engelhardt Jan Engelhardt chris@computersalat.dechris@computersalat.debwiedemann@suse.comnmoudra@suse.comchris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.de- Update proftpd-basic.conf.patch * remove obsolete config option, LoginPasswordPrompt - rework proftpd-dist.patch- 1.3.7e - Released 23-Jul-2022 * Issue 1448 - Ensure that mod_sftp algorithms work properly with OpenSSL 3.x. - 1.3.7d - Released 23-Apr-2022 * Issue 1321 - Crash with long lines in AuthGroupFile due to large realloc(3). * Issue 1325 - NLST does not behave consistently for relative paths. * Issue 1346 - Implement AllowForeignAddress class matching for passive data transfers. * Bug 4467 - DeleteAbortedStores removes successfully transferred files unexpectedly. * Issue 1401 - Keepalive socket options should be set using IPPROTO_TCP, not SOL_SOCKET. * Issue 1402 - TCP keepalive SocketOptions should apply to control as well as data connection. * Issue 1396 - ProFTPD always uses the same PassivePorts port for first transfer. * Issue 1369 - Name-based virtual hosts not working as expected after upgrade from 1.3.7a to 1.3.7b. - rebase proftpd-no_BuildDate.patch- fix deps for SLES- remove configure --disable-static- Update to version 1.3.7c: * http://proftpd.org/docs/NEWS-1.3.7c * http://proftpd.org/docs/RELEASE_NOTES-1.3.7c - Update patches * harden_proftpd.service.patch * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch * proftpd.spec * proftpd_env-script-interpreter.patch- Added hardening to systemd service(s) (bsc#1181400). Added patch(es): * harden_proftpd.service.patch Modified: * proftpd.service- Update to version 1.3.6e: + Invalid SCP command leads to null pointer dereference. - Do not limit to openSSL < 1.1: proftpd has had support for openSSL 1.1 sice version 1.3.6a. - Rebase proftpd-no_BuildDate.patch.- update to 1.3.6d * Issue 857 - Fixed regression in the handling of `%{env:...}` configuration variables when the environment variable is not present. * Issue 940 - Second LIST of the same symlink shows different results. * Issue 959 - FTPS uploads using TLSv1.3 are likely to fail unexpectedly. * Issue 980 - mod_sftp sends broken response when CREATETIME attribute is requested. * Bug 4398 - Handle zero-length SFTP WRITE requests without error. * Issue 1018 - PidFile should not be world-writable. * Issue 1014 - TLSv1.3 handshake fails due to missing session ticket key on some systems. * Issue 1023 - Lowercased FTP commands not properly identified. - rebase proftpd-no_BuildDate.patch- fix for boo#1164572 (CVE-2020-9272, gh#902) - fix for boo#1164574 (CVE-2020-9273, gh#903) - update to 1.3.6c * Fixed regression in directory listing latency (Issue #863). * Detect OpenSSH-specific formatted SFTPHostKeys, and log hint for converting them to supported format. * Fixed use-after-free vulnerability during data transfers (Issue #903). * Fixed out-of-bounds read in mod_cap by updating the bundled libcap (Issue #902). - remove obsolete proftpd-tls-crls-issue859.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch * proftpd_env-script-interpreter.patch- cleanup tls.template * remove deprecated NoCertRequest from TLSOptions- fix changes file * add missing info about boo#1155834 * add missing info about boo#1154600 - fix for boo#1156210 * GeoIP has been discontinued by Maxmind * remove module build for geoip see https://support.maxmind.com/geolite-legacy-discontinuation-notice/ - fix for boo#1157803 (CVE-2019-19269), boo#1157798 (CVE-2019-19270) * add upstream patch proftpd-tls-crls-issue859.patch- fix for boo#1154600 (CVE-2019-18217, gh#846) - update to 1.3.6b * Fixed pre-authentication remote denial-of-service issue (Issue #846). * Backported fix for building mod_sql_mysql using MySQL 8 (Issue #824). - update to 1.3.6a * Fixed symlink navigation (Bug#4332). * Fixed building of mod_sftp using OpenSSL 1.1.x releases (Issue#674). * Fixed SITE COPY honoring of restrictions (Bug#4372). * Fixed segfault on login when using mod_sftp + mod_sftp_pam (Issue#656). * Fixed restarts when using mod_facl as a static module - remove obsolete proftpd-CVE-2019-12815.patch * included in 1.3.6a (Bug#4372) - add proftpd_env-script-interpreter.patch * RPMLINT fix for env-script-interpreter (Badness: 9)- fix for boo#1155834 * Add missing Requires(pre): group(ftp) for Leap 15 and Tumbleweed * Add missing Requires(pre): user(ftp) for Leap 15 and Tumbleweed- Update proftpd-dist.patch to use pam_keyinit.so (boo#1144056)- fix for boo#1142281 (CVE-2019-12815, bpo#4372) arbitrary file copy in mod_copy allows for remote code execution and information disclosure without authentication - add patch * proftpd-CVE-2019-12815.patch taken from: - http://bugs.proftpd.org/show_bug.cgi?id=4372 - https://github.com/proftpd/proftpd/commit/a73dbfe3b61459e7c2806d5162b12f0957990cb3- update changes file * add missing info about bugzilla 1113041- Fix the Factory build: select the appropriate OpenSSL version to build with. (fix for boo#1113041)- Reduce hard dependency on systemd to only that which is necessary for building and installation. - Modernize RPM macro use (%make_install, %tmpfiles_create). - Strip emphasis from description and trim other platform mentions.- update to 1.3.6 * Support for using Redis for caching, logging; see the doc/howto/Redis.html documentation. * Fixed mod_sql_postgres SSL support (Issue #415). * Support building against LibreSSL instead of OpenSSL (Issue #361). * Better support on AIX for login restraictions (Bug #4285). * TimeoutLogin (and other timeouts) were not working properly for SFTP connections (Bug#4299). * Handling of the SIGILL and SIGINT signals, by the daemon process, now causes the child processes to be terminated as well (Issue #461). * RPM .spec file naming changed to conform to Fedora guidelines. * Fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - New Modules: * mod_redis, mod_tls_redis, mod_wrap2_redis With Redis now supported as a caching mechanism, similar to Memcache, there are now Redis-using modules: mod_redis (for configuring the Redis connection information), mod_tls_redis (for caching SSL sessions and OCSP information using Redis), and mod_wrap2_redis (for using ACLs stored in Redis). - Changed Modules: * mod_ban The mod_ban module's BanCache directive can now use Redis-based caching; see doc/contrib/mod_ban.html#BanCache. - New Configuration Directives * SQLPasswordArgon2, SQLPasswordScrypt The key lengths for Argon2 and Scrypt-based passwords are now configurable via these new directives; previously, the key length had been hardcoded to be 32 bytes, which is not interoperable with all other implementations (Issue #454). - Changed Configuration Directives * AllowChrootSymlinks When "AllowChrootSymlinks off" was used, only the last portion of the DefaultRoot path would be checked to see if it was a symlink. Now, each component of the DefaultRoot path will be checked to see if it is a symlink when "AllowChrootSymlinks off" is used. * Include The Include directive can now be used within a section, e.g.: Include /path/to/allowed.txt DenyAll - API Changes * A new JSON API has been added, for use by third-party modules. - remove obsolete proftpd_include-in-limit-section.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch- update to 1.3.5e * Fixed SFTP issue with umac-64@openssh.com digest/MAC. * Fixed regression with mod_sftp rekeying. * Backported fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - remove obsolete patch * proftpd-AllowChrootSymlinks.patch (now included) - rebase patches * proftpd-dist.patch * proftpd-no_BuildDate.patch * proftpd_include-in-limit-section.patch- Sort SHARED_MODS list to fix build compare (boo#1041090)- Removed xinetd service- fix for boo#1032443 (CVE-2017-7418) * AllowChrootSymlinks not enforced by replacing a path component with a symbolic link * add upstream commit (ecff21e0d0e84f35c299ef91d7fda088e516d4ed) as proftpd-AllowChrootSymlinks.patch - fix proftpd-tls.template * reduce TLS protocols to TLSv1.1 and TLSv1.2 * disable TLSCACertificateFile * add TLSCertificateChainFile- Remove --with-pic, there are no static libs. - Replace %__-type macro indirections. - Replace old $RPM shell vars by macros.- fix and update proftpd-basic.conf.patch - add some sample config and templates for tls * proftpd-tls.template * proftpd-limit.conf * proftpd-ssl.README- backport upstream feature * include-in-limit-section (gh#410) * add proftpd_include-in-limit-section.patch- update to 1.3.5d * gh#4283 - All FTP logins treated as anonymous logins again. This is a regression of gh#3307.- update to 1.3.5c * SSH rekey during authentication can cause issues with clients. * Recursive SCP uploads of multiple directories not handled properly. * LIST returns different results for file, depending on path syntax. * "AuthAliasOnly on" in server config breaks anonymous logins. * CapabilitiesEngine directive not honored for / sections. * Support OpenSSL 1.1.x API. * Memory leak when mod_facl is used. -rebase proftpd-no_BuildDate.patch- fix systemd vs SysVinit- Remove redundant spec sections - Ensure systemd-tmpfiles is called for the provied config file- fix for boo#970890 (CVE-2016-3125) - update to 1.3.5b: http://www.proftpd.org/docs/RELEASE_NOTES-1.3.5b * SSH RSA hostkeys smaller than 2048 bits now work properly. * MLSD response lines are now properly CRLF terminated. * Fixed selection of DH groups from TLSDHParamFile. - rebase proftpd-no_BuildDate.patch- fix for boo#927290 (CVE-2015-3306) - update to 1.3.5a: See http://www.proftpd.org/docs/NEWS-1.3.5a - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch - remove gpg-offline dependency - fix permissions on passwd file * unable to use world-readable AuthUserFile '.../passwd' (perms 0644): * 0644 -> 0440old-cirrus4 16621212791.3.7e-bp154.3.6.11.3.7e-bp154.3.6.1mod_radius.so/usr/lib64/proftpd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:17645/openSUSE_Backports_SLE-15-SP4_Update/29dd066096e7acb8640c9b4e3e9a37fc-proftpd.openSUSE_Backports_SLE-15-SP4_Updatecpioxz5x86_64-suse-linuxELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=aaf133e4bc90f0b661885785691d01a585db32a2, strippedRRRRRRRo@4KQ;<utf-86b2a8dc8aa9b098bfac20d83e2a5836c3255e9ab2c7768f02a8c47120828fe4c? 7zXZ !t/M] crv9wυ>36DJ! .jIu&Cݕ綪Z5L L,)_cJh϶xʦ*7sESeUrZCLn_)u'jHM+DEfmnп mQvnRdxdX8@0xCd]@[ē{ԝ 40'"hkW f&V"û0 ]Gyr!P59Aet4cD?44{ 6fZڥXEr/E| RC4+lU1F?${#Dj,nz)-'3l'@c3;Pܢ4:O܁ g/A,x$LDC+oCWh X݅嶃pdF*~Į3ŕamEVM4v0f|w$S!z:U- txY%­rBI%N94Jnhr% X6|!o0Y欐l|rk!>qU-bˑm(C ^Jr]rTi9sI6}?~Pdh}]\`z݃`CRD7 %g1[|3O1FiJrz`->(f7~vxX(mBp)[xuJӻhtsMܝ[Ա!%|_ Jz}`=_ #Ǡщ pD֪lߌ,D)QF@\VI /Y^ Y6Y OzŅ9;!?Bu5h8OՕʜX?1y2Fq;f`Tx,'YSV¤{CUXfY>'b&%dugqY@OvI~sJU6+[p[.r]r}O4[C<<1'|vt5\Zǁ2 덳.~!)xu>;|U30j=y꒯3@.χ9%3HL;'b ;r)ֶA` 0 m1\f)lGFW^v~O ?{xokc7 IDP;0m*͹uÅOP@ 2C=pN6#eJfAUmbL^!HnPX>@H%[cg+rsqL'@+C˝-*Ob)icGg,n(OIpI<V-"9eP+v]+w^(NdZ`z48`G 4L9ygsUiӼR &v$1Jd*y2U[Df[PX[@`ѩd$+)Rf}o-i_k&fFGYL@F&ql[%CHW&UӐFzgGچC}Egq+F C*jF5H}bZs ]zՀ*f0 d S75]b 1nif41;Wʓp*UX9Or~zga5e<[ M&ϲhCr": Ōdxt-KR[R{ (S3o,!zŊIoELJIz':>!hdhjaS+;vxfJEzb=.H6:VPE'U ^U8cp-V^6:l,ǨC׼֟z%Ѿ5J?l,'aA.O): :5<(dDΠZ 7okvuv"2s{EJ t.*=nCh**uz]ewSFʨ[W+P"@Ox,C|l"ҸT)f@}_Gn@(w=H}N)Qh6'iA:eH!C8ґrVޡad󈉘+(1 l5TQVi.~~Ia{2> 'r%jzJ%/^C]?1 oئ(|^. 9Nxt!Hza݄$',9%nhb5m1r{ann {,u:XfhպsȚ6bl͚Gƈ؍'wnv aS>x}z7[O$|Z\A^ 45wm 3TPΉB ɵR|f^R o.j˝jUVYg\3pͷ 29H9V(qA'܁׃|Zl}ZKlL5!g!(@>ߺ+ ć>[qL9]j[YrՃ@P@[H(V qg.$öb9Jp 3!-o'4j^5 u շ WrA47+CK%SҶdl'܄8"ul+"ZzlC6eu4wu5=~5%=#d^uM|a1HN±1{FX.3.ݓ0׽WEq>,K=Y~v|WHC`yBdYĐdw_837{Y7/$oSYT //|lUHt1靔0$B۩*ª0Eؘ,HiCn-+" cJ_N3o;F4A,Ъ~}YjI]oS$t'w(kZrW-->C`. D9wo#wۊg4@|㞀ٕ :<ٺ*Aڃ$qg+~vexTQNƮ2+(xsP [BNaɍH~SώڢbLJsnx]i b/V>!:pb5vG FV1OMv)8ʸf6U_R?)GB6 K?vNX4@ӲNf!) ?QҸi>!(K%Y#m&Rrf%s"n]2 mټQU|0}seDE|o|nY7#T@W}LȎnNUs߁os 2f;;Ϟ 09ܚ&'rX,ue͝f]~爛ykWT~Hm/< Wq xR­q]z1uNy+M7_b av2yV=< MGݸҳ Ck,L8{TCQ6XXN"bRcb0w-8(:\HH%FpGQenJ+>&S:aF.%ǭթl.DD*^sBVзEۅ9nEBKk _ꕱ^bIvH%:c0&zlDum!{JGML@-:Owq%!ŠZj+U ;fx<&~ddW11s/PSCYʃi^2 S $:d- ;Oi0/$X&w\>?Xf hJwve Snˀ0ʦ^qALwE{g4X>ܾ3_;_Xs\/-(nB^u{3wn AĄl EG;l1-$aK#{Ӣ9$"E^ud*s, T <16d bD~҂_99!,y]nd;pl, ˷)d+c[ Kyԫ.>RLZ@&eba;F2"Na̻TiP,+(%nV|.o8&dEtAdJ^WGL@J)*mu 穾^/"R#Dh`b _T@& 3eZ9#DHOj鏕+(ĿEWb`Of m@uz ;Ul.`ex2e &% sg' 7׌9 Ȕ>#\yͯ$j|.&QJGnϤnd[L(mA ;P貔:N|E6 L 6TX;J  ep"TC>Ϡj к@tx [|| .eSw%fz ( F.Z~fY70:hIƒ٠ifؼB'6xkeFB<ҽ¸UCkޠ$^MrU-I- jmwCA]CT`ĉ U|~֡qLMQ~nI uG.1nL2FR%%Ĭ@ Sa3m4 u NjYuP! aB]AhʪWRgUiBj2|VIH~{ባsH.\ {f,kFwt~!%x~DMBasůIZƜ$p* CDYUVl4F#6_J4i:`57s5ap/LI/pg9JHeRm)g`TW?^fi\gP|}BʗQ)M|缸s\1?_jԚz&p <1j3!`yhq#eFZPpΎ'2t(ȌI+K p]ԕ2mJY^07ѡ{v9S|7ŗ~^u U/ckKx 4g7y:hN-Z!؏pAkyPUS.Ir&t '$RmV D"+T+%2= 7!,I§aQxmxl޲q:iEd%`&LbлqSZޕn5[o}䪆 lY#<îN2Փ:usz\9Y6/QZ@o\ ,㨚C K2Zc>0#%k!@wNbG4g\DPN mk xBs#]A.2yo] =|b m6 W1=p7˩lZ/4뢆ۏw[ݥ+yd'*@lRw-YYP"q WBzhHx&qbAk⻭ ])&Goe3ՁjyP3190kMwG c:UM}Fl˧!uAUĈ/"ri.1꘻_ ~6џCZe+D?pFߐ#x:5V㢺u$m\ڷ|m\)1G %v 8e+`)Q^HysSe7Sݛi)TN~=ʘ@+j{xF. +ƨ:Bq-%;櫲xXrn+EUpy&d~5V5{'Hb?>;̮IC˼W2iL״.%$ D0Ov8&WG=? 3V>Zxv0yV,"ouvIQr\\uraAX&i[tsr T͐XZ].ax)̻G^.Z>mP͘,H18is;hFA6Y=,5BgDn<>s^L/;0p͐pCf oC)<61n`6bʕ%lEZdw+ ۠;MCﱩHR|U-bX\!T|/fBMVpo2dYndS+Z~Y-ZZj'k(TVAfpKWh Zeҕ"8=+"+$'K[u~I$ub%!yit9ki64ڿ+Aۍt;tv&lLe-/*`l2Z;To!Y:7RALAOUez|֕tF59nݨK $^QQHsBvo<:Qu@@,"m>=wsa:Iz<0`m, Lڪ7II|i~OFԘ2h+gh㞬T-C̠:e ͔S.73iTYkKwogR{`;طtR|٬=jv?=8eĜY3T$hXWq@%̨C#f?]cpĵT ctPCʸGmhy:+Z1x#knLsvCHHUi*GgL}7А>ϼħRM!,o %ނW[_abI.qİDv2\!Z5Q'A.AV0DzèIԮAS5p[I B27 іE0%l5/GKR8eF+Hj1#:h̋ё{QR:|DYcMC J$6*h NVB۔%ܑ_j>jbch?ِqpx 撽7Us]pʍF=?1Qse:L%kTH#'1'ԞC@DTM(hl~w&MW4]Tls!m4 D!R|TYqm )#@$Fq=* jTO풢;V"2nν慁Pp-(̅ޗWH 0! Me5-`Q }+[um~i%v:΂YM3)>h)q>O5 d&wpBr#jWo׌~Պڪf@=͔1trx-q|D~@KpR`VO~EB!J|Xnc?0co8KŨ2m}]r}`{&4Jh ֧UPհycJSKeB~ !`C8F&Ddԫnw1 }[w.3B7SY &HX˅b{WYx+T>tйd& D JJiœ7eSr=ć :{Rb~(_ 1UsԜy7Uy)׳6%;u.[v6q Aľ-cibJ;ɷ nݥq8 V4 ?c:we.)6s^/ݯ(lDɜOۛ[OE[K1Axh`Hӛաu!Ҟ,!1B.u[-\> ^I@\4Ϯ"[1LM"M|r_4zwAy:I9@_Zz-"JS?dyfNq{a`2(e 6Y0} .y/[!#DiaMā8CΏܕnPZW`G 0wop;LcyOEQd%[E!sشHoW$RR_Pp&C ^g)|bzyukI`z䭵w90nǗ~ _;EQd9:(F|H6>'󭫤pG'ML=MJ.A}=Os'ǝ'Sf,{F4']Y{){I &Lm>6wB^dkJlayD"3i hUy2u/J8#$ND5OݫxJqrЗ [;S Hk}j%|l}8)Y=<7o" #"fY>*ݹT|yu=p]=5[l_ MV6?L(xߘ#- q3r&+{T|P][ӹwʳ-!oD:+XIhA 8nR _S]Wgy uat:%f c%͟/ώҀBߔ)Dd`E, ;Dz2%355Sy2'@8(HipyaZe nDuX6PV1O߫!f|i0SwP;b_݈=5hڬԽ 6U2C~ٵ!qZ*R|0%v3%>^*5[ȍP9n#VNldd[c73/Ö=zKB?221wz9;#hB;b:,3 ~|98EZMvLiPcۤcnV?9ia^Sq^W<`IϤ"W̭vx=E.ZP;tE+` rJ ^YC>} SecW]a oC%SiF>m_**AagQڟE3˚@(V2qVY*QcH$z/={|S2Su`fjs)B(Vǵ!Q^e$XeEt ,=A.zOQh@N 15GO(G`:;Iq tn+VlWKBl2+)o0պޔ'ZB Z*ҫ0 򃅗ߨ:}REyur, 9ڇ ny\}H{  A5eV]AH`ܝ[!D>tDs (H4ܺB{yA+9X6 !+ % +p gKͱYb[ @>ڃc"1"6+uf$ D0biB=cUMX!%T[][<'urzf) Rlլ I%n(UȖc894&ِpc%9yoz ĭ Cƒ}[3|!,D8iK6Vm$U Ww%'Tv5:Ǝ31~鞗ډݗj/˟Da98w%t\N8=%Oż,@vXZ LOz,܈D Rc'ۢ"]u{*ϵZ 8)9Q}+%l0n|yj#&jؖPGbLj/I_LHx څДzJ2daF=puN$FMt8]*g=jIrV"McAii4$=ltn:\QvS?[2|IU1 $V` -GQO7  %۔j(M2ؚ1VҞB6S܌kaM߶ L7mQ05prd;+ԅ2S q<֟-ޓ\[hqB;eSg|zn)6T^';7n K"~9:C=<nYߺa{R%Rq2q^+[pTOۧv%M[n1JZ SHx,ʠ7f Nݿ|j(^ Ӎtep[Ylfzn5ȊLq <=DpMofxo+M~֬ET-:npv_of ~ Gd,A,yr X1O3Jn=}3|de`ǩ_ IOHxSLdbMR(kL?!vL`K&ChHn|zU!XA6bث#a|WE3bv7-r|#^{-FG '!{ žMlJjFRq[$/U'h;fd˾|r^RS}ȀAQŘu]M$MZۘVR=;HmRbIjݙa& ^J ՠW]{V Dd%_w- $(K e~u~mPsE""~JO B#!>R_D J' R ˡxV&2Vb|~^삵SmjH^+$v2jCHc{@Cm͓)6MP![NB-Ѡ圷<O[iO .8oE῿0n_#*چHn;@*ģ U'Pq7iLJg*C!=W>>lco K $61'8$sXkKe#-ձ.\bd-F[<_WFڳd!rO/ʦ~poj7qd*蝭C%&@Ҙ@{n嫚 VX[w5v{ޚSb~&0y:rO Ō&6ƁU+@X5 hwߪ53S=XO[SS܂9c7NiQ5gX/#s֝of.KԈ{i5:sYwr-Mi밢 HC'%m6N\ț^=d)z_i $ =9h_)̆b*V7ﲗ 6JI geT|gdq;W HoUA0H+QZs&/cdd 2ymǏ&I>n9(ݸ D:[{:эL^lc}/ EWr.gR9ƮYYܼO +jI .ވ90bcxtN|d'B[8?Q3q[T"d[u|ǻSu1h#L{6m1Q.‰O‚G㥁6@ *<^#U-2mbz8Q;:xĬW&uzsBa8MV=|'7Ca=$`~ŋH nѱ 8h1@CJQnie<p I d'B`zʩ!v"5-֫ir5AD/!D~QN(S%d* H, O,Ʉ"\+;7 ԵK0P`K*tj.H"d{nl jRh~#p:5Hz$DZֺL=˫ DULz‚n*X*f}$w+, l֦ S߫$!mS>WeŴYUf]>[)mH6<:A`*=(].PU>PfGִ`b(n"yU{K1A^]|JCYQ#4M r/y%C݈i'aUzq% C0zCl~-v+{r-(oXr!駸:b}81Jo \F^u!_2EK_^#Vib?Vq$g)CI7XV\[$5DŽWyt+y`^k;GmM7O=>{ ( x=CEb'0V'fF&iMzD|>i;=ص&hf|]/QETƧuMaA/ޫe!;qp0Y4""ʣ@2d*HzJ(r#fNL.;&}\943&i#NJv8Q#|qNh xn>4/yy1RL%s|Mn煮ODg0 Pɓoƭ o.PG̎XZG!/.Gs8wǭC/ \+d`+=ͷ8HuF۬*$ {z|DtyuMLzHl@ {~8`޴S:$K 9-Kɯҧ#q}*9%⫾$t TM7}Ŭք*E=HTb(_ϵjWwR'F:fs]ׯl3tH\ͥ㸯8C>Ej)C8mܭcxvՁQxf{ յp򶱃qs:#$ipg4w!HIVgYQEbnfO(vv؄٦枵8^::fs|g ˸?X6 e·hd/I0GsܲQ"ɛOZNmCZ>'xQK`aθey{Ԣ]y]&l8~A+8Cl>zKbܧ+\h$974rފ*RkR~m3ܹq^ ǜKIay UᡠTh)R50]d5~}Tnp❎Θ+^R^1̿+ Z*8h1&~Ip<^o0V5Y}y\[!h>-~(uTubһ * 0veO#Ӽp?>Pm.< ȴSV01O"E,߄w`94;cer5\ ~ȗ`Ԑ4ɧ<HXoJ2zj >@΂“I9<Wƺlo2fE³|Ѵ8+-ՑB_7HmƖzE#ޜ\ D^@̈{? "'+xqXʌhz*5g?t#Ekf>1'rЁݞ'NyBu$Y .!!y tL>&=|3%t]ɫ՘F唣i7{1u}[iX#<2 C4@2 9ݶLBH&2\-ԊNNw:h{怓Υ0~+|KȂ'~ti΢W_ͶKS mGϚrK)]aNv?Rv `h#S\peule-zd¥ת 9s:pPH܌۲X8&E5!o38 [,_a1?׽WG]|;ȐIf=Cs"xIQ;%CK(mx6QL%_G YawBbJ OMjHqpHcZ{ַ3M "꽠+f6a`')gu~=A|UKITM #l}bìx(/_ll eoLwvMq>bo$ ,sX.wZ)makUwAR׼iBׅc ))#ئQQGZ Tȅh46 я[G-&A+ ̹+5">g] #< H+94ص  uq8Z֐W0VZGm MD ӆWD_E/vy Fڜ^Fji/y?C,ѱ, __1~}[YF2( t0=3ba%s4žHYSd~~nVnI4ͺy2ſVxD K0QHS[O7Nʇ^CZNg!h7{Ϭ,g;PmW-E]T`Md~qfC]PjGC8t˴GȘ1P+ЅMY~iHZo\&J_\r)g`1c4lTfh9Kv]vU (`z6oh؇lu'gs=BKXMqX9u:hґy?MWFG):#QO4ҹ~1~tDmo8QH"l}%A8;aU$5h۔{3$t.w>hi2~E &Ku!O+x`{f \}· 1!]lBޡ`|]85K115lX<~މ-IAymX8|#2 tu:Z޲s|ʋܰ\Wws'#K,}ώQ, 8 C:{/BI5`#q3jreؐ@4(]U^Yoó2!űuzӦ>)(LՃ ƀ0r7bHˤ{¨6i05 ?Дۺ+cV#f2c2HSSe#x