proftpd-ldap-1.3.8b-bp155.2.3.1 4>$  ApeKKI%z 8^88YBw72>D<]6(\! }`@ 9oneӒMbMr^ǭPpP3IZv|]?i]Ll?P2HU';0ֻ# L <NrlQZԨO3a:$7UMrh]Pbl0*^̘mpt)B1.v/`QPJ-bODNG¡fc4|;sR)GFhAEhA֒1vE+֟e\~N\RnE Tf^FJURMjgB\OAAѸw_LP6.LSqKy?8g4+H4,Bn`{,+޾FC&NxbbCX*P>nh7dcKE\ `:@tz6!Qao5k&2cIr/ yąL?mJq33K bf25ded227e53785893d72e424e16f95f74790742d110fb36b85e9f8d03d565b0f711d4fe4e1e6e2373bf1a830e39ba98893897ceKKI%z qB> v818*?&$INVV3fmϩn4Ib:u'{Y18UF+y h<жs6loȟGyf)LuΖ^8Jk˝ZN}PNΒᬥULPHU[N(Ħo`15H2"ytBfNu9k2=bfctp ;00q TYTD%њ%fHK E_3>PΆ4Ϙlm*7hRK DDJ9zNW7@)U=C+]6pi0Y4 x-\"9܁4S&ė43%J=ռ'.~/6bg|$ŁrhvX!ʡ;?h!#@\c>a)K) =#&/20= |fѤ>?#}C|>p>4`?4Pd " :`dpt      Y \`ej   (8 $9$:.$F1\G1pH1tI1xX1|Y1\1]1^1b1c2yd3 e3%f3(l3*u3<v3@w3x3y3z3444 4LCproftpd-ldap1.3.8bbp155.2.3.1LDAP Module for ProFTPDThis is the LDAP Module for ProFTPDeK:i01-ch1cpSUSE Linux Enterprise 15openSUSEGPL-2.0-or-laterhttp://bugs.opensuse.orgProductivity/Networking/Ftp/Servershttp://www.proftpd.org/linuxx86_64peK83052856e9f5c1150aa155f7da0182dfd95efff50440f8c21cc6cdbd32dc4f7b5rootrootproftpd-1.3.8b-bp155.2.3.1.src.rpmproftpd-ldapproftpd-ldap(x86-64)@@@@@@    libc.so.6()(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)liblber-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)proftpdrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)1.3.8b3.0.4-14.6.0-14.0-15.2-14.14.3eeC@cc<@cbL@b@Qb?@b ap_^@^3^S^5h@^C]@]o]@]D%]\@\+@[E@[DYqYC@X@XӸXO@XX~@X{d@WW/*@W/*@Ujchris@computersalat.dechris@computersalat.dechris@computersalat.deStefan Schubert chris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.deJohannes Segitz Dominique Leuenberger chris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.deMartin Hauke Bernhard Wiedemann chris@computersalat.dechris@computersalat.deJan Engelhardt Jan Engelhardt chris@computersalat.dechris@computersalat.debwiedemann@suse.comnmoudra@suse.comchris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.de- 1.3.8a - Released 19-Dec-2023 * http://proftpd.org/docs/NEWS-1.3.8b * Implemented mitigations for "Terrapin" SSH attack (CVE-2023-48795). - rebase patch * proftpd-no_BuildDate.patch- 1.3.8a - Released 08-Oct-2023 * http://proftpd.org/docs/NEWS-1.3.8a * Fixed builds when using OpenSSL 3.x- 1.3.7f - Released 04-Dec-2022 * Issue 1533 - mod_tls module unexpectedly allows TLS handshake after authentication in some configurations. * Bug 4491 - unable to verify signed data: signature type 'rsa-sha2-512' does not match publickey algorithm 'ssh-rsa'.- Migration of PAM settings to /usr/lib/pam.d.- Update proftpd-basic.conf.patch * remove obsolete config option, LoginPasswordPrompt - rework proftpd-dist.patch- 1.3.7e - Released 23-Jul-2022 * Issue 1448 - Ensure that mod_sftp algorithms work properly with OpenSSL 3.x. - 1.3.7d - Released 23-Apr-2022 * Issue 1321 - Crash with long lines in AuthGroupFile due to large realloc(3). * Issue 1325 - NLST does not behave consistently for relative paths. * Issue 1346 - Implement AllowForeignAddress class matching for passive data transfers. * Bug 4467 - DeleteAbortedStores removes successfully transferred files unexpectedly. * Issue 1401 - Keepalive socket options should be set using IPPROTO_TCP, not SOL_SOCKET. * Issue 1402 - TCP keepalive SocketOptions should apply to control as well as data connection. * Issue 1396 - ProFTPD always uses the same PassivePorts port for first transfer. * Issue 1369 - Name-based virtual hosts not working as expected after upgrade from 1.3.7a to 1.3.7b. - rebase proftpd-no_BuildDate.patch- fix deps for SLES- remove configure --disable-static- Update to version 1.3.7c: * http://proftpd.org/docs/NEWS-1.3.7c * http://proftpd.org/docs/RELEASE_NOTES-1.3.7c - Update patches * harden_proftpd.service.patch * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch * proftpd.spec * proftpd_env-script-interpreter.patch- Added hardening to systemd service(s) (bsc#1181400). Added patch(es): * harden_proftpd.service.patch Modified: * proftpd.service- Update to version 1.3.6e: + Invalid SCP command leads to null pointer dereference. - Do not limit to openSSL < 1.1: proftpd has had support for openSSL 1.1 sice version 1.3.6a. - Rebase proftpd-no_BuildDate.patch.- update to 1.3.6d * Issue 857 - Fixed regression in the handling of `%{env:...}` configuration variables when the environment variable is not present. * Issue 940 - Second LIST of the same symlink shows different results. * Issue 959 - FTPS uploads using TLSv1.3 are likely to fail unexpectedly. * Issue 980 - mod_sftp sends broken response when CREATETIME attribute is requested. * Bug 4398 - Handle zero-length SFTP WRITE requests without error. * Issue 1018 - PidFile should not be world-writable. * Issue 1014 - TLSv1.3 handshake fails due to missing session ticket key on some systems. * Issue 1023 - Lowercased FTP commands not properly identified. - rebase proftpd-no_BuildDate.patch- fix for boo#1164572 (CVE-2020-9272, gh#902) - fix for boo#1164574 (CVE-2020-9273, gh#903) - update to 1.3.6c * Fixed regression in directory listing latency (Issue #863). * Detect OpenSSH-specific formatted SFTPHostKeys, and log hint for converting them to supported format. * Fixed use-after-free vulnerability during data transfers (Issue #903). * Fixed out-of-bounds read in mod_cap by updating the bundled libcap (Issue #902). - remove obsolete proftpd-tls-crls-issue859.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch * proftpd_env-script-interpreter.patch- cleanup tls.template * remove deprecated NoCertRequest from TLSOptions- fix changes file * add missing info about boo#1155834 * add missing info about boo#1154600 - fix for boo#1156210 * GeoIP has been discontinued by Maxmind * remove module build for geoip see https://support.maxmind.com/geolite-legacy-discontinuation-notice/ - fix for boo#1157803 (CVE-2019-19269), boo#1157798 (CVE-2019-19270) * add upstream patch proftpd-tls-crls-issue859.patch- fix for boo#1154600 (CVE-2019-18217, gh#846) - update to 1.3.6b * Fixed pre-authentication remote denial-of-service issue (Issue #846). * Backported fix for building mod_sql_mysql using MySQL 8 (Issue #824). - update to 1.3.6a * Fixed symlink navigation (Bug#4332). * Fixed building of mod_sftp using OpenSSL 1.1.x releases (Issue#674). * Fixed SITE COPY honoring of restrictions (Bug#4372). * Fixed segfault on login when using mod_sftp + mod_sftp_pam (Issue#656). * Fixed restarts when using mod_facl as a static module - remove obsolete proftpd-CVE-2019-12815.patch * included in 1.3.6a (Bug#4372) - add proftpd_env-script-interpreter.patch * RPMLINT fix for env-script-interpreter (Badness: 9)- fix for boo#1155834 * Add missing Requires(pre): group(ftp) for Leap 15 and Tumbleweed * Add missing Requires(pre): user(ftp) for Leap 15 and Tumbleweed- Update proftpd-dist.patch to use pam_keyinit.so (boo#1144056)- fix for boo#1142281 (CVE-2019-12815, bpo#4372) arbitrary file copy in mod_copy allows for remote code execution and information disclosure without authentication - add patch * proftpd-CVE-2019-12815.patch taken from: - http://bugs.proftpd.org/show_bug.cgi?id=4372 - https://github.com/proftpd/proftpd/commit/a73dbfe3b61459e7c2806d5162b12f0957990cb3- update changes file * add missing info about bugzilla 1113041- Fix the Factory build: select the appropriate OpenSSL version to build with. (fix for boo#1113041)- Reduce hard dependency on systemd to only that which is necessary for building and installation. - Modernize RPM macro use (%make_install, %tmpfiles_create). - Strip emphasis from description and trim other platform mentions.- update to 1.3.6 * Support for using Redis for caching, logging; see the doc/howto/Redis.html documentation. * Fixed mod_sql_postgres SSL support (Issue #415). * Support building against LibreSSL instead of OpenSSL (Issue #361). * Better support on AIX for login restraictions (Bug #4285). * TimeoutLogin (and other timeouts) were not working properly for SFTP connections (Bug#4299). * Handling of the SIGILL and SIGINT signals, by the daemon process, now causes the child processes to be terminated as well (Issue #461). * RPM .spec file naming changed to conform to Fedora guidelines. * Fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - New Modules: * mod_redis, mod_tls_redis, mod_wrap2_redis With Redis now supported as a caching mechanism, similar to Memcache, there are now Redis-using modules: mod_redis (for configuring the Redis connection information), mod_tls_redis (for caching SSL sessions and OCSP information using Redis), and mod_wrap2_redis (for using ACLs stored in Redis). - Changed Modules: * mod_ban The mod_ban module's BanCache directive can now use Redis-based caching; see doc/contrib/mod_ban.html#BanCache. - New Configuration Directives * SQLPasswordArgon2, SQLPasswordScrypt The key lengths for Argon2 and Scrypt-based passwords are now configurable via these new directives; previously, the key length had been hardcoded to be 32 bytes, which is not interoperable with all other implementations (Issue #454). - Changed Configuration Directives * AllowChrootSymlinks When "AllowChrootSymlinks off" was used, only the last portion of the DefaultRoot path would be checked to see if it was a symlink. Now, each component of the DefaultRoot path will be checked to see if it is a symlink when "AllowChrootSymlinks off" is used. * Include The Include directive can now be used within a section, e.g.: Include /path/to/allowed.txt DenyAll - API Changes * A new JSON API has been added, for use by third-party modules. - remove obsolete proftpd_include-in-limit-section.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch- update to 1.3.5e * Fixed SFTP issue with umac-64@openssh.com digest/MAC. * Fixed regression with mod_sftp rekeying. * Backported fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - remove obsolete patch * proftpd-AllowChrootSymlinks.patch (now included) - rebase patches * proftpd-dist.patch * proftpd-no_BuildDate.patch * proftpd_include-in-limit-section.patch- Sort SHARED_MODS list to fix build compare (boo#1041090)- Removed xinetd service- fix for boo#1032443 (CVE-2017-7418) * AllowChrootSymlinks not enforced by replacing a path component with a symbolic link * add upstream commit (ecff21e0d0e84f35c299ef91d7fda088e516d4ed) as proftpd-AllowChrootSymlinks.patch - fix proftpd-tls.template * reduce TLS protocols to TLSv1.1 and TLSv1.2 * disable TLSCACertificateFile * add TLSCertificateChainFile- Remove --with-pic, there are no static libs. - Replace %__-type macro indirections. - Replace old $RPM shell vars by macros.- fix and update proftpd-basic.conf.patch - add some sample config and templates for tls * proftpd-tls.template * proftpd-limit.conf * proftpd-ssl.README- backport upstream feature * include-in-limit-section (gh#410) * add proftpd_include-in-limit-section.patch- update to 1.3.5d * gh#4283 - All FTP logins treated as anonymous logins again. This is a regression of gh#3307.- update to 1.3.5c * SSH rekey during authentication can cause issues with clients. * Recursive SCP uploads of multiple directories not handled properly. * LIST returns different results for file, depending on path syntax. * "AuthAliasOnly on" in server config breaks anonymous logins. * CapabilitiesEngine directive not honored for / sections. * Support OpenSSL 1.1.x API. * Memory leak when mod_facl is used. -rebase proftpd-no_BuildDate.patch- fix systemd vs SysVinit- Remove redundant spec sections - Ensure systemd-tmpfiles is called for the provied config file- fix for boo#970890 (CVE-2016-3125) - update to 1.3.5b: http://www.proftpd.org/docs/RELEASE_NOTES-1.3.5b * SSH RSA hostkeys smaller than 2048 bits now work properly. * MLSD response lines are now properly CRLF terminated. * Fixed selection of DH groups from TLSDHParamFile. - rebase proftpd-no_BuildDate.patch- fix for boo#927290 (CVE-2015-3306) - update to 1.3.5a: See http://www.proftpd.org/docs/NEWS-1.3.5a - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch - remove gpg-offline dependency - fix permissions on passwd file * unable to use world-readable AuthUserFile '.../passwd' (perms 0644): * 0644 -> 0440i01-ch1c 17037586501.3.8b-bp155.2.3.11.3.8b-bp155.2.3.1mod_ldap.so/usr/lib64/proftpd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:18243/openSUSE_Backports_SLE-15-SP5_Update/7f3a8967768b043f1801ea1fcee63ec4-proftpd.openSUSE_Backports_SLE-15-SP5_Updatecpioxz5x86_64-suse-linuxELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=1e6d7f95a8a05089ca61131486bb91ae91c5ad43, strippedRRRRRR`.^߈utf-8737be2f7ac38e78e94f68c660ec222d0fe980134b567745b9cb12b3d2ff10e88? 7zXZ !t/{M\] crv9w;i #q7̹TaK-&Ƒ4T9qcLR#ß=ܑx!h C8 ].̬:0?Wr&E,.dZ1"~ B(jVw ]D.A jfwJr>r,@COn>8`m;k( Hx/!!;g4h8(ǥL {ۯE~ h4`$}sS4N13/QjΦ?,_` dXzqYN~Q[M e|_F1x&:ކ=mg(ӕc]?19ӻ>H1I7?T۠ y~\e mzQmq{}(>9auҩlH^W[\0s尛C|s%f Z_Hq?ǧPP'{$r\j}T,-5d3M݈>Ӿ?fiZ OU/X=gRDc>RiǨfE~cWvŋrdrοܽ +1Q-Hqr?T/6;rJWcV2["؜plf3#H9`P9k[<4z`ɕ">~H y-7c!'[f]1q{U07 n;ؤj;s֟+wR:Ai]@%/g&da0]vtjpYtDP*6~*E'(=I5xa V5Ay}P|X%[ƍ@ P#'vzpd:5a6w AzoXCGSSQ }gNG7]_EZ֚?p*YKE/zOo}-M,qv0sCG6iE 8mF1m-D\[S?2D^H]<2QAqMNGѥq d6ydMI^'kKk/6c6fcz 9%Y IfauP}{y!8WUv'zbh-&yZ Q+N`Qsx|l;0XA,1s` )͌_dFNy}O""3Ց(bɐ7R!+yxzV>|~p-Ȝq# `Ω-N:E@yGgJ.l;1RɃE]jen[81MeXԚ }PsV䇇Dy0$HI&Q[+!m6#7D$oHE7Q!3UȞ jFť|GW2@SJE 0m\,1:,4.)BDqVQqvpc<ɞfͤbXYI`(owV{ʬ;pY>2̕ C=m̢d[JG]6 =Ϛ#mt)|Ckeuj!+ڮ(+/1@uPc7EJ˕z#{VOQLk/.v11wLk+GHH/kP \8 ^1p}\2/YsD2L/=E~,RWXAkĉ|x65-I"ĿsہԤZٸ( :r[M3`{Z } M[l" S}j# G熮?|"HvD1Cg4S +q'~[[,͂7WYutD.Kx$E_h&R=o)5  oƂ&Ů<1-3n*&;R ǝ7<(UN 70kHǠC[Q>:Ɂ c5H E9U ,X WӳƯvzNkPJ" 9Y!Y-Ĉ$m>:, YC&DO=ne+c':jKQ9UN3;bmeC}69r+eQ|BA$JNo`; {'|SFl+HI0oH[BU'ݱzuG~C#Q[Gts zF;ۅkdf6/(N$|kpS*0F5[wb(|"-wM@~!dӶC[g֪AyM~PdM&jd(ZLeY?lILXo(K@U(Y:ZW7`gr;٥ n03~$ɩ$Blh7Je9TռArXJ~z0`{OoK:jޮT-͜ƣl]kȞF!;u&ѺA^ҝ9 j{HS]Ŗb{{o@t4FNL&M*,4e7Nt r!+3mb*+W$aDMh[ .z'?I !61@/ 0V)GK#ghόvteۗ TUS{$M￱v#gps|Eq+d; xJl{ XT`<-گ)yEn}D2>vvf#:h{ N k i9ۥd7c:]Ğ[#kXoʪ.0weyTy|Yj5iga˯F}>nDco@w+${+|DXdԃPDz8s͜U(q(ըT-ȠnNlD>OEq_qTv$ ZXw8em fT73k,ΌjP&H @FPIЧER[m΄G'lb5]@ Eyw0,tv8Lyܹ` 6¹4gv%d7sWZӳ&Fkv|lsϾ)ݳh^Y gfT1$u5c]|^)ަ|[r4г܈ev({]J5Bmz/ kAoF 7(~ p!N-_iXUFt(wy v4vsr996 u\2o;/ V~~]2}kF+=!obXo`Ft.2(2G ߖ#3[5m] eV'vPl5<g+SY'7xH:Rא)(lBڀwsEZGLțJx)͑1Ǽ4i24QL/vcab '29vJ?~oD>Ɍȝ5=4W .)-bH[zdV`+ ,ext;ezEЊ([oRkzǗ8@ (F{ >z '+ `!}~0qysڙnL,BmFܰ4kdc"9!~eomNUBimܖk qګ$ 1&uʑK`{(d3~EZYG!p F2}2k'g# 6Jkco+'94Hƹs5IqN\Y}b\J*ѧ64XıHhͱ ZaR h_:b9,-;sDu$sBZےSW#>Yomc4ۓ{EmDuXK,l#3"iB*'At6O6hӤ%԰ ;{Zg"<)ƚ,Ɠū#&YM4\FyRWF[hɹTX N^*؈9HO/x` 'P٥n"]3M2բvӣAFn[Z2˜[VVI &`*~hh671*RtocM]M/i}.zFhC͝,!3yb.!Sn`L9&wd$h_`UG^MinN3C/[+ŧ@aQl .]V\+>g(93I~SkD ufsf@bwQr_%m><OwAݙY$߰S.mi FHIΏМ}°geX ෢[C>~(ևnWt껷#6?Д?mivfZKN7rFƍb j6F !  ƢLJMA VEqSg3ѕMf 7j[ !Ɔ {r:-_b+NE(UqXg!Bx>C9߽#F`D3!`}j?a*Gdk~9z2:X~z sp۹!j!IR؎⃽W.5yB!z@  ۜnKʤ329Uƽ>E;i& ua̙hP3=j#J4d2yzN9j*|Y|:g00xl`>衚 Z,9 ܇``ԐY:7%i +ivb) +Z>)nؑLefzd}jRohkxgq6_YXBM~F@܎QapC+F%( 2v_j_>ٜ/a0~IBt\XNڙ5+!)\hAkjP] |j9rKqL,f>/~S*:ڑMqlf^$yRE ^~: JXiط)ƭ- 5su!P!A֚ GFBBwdc QQtuG,s`g,skQKa>w 5=E;Qfs0^`:V Grȸ9$Y )7*7}Ϭ։Ȭ`޲KY9G4`ޤUab[wP+`\ KS4,z_G 5P#*oW-2͟OdG *vK-aUVӥϗ\ jwM$r.OfҔD""8 RpArsɈLA{j,#j>׿yB} d}rNg8^F'nQV?5IY3G-MW~[0n֊t"e/رR3Q=*lTf 0X_lD6-ו[c*$1J%/Z'hJ{zK'2-ԸkG^44B=#;.Yt-Io0nti|Qk[W} >TBÒhIO'Gd 46%28gGcB^r-i2ԂUvf G| *M7B'Z~ȧ6c rS8@@Gh&!(8Xe'V(x*P'+/99Ae9m) zA:bR>Y߮{hgPhQwЛp&:At9D'D^ws25i0L\Thn3Me + sޟ.q.p2M"!F&gW):ϟ'R~ko/X&6??ƚh vˊzFx/|[nطAFB;QA2۰ F཮h|#?J0E k֙6k |lV*ZӾxSt"W#5\yw{ K'M3 J*&0f H.Hmr:BjWK}o2-9}ZiF(ql{ד\#&ru[8P7r\HQ4^ ҅uw$y L #v>ά.WT|P} )?NJ# U  NAi7XfRbx r!ǚyإ}522u < !g8hp凲]11X81`ݬU-Z_6v~_8PQ k?4bG(I,k.]TN?wtn h KfHw{}q'^B*jZ'å#95jl%Cㆃ;lri/( yޢ%q#j%nDGެ閲FFp B+سb[]L=ԒF'FQT75k)S0?KCxl)˳#$Bi4En\}\vewoQn-@@X1p>q&|Z PT?(([ZRs$8NV-n.1/M`cnnoSoy^lFeP%) W[ o4hbuڴ1b2L&VNᰜ!&hJ[rpB@TRXfӍyf6NswS?G?.8*.&@ZOYDakV$)vȌ:"Ǟ p0 .݄nѩGs/N֑:7RfRl'q8V8¦ԹX 0Lnv+##qO!aI%Rnv<= Eæ"f:HդNs"neS,S&|˓364u7<6QKsmZTHa/+A?XO(M\n;Gcz+ֈaL^7CsYiB|<%g|5|/hHh^/s@[S `e|*HȪ倻-g 蟁rgi?"IJ 6$.7|*bg-tGй7-&Ԃr(:͹=qn1ېwW9;'1TcLYNrBX%X4Ɍ#4|{2j G0)Jiu$&.+B߀bhcnwVR+dTn5ƥt@Jy!mlkzP)aX~5œbw>ay7͎72{0srOG/3&|Nk΍%d Ȳʔ̒]i"f˃TH-RQgڹݜ -aX! U(lLNwS(Z}Cx Wɋ`'':uDƂh~8ej/1YkLc8w/wZIIJ{'l5C6R-_/nHkZb]ͱ1潐Xxd saߨr ;逩BEgp ٮ2XR4-Rv#[?;IŇLoo&uҳiv2dwQqˏ\fv3$j8IǑcSDGw3JoAj{L`t"/t,z}Ї2KF\C?Q` TiVN]r =UWKd_;Yf4a ݖFp)EgsĐdX 0W: FWYUX^:Sbfg>*S Is3)A.RTiA' d//eb꟰u?ۺu Ə5 mlGANTA@4B)PkqkJC7(JwbU=1vDdfnA%/h7#% CFz /: WCY8- eǾ:Ir'NAHyh]:]u0QveV%yj|>\,gsjO^Gn<Ьpйwxdx٥=(e37X5sd}ӛBlF,Rtml|2r(RMӊ9}Z(Km% Z% u:CXMU"`I9yܑ}eM;sRmBl@Y<,eJpx Yh4N<3R&UX76fs%RKC$M FN1-_57O` d N]'ĂMK3⹿I9hGXEtNJ.yBskѴ}3wksZ#;xzS{r(xQR;N7躩W)q{yؙR:E (֡I -OzN|D ,}@EaKl56! W#UqzUܢaCo*`D)2Xp{`*Ivo0r! $3'V0yT,zo#uXEJ GؿmrBئɕf(4m/Sx(~&)nsF\8!)-%GGvJv`z@ E:iM=P1ŘVS#/W}̣!M; t~v%%ՙvsFD\뽛4OE΍/aȨE.5r`[%1_QAT"h1cms7xr NMlʥ-鶙ԱP$ѻKA;3݈ Mx@ - -i~T 5RuPRXkuZ~/̛] zCih[28ߪ4uf+'\KPx1 W§cr"Y%P>e+['>=IDAL=,SZۭl5?]RTIarYn`0n s+ÝɈk*`6sMMNC]ׇr׽ [ >*Wsmva,%ɣa =xr'6yo|ִt7 .EѴ؍fS 32=Ke=!'{Jq1.BmCc7:/yLS`u) Z >h] yJoםRH$^ 'bK>f=v䩎XQgw mU\MP] KeJ:SmL= 8zGih\{7@%7]ƥn LyG!xG~A wXi+wIh$:;@JGviG~ `StNn\Zo-A2/ $z @.@+۲P- |AttS;m[ў+HLs~fj w:KI;sR'Hߺ(a[}k'v^0g,ll]|FU6LK'j9eUe@KeɺS::SJ2ot~l+nu CMfۍ.F5[$9D9У]w.Bg_Uj1U~߮js{6ͺ gͅ5ӒL%RuM,hY/ =Wm!ɨ/q}CE!ϴACW[!EBz7y{ "I;|JzhnSV3Jo߆⇅X _ g/d c+^ 3ؐvKt-A5KS|ZVg\Wݰ *L_Fr.h=j͓Y3¦f"( l?J% OZ:<=sL[It4;8ͫ/{R]Z/m;rs;|V<#TeH˙6u'PE*Y_ bmա (\ ж XU6ìKTƞ* 1ȉJf]M+~kƦ]76{c/iU?yy'-˪_WKw S|w;ִDxIf~`5zӟA&QM]fruô-91⍅Zz_[Xs\1\VTK[n\}rFx2Ռ$s rփɥe5 AJ?$pL>#!VuAS!jƭFDR,uT`yڬ&//(!_N`/ j{8|MK)Lc*L "!P)3;kQ dQak4i}[ߐMeY9DiL/Zhyf贽"i?%[^2T 2G{G_yO뼑c&bKJC?0Se|OTPnȹH'q˦Q~]ө Iؘ4pqܕaV@$SO{]U-'g mIdnfSvv&J|6~'O*Mh޹]UbZʄ{GdN&;e3RcRox$n2srIKQ -J Smk+$iji7]0DE$ 8Pi$':<)e6HYA~fֈS]{1٦&H_+̓ײGz~6<2ċ-8|"y ѽJC@DF/`ےRGno} u.VVI!qVyr䘣zWݼiA.G;;4n}TE<7S0q?aH=ЏGz$;Ĝk |a 6Cȍn"O@F]l"o zE ޴ձ/;q[)ZT.G!1?#t ~Dõ \vΎ_Cӿ'`y&5it@ثě֓*qU1y~6Q< s8r^x]H@)8–ԖDh~[y~bՐrWR<'qxFp't?s,twԳʒ= $U(gXԤu  Rm9K{7W0)>{D ukQ,''Xn#qUOUJ}_vdU1"ꏡibǪp8'*@^يJ$/=تwlLz}=tbb-[:3,dc- ȍ7j 3 :l䂯WI|\SDդaK&0J!}*k ϯlJQZ8Aw]#/fՌhMAhWF^ڏ *Kkj$&slڟ90Fl|Qr 1dK(%m6p1 ~F R;1HKܓRMjL@ E`=FG `5~'ZuzEQM;͚jĢ!P~)H^~ HNoSSQn舸E{JR=|濬C=F @>ΝAbEz&_ ( [ uZuh;+Odiգr|u)Պ%ԤQ79@lپ,zĊS9k9c+2A^ž'9#|,j^N&N1{j"$ Du.z8h *:)yS'b*E8CޜJ3C_էm6 w%$Ħ_CIB}vum,AΡo6m8DEp$k|Ì'BBX0GCVygm9K߰bW.Z6@DՈwye4|"R/h_VG_g(~MG36V?D`6 QI\w0B@xQJaP]A{}SY67 "ڬ1 VS:nɑ$xjv'3J, mhFҠaS,?,%m~m;ER2z36@ǚt p#f^e4 rʸ;E]MNvK:j"<0\jo J7 ʧ~Nb!ЁԐfbrU} dMS?1Nڃ#Q]95A7^hޯFIx!Px eDWSIۊp+w'mKJmYp W^qng[Иn'w_9g\DF$1c+YE:?&IV4U:IL(5BC`HS_eto%vWgRIxs@)16"!ji0QcLk%AR͎%4,nj8]M`M{)Oȅ ^"<|riHa3%T@^a5u( /6xحIP[ִ:"Z[ V`-6}>m$dWPhGVREN&:O?dEc&M\7[  ̑BQٝUǿ+M.Giw(DyK3 NcC9BǼtVt35weˇӤE+5@ڐ9Lg o#q |akDkjڣnwP!q=ua3'ZPPGglɨE;#|w w緺ОrfiT\$'_ :c}^ YЧCR%*q3j,V+D 2D DSnǘNd&iZ3,=-쓆»A^Dȶ YZ