v1.20: 20NOV2018

	Added support for socks5 protocol (Eugene Protozanov)

	New probing method:
	Before, probes were tried in order, repeating on the
	same probe as long it returned PROBE_AGAIN before
	moving to the next one. This means a probe which
	requires a lot of data (i.e. returne PROBE_AGAIN for
	a long time) could prevent sucessful matches from
	subsequent probes. The configuration file needed to
	take that into account.

	Now, all probes are tried each time new data is
	found. If any probe matches, use it. If at least one
	probe requires more data, wait for more. If all
	probes failed, connect to the last one. So the only
	thing to know when writing the configuration file is
	that 'anyprot' needs to be last.

	Test suite heavily refactored; `t` uses `test.cfg`
	to decide which probes to test and all setup is
	automatic; probes get tested with 'fast' (entire
	first message in one packet) and 'slow' (one byte at
	a time); when SNI/ALPN are defined, all combinations
	are tested.

	Old 'tls' probe removed, 'sni_alpn' probe renamed as 'tls'.
	You'll need to change 'sni_alpn' to 'tls' in
	your configuration file, if ever you used it.

bug fix

v1.19b -- bug fix

v1.19: 20JAN2018

	Added 'syslog_facility' configuration option to
	specify where to log.

	TLS now supports SNI and ALPN (Travis Burtrum),
	including support for Let's Encrypt challenges
	(Jonathan McCrohan)

	ADB probe. (Mike Frysinger)

	Added per-protocol 'fork' option. (Oleg Oshmyan)

	Added chroot option. (Mike Frysinger)

	A truckload of bug fixes and documentation
	improvements (Various contributors)

v1.18: 29MAR2016

        Added USELIBPCRE to make use of regex engine
        optional.

        Added support for RFC4366 SNI and RFC7301 ALPN
        (Travis Burtrum)

        Changed connection log to include the name of the probe that
        triggered.

        Changed configuration file format: 'probe' field is
        no longer required, 'name' field can now contain
        'tls' or 'regex', with corresponding options (see
        example.cfg)
        Added 'log_level' option to each protocol, which
        allows to turn off generation of log at each
        connection.
        Added 'keepalive' option.

v1.17: 09MAR2015

        Support RFC5952-style IPv6 addresses, e.g. [::]:443.

        Transparant proxy support for FreeBSD.
        (Ruben van Staveren)

        Using -F with no argument will try
        /etc/sslh/sslh.cfg and then /etc/sslh.cfg as
        configuration files. (argument to -F can no longer
        be separated from the option by a space, e.g. must
        be -Ffoo.cfg)

        Call setgroups() before setgid() (fixes potential
        privilege escalation).
        (Lars Vogdt)

        Use portable way of getting modified time for OSX
        support.
        (Aaron Madlon-Kay)

        Example configuration for fail2ban.
        (Every Mouw)

v1.16: Hardened probes, Libcap support, IP_FREEBIND support