summaryrefslogtreecommitdiff
path: root/mail/sendmail
AgeCommit message (Collapse)AuthorFilesLines
2004-01-20Move WRKSRC definition away from the first paragraph in a Makefile.agc1-2/+2
2003-12-03Replace any "/" in OPSYS name with a "-". Sendmail's buildreed2-6/+6
mechanism already does this, so pkgsrc for this should do the same. Make sure getipnodebyaddr is used under BSD/OS. This closes PR #23060.
2003-12-03Masao Uebayashi asked me to back out this change.ben2-8/+6
My apologies for any inconveniences from the original change.
2003-12-02This package would install a directory and two files on the build machineben3-6/+8
that do make it into the binary package. Under the default configuration on NetBSD these files are erroneous. This fix should resolve PR 20852 Here are the details: 1) /etc/mail/statistics This file is created like so: statistics: ${CP} /dev/null statistics This file is not needed because sendmail is configured to use: O StatusFile=/var/log/sendmail.st To avoid creating this file, I added to devtools/OS/NetBSD: define(`confNO_STATISTICS_INSTALL', `') 2) /etc/mail/submit.cf This file is not needed because we install it as: ${PREFIX}/share/sendmail/cf/submit.cf To avoid installing /etc/mail/submit.cf, I added to devtools/OS/NetBSD: define(`confINST_DEP', `') If confINST_DEP is undefined, then it will default to: `${DESTDIR}/etc/mail/submit.cf ${DESTDIR}${MSPQ}' 3) /var/db/pkg/sendmail-8.12.8nb1/+INSTALL This is now created by pkg_add with the binary package. It appears the problem is resolved. 4) /var/spool/clientmqueue This directory is not needed because sendmail is configured to use: O QueueDirectory=/var/spool/mqueue To avoid installing this directory, I added to devtools/OS/NetBSD: define(`confINST_DEP', `')
2003-11-12PKGREVISION++ after openssl update.jschauma1-1/+2
2003-10-03Also record USE_SASL2 in BUILD_DEFS.seb1-2/+2
2003-09-19remove the M4 dance, and just set USE_GNU_TOOLS+=m4.grant1-18/+3
2003-09-18update to sendmail 8.12.10.grant3-7/+6
8.12.10/8.12.10 2003/09/24 SECURITY: Fix a buffer overflow in address parsing. Problem detected by Michal Zalewski, patch from Todd C. Miller of Courtesan Consulting. Fix a potential buffer overflow in ruleset parsing. This problem is not exploitable in the default sendmail configuration; only if non-standard rulesets recipient (2), final (4), or mailer-specific envelope recipients rulesets are used then a problem may occur. Problem noted by Timo Sirainen. Accept 0 (and 0/0) as valid input for set MaxMimeHeaderLength. Problem noted by Thomas Schulz. Add several checks to avoid (theoretical) buffer over/underflows. Properly count message size when performing 7->8 or 8->7 bit MIME conversions. Problem noted by Werner Wiethege. Properly compute message priority based on size of entire message, not just header. Problem noted by Axel Holscher. Reset SevenBitInput to its configured value between SMTP transactions for broken clients which do not properly announce 8 bit data. Problem noted by Stefan Roehrich. Set {addr_type} during queue runs when processing recipients. Based on patch from Arne Jansen. Better error handling in case of (very unlikely) queue-id conflicts. Perform better error recovery for address parsing, e.g., when encountering a comment that is too long. Problem noted by Tanel Kokk, Union Bank of Estonia. Add ':' to the allowed character list for bogus HELO/EHLO checking. It is used for IPv6 domain literals. Patch from Iwaizako Takahiro of FreeBit Co., Ltd. Reset SASL connection context after a failed authentication attempt. Based on patch from Rob Siemborski of CMU. Check Berkeley DB compile time version against run time version to make sure they match. Do not attempt AAAA (IPv6) DNS lookups if IPv6 is not enabled in the kernel. When a milter adds recipients and one of them causes an error, do not ignore the other recipients. Problem noted by Bart Duchesne. CONFIG: Use specified SMTP error code in mailertable entries which lack a DSN, i.e., "error:### Text". Problem noted by Craig Hunt. CONFIG: Call Local_trust_auth with the correct argument. Patch from Jerome Borsboom. CONTRIB: Better handling of temporary filenames for doublebounce.pl and expn.pl to avoid file overwrites, etc. Patches from Richard A. Nelson of Debian and Paul Szabo. MAIL.LOCAL: Fix obscure race condition that could lead to an improper mailbox truncation if close() fails after the mailbox is fsync()'ed and a new message is delivered after the close() and before the truncate(). MAIL.LOCAL: If mail delivery fails, do not leave behind a stale lockfile (which is ignored after the lock timeout). Patch from Oleg Bulyzhin of Cronyx Plus LLC. Portability: Port for AIX 5.2. Thanks to Steve Hubert of University of Washington for providing access to a computer with AIX 5.2. setreuid(2) works on OpenBSD 3.3. Patch from Todd C. Miller of Courtesan Consulting. Allow for custom definition of SMRSH_CMDDIR and SMRSH_PATH on all operating systems. Patch from Robert Harker of Harker Systems. Use strerror(3) on Linux. If this causes a problem on your Linux distribution, compile with -DHASSTRERROR=0 and tell sendmail.org about it. Added Files: devtools/OS/AIX.5.2 update provided by Adrian Portelli in PR pkg/22836.
2003-09-15Build Milter support in sendmail unconditionally. There is little impactmarkd3-11/+7
if no milters configured and setting is consistent with how the in-tree version is built. Bump PKGREVISION. Closes PR pkg/21010 from Todd Vierling.
2003-09-15Set smrsh CMDDIR for NetBSD to /usr/libexec/sm.bin to match the in-treemarkd2-1/+16
version. From PR pkg/21012 from Jim Bernard.
2003-08-11All sun4's are created equal (as far as sendmail is concerned).markd1-3/+3
2003-07-17s/netbsd.org/NetBSD.org/grant1-2/+2
2003-06-23s/packages@/tech-pkg@/gjschauma1-2/+2
(Forgot the last time we did this. Pointed out by Sergey Svishchev (svs at ropnet dot ru))
2003-06-10Bump PKGREVISION because of db4 shlib major bump.wiz1-2/+2
2003-05-02Dependency bumps, needed because of devel/pth's major bump, and relatedwiz1-2/+2
dependency bumps.
2003-05-01Move the example mailer.conf file to the examples directory.jmmv3-9/+12
Bump PKGREVISION to 2 (and fix PKGNAME).
2003-04-17If USE_MILTER, install libsm.a and libsmutil.a. They are needed inmanu1-2/+11
order to build amavis-perl 0.1 with milter support.
2003-03-29Update to version 8.12.9.seb2-6/+7
This is mostly a security fix release. See the list of changes since 8.12.8 below. Package change: always put M4 in MAKE_ENV so we are sure of the one used. Note: this also update mail/libmilter the same version. 8.12.9/8.12.9 2003/03/29 SECURITY: Fix a buffer overflow in address parsing due to a char to int conversion problem which is potentially remotely exploitable. Problem found by Michal Zalewski. Note: an MTA that is not patched might be vulnerable to data that it receives from untrusted sources, which includes DNS. To provide partial protection to internal, unpatched sendmail MTAs, 8.12.9 changes by default (char)0xff to (char)0x7f in headers etc. To turn off this conversion compile with -DALLOW_255 or use the command line option -d82.101. To provide partial protection for internal, unpatched MTAs that may be performing 7->8 or 8->7 bit MIME conversions, the default for MaxMimeHeaderLength has been changed to 2048/1024. Note: this does have a performance impact, and it only protects against frontal attacks from the outside. To disable the checks and return to pre-8.12.9 defaults, set MaxMimeHeaderLength to 0/0. Do not complain about -ba when submitting mail. Problem noted by Derek Wueppelmann. Fix compilation with Berkeley DB 1.85 on systems that do not have flock(2). Problem noted by Andy Harper of Kings College London. Properly initialize data structure for dns maps to avoid various errors, e.g., looping processes. Problem noted by Maurice Makaay. CONFIG: Prevent multiple application of rule to add smart host. Patch from Andrzej Filip. CONFIG: Fix queue group declaration in MAILER(`usenet'). CONTRIB: buildvirtuser: New option -t builds the virtusertable text file instead of the database map. Portability: Revert wrong change made in 8.12.7 and actually use the builtin getopt() version in sendmail on Linux. This can be overridden by using -DSM_CONF_GETOPT=0 in which case the OS supplied version will be used.
2003-03-29Place WRKSRC where it belongs, to make pkglint happy; ok'ed by wiz.jmmv1-2/+2
2003-03-04Older NetBSD's m4 (before 1.5Z) cannot be used by sendmail devtools.seb1-1/+17
So provide a build dependency on GNU m4 (devel/m4) when appropriate. Bump PKGREVISION.
2003-03-04Update to version 8.12.8. Security related change included.seb6-77/+24
Also SASL 2 support added and PLIST tuning. 8.12.8/8.12.8 2003/02/11 SECURITY: Fix a remote buffer overflow in header parsing by dropping sender and recipient header comments if the comments are too long. Problem noted by Mark Dowd of ISS X-Force. Fix a potential non-exploitable buffer overflow in parsing the .cf queue settings and potential buffer underflow in parsing ident responses. Problem noted by Yichen Xie of Stanford University Compilation Group. Fix ETRN #queuegroup command: actually start a queue run for the selected queue group. Problem noted by Jos Vos. If MaxMimeHeaderLength is set and a malformed MIME header is fixed, log the fixup as "Fixed MIME header" instead of "Truncated MIME header". Problem noted by Ian J Hart. CONFIG: Fix regression bug in proto.m4 that caused a bogus error message: "FEATURE() should be before MAILER()". MAIL.LOCAL: Be more explicit in some error cases, i.e., whether a mailbox has more than one link or whether it is not a regular file. Patch from John Beck of Sun Microsystems. 8.12.7/8.12.7 2002/12/29 Properly clean up macros to avoid persistence of session data across various connections. This could cause session oriented restrictions, e.g., STARTTLS requirements, to erroneously allow a connection. Problem noted by Tim Maletic of Priority Health. Do not lookup MX records when sorting the MSP queue. The MSP only needs to relay all mail to the MTA. Problem found by Gary Mills of the University of Manitoba. Do not restrict the length of connection information to 100 characters in some logging statements. Problem noted by Erik Parker. When converting an enhanced status code to an exit status, use EX_CONFIG if the first digit is not 2, 4, or 5 or if *.1.5 is used. Reset macro $x when receiving another MAIL command. Problem noted by Vlado Potisk of Wigro s.r.o. Don't bother setting the permissions on the build area statistics file, the proper permissions will be put on the file at install time. This fixes installation over NFS for some users. Problem noted by Martin J. Dellwo of 3-Dimensional Pharmaceuticals, Inc. Fix problem of decoding SASLv2 encrypted data. Problem noted by Alex Deiter of Mobile TeleSystems, Komi Republic. Log milter socket open errors at MilterLogLevel 1 or higher instead of 11 or higher. Print early system errors to the console instead of silently exiting. Problem noted by James Jong of IBM. Do not process a queue group if Runners is set to 0, regardless of whether F=f or sendmail is run in verbose mode (-v). The use of -qGname will still force queue group "name" to be run even if Runners=0. Change the level for logging the fact that a daemon is refusing connections due to high load from LOG_INFO to LOG_NOTICE. Patch from John Beck of Sun Microsystems. Use location information for submit.cf from NetInfo (/locations/sendmail/submit.cf) if available. Re-enable ForkEachJob which was lost in 8.12.0. Problem noted by Neil Rickert of Northern Illinois University. Make behavior of /canon in debug mode consistent with usage in rulesets. Patch from Shigeno Kazutaka of IIJ. Fix a potential memory leak in envelope splitting. Problem noted by John Majikes of IBM. Do not try to share an mailbox database LDAP connection across different processes. Problem noted by Randy Kunkee. Fix logging for undelivered recipients when the SMTP connection times out during message collection. Problem noted by Neil Rickert of Northern Illinois University. Avoid problems with QueueSortOrder=random due to problems with qsort() on Solaris (and maybe some other operating systems). Problem noted by Stephan Schulz of Gruner+Jahr.. If -f "" is specified, set the sender address to "<>". Problem noted by Matthias Andree. Fix formatting problem of footnotes for plain text output on some versions of tmac. Patch from Per Hedeland. Portability: Berkeley DB 4.1 support (requires at least 4.1.25). Some getopt(3) implementations in GNU/Linux are broken and pass a NULL pointer to an option which requires an argument, hence the builtin version of sendmail is used instead. This can be overridden by using -DSM_CONF_GETOPT=0. Problem noted by Vlado Potisk of Wigro s.r.o. Support for nph-1.2.0 from Mark D. Roth of the University of Illinois at Urbana-Champaign. Support for FreeBSD 5.0's MAC labeling from Robert Watson of the TrustedBSD Project. Support for reading the number of processors on an IRIX system from Michel Bourget of SGI. Support for UnixWare 7.1 based on input from Larry Rosenman. Interix support from Nedelcho Stanev of Atlantic Sky Corporation. Update Mac OS X/Darwin portability from Wilfredo Sanchez. CONFIG: Enforce tls_client restrictions even if delay_checks is used. Problem noted by Malte Starostik. CONFIG: Deal with an empty hostname created via bogus DNS entries to get around access restrictions. Problem noted by Kai Schlichting. CONFIG: Use FEATURE(`msp', `[127.0.0.1]') in submit.mc by default to avoid problems with hostname resolution for localhost which on many systems does not resolve to 127.0.0.1 (or ::1 for IPv6). If you do not use IPv4 but only IPv6 then you need to change submit.mc accordingly, see the comment in the file itself. CONFIG: Set confDONT_INIT_GROUPS to True in submit.mc to avoid error messages from initgroups(3) on AIX 4.3 when sending mail to non-existing users. Problem noted by Mark Roth of the University of Illinois at Urbana-Champaign. CONFIG: Allow local_procmail to override local_lmtp settings. CONFIG: Always allow connections from 127.0.0.1 or IPv6:::1 to relay. CONTRIB: cidrexpand: Deal with the prefix tags that may be included in access_db. CONTRIB: New version of doublebounce.pl contributed by Leo Bicknell. LIBMILTER: On Solaris libmilter may get into an endless loop if an error in the communication from/to the MTA occurs. Patch from Gurusamy Sarathy of Active State. LIBMILTER: Ignore EINTR from sigwait(3) which may happen on Tru64. Patch from from Jose Marcio Martins da Cruz of Ecole Nationale Superieure des Mines de Paris. MAIL.LOCAL: Fix a truncation race condition if the close() on the mailbox fails. Problem noted by Tomoko Fukuzawa of Sun Microsystems. MAIL.LOCAL: Fix a potential file descriptor leak if mkstemp(3) fails. Patch from John Beck of Sun Microsystems. SMRSH: SECURITY: Only allow regular files or symbolic links to be used for a command. Problem noted by David Endler of iDEFENSE, Inc. New Files: devtools/OS/Interix include/sm/bdb.h
2003-01-28Instead of including bsd.pkg.install.mk directly in a package Makefile,jlam1-2/+2
have it be automatically included by bsd.pkg.mk if USE_PKGINSTALL is set to "YES". This enforces the requirement that bsd.pkg.install.mk be included at the end of a package Makefile. Idea suggested by Julio M. Merino Vidal <jmmv at menta.net>.
2002-10-03Add missing uid field in PKG_USERS entry. From kivinen@ssh.fi in pkg/18518markd1-2/+2
2002-10-03http://www.sendmail.org/smrsh.adv.txtitojun3-2/+66
2002-09-23Update to sendmail-8.12.6markd19-126/+164
Large number of bug fixes and feature enhancements, especially Milter (Mail Filter) support and by default installation of sendmail does not use set-user-ID root anymore.
2002-08-21If using SASL cyrus-sasl package is actually needed.seb1-1/+5
2002-06-23Add optional SASL support via the "cyrus-sasl" package. Based on changestron2-20/+29
supplied by Stoned Elipot in PR pkg/13316.
2002-06-23Improve buildlink support by adding the required "-I" and "-L" definitionstron6-12/+12
only once in "site.config.m4" and not in each configuration file.
2002-06-17Complete buildlink conversation of this package by using it for the "db"tron2-4/+4
package, too.
2002-06-17Fix and buildlinkify broken LDAP support.tron2-3/+3
2002-06-17Don't use TCP wrappers only under NetBSD. Turn it into a build optiontron2-12/+20
and use the "tcp_wrapper" package if necessary.
2002-06-17Record various build definitions.tron1-2/+2
2002-06-17Fix this package to use buildlink instead of "USE_SSL".tron2-8/+7
2002-06-17Undo last for now -- needs more changes.wiz1-2/+2
2002-06-17Use openssl buildlink.mk instead of USE_SSL.wiz1-2/+2
2002-02-15mkdir -> ${MKDIR}skrll1-2/+2
rmdir -> ${RMDIR} rm -> ${RM} (${RM} added to PLIST_SUBST) chmod -> ${CHMOD} chown -> ${CHOWN}
2001-11-29Get rid of manually adding "nbX" to PKGNAME when a pkg was changed inhubertf1-2/+3
pkgsrc. Instead, a new variable PKGREVISION is invented that can get bumped independent of DISTNAME and PKGNAME. Example #1: DISTNAME= foo-X.Y PKGREVISION= Z => PKGNAME= foo-X.YnbZ Example #2: DISTNAME= barthing-X.Y PKGNAME= bar-X.Y PKGREVISION= Z => PKGNAME= bar=X.YnbZ (!) On subsequent changes, only PKGREVISION needs to be bumped, no more risk of getting DISTNAME changed accidentally.
2001-11-11Adjust format a bit:hubertf1-1/+3
* 75 * '=' * RCS ID * blank line * message text * optional blank line * 75 * '='
2001-11-01Move pkg/ files into package's toplevel directoryzuntum3-2/+2
2001-10-19Switch back to one PLIST file by adding a site.config.m4-solaris for theveego5-23/+24
manpage extensions and directories.
2001-09-09Enable wide patch and make this package sendmail-8.11.6nb1.taca2-6/+8
Please look at ${WRKSRC}/sendmail/00READ_ME.WIDE file created by sendmail8.11.6+3.4W.patch.gz for detail of the patch.
2001-08-21upgrade to 8.11.6. fixes a security problem with command line processing.itojun2-6/+6
2001-08-01upgrade to 8.11.5. minor bug fixes from 8.11.4.itojun3-22/+6
patch-zz (security patch on signal handling) is now in 8.11.5.
2001-06-25In some cases, SIGHUP may kill sendmail instead of restarting it.wiz2-1/+17
Avoid this by using http://www.sendmail.org/~ca/email/patches/daemon.c.8.401.4.62 as proposed by Wolfgang Rupprecht in pkg/13267. (Added as patch-zz, should be removed on next update.)
2001-05-29update to 8.11.4. security related change included (no exploit available yet)itojun3-9/+13
8.11.4/8.11.4 2001/05/28 Clean up signal handling routines to reduce the chances of heap corruption and other potential race conditions. Terminating and restarting the daemon may not be instantaneous due to this change. Also, non-root users can no longer send out-of-band signals. Problem reported by Michal Zalewski of BindView. If LogLevel is greater than 9 and SASL fails to negotiate an encryption layer, avoid core dump logging the encryption strength. Problem noted by Miroslav Zubcic of Crol. If a server offers "AUTH=" and "AUTH " and the list of mechanisms is different in those two lines, sendmail might not have recognized (and used) all of the offered mechanisms. Fix an IP address lookup problem on Solaris 2.0 - 2.3. Patch from Kenji Miyake. This time, really don't use the .. directory when expanding QueueDirectory wildcards. If a process is interrupted while closing a map, don't try to close the same map again while exiting. Allow local mailers (F=l) to contact remote hosts (e.g., via LMTP). Problem noted by Norbert Klasen of the University of Tuebingen. If Timeout.QueueReturn was set to a value less the time it took to write a new queue file (e.g., 0 seconds), the bounce message would be lost. Problem noted by Lorraine L Goff of Oklahoma State University. Pass map argument vector into map rewriting engine for the regex and prog map types. Problem noted by Stephen Gildea of InTouch Systems, Inc. When closing an LDAP map due to a temporary error, close all of the other LDAP maps which share the original map's connection to the LDAP server. Patch from Victor Duchovni of Morgan Stanley. To detect changes of NDBM aliases files check the timestamp of the .pag file instead of the .dir file. Problem noted by Neil Rickert of Northern Illinois University. Don't treat temporary hesiod lookup failures as permanent. Patch from Werner Wiethege. If ClientPortOptions is set, make sure to create the outgoing socket with the family set in that option. Patch from Sean Farley. Avoid a segmentation fault trying to dereference a NULL pointer when logging a MaxHopCount exceeded error with an empty recipient list. Problem noted by Chris Adams of HiWAAY Internet Services. Fix DSN for "Too many hops" bounces. Problem noticed by Ulrich Windl of the Universitaet Regensburg. Fix DSN for "mail loops back to me" bounces. Problem noticed by Kari Hurtta of the Finnish Meteorological Institute. Portability: OpenBSD has a broken setreuid() implementation. CONFIG: Undo change from 8.11.1: change 501 SMTP reply code back to 553 since it is allowed by DRUMS. CONFIG: Add OSTYPE(freebsd4) for FreeBSD 4.X. DEVTOOLS: install.sh did not properly handle paths in the source file name argument. Noted by Kari Hurtta of the Finnish Meteorological Institute. DEVTOOLS: Add FAST_PID_RECYCLE to compile time options for OpenBSD since it generates random process ids. PRALIASES: Add back adaptive algorithm to deal with different endings of entries in the database (with/without trailing '\0'). Patch from John Beck of Sun Microsystems. New Files: cf/ostype/freebsd4.m4
2001-04-20Move to sha1 digests, and add distfile sizes.agc1-1/+3
2001-04-17+ move the distfile digest/checksum value from files/md5 to distinfoagc2-5/+3
+ move the patch digest/checksum values from files/patch-sum to distinfo
2001-04-15go back to 8.11.3. it was my mistake that i have committed 8.12.0Beta intoitojun10-72/+53
mail/sendmail.
2001-04-13upgrade to 8.12.0.Beta7.itojun10-53/+72
confDELIVERBYMIN and confSHAREDMEMORYKEY have been renamed to confDELIVER_BY_MIN and confSHARED_MEMORY_KEY, respectively. The macro {sendmailMTACluster} replaces {LDAPCluster}. Added FEATURE(`queuegroup') for selecting a queue group in the access database. Added OSTYPE(`freebsd4') sendmail/TUNING gives some hints about performance tuning. Any IPv6 addresses used in configuration should be prefixed by the "IPv6:" tag to identify the address properly. For example, if you want to add the IPv6 address [2002:c0a8:51d2::23f4] to class {w}, you would need to add [IPv6:2002:c0a8:51d2::23f4]; if you want to use it in the access database, you would need to use IPv6:2002:c0a8:51d2::23f4 on the left hand side.
2001-03-05pull in WIDE patch for 8.11.3. this speeds up pkgsrc/mail/smtpfeeditojun2-10/+11
(better LMTP).