Age | Commit message (Collapse) | Author | Files | Lines |
|
imap-uw: update package for security fix
revisions pulled up:
pkgsrc/mail/imap-uw/Makefile 1.128,1.129
pkgsrc/mail/imap-uw/PLIST 1.16
pkgsrc/mail/imap-uw/distinfo 1.35
Module Name: pkgsrc
Committed By: obache
Date: Mon Dec 1 11:03:50 UTC 2008
Modified Files:
pkgsrc/mail/imap-uw: Makefile PLIST
Log Message:
Also install dummy.h.
It is included from flocksim.h, required by some platforms. PR 40075.
Bump PKGREVISION.
While here, marked as MAKE_JOBS_SAFE=no
------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Mon Dec 29 16:29:50 UTC 2008
Modified Files:
pkgsrc/mail/imap-uw: Makefile distinfo
Log Message:
Update "imap-uw" package to version 2007e.
This version is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users
plus a security fix for users of the RFC822BUFFER routines.
Approved by Thomas Klausner.
|
|
sympa: security update
Revisions pulled up:
- mail/sympa/Makefile 1.38 (via patch)
- mail/sympa/PLIST 1.7 (via patch)
- mail/sympa/distinfo 1.11 (via patch)
---
Module Name: pkgsrc
Committed By: bouyer
Date: Sat Dec 20 19:02:12 UTC 2008
Modified Files:
pkgsrc/mail/sympa: Makefile PLIST distinfo
Log Message:
Update sympa to 5.4.4. Bug fixes (including SQL injestion and privilege
escalation vulnerabilities) and updated translations:
* Sympa was not fully compliant to the RFC 2616, leading for example
to possible unwanted list deletion by administrators using prefetching
tools. This was fixed by replacing all the threatening GET requests
by POST requests;
* Use of sprint() function for creating SQL queries lead to possible
SQL injection through cookie manipulation;
* The use of files in /tmp lead to vulnerabilities.
|
|
squirremal: security update
Revisions pulled up:
- mail/squirrelmail/Makefile 1.100-1.101
- mail/squirrelmail/PLIST 1.28
- mail/squirrelmail/buildlink3.mk 1.20
- mail/squirrelmail/distinfo 1.49-1.50
- mail/squirrelmail/options.mk 1.9
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Nov 19 14:47:51 UTC 2008
Modified Files:
pkgsrc/mail/squirrelmail: Makefile distinfo options.mk
Log Message:
Update Japanese patch to squirrelmail-1.4.16-ja-20081013.
No functional should be changed though.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: martti
Date: Thu Dec 4 07:18:47 UTC 2008
Modified Files:
pkgsrc/mail/squirrelmail: Makefile PLIST buildlink3.mk distinfo
Log Message:
Updated mail/squirrelmail to 1.4.17
The SquirrelMail team is happy to announce the release of version 1.4.17. The
most notable change is a security fix that prevents certain specially-crafted
hyperlinks within messages from executing cross-site scripting attacks. For
other details, see the ReleaseNotes file included in this release. We advise
all users of SquirrelMail software to upgrade.
|
|
sympa: fix master site
revisions pulled up:
pkgsrc/mail/sympa/Makefile 1.36
Module Name: pkgsrc
Committed By: bouyer
Date: Sun Nov 30 18:13:30 UTC 2008
Modified Files:
pkgsrc/mail/sympa: Makefile
Log Message:
Add missing trailing / to one of the MASTER_SITES
|
|
clamav: update package for fixes
revisions pulled up:
pkgsrc/mail/clamav/Makefile 1.89
pkgsrc/mail/clamav/buildlink3.mk 1.18
pkgsrc/mail/clamav/distinfo 1.56
Module Name: pkgsrc
Committed By: martti
Date: Thu Nov 27 06:07:49 UTC 2008
Modified Files:
pkgsrc/mail/clamav: Makefile buildlink3.mk distinfo
Log Message:
Updated mail/clamav to 0.94.2
Lots of bug fixes, including
* clamd: LogFileUnlock was not working correctly (bb#1304)
* freshclam/manager.c: add support for http proxy in SubmitDetectionStats
(bb#1284)
* unit_tests/valgrind.supp: add more valgrind suppressions
(bb#1283,#1286,#1294)
* libclamav/readdb.c: fix handling of malformed ldb sigs (bb#1292)
* freshclam/manager.c: improve reporting of server failures (bb#777)
* clamscan/manager.c: fix double-slash when scanning the root dir (bb#1263)
* libclamav/nsis: improve lateny (bb#1180)
* libclamunrar/unrar.c: avoid rar_malloc warnings on damaged files (bb
#1290)
* libclamav/htmlnorm.c: fix memory leak (bb #1291)
|
|
thunderbird: security update
thunderbird-gtk1: security update
Revisions pulled up:
- mail/thunderbird/Makefile-thunderbird.common 1.38
- mail/thunderbird/distinfo 1.49
---
Module Name: pkgsrc
Committed By: is
Date: Mon Nov 24 17:19:13 UTC 2008
Modified Files:
pkgsrc/mail/thunderbird: Makefile-thunderbird.common distinfo
Log Message:
Upgrade to 2.0.0.18 (some security fix)
|
|
imap-uw: shared version and package version bumps
imap-uw-utils: bump package revision
mailsync: bump package revision
php-imap: bump package revision
pine: bump package revision
prayer: bump package revision
revisions pulled up:
pkgsrc/mail/imap-uw/Makefile 1.127
pkgsrc/mail/imap-uw/buildlink3.mk 1.15
pkgsrc/mail/imap-uw-utils/Makefile 1.28
pkgsrc/mail/mailsync/Makefile 1.30
pkgsrc/mail/php-imap/Makefile 1.16
pkgsrc/mail/pine/Makefile 1.121
pkgsrc/mail/prayer/Makefile 1.37
Module Name: pkgsrc
Committed By: tron
Date: Thu Nov 13 14:20:20 UTC 2008
Modified Files:
pkgsrc/mail/imap-uw: Makefile buildlink3.mk
Log Message:
Bump the following things:
- The shared library major version because it is no longer compatible
with old binaries.
- The package revision because of the above change.
- The minimum API and ABI versions because new binary packages are no
longer compatible with an old "imap-uw" package.
------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Thu Nov 13 14:21:05 UTC 2008
Modified Files:
pkgsrc/mail/imap-uw-utils: Makefile
pkgsrc/mail/mailsync: Makefile
pkgsrc/mail/php-imap: Makefile
pkgsrc/mail/pine: Makefile
pkgsrc/mail/prayer: Makefile
Log Message:
Bump the package revisions of all packages that depend on the
"imap-uw" package because of binary incompatibilities.
|
|
imap-uw: update package for security and bug fixes
revisions pulled up:
pkgsrc/mail/imap-uw/Makefile 1.126
pkgsrc/mail/imap-uw/PLIST 1.15
pkgsrc/mail/imap-uw/distinfo 1.34
pkgsrc/mail/imap-uw/patches/patch-aa 1.20
pkgsrc/mail/imap-uw/patches/patch-ab 1.23
pkgsrc/mail/imap-uw/patches/patch-ad 1.8
pkgsrc/mail/imap-uw/patches/patch-ae 1.18
pkgsrc/mail/imap-uw/patches/patch-ak r0
pkgsrc/mail/imap-uw/patches/patch-bb 1.3
pkgsrc/mail/imap-uw/patches/patch-bc 1.3
Module Name: pkgsrc
Committed By: tron
Date: Thu Nov 6 15:27:00 UTC 2008
Modified Files:
pkgsrc/mail/imap-uw: Makefile PLIST distinfo
pkgsrc/mail/imap-uw/patches: patch-aa patch-ab patch-ad patch-ae
patch-bb patch-bc
Removed Files:
pkgsrc/mail/imap-uw/patches: patch-ak
Log Message:
Update "imap-uw" package to imap-2007d. Changes since version 2006j2:
- security fix for users of tmail or dmail.
- bug fixes and reliability improvements.
- A new function, utf8_csvalidmap(), has been added for the benefit of
Alpine to use in examining UTF-8 text and determining efficiently
whether it can be downgraded to a legacy charset. If you develop an
MUA, this may be useful for you too, although you'll have to read the
source code to see how to use it. The purpose of the "not-CJK" bit is
to prevent messages being downgraded to a CJK charset if all they have
in that charset are some special punctuation.
This update address the security vulnerability reported in SA32483.
|
|
clamav: update package for bug fixes
revisions pulled up:
pkgsrc/mail/clamav/Makefile 1.88
pkgsrc/mail/clamav/buildlink3.mk 1.17
pkgsrc/mail/clamav/distinfo 1.55
pkgsrc/mail/clamav/patches/patch-ad 1.16
pkgsrc/mail/clamav/patches/patch-af 1.7
pkgsrc/mail/clamav/patches/patch-ah 1.17
Module Name: pkgsrc
Committed By: martti
Date: Tue Nov 4 07:16:18 UTC 2008
Modified Files:
pkgsrc/mail/clamav: Makefile buildlink3.mk distinfo
pkgsrc/mail/clamav/patches: patch-ad patch-af patch-ah
Log Message:
Updated mail/clamav to 0.94.1
* Bug fixes
|
|
dovecot: update package for security fixes
revisions pulled up:
pkgsrc/mail/dovecot/Makefile 1.122, 1.123
pkgsrc/mail/dovecot/PLIST 1.22
pkgsrc/mail/dovecot/distinfo 1.87, 1.88
Module Name: pkgsrc
Committed By: ghen
Date: Wed Oct 22 21:16:36 UTC 2008
Modified Files:
pkgsrc/mail/dovecot: Makefile PLIST distinfo
Log Message:
Update to Dovecot 1.1.5. Changes since 1.1.4:
* Dovecot prints an informational message about authentication problems
at startup. The message goes away after the first successful
authentication. This hopefully reduces the number of "Why doesn't
my authentication work?" questions.
+ Maildir/dbox: Try harder to assign unique UIDVALIDITY values to
mailboxes to avoid potential problems when recreating or renaming
mailboxes. The UIDVALIDITY is tracked using dovecot-uidvalidity*
files in the mail root directory.
+ Many logging improvements
- In some conditions Dovecot could have stopped using existing cache
file and never used it again until it was deleted.
- pop3 + Maildir: Make sure virtual sizes are always written to
dovecot-uidlist. This way if the indexes are lost Dovecot will never
do a huge amount of work to recalculate them.
- mbox: Fixed listing mailboxes in namespaces with prefix beginning
with '~' or '/' (i.e. UW-IMAP compatibility namespaces didn't work).
- dict quota: Don't crash when recalculating quota (when quota warnings
enabled).
- Fixes to handling "out of disk space/quota" failures.
- Blocking passdbs/userdbs (e.g. PAM, MySQL) could have failed lookups
sometimes when auth_worker_max_request_count was non-zero.
- Fixed compiling with OpenBSD
------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: adrianp
Date: Sun Nov 2 16:19:53 UTC 2008
Modified Files:
pkgsrc/mail/dovecot: Makefile distinfo
Log Message:
Update to 1.1.6
Ok'ed geert@
The invalid message address parsing bug is pretty important since it
allows a remote user to send broken mail headers and prevent the
recipient from accessing the mailbox afterwards, because the process
will always just crash trying to parse the header. This is assuming that
the IMAP client uses FETCH ENVELOPE command, not all do. Note that it
doesn't affect versions older than v1.1.4.
+ dovecot -n and -a now prints some system information at the top.
+ More error/debug message logging improvements.
- pop3-login: Fixed assert-crash if a client sent USER+PASS+USER+PASS
commands in the same IP packet.
- Parsing an invalid message address like "From: (" caused an
assert-crash in v1.1.4 and v1.1.5.
- Folding whitespace wasn't handled correctly inside quoted-strings,
causing some messages to be parsed incorrectly.
- mbox: Fixed saving messages that begin with a valid From_-line.
|
|
libspf2: security update
Revisions pulled up:
- mail/libspf2/Makefile 1.3
- mail/libspf2/distinfo 1.2
---
Module Name: pkgsrc
Committed By: adrianp
Date: Fri Oct 24 23:35:09 UTC 2008
Modified Files:
pkgsrc/mail/libspf2: Makefile distinfo
Log Message:
Update to 1.2.8
Unfortunately details changes don't seem to be available:
After a long hiatus, new releases of libspf2! Development work from a number
of contributors has resulted in the release of versions up to 1.2.8. It is
recommended that all users upgrade as soon as possible, since this release
fixes some significant bugs. This release also comes with new doxygen
documentation which should make the code easier to understand and
cross-reference.
Includes the fix for CVE-2008-2469
|
|
dovecot: security update
Revisions pulled up:
- mail/dovecot/Makefile 1.121
- mail/dovecot/distinfo 1.86
---
Module Name: pkgsrc
Committed By: ghen
Date: Mon Oct 6 07:08:02 UTC 2008
Modified Files:
pkgsrc/mail/dovecot: Makefile distinfo
Log Message:
Update to Dovecot 1.1.4. Changes since 1.1.3:
- SORT: Yet another assert-crashfix when renumbering index sort IDs.
- ACL plugin fixes: Negative rights were actually treated as positive rights.
'k' right didn't prevent creating parent/child/child mailbox. ACL groups
weren't working.
- Maildir++ quota: Fixes to rebuilding when quota limit wasn't specified in
Dovecot (0 limit or limit read from maildirsize).
- mbox: Several bugfixes causing errors and crashes.
- Several fixes to expire plugin / expire-tool.
- lock_method=3Ddotlock could have deadlocked with itself.
- Many error handling fixes and log message improvements.
|
|
(cf. e.g. http://lists.macosforge.org/pipermail/macports-tickets/2008-April/007500.html)
That issue could have affected other platforms, too.
|
|
MAKE_JOBS_SAFE= no
|
|
defined with bool the first round and _Bool the second round.
|
|
|
|
- Made config files location configurable (#1485215)
- Reduced memory footprint when forwarding attachments (#1485345)
- Allow and use spellcheck attribute for input/textarea fields (#1485060)
- Added icons for forwarded/forwarded+replied messages (#1485257)
- Added Reply-To to forwarded emails (#1485315)
- Display progress message for folders create/delete/rename (#1485357)
- Smart Tags and NOBR tag support in html messages (#1485363, #1485327)
- Redesign of the identities settings (#1484042)
- Add config option to disable creation/deletion of identities (#1484498)
- Added 'sendmail_delay' option to restrict messages sending interval
(#1484491)
- Added vertical splitter for folders list resizing
- Added possibility to view all headers in message view
- Fixed splitter drag/resize on Opera (#1485170)
- Fixed quota img height/width setting from template (#1484857)
- Refactor drag & drop functionality. Don't rely on browser events
anymore (#1484453)
- Insert "virtual" folders in subscription list (#1484779)
- Added link to open message in new window
- Enable export of address book contacts as vCard
- Add feature to import contacts from vcard files (#1326103)
- Respect Content-Location headers in multipart/related messages
according to RFC2110 (#1484946)
- Allowed max. attachment size now indicated in compose screen (#1485030)
- Also capture backspace key in list mode (#1484566)
- Allow application/pgp parts to be displayed (#1484753)
- Correctly handle options in mailto-links (#1485228)
- Immediately save sort_col/sort_order in user prefs (#1485265)
- Truncate very long (above 50 characters) attachment filenames
when displaying
- Allow to auto-detect client language if none set (#1484434)
- Auto-detect the client timezone (user configurable)
- Add RFC2231 header value continuations support for attachment
filenames + hack for servers that not support that feature
- Fix Reply-To header displaying (#1485314)
- Mark form buttons that provide the most obvious operation (mainaction)
- Added option 'quota_zero_as_unlimited' (#1484604)
- Added PRE handling in html2text class (#1484740)
- Added folder hierarchy collapsing
- Added options to use syslog instead of log file (#1484850)
- Added Logging & Debugging section in Installer
- Fix In-Reply-To and References headers when composing saved draft
message (#1485288)
- Fix html message charset conversion for charsets with underline (#1485287)
- Fix buttons status after contacts deletion (#1485233)
- Fix escaping of To: and From: fields when building message body
for reply or forward in the HTML editor (#1484904)
- Use current mailbox name in template (#1485256)
- Better fix for skipping untagged responses (#1485261)
- Added pspell support patch by Kris Steinhoff (#1483960)
- Enable spellchecker for HTML editor (#1485114)
- Respect spellcheck_uri in tinyMCE spellchecker (#1484196)
- Case insensitive contacts searching using PostgreSQL (#1485259)
- Make default imap folders configurable for each user (#1485075)
- Save outgoing mail to selectable folder (#1324581)
- Fix hiding of mark menu when clicking th button again (#1484944)
- Use long date format in print mode (#1485191)
- Updated TinyMCE to version 3.1.0.1
- Re-enable autocomplete attribute for login form (#1485211)
- Check PERMANENTFLAGS before saving $MDNSent flag (#1484963, #1485163)
- Added flag column on messages list (#1484623)
- Patched Mail/MimePart.php (http://pear.php.net/bugs/bug.php?id=14232)
- Allow trash/junk subfolders to be purged (#1485085)
- Store compose parameters in session and redirect to a unique URL
- Fixed CRAM-MD5 authentication (#1484819)
- Fixed forwarding messages with one HTML attachment (#1484442)
- Fixed encoding of message/rfc822 attachments and image/pjpeg
handling (#1484914)
- Added option to select skin in user preferences
- Added option to configure displaying of attached images below
the message body
- Added option to display images in messages from known senders (#1484601)
- User preferences grouped in more fieldsets
- Fix corrupted MIME headers of messages in Sent folder (#1485111)
- Fixed bug in MDB2 package: http://pear.php.net/bugs/bug.php?id=14124
- Use keypress instead of keydown to select list's row (#1484816)
- Don't call expunge and don't remove message row after message
move if flag_for_deletion is set to true (#1485002)
|
|
|
|
Bump PKGREVISION.
|
|
|
|
The SquirrelMail team is happy to announce the release 1.4.16. The most
notable change is that cookies are now sent with the secure attribute set for
HTTPS-connections, meaning that they cannot leak to an HTTP-connection on the
same SquirrelMail installation. For details see the included ReleaseNotes. We
advise users that offer their SquirrelMail both over HTTP and HTTPS to
upgrade.
|
|
-Add missing fsync() in updatefile close method to ensure data actually
hits disk before the rename takes place, to make writing of the oldmail
file more resilient to system crashes. Thanks: Domen Puncer.
|
|
other nits in claws-mail base package, notably missing $NetBSD$
lines.
|
|
Security fixes in this version:
MFSA 2008-46 Heap overflow when canceling newsgroup message
MFSA 2008-44 resource: traversal vulnerabilities
MFSA 2008-43 BOM characters stripped from JavaScript before execution
MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17)
MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
MFSA 2008-38 nsXMLDocument::OnChannelRedirect() same-origin violation
MFSA 2008-37 UTF-8 URL stack buffer overflow
For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.17/releasenotes/
|
|
PKGREVISION++
|
|
|
|
|
|
system. Fixes bus errors in shlibsign. From PR 39576.
|
|
|
|
|
|
|
|
Release Name: mailfactory-1.4.0
Notes:
Fix issues with encoding multibyte subjects
|
|
|
|
|
|
Drop RESTRICTED etc. which appears to be based on an earlier version.
|
|
Pkgsrc changes:
o Adjust dependencies
o Add commented-out HOMEPAGE using search.cpan.org
Upstream changes:
version 0.92: Wed Jul 25 08:50:51 CEST 2007
Improvements:
- add t/pod.t and distribution clean-ups.
version 0.91: Mon Jan 8 10:52:59 CET 2007
The module hasn't seen changes for some time now, but that
is because it works as expected.
Improvements:
- produced with newest OODoc, thereby
could remove version, mkdoc and mkdist
- removed useless README
|
|
|
|
revision 1.264
Archiveopteryx 3.0.0
revision 1.263
Added modules versions output.
revision 1.262
Work fine under XP.
revision 1.261
- Fixed bug about ssl and justconnect option
- Cleaned connect code.
- Started gmail support.
revision 1.260
- Added option --idatefromheader :
sets the internal dates on host2 same as the "Date:" headers.
revision 1.259
- Made a function for regexmess() --regexmess to be able to
check it easily
- Added function tests_regexmess() to check regexmess(), 3
tests.
- Removed imapsync copyleft GPL licence output (boring).
Replaced by wishlist link.
- Added thank_author() to avoid duplicate code about thanks.
- Better bug report documentation.
revision 1.258
Change report bug information order.
revision 1.257
removed comment and ugly output
revision 1.256
Applied patch from Simon Heimlicher to avoid non-selectable
folders.
revision 1.255
Domino (Notes) 4.61
revision 1.254
Some server (Microsoft Exchange 6.0.6249.0 for example)
returns message size a lot
s than the real size
Now imapsync accept this silly behavior.
revision 1.253
Archiveopteryx 2.09
revision 1.252
Added mailing list information.
revision 1.251
Fixed message_string returning empty message when < expected size.
revision 1.250
Bug fix "parse_headers want an ARRAY ref"
revision 1.249
warn about BUG_IMAPClient_3.xx
revision 1.248
Cleaned check_lib_version()
revision 1.247
Added id in output warn when no header found.
revision 1.246
Removed $^W use.
revision 1.245
Back to append_string()
Turn on --syncinternaldates by default
Date_Init("TZ=GMT") if no timezone (windows) set.
revision 1.244
Removed old *_2() functions (unused)
revision 1.243
Moved functins *_2() into override_imapclient()
revision 1.242
Ignore message when it has no header.
|
|
|
|
mail/imapsync due to regressions in 3.x
Mail::IMAPClient module provides perl routines that simplify a
sockets connection to and an IMAP conversation with an IMAP server.
This module was developed on Solaris 2.5.1 and 2.6 against Netscape
IMAP servers versions 3.6 and 4.1. However, since it is written in
perl and designed for flexibility, it should run on any OS with a
TCP/IP stack and a version of perl that includes Socket.pm and
IO::Socket.pm. It also should be able to talk to any IMAP server,
even those that have, um, proprietary features (assuming that the
programmer knows what those features are).
To date, the test suite runs successfully with the following IMAP
servers:
-Netscape Messenger v3.6
-Netscape Messenger v4.1
-UW-IMAP (I think it was 4.5)
-Cyrus IMAP4 v1.5.19
-Mirapoint Message Server Appliances (OS versions 1.6.1 and 1.7.1)
|
|
|
|
for text classification. It is a port of the OSBF classifier implemented in
the CRM114 project. This implementation attempts to put focus on the
classification task itself by using Lua as the scripting language, a powerful
yet light-weight and fast language, which makes it easier to build and test
more elaborated filters and training methods.
The OSBF algorithm is a typical Bayesian classifier but enhanced with two
techniques originally developed for the CRM114 project: Orthogonal Sparse
Bigrams - OSB, for feature extraction, and Exponential Differential Document
Count - EDDC (a.k.a Confidence Factor), for automatic feature selection.
Combined, these two techniques produce a highly accurate classifier. OSBF
was developed focused on two classes, SPAM and NON-SPAM, so the performance
for more than two classes may not be the same.
spamfilter.lua is an anti-spam filter written in Lua using the OSBF-lua
module. It takes special advantage of EDDC to introduce TONE-HR, a highly
effective training method. The combination of OSB, EDDC and TONE-HR to
enhance a classical Bayesian classifier resulted in the best spam filtering
performance in TREC's Spam Track 2006 and the CEAS 2008 Live Spam Filter
Challenge.
|
|
Changes in release 0.7.9
- Added LogTag option to asmtpd.conf.
- Fix err_accum in default unknown script, as Tim Kientzle reports the
old script did not work on FreeBSD.
- Added MSGID environment variable.
- Added IdentTimeout option to asmtpd.conf.
- Addes support for newer DB versions.
Changes in release 0.7.8
- Fixed bug where first group of avenger user could disappear on systems
with HAVE_EGID_IN_GROUPLIST defined (i.e., FreeBSD).
- Added --map option to aliascheck. Make sample unknown file check
recipient in virtusertable.db if one exists.
- SMTPCB can now take on three values, 0, 1, and 2. 2 is equivalent to
the old behavior (do SMTP callbacks and reject mail when the callback
fails). 0 disabled the callbacks entirely. 1 performs the callbacks
but does not reject mail that fails.
- Added an InsecureSASL option to asmtpd.conf.
- Make SASL accept plaintext authentication after STARTTLS, even if
there was an EHLO call before the STARTTLS.
- Fixed a bug in avenger.local when no .avenger/local file exists.
|
|
- Fix build of GeoIP code
- Fix auth and tls clauses in ACL so that they accept regex
- Update Debian startup script (Adam Katz)
- Fix bogus ACL when using features not compiled in
- Fix corruption in urlcheck parsing (Benoit Branciard)
- Document what package contains libmilter
- Fix error about stat in greylist.conf (Bob Smith)
- Avoid C99 specific syntax (Greg Troxel)
- Documentation fixes
- Fix typos in documentation (Constantine A. Murenin)
|
|
Noted by OBATA Akio.
|
|
name change).
|
|
Moved the code for loading configuration files into prepare_settings() from
do_spamdyke(). When the default value for the "log-target" option was
being set before the configuration files were read, the syslog option
could be incorrectly set, even if stderr was specified in a file.
Thanks to Eric Shubert for reporting this one.
Changed the configure script to detect environments where printf()/scanf()
use "%ld" for 64-bit integers instead of "%lld" (CentOS 64-bit). This
wouldn't be necessary if the gcc authors could grasp the idea that
"long int" and "long long int" may be interchangable and not emit warnings.
Thanks to kjl for reporting this one.
|
|
|
|
ENMA is a milter program for the domain authentication technologies.
It authenticates sender's address with SPF and Sender ID, then
labels the result onto the Authentication-Results: field.
ENMA implements the following RFCs and an Internet Draft:
- RFC4406 (Sender ID)
- RFC4407 (PRA)
- RFC4408 (SPF)
- draft-kucherawy-sender-auth-header-15
(the Authentication-Results: field)
ENMA is developed by IIJ. IIJ has been using several domain
authentication software, though, all of them appeared unstable. ENMA
is designed and implemented in order to stand large ISP's operation
and is well-tested.
|
|
Postfix 2.4 and later, on Linux kernel 2.6, is vulnerable to a
denial of service attack by a local user. There is no breach of
data confidentiality or data integrity. This problem was found by
the Postfix author during routine source code maintenance.
An on-line version of this announcement is available at
http://www.postfix.org/announcements/20080902.html
|