| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
fetchmail-5.5.5 (Sat Nov 11 14:22:24 EST 2000), 19563 lines:
* Chip Salzenberg's patch to prevent wildcards in Common Names from causing
spurious error messages (resolved Debian bug #75011).
* Added --showdots option by Thomas Jarosch <tomj@gmx.de>.
* Added --principal option from R. Lindsay Todd" <toddr@rpi.edu>.
* Spanish-language update from Javier Kohen.
* Nalin Dahyabai's fix to handle untagged responses during imap-gss
authentication.
* Koyama Mituru's patch for improved spam handling under qmail; checks
for a 553 reponse to RCPT TO.
* Added FAQ item F5 of %h and %p interpolation from Matthias Andree.
|
|
|
|
on Solrais.
add "MAKE_ENV+=LIBS=-lintl", as automake and reconfiguration will remove
-lintl from Makefile.
|
|
the new source code breaks CRAM-MD5 authentification.
|
|
|
|
Fixes another security hole...
Full list of changes:
* Configuration flexibility
+ pine configurations can now be stored remotely on an imap
server for access from different locations without the need
to configure for each location.
+ configuration may be split into two parts: generic
configuration and exceptional, per-platform configuration.
+ signatures can now be stored remotely or as part of the
pinerc file
+ for configuration options which are lists, inheritance is
supported
* New security features
+ SSL support for Unix Pine (source code only)
+ SSL enhancements for PC-Pine
* Minor rule enhancements
+ status of a message (New, Deleted, etc.) can now be used as
criteria for pattern matching.
+ "move-only-if-not-deleted" option in filtering to lessen the
chance of messages being filtered more than once when running
multiple pine sessions.
+ ability to set arbitrary headers in roles.
+ news filtering made more efficient.
* Basic threaded sorting (Expanded functionality to be added in a
future version).
* Enhanced MAPI support for PC-Pine
* Various other new features and configuration options
+ alternate-compose-menu
+ by-replyto for saved-msg-name-rule
+ check-newmail-when-quitting
+ continue-tab-without-confirm
+ expose-hidden-config
+ expunge-only-manually
+ incoming-startup-rule additions
+ literal-signature
+ mark-for-cc
+ prefer-plain-text
+ pruning-rule, for monthly sent-mail renaming and deleting
+ quell-extra-post-prompt
+ hidden feature allow-changing-from defaults to on
* New command line options:
+ -p , pinerc can now refer to a remote mailbox which
contains the configuration file
+ -x , is how you override your default
pinerc settings with exceptions for a particular platform,
may be local or remote
+ -aux , allows you to tell
Pine the local directory to use for auxiliary files when
pinerc is remote (PC-Pine only)
+ -copy_pinerc and -copy_abook options
+ -v option
Bugs that have been addressed in this release include:
* Incoming mail with an extremely long From address can cause a
buffer overflow on the stack (security)
* X-Keywords crash for unix formatted mailboxes
* Composer word wrapping needlessly wraps words
* New messages appear in zoomed view
* "Bad msgno 0" filtering crash
* "+" during login doesn't always mean that SSL is being used
* news filtering refilters messages that had already been filtered
* Goto and Save can't access folders that are readable but not
listable
* Goto doesn't allow access of folders outside of a Collection List
* PC-Pine SSL functionality broken in Windows 2000/Millennium
* FromOrTo and To in index-format don't work for newsgroups
* Sorting by score doesn't always work
* Viewing of very large messages uses more memory than is need
* Loss of body for reply to multipart/signed mime messages
* Pine crashes when replying to or forwarding messages with certain
types of attachments
* Brackets are falsely recognized as url characters
* Crash when enclosing options in quotes for PC-Pine
* Newsgroup posting doesn't allow posting to additional news servers
|
|
Fixes a bunch of security problems. (This is the same imap-lib
that also comes with pine-4.30). Sorry, no detailed list available. ;(
|
|
|
|
use USE_LIBINTL.
|
|
(still below bsd.prefs.mk inclusion, though)
|
|
fetchmail-5.5.5 (Tue Oct 17 17:50:46 EDT 2000), 19523 lines:
* Killed a nasty segfault due to double-freeing of the header block.
* Updated Danish internationalization by Byrial Jensen.
* Added FAQ item X7 on attachment hangs.
fetchmail-5.5.4 (Sun Oct 8 10:57:37 EDT 2000), 19518 lines:
* Fall back on the computed queryname if we need the DNS name of a a host
and can't get it. Resolves Debian bug #69199.
* Andrej Borsenkow's fix for configuration with new SOCKS.
* Pavel Roskin's fix to build the RPM without libcrypto (Red Hat changed
the library name to libk5crypto in 6.2).
* Peter Backes's sm-hybrid patch added to contrib; more FAQ item T1 changes.
* Emiliano's patch to make dropdelivered and envelope interact properly.
* In fetchmailconf, always reset the port number when changing protocols.
* Patrick Bihan-Faou's changes to use sysctl() for interface checking
so fetchmail doesn't have to be suid kmem.
|
|
|
|
|
|
|
|
|
|
to overwrite existing files, with or without confirmation.
|
|
|
|
|
|
|
|
|
|
abilities
|
|
XXX assumes presense of group "maildrop", which is bad.
|
|
checker interface.
|
|
|
|
|
|
|
|
administration
|
|
- added back ExecuteOnUpdate
- now searches @prefix@/GNUstep for defaults domain as well; thanks
to Thomas Ribbrock <argathin@gmx.net> for suggestion
- added experimental DisplayEachMailbox option (thanks again to Peter
da Silva); this makes WMMail.app display message counts (none, new,
total, or new-over-total) for each mailbox that contains new mails
- POP3 mailboxes are correctly handled... I think :)
- added missing semi-colon in defaults file; thanks to Eric Anderson
<eanderson@usa.net> for pointing this out
- now resets atime and mtime on mbox files; thanks to Peter Surda
<surda@bigfoot.com> for patch
- fixed buffer overflow in imap.c; thanks to Peter da Silva
<peter@taronga.com> for patch
- fixed handling of "Status" header in mbox.c and pop3.c
- no longer parses filenames in MailDir mailboxes (procmail should
now work); countless people pointed out this one :(
- fixed counting of new mails in IMAP mailboxes; thanks to Alfonso
Palacios-Sureda <alfonso.palacios-sureda@alcatel.fr> for the hint
- fixed segfault in maildir.c; thanks to
Lars Bensmann <lars@skynet.e.ruhr.de>
- fixed DEFAULT_ANIM_SPEED; thanks to Vincent Arkesteijn
<v.j.arkesteijn@student.utwente.nl>
|
|
fetchmail-5.5.3 (Tue Sep 26 17:56:32 EDT 2000), 19278 lines:
* Added skip size reporting as suggested by Franck Pommereau.
* Don't terminate on failed DNS lookup of host, go to next entry.
* Danish localization support, courtesy of Byrial Jensen.
* Fix reference to freed message header block (thanks to Andrew Morton)
fetchmail-5.5.2 (Thu Sep 7 23:00:24 EDT 2000), 19243 lines:
* Horst Von Brand's security and specfile patches.
* Major changes to FAQ item T1.
* Minor correction to FAQ item K3 by Malte Kiesel.
* Added to FAQ R1, on enabling sendmail in RH 6.9.
* Resolved Debian bugs #66110, #70862.
fetchmail-5.5.1 (Sun Aug 20 23:43:03 EDT 2000), 19241 lines:
* Fix a finger error in the dot-termination fix for 5.5.0.
* Javier Kohen's update for es.po.
* Jiri Pavlovsky's cs.po update.
* Added to FAQ item on K3 a recipe using the new plugin %h option.
* Fixed a nasty typo in FAQ item T1 -- the old version didn't generate
correct Delivered-To hacks. Thanks to Peter 'Rattacresh' Backes
<rtc@helen.PLASMA.Xg8.DE> for spotting this.
|
|
sfio code (no longer depends onto devel/sfio)
8.11.1/8.11.1 2000/09/27
Fix SMTP EXPN command output if the address expands to a single
name. Fix from John Beck of Sun Microsystems.
Don't try STARTTLS in the client if the PRNG has not been properly
seeded. This problem only occurs on systems without
/dev/urandom. Problem detected by Jan Krueger of
digitalanswers communications consulting gmbh and
Neil Rickert of Northern Illinois University.
Don't use the . and .. directories when expanding QueueDirectory
wildcards.
Do not try to cache LDAP connections across processes as a parent
process may close the connection before the child process
has completed. Problem noted by Lai Yiu Fai of the Hong
Kong University of Science and Technology and Wolfgang
Hottgenroth of UUNET.
Use Timeout.fileopen to limit the amount of time spent trying to
read the LDAP secret from a file.
Prevent SIGTERM from removing a command line submitted item after
the user submits the message and before the first delivery
attempt completes. Problem noted by Max France of AlphaNet.
Fix from Neil Rickert of Northern Illinois University.
Deal correctly with MaxMessageSize restriction if message size is
greater than 2^31.
Turn off queue checkpointing if CheckpointInterval is set to zero.
Treat an empty home directory (from getpw*() or $HOME) as
non-existent instead of treating it as /. Problem noted by
Todd C. Miller of Courtesan Consulting.
Don't drop duplicate headers when reading a queued item. Problem
noted by Motonori Nakamura of Kyoto University.
Avoid bogus error text when logging the savemail panic "cannot
save rejected email anywhere". Problem noted by Marc G.
Fournier of Acadia University.
If an LDAP search fails because the LDAP server went down, close
the map so subsequent searches reopen the map. If there are
multiple LDAP servers, the down server will be skipped and
one of the others may be able to take over.
Set the ${load_avg} macro to the current load average, not the
previous load average query result.
If a non-optional map used in a check_* ruleset can't be opened,
return a temporary failure to the remote SMTP client
instead of ignoring the map. Problem noted by Allan E
Johannesen of Worcester Polytechnic Institute.
Avoid a race condition when queuing up split envelopes by saving
the split envelopes before the original envelope.
Fix a bug in the PH_MAP code which caused mail to bounce instead of
defer if the PH server could not be contacted. From Mark
Roth of the University of Illinois at Urbana-Champaign.
Prevent QueueSortOrder=Filename from interfering with -qR, -qS, and
ETRN. Problem noted by Erik R. Leo of SoVerNet.
Change error code for unrecognized parameters to the SMTP MAIL and
RCPT commands from 501 to 555 per RFC 1869. Problem
reported to Postfix by Robert Norris of Monash University.
Prevent overwriting the argument of -B on certain OS. Problem
noted by Matteo Gelosa of I.NET S.p.A.
Use the proper routine for freeing memory with Netscape's LDAP
client libraries. Patch from Paul Hilchey of the
University of British Columbia.
Portability:
Move the NETINET6 define to devtools/OS/SunOS.5.{8,9}
instead of defining it in conf.h so users can
override the setting. Suggested by
Henrik Nordstrom of Ericsson.
On HP-UX 10.X and 11.X, use /usr/sbin/sendmail instead of
/usr/lib/sendmail for rmail and vacation. From
Jeff A. Earickson of Colby College.
On HP-UX 11.X, use /usr/sbin instead of /usr/libexec (which
does not exist). From Jeff A. Earickson of Colby
College.
Avoid using the UCB subsystem on NCR MP-RAS 3.x. From
Tom Moore of NCR.
NeXT 3.X and 4.X installs man pages in /usr/man. From
Hisanori Gogota of NTT/InterCommunicationCenter.
Solaris 8 and later include /var/run. The default PID file
location is now /var/run/sendmail.pid. From John
Beck of Sun Microsystems.
SFIO includes snprintf() for those operating systems
which do not. From Todd C. Miller of Courtesan
Consulting.
CONFIG: Use the result of _CERT_REGEX_SUBJECT_ not {cert_subject}.
Problem noted by Kaspar Brand of futureLab AG.
CONFIG: Change 553 SMTP reply code to 501 to avoid problems with
errors in the MAIL address.
CONFIG: Fix FEATURE(nouucp) usage in example .mc files. Problem
noted by Ron Jarrell of Virginia Tech.
CONFIG: Add support for Solaris 8 (and later) as OSTYPE(solaris8).
Contributed by John Beck of Sun Microsystems.
CONFIG: Set confFROM_HEADER such that the mail hub can possibly add
GECOS information for an address. This more closely
matches pre-8.10 nullclient behavior. From Per Hedeland of
Ericsson.
CONFIG: Fix MODIFY_MAILER_FLAGS(): apply the flag modifications for
SMTP to all *smtp* mailers and those for RELAY to the relay
mailer as described in cf/README.
MAIL.LOCAL: Open the mailbox as the recipient not root so quotas
are obeyed. Problem noted by Damian Kuczynski of NIK.
MAKEMAP: Do not change a map's owner to the TrustedUser if using
makemap to 'unmake' the map.
RMAIL: Avoid overflowing the list of recipients being passed to
sendmail.
RMAIL: Invoke sendmail with '-G' to indicate this is a gateway
submission. Problem noted by Kari Hurtta of the Finnish
Meteorological Institute.
VACATION: Read the complete message to avoid "broken pipe" signals.
VACATION: Do not cut off vacation.msg files which have a single
dot as the only character on the line.
New Files:
cf/ostype/solaris8.m4
|
|
mostly SASL related changes, it seems.
|
|
|
|
|
|
is it in <db_185.h>? no
is it in <db/db.h>? no
is it in <db1/db.h>? yes
and for a good measure they've renamed libdb.a to libdb1.a to make sure
that they break linking, not just compiling.
|
|
that depend it, as suggested by wrstuden. The reason is so that older
binary packages which were linked against an a.out shared lib won't have
their package dependencies satisfied by the latest package, which has no
shared libraries. There's no help for old ELF packages, unfortunately.
|
|
(Oops, I missed to commit this file.)
|
|
|
|
|
|
|
|
Fixes security problem describe at
http://www.securityfocus.com/advisories/2646
|
|
Fixes a security problem in folder handling described in
http://www.securityfocus.com/advisories/2646
Will be used by upcoming pine-pkg
|
|
RESTRICTED= variables that were predicated on former U.S. export
regulations. Add CRYPTO=, as necessary, so it's still possible to
exclude all crypto packages from a build by setting MKCRYPTO=no
(but "lintpkgsrc -R" will no longer catch them).
Specifically,
- - All packages which set USE_SSL just lose their RESTRICTED
variable, since MKCRYPTO responds to USE_SSL directly.
- - realplayer7 and ns-flash keep their RESTRICTED, which is based
on license terms, but also gain the CRYPTO variable.
- - srp-client is now marked broken, since the distfile is evidently
no longer available. On this, we're no worse off than before.
[We haven't been mirroring the distfile, or testing the build!]
- - isakmpd gets CRYPTO for RESTRICTED, but remains broken.
- - crack loses all restrictions, as it does not evidently empower
a user to utilize strong encryption (working definition: ability
to encode a message that requires a secret key plus big number
arithmetic to decode).
|
|
|
|
nuke bogus hard coded -L/usr/local/lib
|
|
|
|
link time warnings.
|
|
|
|
(by suspicion, untested)
|
|
target. These patches created by Alistair Crooks.
|
|
|
