Age | Commit message (Collapse) | Author | Files | Lines |
|
IMAPFilter 2.6.2 - 30 Jun 2015
- Bug fix; drop connection on local certificate mismatch.
IMAPFilter 2.6.1 - 29 Jun 2015
- Support for loading the system's CA certificates from a file.
- Bug fix; flusing of standard output/error in a some cases.
IMAPFilter 2.6 - 16 Jun 2015
- Optimizations that vastly improve performance of the meta-searching
functionality, by making subsequent search requests limit their scope based
on the results already returned by previous requests (previously this was
the case only for the match_*() methods).
- Lua 5.3 compatibility (the codebase can still be compiled with versions 5.2
and 5.1).
- A new "limit" option can be used as a work-around for problems that some
servers have with long requests.
- The documentation now clarifies how to make the client block indefinitely.
- Bug fix; the check_status() method now returns 4 numbers on error as
described in the documentation (just negative values in this case).
- Bug fix; flushing of default output on password prompt.
- Bug fix; program fault when very long requests were to be sent.
IMAPFilter 2.5.7 - 16 Nov 2014
- Support for automatic validation of SSL connections, using the operating
system's installed trusted CA certificates (usually from authorities that
are shipped with web browsers).
- A new "wakeonany" option makes it possible to end IDLE mode on any event,
not just on new messages.
- A new "reenter" option controls whether IDLE mode should be re-entered,
after the recovery of the session, which makes it possible to continue with
the execution of the next line in the configuration file.
- The documentation now mentions that the contain_*() methods do
case-insensitive searching (an IMAP limitation).
- The documentation now has a better explanation of the arrived_*() and
sent_*() methods.
- Bug fix; the value returned by the copy method was incorrect in some cases.
|
|
unnecessary to set. From Edgar Fuss in PR pkg/50049.
Bump revision.
|
|
With all supported Postfix releases, the default settings have been
updated so that they no longer enable export-grade ciphers, and no
longer enable the SSLv2 and SSLv3 protocols. These ciphers and
protocols have little if any legitimate use today, and have instead
become a vehicle for downgrade attacks. There are no other code
changes.
Postfix documentation has been updated to reflect the new default
settings and their rationale; the RELEASE_NOTES give suggestions
for how to enable the old ciphers and protocols if your infrastructure
requires them.
Finally, abandoning deprecated ciphers and protocols does not really
improve TLS security without measures to better authenticate remote
servers. Secure DNS and TLSA are steps in that direction.
|
|
Bump PKGREVISION.
|
|
|
|
* Sync with thunderbird-38.1.0.
|
|
* Fix mozilla-common.mk inclusion.
Changelog:
What's New
Fixed Copy/Paste into plain text editor deletes newlines from quoted text (bug 1143570)
Fixed Cross-posts won't send because Newsgroups: groups are separated with comma+space, not just comma (bug 1151448)
Fixed Cannot send email through exchange server (NTLM) (bug 1174159)
Fixed Doesn't display GB2312 encoded texts correctly for Chinese Characters (bug 1174580)
Fixed OAuth2 authentication for GMail does not work when specified server is imap.gmail.com or smtp.gmail.com. (bug 1176773)
Known Issues
unresolved Import from Outlook and Eudora disabled, code currently not working (bug 1175055)
|
|
Mark as not for python-3.x.
|
|
|
|
|
|
Kindly suggested by Andreas Kusalananda Kähäri <andreas.kahari@icm.uu.se>
|
|
|
|
This package contains language packs for mail/thunderbird31.
|
|
|
|
Mozilla Thunderbird is a redesign of the Mozilla mail component. The
goal is to produce a cross platform stand alone mail application using
the XUL user interface language. This version tracks 31 ESR.
|
|
{perl>=5.16.6,p5-ExtUtils-ParseXS>=3.15}:../../devel/p5-ExtUtils-ParseXS
since pkgsrc enforces the newest perl version anyway, so they
should always pick perl, but sometimes (pkg_add) don't due to the
design of the {,} syntax.
No effective change for the above reason.
Ok joerg
|
|
Patch from maintainer.
Reviewed by wiz@
|
|
|
|
* 3.4.3 (stable)
* The bug that wrote the first part of data if the message body in the
IMAP4 responses didn't end with CR+LF was fixed (#84).
* The crash when displaying HTML messages was fixed (#215).
* Win32: the crash when linked with newer MSVCRT was fixed.
* Win32: libjpeg was updated.
* Win32: libtiff was updated.
* Win32: libpng was updated to 1.2.53.
* Win32: OpenSSL was updated to v0.9.8zg.
* Win32: included SSL certificates were updated.
|
|
pkgsrc change: default to enable TLS
- this has been requested a couple of times and most systems are going
to have a recent enough version of openssl so in most cases there
won't be additional dependencies
8.15.2/8.15.2 2015/07/03
If FEATURE(`nopercenthack') is used then some bogus input triggered
a recursion which was caught and logged as
SYSERR: rewrite: excessive recursion (max 50) ...
Fix based on patch from Ondrej Holas.
DHParameters now by default uses an included 2048 bit prime.
The value 'none' previously caused a log entry claiming
there was an error "cannot read or set DH parameters".
Also note that this option applies to the server side only.
The U= mailer field didn't accept group names containing hyphens,
underbars, or periods. Based on patch from David Gwynne
of the University of Queensland.
CONFIG: Allow connections from IPv6:0:0:0:0:0:0:0:1 to relay again.
Patch from Lars-Johan Liman of Netnod Internet Exchange.
CONFIG: New option UseCompressedIPv6Addresses to select between
compressed and uncompressed IPv6 addresses. The default
value depends on the compile-time option IPV6_FULL:
For 1 the default is False, for 0 it is True, thus
preserving the current behaviour. Based on patch from
John Beck of Oracle.
CONFIG: Account for IPv6 localhost addresses in
FEATURE(`block_bad_helo'). Suggested by Andrey Chernov
from FreeBSD and Robert Scheck from the Fedora Project.
CONFIG: Account for IPv6 localhost addresses in check_mail ruleset.
LIBMILTER: Deal with more invalid protocol data to avoid potential
crashes. Problem noted by Dimitri Kirchner.
LIBMILTER: Allow a milter to specify an empty macro list ("", not
NULL) in smfi_setsymlist() so no macro is sent for the
selected stage.
MAKEMAP: A change to check TrustedUser in fewer cases which was
made in 2013 caused a potential regression when makemap
was run as root (which should not be done anyway).
Note: sendmail often contains options "For Future Releases"
(prefix _FFR_) which might be enabled in a subsequent
version or might simply be removed as they turned out not
to be really useful. These features are usually not
documented but if they are, then the required (FFR)
options are listed in
- doc/op/op.* for rulesets and macros,
- cf/README for mc/cf options.
|
|
* Sync with thunderbird-38.0.1.
|
|
Changelog:
What's New
New GMail supports OAuth2 authentication, removing the need to manually select "allow less secure applications" in Google options for the account. (bug 849540)
New Ship Lightning calendar addon with Thunderbird and enable with an opt-out dialog (bug 1113183)
New Filter sent messages (bug 11039)
New Filter messages when archived (bug 479823)
New Enable search in multiple/all address books (bug 170270)
New Add support for Yahoo Messenger in Chat (bug 955574)
New Support Internationalized domain name URLs for RSS feeds (Bug 1018589)
New Show expanded columns in folder pane (bug 464973)
New Allow file-per-message (maildir) local message storage (bug 845952)
New Add a Learn more link to the support page in feeds subscribe dialog (bug 1053782)
New Add reading position marker line to conversations (bug 760762)
New The editor for twitter should show inputtable character count (bug 736002)
Changed Thunderbird will no longer use SHA-1 to sign messages (bug 1018259)
Changed Removed rarely used character sets: T.61-8bit, non-encoding Mac encoders, VISCII, x-viet-tcvn5712, x-viet-vps x-johab, ARMSCII8 , map us-ascii to windows-1252, ISO-8859-6-I and -E and ISO-8859-8-E, (bug 1068505 and others.)
Changed Disable CONDSTORE support for IMAP to prevent discrepancies in IMAP message status (deleted, unread) on some servers (bug 912216)
Changed Make OpenSearch queries open in the user's default browser (bug 1120777)
Changed Default to using SSL for XMPP and IRC. This might cause issues for self-signed certificates (bug 1122567, bug 1122666)
Fixed Replied/forwarded icons disappear after folder repair, detach/delete (bug 840418)
Fixed Attachment "Save As" files are displayed in Tools/Saved Files (bug 914517)
Fixed Adding unknown email addresses to Mailing list, then deleting ghost duplicate entries from contacts pane, caused dataloss in mailing list (bug 628035)
Fixed Web site from RSS feed was not rendered correctly (bug 662907)
Fixed Email address with leading/trailing whitespace displayed wrongly with added quotes when composing ["foo"@bar.com] (bug 286760)
Fixed Force display of Sender header if S/MIME sender is the signer (bug 332639)
Fixed Addressing autocomplete widget: Typed text in red despite results/matches found if suggestions change by last input (bug 1042561)
Fixed Status bar not accessible (bug 934875)
Fixed Wrong folder may be deleted when requesting junk delete (bug 1018960)
Fixed Severe UI stutter or freezes getting new mail for very large folders (bug 870556)
Fixed Automatically rejoin multi-user conversations on reconnect for XMPP (bug 1014472)
Fixed Various improvements when using IRC on moznet (bug 1083768 and others)
Fixed Significantly improve XMPP support (bug 1085022 and others)
Fixed Fixes for connecting to non-standard IRC networks (bug 870556 and others)
Fixed Automatically reclaim IRC nicks during a reconnect (bug 1087566)
Fixed Changing location in editor doesn't preserve the font when returning to end of text/line (bug 756984)
Fixed Inline spell checker loses red underlines after a backspace is used (bug 1100966)
Known Issues
unresolved Automatic addon compatibility update checks were not completed, so existing addon compatibilities may not be accurate.
unresolved Copy/Paste into plain text editor deletes newlines from quoted text (bug 1143570)
unresolved Importing data from Outlook or Eudora crashes (bug 917961)
Security:
Fixed in Thunderbird 38.0.1
2015-58 Mozilla Windows updater can be run outside of application directory
2015-57 Privilege escalation through IPC channel messages
2015-54 Buffer overflow when parsing compressed XML
2015-51 Use-after-free during text processing with vertical text enabled
2015-48 Buffer overflow with SVG content and CSS
2015-47 Buffer overflow parsing H.264 video with Linux Gstreamer
2015-46 Miscellaneous memory safety hazards (rv:38.0 / rv:31.7)
|
|
|
|
PR pkg/49784.
|
|
1.540 2015-04-09
Avoid a "tried to array-deref undef" error
|
|
mail/thunderbird-enigmail supercedes this.
|
|
|
|
Enigmail is a security extension to Mozilla Thunderbird and Seamonkey.
It integrates the renowned OpenPGP standard provided by GnuPG.
Sending and receiving encrypted and digitally signed email gets just
simple using Enigmail.
This is packaged in pkgsrc-wip by Kamil Rytarowski.
|
|
Enigmail is a security extension to Mozilla Thunderbird and Seamonkey.
It integrates the renowned OpenPGP standard provided by GnuPG.
Sending and receiving encrypted and digitally signed email gets just
simple using Enigmail.
This is packaged in pkgsrc-wip by Kamil Rytarowski.
|
|
|
|
|
|
|
|
1.03 2015-06-20
- $net_smtp_ssl->isa('Net::SMTP') is now true
|
|
|
|
otherwise. Fix makefml for Perl 5.22. Drop now redundant patch against
the original config.guess.
|
|
|
|
## Rails 3.2.22 (Jun 16, 2015) ##
* No changes.
|
|
|
|
having a PKGNAME of p5-*, or depending such a package,
for perl-5.22.0.
|
|
|
|
|
|
|
|
== 2.6.1 / 2015-05-25
* Bugs:
* Make columnar store handle all supported extensions, not just the first.
* Avoid circular require when using the columnar store.
== 2.6 / 2015-05-25
* New Feature:
* Columnar data storage for the MIME::Types registry, contributed by Jeremy
Evans (@jeremyevans). Reduces default memory use substantially (the mail
gem drops from 19 Mib to about 3 Mib). Resolves
{#96}[https://github.com/mime-types/ruby-mime-types/pull/96],
{#94}[https://github.com/mime-types/ruby-mime-types/issues/94],
{#83}[https://github.com/mime-types/ruby-mime-types/issues/83]. Partially
addresses {#64}[https://github.com/mime-types/ruby-mime-types/issues/64]
and {#62}[https://github.com/mime-types/ruby-mime-types/issues/62].
* Development:
* Removed caching of deprecation messages in preparation for mime-types 3.0.
Now, deprecated methods will always warn their deprecation instead of only
warning once.
* Added a logger for deprecation messages.
* Renamed <tt>lib/mime.rb</tt> to <tt>lib/mime/deprecations.rb</tt> to not
conflict with the {mime}[https://rubygems.org/gems/mime] gem on behalf of
the maintainers of the {Praxis Framework}[http://praxis-framework.io/].
Provided by Josep M. Blanquer (@blanquer),
{#100}[https://github.com/mime-types/ruby-mime-types/pull/100].
* Added the columnar data conversion tool, also provided by Jeremy Evans.
* Documentation:
* Improved documentation and ensured that all deprecated methods are marked
as such in the documentation.
* Development:
* Added more Ruby variants to Travis CI.
* Silenced deprecation messages for internal tools. Noisy deprecations are
noisy, but that's the point.
== 2.5 / 2015-04-25
* Bugs:
* David Genord (@albus522) fixed a bug in loading MIME::types cache where a
container loaded from cache did not have the expected +default_proc+,
{#86}[https://github.com/mime-types/ruby-mime-types/pull/86].
* Richard Schneeman (@schneems) provided a patch that substantially reduces
unnecessary allocations.
* Documentation:
* Tibor Szolár (@flexik) fixed a typo in the README,
{#82}[https://github.com/mime-types/ruby-mime-types/pull/82]
* Fixed {#80}[https://github.com/mime-types/ruby-mime-types/issues/80],
clarifying the relationship of MIME::Type#content_type and
MIME::Type#simplified, with Ken Ip (@kenips).
* Development:
* Juanito Fatas (@JuanitoFatas) enabled container mode on Travis CI,
{#87}[https://github.com/mime-types/ruby-mime-types/pull/87].
* Moved development to a mime-types organization under
{mime-types/ruby-mime-types}[https://github.com/mime-types/ruby-mime-types].
|
|
|
|
|
|
|
|
RELEASE 1.1.2
-------------
- Add new plugin hook 'identity_create_after' providing the ID of the inserted identity (#1490358)
- Add option to place signature at bottom of the quoted text even in top-posting mode [sig_below]
- Fix handling of %-encoded entities in mailto: URLs (#1490346)
- Fix zipped messages downloads after selecting all messages in a folder (#1490339)
- Fix vpopmaild driver of password plugin
- Fix PHP warning: Non-static method PEAR::setErrorHandling() should not be called statically (#1490343)
- Fix tables listing routine on mysql and postgres so it skips system or other database tables and views (#1490337)
- Fix message list header in classic skin on window resize in Internet Explorer (#1490213)
- Fix so text/calendar parts are listed as attachments even if not marked as such (#1490325)
- Fix lack of signature separator for plain text signatures in html mode (#1490352)
- Fix font artifact in Google Chrome on Windows (#1490353)
- Fix bug where forced extwin page reload could exit from the extwin mode (#1490350)
- Fix bug where some unrelated attachments in multipart/related message were not listed (#1490355)
- Fix mouseup event handling when dragging a list record (#1490359)
- Fix bug where preview_pane setting wasn't always saved into user preferences (#1490362)
- Fix bug where messages count was not updated after message move/delete with skip_deleted=false (#1490372)
- Fix security issue in contact photo handling (#1490379)
- Fix possible memcache/apc cache data consistency issues (#1490390)
- Fix bug where imap_conn_options were ignored in IMAP connection test (#1490392)
- Fix bug where some files could have "executable" extension when stored in temp folder (#1490377)
- Fix attached file path unsetting in database_attachments plugin (#1490393)
- Fix issues when using moduserprefs.sh without --user argument (#1490399)
- Fix potential info disclosure issue by protecting directory access (#1490378)
- Fix blank image in html_signature when saving identity changes (#1490412)
- Installer: Use openssl_random_pseudo_bytes() (if available) to generate des_key (#1490402)
- Fix XSS vulnerability in _mbox argument handling (#1490417)
|
|
Add dependency on net/pear-Net_LDAP3 when ldap option is enabled, as
the LDAP directory feature of Roundcube requires it.
|
|
Update prepared in wip by Petar Bogdanovic.
* Remove INSTALL and add fix-map to rc-scripts instead (start_precmd).
* Remove dccm option because it was never properly tested. If someone
wants it back, let OWNER know.
* Remove dcc-spamassassin.pre. DCC.pm will use cdcc in order to obtain
homedir and therefore the location of the dccifd socket.
* Add several minor build/install patches.
* Remove do-install target since the default (DESTDIR-enabled) install
now works well enough.
CHANGES:
1.3.158
Do not flood any reports to peers with "leaf=0"
Fix crash in dccm, dccifd, and dccproc when time jumps backwards by
more than than 1 millisecond.
Adjust Makefiles for recent NetBSD.
1.3.155
Fix `cdcc "help flood"`
Try `cc -E -w` in ./configure to avoid fatal gcc warning about
CPPFLAGS=-D_FORTIFY_SOURCE=2 that currently breaks DCC packaging
on archlinux and will affect other systems.
1.3.154
Fix editline build problem in cdcc reported by Robert Pelletier.
1.3.153
Resolve confusion between dccifd ASCII protocol options "no-grey"
and "grey-off" pointed out by Mark Thomas.
1.3.152
In `cdcc clients` output, suppress individual client addresses covered
by an address block in the server /var/dcc/blacklist file except when
explicitly requested as in `cdcc "clients 10.2.3.0/24"`.
1.3.151
Compress bad client addresses for `cdcc clients`.
1.3.148
Answer clients with bad client-IDs and passwords as if they were
using the anonymous client-ID.
Improve counting by dccd of clients in address blocks.
1.3.147
Fix missing clients in `cdcc clients`.
Fix NetBSD threads problem 1.3.146 reported by Petar Bogdanovic.
1.3.146
Add -I to `cdcc clients`
Reduce dccifd thread stack size to 512 KBytes for busy 32-bit systems
Fix some problems in the Windows version of dccproc.
1.3.145
Suppress some error messages about broken DCC clients from dccd.
Fix default start and stop Linux run levels in rcDCC as suggested by
Herve Eychenne.
Change start-dccifd to use `kill` instead of `/bin/kill` to accommodate
Linux systems where /bin/kill does not understand `/bin/kill -9 -$PID`
as the way to kill a process group.
`cdcc src` now accepts a pair of IPv4,IPv6 addresses.
Requests from anonymous DCC clients to the public DCC servers are grouped
by IPv4 /24 or IPv6 /56 address blocks for inflating the delay.
1.3.144
Fix a rare crash of dccd, the server daemon.
Allow "." in -B for dccifd, dccm, and dccproc as the base domain
name of DNSBL to support detecting and rejecting mail containing
URLs listed in a response policy zone (RPZ).
1.3.143
Fix `dccifd -V` broken in 1.3.142 reported by Chris Burton.
Fix "incompatible whitelist" SMTP bug in dccifd introduced in 1.3.139.
Deal with default -mstructure-size-boundary=8 in FreeBSD on ARM as
suggested by Ronald Klop. However, intermittent failures of
`cdcc "id 1; stats"` on FreeBSD 9.0-STABLE on a system with a
"Feroceon 88FR131 rev 1 (Marvell core)" seem to be caused by broken
consistency between write() and mmap(). That suggests that while
the DCC client software should generally work, the DCC server will
occassionally fail mysteriously.
Fix dccm parsing of Received headers for MX and MXDCC whiteclnt lines
that broke in verseion 1.3.139.
1.3.142
Improve physical page locality of the DCC server's use of the database
hash table and so improve server performance.
The nagios script in var/dcc/libexec/dcc-nagios now compares the clock
on the DCC server with the local clock.
`cdcc -VV` and other commands produce the ./configure parameters used to
build them.
Build cdcc with editline.
Add -P to dccproc, dccifd, dccm, and dccsight.
1.3.141
Fix "MTA-last" in dcc man page as suggested by Bram Grietens.
Fix no_forced-discard typo reported by Bram Grietens.
Fix dccm to honor `hackmc -R` and discard relay attacks.
misc/DCC.pm, which is generated from misc/DCC.pm.in, is now very
similar to what will probably be in SpamAssassin 3.4.
Fix problems finding native milter library for dccm pointed out by
Kevin A. McGrail.
Improve documentation or help output from the nagios plugin,
/var/dcc/libexec/dcc-nagios
Fix bug in misc/DCC.pm in dealing with mail that already has an
X-DCC header found and diagnosed by Herbert J. Skuhra.
1.3.140
tweak some HTML in the whiteclnt proof-of-concept pages
Fix bug in `wlist` display of address blocks reported by Rob McMahon.
Fix missing IP address in log files for mail from (as opposed to
relayed by) MX relays.
1.3.139
Give temporary rejections by dccm and dccifd for conflicting per-user
thresholds a separate message.
Add FreeBSD "faststart" to rcDCC.
1.3.138
Fix bad URL decoding reported by Kostik.
1.3.137
Fix some innocuous compilers warnings on Solaris and Ubuntu.
1.3.136
Fix dccd and cdcc for `cdcc clients` for large operation counts.
Deal with trailing '.' and other punctuation URLs in dccm, dccifd, and
dccproc as pointed out by Kostik. This changes the FUZ1 and FUZ2
checksums in some cases.
Fix a free(0).
1.3.135
/var/dcc/map on 32 and 64 bit versions of a system are now the same.
Dccproc, dccm, and dccifd decode HTML &#xxx character references in URLs.
Dccproc, dccm, and dccifd convert UTF-8 domain names to Punycode
before checking DNS blacklists.
Deal with Linux `logger` bug that does the wrong thing with something like
`logger message with -S dash S` as suggested by Leandro Santi.
1.3.134
Fix compile bug reported by Rob.McMahon involving old compilers
without "inline"
1.3.133
Fix DNSBL bugs in parsing http://example.com?parameter and
http://example.com:80 reported by Kostik
Increase number of distinct kinds of local or "substitute" headers that
can be locally white- or blacklisted to 8
1.3.132
Fix fstatfs() wrapper on Ubuntu and speed up dccd and dbclean when
a memory file system is used with -H.
1.3.131
Fix minor bug in updatedcc and fetch-testmsg-whitelist as suggested by
Taso N. Devetzis.
Find in_port_t in sys/types.h as reported by Josh Allen.
1.3.130
Fix serious bug reported by Bart Dumon in DNS whitelists on systems
without strlcpy().
1.3.129
Adjust dnswl.org in the sample dcc_conf file.
1.3.128
Support DNS whitelists. An example using dnswl.org is in the sample
homedir/dcc_conf file.
Fix dccproc, dccifd, and dccm crash in parsing Received: fields with
IPv6 addresses.
Parse IPv6 address literals lacking the "IPv6:" tag in Received: headers.
1.3.127
Fix problem with `dbclean -H` after a system reboot reported by Gary Mills.
Fix "duplicate symbol" problem on MacOS X or Darwin 10.3.0
reported by Robert Pelletier by removing the use of `ranlib -c`.
I hope this does not break things on older versions of MacOS X
or future DCC releases.
Fix printf compiler warnings on MacOS X.
1.3.126
Fix another problem in flooding server-ID types past server-ID mappings.
1.3.125
Fix stack corruption in version *.3.124.
1.3.124
Fix reporting of rogue server-IDs.
Remove vestiges of obsolete server-ID tracing.
Flood server-ID types past flod file mappings.
|
|
0.9.5:
* Avoid double free when extending HTTP message.
* Fix double free if multiple classifiers are defined.
* Fix misprint in spamassassin plugin.
* Fix cpuid invocation on i386.
* Fix ownership issues for zero-copy decode.
* Allow __len metamethod on rspamd{text}.
* Add base64 decoding lua utility.
* Fix build on FreeBSD
* Skip spaces at the beginning of mime messages.
* DBL_ABUSE_REDIR should not have significant weight.
* Allow to split by lua_regexp rspamd{text} objects.
* Allow to specify custom stop pattern for lua_tcp.
0.9.4:
* Fix critical bugs in tokenization algorithm
* Write unit tests for tokenization
* Add documentation for lua_tcp
* Switch off legacy tokenization by default.
* Fix critical bugs in words normalization
* Add lua bindings to tokenizer.
* Implement storing of HTTP headers inside task
* Add lua API to accerss HTTP headers data
* Implemented base64 encoding suitable for MIME
* Use caseless hash and equal functions for HTTP request headers.
* Improve debian architectures support (by @dottedmag)
0.9.3:
* Revert incorrect regexp change that broke the default rules
* Fix lua_tcp module
0.9.2:
* Fix error on spawning unique workers.
* Add preliminary version of generic LUA TCP requests API.
* Use lua 5.1 if luajit is not available (Arm64, PowerPC, s390x etc)
* Fix fuzzy mime strings with only type.
* Improve thunderbird sanity checks.
* Fix critical bug on matching regular expressions.
* Make hiredis optional dependency.
* Fix multiple bugs in daemon reloading
0.9.1:
* Restore utf8 validation for regular expressions to avoid crashes
* Fix symbols displaying in the interface
* Add symbol groups to the interface
* Fix maps ID parsing in the controller
* Add multimap and regexp modules documentation
* Backport fixes from libucl
* Fix debian package (by @dottedmag)
* Rework XXH32 invocations
0.9.0:
* Add support of the fast and secure protocol level encryption:
- curve25519 is used for key exchange;
- chacha20/poly1305 cryptobox construction for bulk encryption;
- zero latency overhead;
- encrypting and balancing HTTP proxy worker
* Rework expressions and create new expressions library:
- aggressive optimizations based on the abstract syntax tree;
- abstract expressions support (regular expressions, functions, lua modules
composites and so on)
- New comparision and '+' operators support
- New greedy algorithm to minimize execution time of expressions and
all symbols
- Dynamic expressions benchmark and reoptimizations
* Many improvements to the LUA API:
- reworked logger module allowing to do pretty print of the most of lua
types (including tables and userdata classes)
- reworked lua redis and lua HTTP to support more features
- added opaque type for passing large text chunks without copying
- new regexp module with many auxiliary functions (e.g. `re:split`)
* LuaJIT is now the default requirement for rspamd allowing to speed up lua
execution by a large margin (however, plain lua is still supported)
* New plugins:
- spamassassin rules plugin that allows to load and re-use the most of
SA rules natively
- DMARC plugin that evaluates SPF and DKIM policies to the domain policies
- many old plugins has been reworked to implement new features and improve
stability
* New aho-corasic trie implementation from @mischasan that allows to load and
use hundreds of thousands of patterns with no influence on load
* Support of PCRE JIT and PCRE JIT fast path modes that significantly improves
the performance of regular expressions if supported by PCRE
* New URLs parser and extractor:
- removed legacy code that was useless for url finding
- reworked algorithms of URL parsing for more precise and accurate results
- added top-level-domains tree from http://publicsuffix.org
- improved emails parsing
- removed many phishing false positives due to TLD tree check
* New statistics infrastructure:
- created a separate layer of statistic library
- improved OSB-Bayes by re-weighting tokens according to the original
academic paper and `crm114` implementation, which reduced false positives
rate significantly
- created learn cache to avoid double learning of statistics and providing
an efficient way to re-learn class for a message
- created abstract layers for different statistics backends
- implemented new tokenization algorithms with fast or secure (siphash)
hashes to generate statistics features
* Reworked utf8 tokenization that previously corrupted all UTF8 words (minor
incompatibility with old fuzzy hashes with utf-8 symbols)
* SPF module has been completely rewritten to support complex cases of
`include` and `redirect` within SPF records
* DKIM module now supports multiple signatures
* Controller passwords can now be stored encrypted by `PBKDF2-HMAC` in the
configuration file
* Many hand-written HTTP clients has been replaced with the common rspamd
http module
* New test framework:
- import lua `telescope` test framework
- add unit tests for many rspamd modules and routines
- create a unit test for each possible bug found
- use luajit ffi for testing C code
- added preliminary support of functional testing by creating tasks from lua
* Randomize hash seed to avoid certain hash tables vulnerabilities
* Documentation improvements:
- added documentation for the vast majority of rspamd modules
- added documentation for rspamd protocol
- added documentation for the most of rspamd LUA extensions
* Fixed tonns of bugs and memory leaks
* Added tonns of minor features
0.8.3:
* Various critical fixes in distribution (by @dottedmag and @fatalbanana)
* Fixed bugs in url detector to parse certain patterns
* Add default host and helo for a client
* Some sanity checks for tokenizer and classifier
* Reiterate on systemd support
* Fix missing symbol registration
* Add support of spamc compatible output
* Filter double-dots in rbl.lua validate_dns (by @fatalbanana)
* Update ucl submodule due to critical bugfix
0.8.2:
* Create fuzzy db if it does not exist
* Fix: Centos init script: configtest() (by @AlexeySa)
* Enable one_shot for RECEIVED_SPAMHAUS_XBL - Fixes #102 (by @fatalbanana)
* Update Exim patch (by @fatalbanana)
* Fix processing of unix sockets.
* Allow applying settings to authenticated users (by @fatalbanana)
* Make settings priorities work as documented (by @fatalbanana)
* Fix race condition in symbols planner
* Add DNSWL_BLOCKED symbol (by @fatalbanana)
* Make Exim pass usernames to rspamd (by @fatalbanana)
* Update RBL module (by @fatalbanana):
- fix indentation;
- collapse loops;
- avoid calling for un-needed information;
- allow disabling RBLs for authenticated users
* once_received.lua: Fix indentation & add exclusion for authenticated users (by @fatalbanana)
* hfilter.lua: Add exclusion for authenticated users (by @AlexeySa)
* Updates to hfilter rules (by @AlexeySa)
* Set empty <> user or addr for msgs without FROM (by @eneq123)
* Fix: attempt to index field '?' (a nil value) (by @eneq123)
* Fix: if not exist Date-header (by @AlexeySa)
* Add task:get_content() method.
* rbl.lua: Ignore private IP space (by @fatalbanana)
* Allow to check radix maps from lua by rspamd{ip}
* Make local exclusions configurable per-RBL (by @fatalbanana)
* Add rspamd_config:radix_from_config() (by @fatalbanana)
* Support emails dnsbl in rbl (by @fatalbanana)
* Complete rework of url extraction logic
* Allow customizations for unix sockets. (fixes #182)
* Set lua path according to rspamd settings.
* Import lua-functional for plugins stuff.
* Completely rewrite multimap plugin in functional style.
* Fix FORGED_MUA_THUNDERBIRD_MSGID (fixes #186)
* Check IPv6 addresses at dnswl.org and Spamhaus whitelist (by @fatalbanana)
* Add lowercase utility for utf8 strings.
* Various fixes to build system
* Updated debian configuration infrastructure (by @dottedmag)
|