| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
Based on PR#43566, with additional clean up, exactly enable/disable options.
Version 1.4.21:
- No significant changes.
Version 1.4.20:
- Added support for authentication mechanism SCRAM-SHA-1 via GNU SASL.
- The new command tls_fingerprint allows one to trust one particular TLS
certificate, in case tls_trust_file cannot be used for some reason.
- The new script msmtp-gnome-tool.py manages Gnome Keyring passwords for msmtp.
Version 1.4.19:
- When using OpenSSL, msmtp now correctly handles NUL characters in the Common
Name and Subject Alternative Name fields of certificates. This fixes a
security problem. Note that msmtp is not affected by this problem if GnuTLS is
used.
|
|
Changed the option "hostname-file" to read /var/qmail/control/me by default.
Added the option "dns-resolv-conf" to read the nameserver from a file other
than /etc/resolv.conf if necessary. Multiple files can be read, if needed.
Changed all uses of strncpy() to memcpy() because strncpy() will fill the
remainder of the destination buffer with zeroes if the source string is
too short. This is not needed because all strings are being explicitly
terminated after copies anyway.
Added two new parameters to search_file() to allow the matching line data to
be returned to the caller.
Changed process_access() to save the contents of the RELAYCLIENT environment
variable, if set.
Added the timefilter program to the utils folder.
Reversed a small change to spamdyke_log() made 4.0.8 that will prevent buffer
overflows in obscure situations.
Changed is_ip_in_name() to look for more patterns of IP addresses in rDNS
names: 044.033.022.011, 44.033.022.011, 44.33.022.011 and 44.33.22.011.
Thanks to Eduard Svarc for suggesting this one.
Changed the syslog output to include an "encryption:" tag at the end that
shows the current status of TLS/SSL encryption. Thanks to Eric Shubert for
suggesting this one.
Added a "-R" option to smtpdummy so it will reject all recipients.
Completely rewrote find_address() to completely conform to RFC 2822 when
parsing addresses, including quoting, comments, folded whitespace and
all the rest.
Added the option "reject-identical-sender-recipient" to block any messages
where the sender and recipient are the same. Thanks to almost everyone
on the mailing list for suggesting this one.
Changed nihdns_mx() to tolerate MX records that contain IP addresses (illegal)
instead of names.
Fixed Makefile.in to use the CPPFLAGS variable from the "configure" script, if
the user provided it in an environment variable. Thanks to Iavor Stoev for
reporting this one.
Fixed the "configure" script to correctly include header files on FreeBSD 7.0.
Thanks to Andrew Khon for reporting this one.
Added a "-S" flag to sendrecv to prevent it from starting a TLS session when
it sees "STARTTLS".
Improved sendrecv's usage display to document what each option does.
Changed do_spamdyke() to set the stdin and stdout file descriptors to
nonblocking before calling middleman(). This works around a bug in the SSL
library that will block forever waiting for input, even after SSL_pending()
and/or select() has already indicated the socket is ready. Thanks to
Teodor Milkov for identifying this problem more than a year ago and trog for
producing a patch to fix it!
Fixed process_config_file() to reject configuration file lines with
bad/missing characters.
Fixed process_config_file() to print an "unknown option" error message instead
of an "illegal option" message when an unknown option is found in a
configuration file.
Added option "rejection-text-identical-sender-recipient" to set the rejection
message for the identical sender/recipient filter.
Created dnsdummy to simulate a nameserver but exit after a short while for
testing spamdyke's DNS routines.
Converted all DNS-related tests to use dnsdummy and removed all references to
spamdyke.org and silence.org. This will also allow the removal of the
(hundreds of) bogus entries from the spamdyke.org zone file.
Removed the use of getprotobyname() from dns.c and used the defined protocol
values in netinet/in.h.
Changed nihdns_query() to retry DNS queries via TCP if the response received
via UDP has the "truncation" flag set (indicating the answers are too large
for a UDP packet). Thanks to Roland Moelle for suggesting this one.
Added option "dns-tcp" to control if spamdyke will retry DNS queries via TCP.
Added option "dns-spoof" to control if spamdyke will attempt to detect DNS
spoofing and, if so, what it should do about it.
Fixed smtp_filter() to offer and accept SMTP AUTH (when appropriate) even if
the connection is already whitelisted. Thanks to Ratko Rudic for
reporting this one.
|
|
|
|
-fix crap code from bad svn merge that slipped into 4.18.0, triggering
exceptions in MDA_external configs. Thanks: Paul Howarth.
|
|
-fix missing import introduced in 4.18.0. Thanks: Paul Howarth.
|
|
|
|
|
|
-update broken link in FAQ. Thanks: Stefan Kangas.
-strip a few extra problematic (on non-Unix systems) characters when
generating oldmail filenames; backslash was requested by Andy Ross.
If upgrading and your current oldmail file contains any of these
characters:
\ ; < > |
... then rename it, replacing runs of one or more of those characters with
a single "-".
-improve clarity of message logged by getmail when an external program exits
0 but getmail considers it failed because it wrote to stderr. Thanks:
Chris Dennis.
|
|
This is a bugfix release which fixes various UI issues.
|
|
|
|
|
|
ChangeLog for Dovecot 1.2.12:
- deliver: Don't crash when a message with Auto-submitted: header gets
rejected.
- lib-storage: Fixed header searches to work correctly when there are
multiple headers with same name.
- dict client: Disconnect from dict server after 1 second of idling.
- dict: If process crashed, it wasn't automatically restarted
- dict file: If dict file's group permissions equal world permissions,
don't try to change its gid.
- maildir: Fixed a memory leak when copying with hardlinks.
- maildir: Expunging last messages may have assert-crashed if their
filenames had just changed.
Changelog for Sieve 0.1.17:
- Made sure source code positions for compiler messages are recorded
at start of tokens.
- Fixed a few potential memory leaks in the Sieve compiler and the
spam/virustest extensions.
- Made command line tools return proper exit status upon failure.
|
|
from postfix-license, of the same level of importance as changing the
name of the copyright holder, rather than in the nature of the terms.
Everyone believes that postfix is Open Source, and this causes postfix
to fall under DEFAULT_ACCEPTABLE_LICENSES.
ok martti@
|
|
* courier-analog.in: Typo.
* courier-analog.in: Combine all RCPT TO errors together
Based on patch(es) from PR pkg/42989 by Brian Candler
|
|
* gpglib/list.c: Handle GnuPG 2 --with-colons output format changes.
* gpglib/mimegpgfork.c: GnuPG 2 wants --batch when specifying
passphrase-fd.
* rfc2045/rfc2045reply.c (mkreply): Fix sender's name in the
reply salutation.
* html/en-us/newmsg.html: Ditto.
* Big quota patch (with some changes).
(See the Changelog for the previous releases)
Based on patch(es) from PR pkg/42989 by Brian Candler
|
|
* maildrop/mailbot.c (main): Set close-on-exec bit on opened files.
* rfc2045/rfc2045reply.c (mkreply): Fix sender's name in the
reply salutation.
* rfc2045/reformime.sgml: Document the -c option to reformime.
* Big quota patch (with some changes).
(See the Changelog for the previous releases)
Based on patch(es) from PR pkg/42989 by Brian Candler
|
|
* tcpd/configure.in: Check if explicit linking with libgpg-error is required.
* imapd.c (main): Fix typo in alert message.
* Big quota patch (with some changes).
* imapd.c (main): Dummy FAM/Gamin initialization, report an error
during login, upon a failure.
* imapd.c (imapenhancedidle): Make FAM error more meaningful.
* pop3dserver.c (main): "disableinsecurepop3" account option disables
non-SSL logins.
* imapd.c (chkdisabled): "disableinsecureimap" account option disables
non-SSL logins.
(See the Changelog for the previous releases)
Based on patch(es) from PR pkg/42989 by Brian Candler
|
|
* gpglib/list.c: Handle GnuPG 2 --with-colons output format changes.
* gpglib/mimegpgfork.c: GnuPG 2 wants --batch when specifying passphrase-fd.
* tcpd/configure.in: Check if explicit linking with libgpg-error is required.
* tcpd/libcouriergnutls.c (tls_connect): Fix bad call to
gnutls_server_name_set(). Affects Courier compiled with GnuTLS support.
* maildrop/mailbot.c (main): Set close-on-exec bit on opened files.
* courier/doc/courier.sgml: Move the SPF section to a separate refsect2
to work around misformatting by the manpage stylesheet.
* rfc2045/rfc2045reply.c (mkreply): Fix sender's name in the reply salutation.
* html/en-us/newmsg.html: Ditto.
* rfc2045/reformime.sgml: Document the -c option to reformime.
* imapd.c (main): Fix typo in alert message.
* Big quota patch (with some changes).
(See the Changelog(s) for previous releases)
Based on patch(es) from PR pkg/42989 by Brian Candler.
|
|
|
|
(missed those and *emacs* the first time round because they pull
in their png dependencies via default-on options; they were included
in the test bulk build though)
|
|
it start after ntpdate runs.
|
|
Also add some patches to remove use of deprecated symbols and fix other
problems when looking for or compiling against libpng-1.4.x.
|
|
|
|
* This is the latest development release
|
|
implementation (for SMTP-based content filters), improves robustness,
and has updates for changes in system or library interfaces.
* Bugfix (introduced Postfix 2.6) in the XFORWARD implementation,
which sends remote SMTP client attributes through SMTP-based
content filters. The Postfix SMTP client did not skip "unknown"
SMTP client attributes, causing a syntax error when sending
an "unknown" client PORT attribute.
* Robustness: skip LDAP queries with non-ASCII search strings,
instead of failing with a database lookup error.
* Safety: Postfix processes now log a warning when a matchlist
has a #comment at the end of a line (for example mynetworks
or relay_domains).
* Portability: OpenSSL 1.0.0 changes the priority of anonymous
cyphers.
* Portability: Mac OS 10.6.3 requires <arpa/nameser_compat.h>
instead of <nameser8_compat.h>.
* Portability: Berkeley DB 5.x is now supported.
|
|
- security fixes
- various bug fixes and small improvements
- new XHTML strict template tree
- add UTF-8 support
- add IPv6 support
- add Raven single sign-on authentication
|
|
* installed exipick 20100104.1, adding $max_received_linelength, $data_path,
and $header_path variables; fixed documentation bugs and typos
* installed exipick 20100222.0, added --input-dir and --finput to allow
exipick to access non-standard spools, including the "frozen" queue (Finput)
* Support mysql stored procedures.
* Spacing fix (syntax error) on Makefile directives for NetBSD
* Documentation fix for max_rcpts.
* Fix for unknown responses from Dovecot authenticator.
* Added umask to procmail example.
* installed exipick 20100323.0, fixing doc bug
* CVE-2010-2023 - prevent hardlink attack on sticky mail directory.
* Upgrade PolarSSL files to upstream version 0.12.1.
* Improve log output when DKIM signing operation fails.
* Treat the transport option dkim_domain as a colon separated list, not as
a single string, and sign the message with each element, omitting multiple
occurences of the same signer.
* Null terminate DKIM strings, Null initialise DKIM variable
* dnsdb DNS TXT record bug fix (DKIM-related)
* CVE-2010-2024 - work round race condition on MBX locking.
|
|
Regenerate patch for malformed received lines from upstream CVS via:
cvs diff -r RELEASE_0_3_1
Store the patch on ftp.netbsd.org, rather than wrongly trying to put
it in files.
PKGREVISION++.
|
|
|
|
|
|
Take maintainership.
|
|
|
|
* Bump PKGREVISION for db4 ABI bump, because bdb option is enabled by default.
|
|
|
|
Defaults to off for now ...
|
|
|
|
* fix warning with IPv6 address
* added --x-greylist-header option
* contrib/postgrey.init: new LSB-compliant init script by Adrian von Bidder
* contrib/postgreyreport: fix POD error
* contrib/postgreyreport: added --tab and --show_time options
* updated whitelist
Changes 1.32:
* fixed recipients whitelisting
* added --syslog-facility option
* add support for BATV
* updated whitelist
|
|
|
|
See http://hg.vergenet.net/perdition/perdition/
|
|
* A new, more permissive license allows people to distribute versions of
Mail Avenger that are linked with OpenSSL.
* Some minor corrections to manual pages, thanks to Dererk.
Changes 0.8.0:
* Minor changes for compilation under gcc 4.3.0.
* Fsync the destination directory and expliticly update its times when
delivering a message to a maildir.
|
|
|
|
because /var/run may be cleared at bootstrap.
Bump PKGREVISION.
|
|
/var/run may be cleared at boot.
|
|
|
|
|
|
* Lots of bug fixes
|
|
|
|
bidirectionally access your Google Calendar from within lightning.
For more information:
https://wiki.mozilla.org/Calendar:GDATA_Provider#Accessing_your_Calendar
|
|
mail to tech-pkg
(shouldn't make a difference to the installed pkg because libpthread
is pulled in by a number of other libraries)
|
|
* cone/sgml/cone-folderindex.sgml (prompt): Mention the inn 2.5.x bug.
* cone/myreferences.H (m): Fix NULL ptr deref.
* cone/cursesmessage.C (nextLink): Fix wild pointer.
* libmail/copymessage.C (fail): Fix segfault if fetching the contents,
of the message being copied, fails.
* cone/cursesmessage.C (reformatAddLine): Clear the entire struct
to suppress warnings from valgrind.
* gcc 4.5 portability fixes.
* tcpd/libcouriergnutls.c (tls_connect): Fix bad call to
gnutls_server_name_set().
Changes 0.82:
* cone/curseseditmessage.C (getMarkedRegion): Portability fix (gcc 4.4.3).
* all: Some code cleanup.
Changes 0.81:
* cone/spellcheckerAspell.C: Do not set "lang" and "encoding" to empty values.
Changes 0.80:
* cone/libmail: Link with libidn if this library is installed. Added
getAddrAddr() and setAddrAddr() methods to mail::emailAddress that
use libidn, if installed, to decode/encode the hostname portion of the
email address.
* The GNU IDN library is now required to build Cone
|
