Age | Commit message (Collapse) | Author | Files | Lines |
|
Is it still need commented out? (Though I can't test completely either...)
|
|
Postfix 2.0 patchlevel 6 intends to protect vulnerable Sendmail
systems against exploitation of a remote buffer overflow problem
that is described in CERT advisory CA-2003-07.
- Postfix now truncates non-address information in message address
headers (comments, etc.) to 250 characters per address. This should
rarely present a problem. Reportedly, junk mail from poorly written
software can trigger the protection, but that is no great loss.
- Some little fixes to documentation.
|
|
* 1.2.0:
** Added new automated testing. Run them with ``make check''.
* 1.1.5:
** Added MAPI_OBJECT.tnef test file
** Code cleanup.
* 1.1.4:
** Fixed Bug 620072: Segfault related to MAPI_OBJECT parsing.
* 1.1.3:
** Fixed Bug 608075: configuration on MacOSX
|
|
Version identification (popa3d -V) has been added, and the logging of
abnormally terminated POP3 sessions has been improved.
|
|
|
|
|
|
the latest sendmail security advisory.
See http://www.cert.org/advisories/CA-2003-07.html
People using such an old sendmail really should upgrade.
|
|
So provide a build dependency on GNU m4 (devel/m4) when appropriate.
Bump PKGREVISION.
|
|
- The SMTP server's hard and soft error limits were off by one.
With "smtpd_hard_error_limit = 1", Postfix will now disconnect
after the first error, instead of the second one.
- The proxymap server could deadlock when the mydestination parameter
setting included a proxymapped lookup table.
- Some little fixes to documentation.
|
|
ftp://ftp.sendmail.org/pub/sendmail/sendmail.8.11.6.security.cr.patch
See Cert Advisory CA-2003-07.
Bump PKGREVISION.
|
|
Also SASL 2 support added and PLIST tuning.
8.12.8/8.12.8 2003/02/11
SECURITY: Fix a remote buffer overflow in header parsing by
dropping sender and recipient header comments if the
comments are too long. Problem noted by Mark Dowd
of ISS X-Force.
Fix a potential non-exploitable buffer overflow in parsing the
.cf queue settings and potential buffer underflow in
parsing ident responses. Problem noted by Yichen Xie of
Stanford University Compilation Group.
Fix ETRN #queuegroup command: actually start a queue run for
the selected queue group. Problem noted by Jos Vos.
If MaxMimeHeaderLength is set and a malformed MIME header is fixed,
log the fixup as "Fixed MIME header" instead of "Truncated
MIME header". Problem noted by Ian J Hart.
CONFIG: Fix regression bug in proto.m4 that caused a bogus
error message: "FEATURE() should be before MAILER()".
MAIL.LOCAL: Be more explicit in some error cases, i.e., whether
a mailbox has more than one link or whether it is not
a regular file. Patch from John Beck of Sun Microsystems.
8.12.7/8.12.7 2002/12/29
Properly clean up macros to avoid persistence of session data
across various connections. This could cause session
oriented restrictions, e.g., STARTTLS requirements,
to erroneously allow a connection. Problem noted
by Tim Maletic of Priority Health.
Do not lookup MX records when sorting the MSP queue. The MSP
only needs to relay all mail to the MTA. Problem found
by Gary Mills of the University of Manitoba.
Do not restrict the length of connection information to 100
characters in some logging statements. Problem noted by
Erik Parker.
When converting an enhanced status code to an exit status, use
EX_CONFIG if the first digit is not 2, 4, or 5 or if *.1.5
is used.
Reset macro $x when receiving another MAIL command. Problem
noted by Vlado Potisk of Wigro s.r.o.
Don't bother setting the permissions on the build area statistics
file, the proper permissions will be put on the file at
install time. This fixes installation over NFS for some
users. Problem noted by Martin J. Dellwo of 3-Dimensional
Pharmaceuticals, Inc.
Fix problem of decoding SASLv2 encrypted data. Problem noted by
Alex Deiter of Mobile TeleSystems, Komi Republic.
Log milter socket open errors at MilterLogLevel 1 or higher instead
of 11 or higher.
Print early system errors to the console instead of silently
exiting. Problem noted by James Jong of IBM.
Do not process a queue group if Runners is set to 0, regardless
of whether F=f or sendmail is run in verbose mode (-v).
The use of -qGname will still force queue group "name"
to be run even if Runners=0.
Change the level for logging the fact that a daemon is refusing
connections due to high load from LOG_INFO to LOG_NOTICE.
Patch from John Beck of Sun Microsystems.
Use location information for submit.cf from NetInfo
(/locations/sendmail/submit.cf) if available.
Re-enable ForkEachJob which was lost in 8.12.0. Problem noted by
Neil Rickert of Northern Illinois University.
Make behavior of /canon in debug mode consistent with usage in
rulesets. Patch from Shigeno Kazutaka of IIJ.
Fix a potential memory leak in envelope splitting. Problem noted
by John Majikes of IBM.
Do not try to share an mailbox database LDAP connection across
different processes. Problem noted by Randy Kunkee.
Fix logging for undelivered recipients when the SMTP connection
times out during message collection. Problem noted by Neil
Rickert of Northern Illinois University.
Avoid problems with QueueSortOrder=random due to problems with
qsort() on Solaris (and maybe some other operating systems).
Problem noted by Stephan Schulz of Gruner+Jahr..
If -f "" is specified, set the sender address to "<>". Problem
noted by Matthias Andree.
Fix formatting problem of footnotes for plain text output on some
versions of tmac. Patch from Per Hedeland.
Portability:
Berkeley DB 4.1 support (requires at least 4.1.25).
Some getopt(3) implementations in GNU/Linux are broken
and pass a NULL pointer to an option which requires
an argument, hence the builtin version of
sendmail is used instead. This can be overridden
by using -DSM_CONF_GETOPT=0. Problem noted by
Vlado Potisk of Wigro s.r.o.
Support for nph-1.2.0 from Mark D. Roth of the University
of Illinois at Urbana-Champaign.
Support for FreeBSD 5.0's MAC labeling from Robert Watson
of the TrustedBSD Project.
Support for reading the number of processors on an IRIX
system from Michel Bourget of SGI.
Support for UnixWare 7.1 based on input from Larry Rosenman.
Interix support from Nedelcho Stanev of Atlantic Sky
Corporation.
Update Mac OS X/Darwin portability from Wilfredo Sanchez.
CONFIG: Enforce tls_client restrictions even if delay_checks
is used. Problem noted by Malte Starostik.
CONFIG: Deal with an empty hostname created via bogus
DNS entries to get around access restrictions.
Problem noted by Kai Schlichting.
CONFIG: Use FEATURE(`msp', `[127.0.0.1]') in submit.mc by default
to avoid problems with hostname resolution for localhost
which on many systems does not resolve to 127.0.0.1 (or
::1 for IPv6). If you do not use IPv4 but only IPv6 then
you need to change submit.mc accordingly, see the comment
in the file itself.
CONFIG: Set confDONT_INIT_GROUPS to True in submit.mc to avoid
error messages from initgroups(3) on AIX 4.3 when sending
mail to non-existing users. Problem noted by Mark Roth of
the University of Illinois at Urbana-Champaign.
CONFIG: Allow local_procmail to override local_lmtp settings.
CONFIG: Always allow connections from 127.0.0.1 or IPv6:::1 to
relay.
CONTRIB: cidrexpand: Deal with the prefix tags that may be included
in access_db.
CONTRIB: New version of doublebounce.pl contributed by Leo Bicknell.
LIBMILTER: On Solaris libmilter may get into an endless loop if
an error in the communication from/to the MTA occurs.
Patch from Gurusamy Sarathy of Active State.
LIBMILTER: Ignore EINTR from sigwait(3) which may happen on Tru64.
Patch from from Jose Marcio Martins da Cruz of Ecole
Nationale Superieure des Mines de Paris.
MAIL.LOCAL: Fix a truncation race condition if the close() on
the mailbox fails. Problem noted by Tomoko Fukuzawa of
Sun Microsystems.
MAIL.LOCAL: Fix a potential file descriptor leak if mkstemp(3)
fails. Patch from John Beck of Sun Microsystems.
SMRSH: SECURITY: Only allow regular files or symbolic links to be
used for a command. Problem noted by David Endler of
iDEFENSE, Inc.
New Files:
devtools/OS/Interix
include/sm/bdb.h
|
|
portable. Bump PKGREVISION accordingly.
|
|
Closes PR pkg/20543 by Kimmo Suominen.
|
|
greps the package's Makefile, but none that are included.
|
|
Changes to the Cyrus IMAP Server since 2.1.11
* Master now will forcibly exit if a service is not executable
* Master now has a daemon mode and pidfile support (-d and -p
options)
* Berkeley DB Configuration methods have changed. Hopefully they're
more generic now. You can still use --with-dbdir, or you can use
--with-bdb-libdir and --with-bdb-incdir
* timsieved now handles usernames with dots (when unixhierarchysep is
active)
* tugowar has been removed from the distribution.
* Squatter now has an option to skip unmodified mailboxes.
* Properly hash username to remove a user's sieve scripts when their
INBOX is removed.
* Reset output buffer when prot_flush returns EOF.
* Minor Makefile improvements with use of $(srcdir)
* Remotepurge improvement for empty mailboxes
* Fix for AFS overwriting the canonicalized username in ptloader
* Security audit of imapd.c performed by SecurityAppraisers and
Bynari
|
|
Changes:
- add local patch for configure generated with new autoconf, the old
one doesn't accept CFLAGS & the like. (already fixed in ifile cvs)
1.3.0:
======
- include/extendable_array.h: Fixed bug in EXT_ARRAY_INIT_N_SET()
macro. Fixes bug 2516, where new folders caused the database to
be garbled.
- Performance improvements: On a Sun SPARC-based system running
Solaris 10, with a database of about 16500 words, got a 40%
improvement in words processed per second when reading the
database, using the changes listed here.
- include/ifile.h: Changed prototypes for readline(),
ifile_read_header() and ifile_read_word_frequencies() to reflect
new calling conventions.
- include/extendable_array.h: New macro EXT_ARRAY_INIT_N_SET()
combines the effects of EXT_ARRAY_INIT() and multiple calls to
EXT_ARRAY_SET() in a smarter way, saving many realloc() calls and
many manipulations of the array metadata.
- utils.c: Rewrote readline to take a char-- bufp and use the
data within -bufp to parse a line, and update -bufp to point
beyond the first line. This avoids at least one copy of the
data.
- primes.c: Cast values returned by ifile_realloc() correctly.
- int4str.c: Cast argument to free() to void - in
ifile_int4str_free_contents(), to fix compiler complaints.
- hash.c: Added an include of <string.h> to fix compiler
complaints.
- database.c: Made ifile_read_db() read the whole database in one
fell swoop and modified callers of readline() to just pass in a
pointer to the buffered database.
Also made ifile_read_word_entry() call a new macro
EXT_ARRAY_INIT_N_SET() in place of EXT_ARRAY_INIT() and multiple
calls to EXT_ARRAY_SET(), saving many calls to realloc() and many
manipulations of the extendable array metadata.
|
|
|
|
postfix snapshot.
|
|
|
|
|
|
Changes:
- Bug fix concerning maildir format mail servers, during rcopy/rmove and
while the namespace option is enabled. Also, a better explanation of the
namespace option.
- Correction on program's interaction with non-terminal file descriptors
(redirection, piping, etc.).
- Minor bug fix that appeared when no mailbox groups where defined.
- Upgrading of the contents of logfile everytime data are appended.
|
|
|
|
|
|
|
|
- The format of maildir filenames is synchronized with the present
version of the maildir definition document. This format was already
adopted by the 20030126 snapshot release.
- The time limit on delivery to external commands was not enforced.
This was broken probably some time before the first public Postfix release.
- Duplicate elimination after virtual alias expansion works again.
This was broken with the introduction of the original recipient attribute.
- The local pickup daemon dropped incomplete records from local
submissions. This was broken somewhere in the middle of 2002.
|
|
* Updated German, Turkish, Spanish, and Danish translation files.
* Integrated Sunil Shetye's patch to make mark_seen an explicit method.
* Removed FAQ warning about GMX and associated fetchmailconf check,
we have a report that its servers are conformant now.
* Another Sunil patch to fix a minor bug in bouncemail generation.
|
|
Changes: This version features minor bug, correctness,
and interoperability fixes.
|
|
VM 7.08 released (14 February 2003)
* New variables
+ vm-mime-ignore-missing-multipart-boundary
+ vm-url-browser-switches
* vm-mime-attach-object-from-message: decode object after stuffing it
into the work buffer. Two reasons: (1) the composition encoding
code doesn't expect base64 or QP encoded objects and will encode
them again, and (2) we shouldn't trust that the original object was
encoded properly so we should re-encode it since we're sending it.
* vm-mime-display-internal-multipart/alternative: a badly formed
mesage may cause VM to find no message parts so don't call
vm-decode-mime-layout unless best-layout is non-nil.
* vm-su-subject: compress \n[ \t]* to a single space.
* README: Added (vm) to the example VM entry in the 'dir' file.
Apparently the old entry won't work without it anymore.
* vm-mime-parse-entity-safe: error/error MIME layout needs to be
length 16; added a nil. Really need to macroize creation
of the layout object someday.
* vm-recover-file: call recover-file with call-interactively
instead of apply.
* vm-revert-buffer: call revert-buffer with call-interactively
instead of apply.
* vm-decode-mime-layout: check if layout has been converted
and don't try to convert it again if so.
* vm-vs-or, vm-vs-and: check existence of selector function and
signal error if not found.
* vm-md5-region: accept " -" and " *-" before the md5 checksum
because md5sum stupidly produces extra output on some systems.
* vm-imap-end-session: trying reading the response to the LOGOUT
command and see if we start hanging in some environments.
* vm-imap-make-session: don't query for passwor dif the
authentiation method is "preauth".
* vm-visit-virtual-folder: select the message corresponding to
the real message the user used as a basis for this folder, if
there was one. Only honor the vm-jump-* variables if
there's no correspoinding real message to use.
* vm-compose-mail: run mail-citation-hook or mail-yank-hooks or
the normal VM default action after yanking the message text.
Always position point in the body before running the yank
action. Don't assume the yank action is smart enough to
position point correctly before inserting the text.
* vm-recognize-imap-maildrops,vm-recognize-pop-maildrops: changed
regexp to allow colons in the last field.
* dropped single quotes in const choice values in defcustom for
vm-mime-alternative-select-method.
* Makefile: use \015 instead of \r with tr due to bug in Solaris
8's tr which removes r's.
* vm-get-mail-itimer-function: correct use of timer-set-time; set
new firing time to now + vm-auto-get-new-mail instead of now
with a delta of vm-auto-get-new-mail, to avoid having
the timer expire repeatedly in the same second. Similar change
in vm-check-mail-itimer-function which support vm-mail-check-interval.
Similar change in vm-flush-itimer-function which supports vm-flush-interval.
* vm-decode-mime-message: vm-preview-read-messages ->
vm-preview-lines so that message previewing is turned off for
the 'raw' and 'all buttons' displays.
* vm-mail-send: bind select-safe-coding-system-function to nil
during call to mail-send to prevent Emacs from prodding user
about the FCC coding system. The coding system used should be
raw-text and VM sets buffer-file-coding-system to that.
* vm-stuff-attributes: don't clear modflag if stuffing for another
folder, since the information stuffed in that case is missing
the deleted flag if that flag was set.
* use defconst to set vm-faked-defcustom so that the checking
works correctly if vm-vars.el is loaded twice.
* vm-mime-parse-entity: find multipart boundaries, then recurse
into parts. This satisfies the new rule in RFC 2046 that outer
level multipart boundaries be recognized at any level of inner
nesting.
* vm-mime-send-body-to-file: removed let-binding of variable file
which was shadowing the function parameter of the same name.
This should make the function not ask about a filename even
when one has already been provided.
* define vm-folder-history as a function that returns t so that
when it is passed as the sixth arg to read-file-name under
Emacs 21 it does not cause void-function to be signaled when
completion is attempted.
* vm-mime-send-body-to-folder: force conversion to target folder's
type since the user doesn't know what type we're using in the
temp folder.
* vm-save-message: dno't try to honor vm-delete-after-saving if
the folder is read-only.
* vm-delete-duplicate-messages: compute hash on real folder
contents rather than virtual copy. Fixes utterly brokwn
behavior when run on a virtual folder.
|
|
|
|
|
|
rebuild the documentation database at install/deinstall time. This means
that:
- PLIST's do not need to call scrollkeeper-{update,rebuilddb} directly;
this is done by a bsd.pkg.install.mk template.
- The share/omf directory is only removed by scrollkeeper, which is the
last package in the dependancy tree.
- PKGREVISION is bumped.
Reviewed by wiz.
|
|
addresses PR pkg/19416
|
|
|
|
Spamprobe is a fast, intelligent, automatic spam detector using Bayesian
analysis of terms contained in emails. Works with procmail, maildrop or a
similar tool to produce a complete server or client side spam filtering
system.
Provided by Daniel Farrugia in PR#20286, buildlinkified by me.
|
|
by gehenna.
|
|
- use 1.0.0.7 as PKGVERSION, 1.00RC7 is invalid
- USE_PKGINSTALL, don't include bsd.pkg.install.mk directly
- use automatic rc.d scripts handling
- install example mailer.conf
- minor cleanups
|
|
|
|
Changes for pkgsrc:
* Added an rc.d/nullmailer script
* Added brief instructions on how to set up nullmailer in MESSAGE.
* Changed spool directory from /var/nullmailer to /var/spool/nullmailer
Changes in nullmailer itself:
Changes in version 1.00RC7
- Fixed typo in smtp protocol module that caused HELO to be sent without
a hostname.
- Added a one-shot mode to nullmailer-send, triggered by setting the
pausetime to zero.
Note: If no further bugs are found, this will become the official
version 1.00 release.
Changes in version 1.00RC6
- Protocol modules now report all failure and success messages.
- Removed the whole gethostname/getdomainname mess and replaced it with
code to read the hostname from the "me" control file, and the default
domain name from the "defaultdomain" control file.
- Fixed a bug that would cause lines starting with a period to have that
period stripped when it was sent via SMTP.
- Added some missing includes to fix compilation failures in various
sources.
- Fixed a bug in the setenv function in sendmail.cc.
NOTE! Make sure to set up the new "me" control file before using this
version. The RPM install does this automatically.
|
|
|
|
|
|
|
|
or from a diskless client to it's smart mailer.
|
|
or from a diskless client to its smart mailer.
|
|
or from a diskless client to it's smart mailer.
|
|
Bump PKGREVISION.
From Christian Biere via PR pkg/20169.
|
|
argument. Handle differently.
|
|
This release incorporates some security fixes in relation to XSS
(cross site scripting) code which could allow malicious extraction of
information from the client browser. There is also a fix for the
SquirrelMail 1.2.10 "Double login" problem. This was related to a
session issue, and has been fixed.
|
|
from stable branch of SA CVS repository.
On other operating systems 'spamc' was reported to cause a core dump if
'spamd' was not running. At least NetBSD/i386 1.5.3 seems not to be as
severely affected, I only got 'spamc in free(): warning: junk
pointer, too high to make sense.'.
|
|
from stable branch of SA CVS repository.
On other operating systems 'spamc' was reported to cause a core dump if
'spamd' was not running. At least NetBSD/i386 1.5.3 seems not to be as
severely affected, I only got 'spamc in free(): warning: junk
pointer, too high to make sense.'.
|
|
|