Commit graph

158 commits

Author SHA1 Message Date
Sheldon Hearn
65dd0504c4 Warn folks who actually turn Exiscan on about its tendency to not
preserve backward compatibility across upgrades.
2003-02-05 11:57:04 +00:00
Sheldon Hearn
c537abc9b1 1) Update to exiscan-4.12-22, which closes a number of buffer overflows
and incorporates a lot of fixes.

   WARNING, this version of exiscan is not entirely backward-compatible
   with the previous one:

   *	The following configuration options have been replaced with
	compile-time definitions and thus must be removed from your
	Exim configure file if specified there:

	exiscan_spamd_buffer_max_chunks
	exiscan_spamd_buffer_init_chunk
	exiscan_av_buffer_max_chunks
	exiscan_av_buffer_init_chunk

   *	Because of changes in the way MIME handling is implemented,
	the following should be added to the Exim configure file to
	maintain the original behaviour (which was to unpack MIME
	messages):

	exiscan_demime_condition = 1

2) Fix handling of SIGCHLD in redirection processes, which resulted
   in redirection processes vanishing.

3) Bump PORTREVISION accordingly.
2003-02-04 14:07:08 +00:00
Sheldon Hearn
ac224686f9 Do not create missing DB hints files for read-only operations on them;
simply fail the lookup.

This prevents Exim from creating hints files that it can't use when
its DBM method is DB 1.85 (the default).

Obtained from:	author
2003-01-21 10:23:37 +00:00
Sheldon Hearn
d9b85a2948 Update 4.10 -> 4.12:
For Exim, this includes an enormous number of fixes.  Most of these are
for esoteric configurations, although if you're bitten by them, you're
bitten hard.

The fixes also include closing up a buffer overflow that is not believed
to be exploitable, and a format string vulnerability that was only
exploitable by an Exim admin user, but then provided root access.

For Eximon, this just rationalizes a patch we carried locally for ages.
2003-01-08 13:33:30 +00:00
Sean Chittenden
b2c46c868c Chase libpq version bump. 2003-01-04 15:53:39 +00:00
Edwin Groothuis
37f2224fa6 PERL -> REINPLACE
And some ports have USE_PERL5=yes now.
2002-11-04 05:46:38 +00:00
Sheldon Hearn
e7433cc0fd Update to rev 16 of the exiscan patch (exiscan-4.10-16). The maintainer
has graciously agreed to make a bzip2 version of the exiscan distfile
available, so use that instead of the gzip version.  This allows
us to remove the post-patch target and associated rubbish.

Bump PORTREVISION accordingly.
2002-10-16 10:00:17 +00:00
Sheldon Hearn
1ec07ac560 1) Enable directory-search lookups by default and provide
WITHOUT_DSEARCH to disable them.

2) Enable NIS lookups by default and provide WITHOUT_NIS to
   disable them.

3) Bump PORTREVISION accordingly.

Submitted by:	Matthew Byng-Maddick <mbm+freebsd@colondot.net> (1)
Requested by:	Nicolas Kowalski <Nicolas.Kowalski@imag.fr> (2)
2002-10-05 12:18:29 +00:00
Akinori MUSHA
989d36020b Fix plist and unbreak packaging.
Submitted by:	bento
2002-09-23 11:09:50 +00:00
Sheldon Hearn
3cb4389a77 Mention mail/p5-Mail-SpamAssassin and security/vscan.
Requested by:	Tony Finch <dot@dotat.at>
2002-09-19 15:31:03 +00:00
Sheldon Hearn
fbf344f4b7 Enable exiscan content scanning unless the new knob WITHOUT_EXISCAN
is defined.

Bump PORTREVISION accordingly.
2002-09-19 12:14:28 +00:00
Sheldon Hearn
d7182cf459 Enable exiscan content scanning unless the new knob WITHOUT_EXISCAN
is defined.

Bump PORTREVISION accordingly.
2002-09-19 10:34:12 +00:00
Sheldon Hearn
42a82d8004 Enable IPV6 unless WITHOUT_IPV6 is defined. 2002-09-16 09:35:40 +00:00
Sheldon Hearn
2aef9eacfa Fix LDAP lookup type selection.
Reported by:	Adam Doligalski <adam.doligalski@atm.com.pl>
2002-09-16 09:26:17 +00:00
Sheldon Hearn
71de2357c8 I agree with the Exim community that the exim-4.xx has reached production
quality.

Move exim to exim-old for folks who need exim-3.xx, because the
configuration file for exim-4.xx is not backward compatible.  Move
exim-devel to exim, removing NO_LATEST_LINK:

        repo-copy       exim            -> exim-old
        copy over       exim-devel      -> exim
        retire          exim-devel

Slave ports are intended for use with the exim port, as before, so they
now build and install for exim-4.xx.
2002-09-12 10:09:02 +00:00
Sheldon Hearn
f14203f336 Revert rev 1.109 of Makefile. Given the likelihood of future changes
in the configuration affecting the base system's MTA, the management
of multiple POST-INSTALL-NOTES files could easily become a nightmare.

Instead, use a single POST-INSTALL-NOTES file that includes instructions
that, at worst, suggest unnecessary but harmless changes.

While here, use bullets instead of a numbered list for the notes, so
that future deltas are easier to read.

Also, mention the 'daily_status_include_submit_mailq' periodic.conf(5)
knob, as reported in PR ports/38925.

PR:		ports/38925
Submitted by:	Pat Lashley <patl+freebsd@phoenix.volant.org>
2002-06-18 09:43:05 +00:00
Sheldon Hearn
478dd1d8f4 Update to exim-3.36:
* Incorporates some patches.

* Fix pretty obscure queue handling bug.

* Update exim-4 spool file format forward-compatibility.
2002-04-18 12:20:20 +00:00
Sheldon Hearn
d95748dac9 Fix pkg-list following the move from exim.sh.sample to exim.sh.
Bump PORTREVISION to reflect the whole rc.d startup change and
the "NULLs in message body as exposed to filters" patch.
2002-04-03 16:15:30 +00:00
Sheldon Hearn
c0c117ad27 Gracefully handle NULLs in the message body as exposed to filters,
by replacing them with spaces.

This is a vendor-sanctioned patch, obtained from the exim-users
mailing list.
2002-04-03 16:11:21 +00:00
Sheldon Hearn
9f1ab5925c Cope with -CURRENT's new tri-state sendmail_enable rc.conf(5) variable
by using an rc.d script to launch Exim, as was done before I took over
this port.

This seems to be the most popular approach, and is arguably the
simplest.  Folks like me who attach some aesthetic value to using rc(8)
and mailer.conf(8) to launch Exim at startup time should know enough to
blow away the rc.d script and do things any way they please.

For now, use two versions of the POST-INSTALL-NOTES, the only
difference being that the one given to -CURRENT users suggests setting
sendmail_enable to 'NONE', while the one for -STABLE users suggests
'NO'.
2002-04-03 15:52:32 +00:00
Sheldon Hearn
4a765861a7 Fix the build in the WITH_PGSQL=yes case.
When the databases/postgresql7 port was updated from postgresql-7.1.x to
postgresql-7.2, libpq-fe.h moved from PREFIX/include/pgsql to
PREFIX/include for reasons I can't figure out.

This applies a band-aid until I can get clarification from the postgresql
port maintainer <girgen@partitur.se>, but I think the port might be
"broken" in its placement of some header files.

Reported by:	kris
2002-04-02 11:40:49 +00:00
Sheldon Hearn
aec0f27d5c Include my preferred work-around, which is to add the library paths
of problem packages to ldconfig_paths in rc.conf(5).
2002-02-25 12:58:20 +00:00
Sheldon Hearn
2515226235 Cope with the fact that at least one 3rd-party package against which
Exim may be linked (MySQL) uses a startup script to add its library
path to the linker hints.

Explain the problem in POST-INSTALL-NOTES and provide a sample
startup script.

I think such packages should do away with the script and provide
POST-INSTALL-NOTES that encourage the operator to add the library
path to ldconfig_paths in /etc/rc.conf, but provide this work-around
anyway.

Reported by:	Oliver Brandmueller <ob@e-Gitt.NET>
2002-02-25 12:51:33 +00:00
Sheldon Hearn
fbfa4cbf07 Update to exim-3.35:
Most notable fixes include tightened string handling in a few
pathalogical cases that some people suspect might be exploitable, at
least in the form of a DoS.

Requested by:	Randy Bush <randy@psg.com>
2002-02-19 18:35:30 +00:00
Sheldon Hearn
46c9d447c4 Enable the LMTP transport by default and provide a knob for disabling
it.  There are just too many people who need this for "black box"
POP3/IMAP services to justify the bytes saved in the default package.
2002-01-28 13:46:25 +00:00
Sheldon Hearn
1fc4705744 Expand on the existing documentation regarding TLS and certificates,
adding information important to operators of SMTP services used
by a number of Windows (and probably Unix) MUA packages.

This text has been approved by the author and will be included in
the next release of exim-4.  Another release of exim-3.3x is not
expected.

This change is based on an explanation of SSL certificates attributed
below, but was not a direct submission.  Errors are my own, etc.

Submitted by:	terry
Message-Id:	<3C3F3A93.C1ECF9B0@mindspring.com>
2002-01-15 15:58:59 +00:00
Sheldon Hearn
f42b7494ff Update to exim-3.34:
* Mostly incorporates patches already carried by the port.

* Fixes a vulnerability in pipe handling, which was not exposed
  by the default configuration, but which could have been exposed
  if the configuration were altered appropriately.
2002-01-07 12:06:08 +00:00
Sheldon Hearn
fb48c356b3 Search for the mailnull user quietly (grep -q). 2001-12-18 21:08:44 +00:00
Sheldon Hearn
08ec4ac52d Build Exim with compile-time defaults for exim_user and exim_group.
Use the newly added mailnull user, and the now well-established group
mail.

The use of compile-time defaults for these values is not required for
many sites, but are important for more exotic applications.

This ensures that the packages are useful to the widest audience
possible.
2001-12-14 11:47:28 +00:00
Sheldon Hearn
9c3a4b5b4d Bump PORTREVISION for this recent change:
Build Exim with compile-time defaults for exim_user and exim_group.
Use the newly added mailnull user, and the now well-established group
mail.

The use of compile-time defaults for these values is not required for
many sites, but are important for more exotic applications.

This ensures that the packages are useful to the widest audience
possible.
2001-12-11 12:42:29 +00:00
Sheldon Hearn
06b84adc7d Build Exim with compile-time defaults for exim_user and exim_group.
Use the newly added mailnull user, and the now well-established group
mail.

The use of compile-time defaults for these values is not required for
many sites, but are important for more exotic applications.

This ensures that the packages are useful to the widest audience
possible.
2001-12-11 12:34:54 +00:00
Sheldon Hearn
a2c2418b51 Stop people complaining about the absence of plain text versions of
the documentation by installing them.

Update the post-install notes to reflect the presence of the new
exim-doc-* ports for alternative documentation formats.

Bump PORTREVISION.
2001-11-30 14:31:11 +00:00
Sheldon Hearn
1be28deb98 Catch up with the location of the distfile on the master site and
mirrors.  The exim-3.x distribution has been moved into exim3
in preparation for the advent of exim-4.x.

Reported by:	wjv
2001-11-28 10:55:17 +00:00
Sheldon Hearn
983ef9b69a Add the author's patch to fix bad handling of a disk space shortage
on pipeline input.

Bump PORTREVISION to reflect the change.

Obtained from: exim-users@exim.org

Message-Id: <Pine.SOL.4.33.0111131315260.9828-100000@virgo.cus.cam.ac.uk>
2001-11-14 11:25:42 +00:00
Sheldon Hearn
34323bd7e0 Add the author's patch to fix a failure to reap children on BSD systems,
where SIG_IGN as the signal handler for SIGCHLD is bad.  This is only
an issue when a significant number of messages is received via pipe
(e.g. with -bS) at a faster rate than they can be dealt with by parallel
delivery agents (e.g. -odqs).

Bump PORTREVISION to reflect the change.

Obtained from: exim-users@exim.org
Message-Id: Pine.SOL.4.33.0111021349170.19636-100000@virgo.cus.cam.ac.uk
2001-11-02 17:11:14 +00:00
Sheldon Hearn
312a1adc00 Add the author's patch to fix broken handling of queue_list_requires_admin
and the -bpc flag.

Bump PORTREVISION to reflect the change.

Obtained from: exim-users@exim.org
Message-Id: Pine.SOL.4.33.0110301326040.24148-100000@virgo.cus.cam.ac.uk
2001-11-02 10:24:52 +00:00
Sheldon Hearn
27a23416c4 Fix the message_body_size filter variable bug reported by Phil Chambers
to the exim-users mailing list on 2001-09-19 using the patch posted to
the list by the author on 2001-09-24.

Bump PORTREVISION accordingly.
2001-09-26 16:31:19 +00:00
Sheldon Hearn
fad28da06f Fix inversion in NOPORTDOCS test introduced in previous delta. 2001-09-12 23:46:55 +00:00
Sheldon Hearn
e19aceb0b2 * Drop deprecated USE_PERL5.
* Move the contents of pkg-message into POST-INSTALL-NOTES, which
  gets installed in the !NOPORTDOCS case for future reference.

* Refer to POST-INSTALL-NOTES from pkg-message in the !NOPORTDOCS
  case.  In the NOPORTDOCS case, use POST-INSTALL-NOTES as the
  pkg-message.
2001-09-11 11:06:54 +00:00
Sheldon Hearn
d52469e050 * Break eximon into its own port. The goal is to allow administrators
to install and use Exim from the packages without having to install
  XFree86.

* Remove a stale SEDLIST entry for BINOWN handling.

* Use LOCALBASE instead of PREFIX when referring to already installed
  software.

* Use more strict pattern matching in SEDLIST.

Folks who want eximon (the Exim monitor) must now either build exim
or one of its slave ports with WITH_EXIMON defined or install the
standalone exim-monitor package.
2001-08-27 13:23:52 +00:00
Sheldon Hearn
5269f240e3 * Update to exim-3.33:
- Fixes bug where setting local part to /dev/null without setting
    file_transport caused Exim to crash.

  - Other fixes do not apply to FreeBSD.

* Now that RELENG_4 has bzip2 in the base system, use the bz2
  distfiles.
2001-08-16 09:54:51 +00:00
Sheldon Hearn
cc0d7abdce Update to exim-3.32:
Incorporates the fixes for non-mapped IPv6 listening sockets.

Fixes unclosed MySQL connection bug in delivery subprocesses.

Better RFC compliance with respect to Resent-Subject and
Resent-Reply-To.

Fix handling of unset hostname for OpenLDAP2.

Drop an unclosed connection if more than 5 uncrecognized commands are
received.

Handle \t in fail messages properly.
2001-07-30 10:03:31 +00:00
Sheldon Hearn
d53990a96f Apply the author's fix for socket binding in the case where
net.inet6.ip6.v6only is set.  This sysctl disables AF_INET6 wildcard
listeners from accepting IPv4 traffic.
2001-07-16 09:12:55 +00:00
Sheldon Hearn
30e56f6fb6 Too many people have complained about my choice of MTA user (sendmail).
Bite the bullet _now_ and use MTA user exim instead.  This means that
only early adopters of Exim-3.31 are affected, rather than lots more
folks further down the line.

I still think mailnull is better, but nobody in the Exim community
agrees with me. :-)

Bump PORTREVISION as appropriate.
2001-07-11 11:22:32 +00:00
Sheldon Hearn
3b52a48f9e Fix the IPv6 bind() call properly. The author didn't spot the flaw
in my patch when I initially submitted it.  This is his fully tested
version.
2001-07-11 11:04:01 +00:00
Sheldon Hearn
e1d536bdb8 Make the purpose of WITHOUT_X11 clearer, based on feedback from several
users.

Fix the call to bind() in daemon.c so that the correct addrlen is
passed for a IPv4 or IPv6 struct sockaddr.  This fixes the problem
where an exim binary compiled for IPv6 support won't bind() to any IPv4
addresses.  The author approves of this patch.

Now that exim+ipv6 works for non-ipv6 FreeBSD hosts, make IPv6 support
default and provide a WITHOUT_IPV6 knob for folks who don't want it.

Turn on WITHOUT_IPV6 for pre-KAME systems, to give RELENG_3 folks a
fighting chance.
2001-07-10 10:47:29 +00:00
Sheldon Hearn
29327f0273 Clarify that the steps involving mailwrapper(8) don't replace the a
sendmail installation, but cause exim to be run instead of sendmail on
startup.
2001-07-09 11:29:29 +00:00
Sheldon Hearn
bde8a588e5 Fixes for building with LDAP lookup support:
* Define LDAP_LIB_TYPE conditionally so that the operator can override
  it.

* Allow OPENLDAP1 (or UMICHIGAN) and OPENLDAP2 for LDAP_LIB_TYPE,
  depending on the correct ports for each.

The default behaviour of the port is unchanged.  However, this change
allows for an exim-ldap2 slave port, if desired, and limits LDAP lookup
types to those that can be supported by the FreeBSD ports tree.
2001-07-03 11:14:13 +00:00
Sheldon Hearn
9280935acb Suggest the use of newsyslog(8) for log rotation. The exicyclog
utility supplied with Exim is intended for systems that don't have
something as nifty as newsyslog(8).

I'm tempted to remove the utility from the port/package, but this
delta to pkg-message is less controversial.
2001-07-02 15:09:40 +00:00
Sheldon Hearn
1734dc1d1b Update to exim-3.31:
* Incorporates two patches previously supplied with the port.

* Fixes obscure bug affecting return_path transport option under certain
  conditions.
2001-07-02 14:48:10 +00:00