and incorporates a lot of fixes.
WARNING, this version of exiscan is not entirely backward-compatible
with the previous one:
* The following configuration options have been replaced with
compile-time definitions and thus must be removed from your
Exim configure file if specified there:
exiscan_spamd_buffer_max_chunks
exiscan_spamd_buffer_init_chunk
exiscan_av_buffer_max_chunks
exiscan_av_buffer_init_chunk
* Because of changes in the way MIME handling is implemented,
the following should be added to the Exim configure file to
maintain the original behaviour (which was to unpack MIME
messages):
exiscan_demime_condition = 1
2) Fix handling of SIGCHLD in redirection processes, which resulted
in redirection processes vanishing.
3) Bump PORTREVISION accordingly.
simply fail the lookup.
This prevents Exim from creating hints files that it can't use when
its DBM method is DB 1.85 (the default).
Obtained from: author
For Exim, this includes an enormous number of fixes. Most of these are
for esoteric configurations, although if you're bitten by them, you're
bitten hard.
The fixes also include closing up a buffer overflow that is not believed
to be exploitable, and a format string vulnerability that was only
exploitable by an Exim admin user, but then provided root access.
For Eximon, this just rationalizes a patch we carried locally for ages.
has graciously agreed to make a bzip2 version of the exiscan distfile
available, so use that instead of the gzip version. This allows
us to remove the post-patch target and associated rubbish.
Bump PORTREVISION accordingly.
WITHOUT_DSEARCH to disable them.
2) Enable NIS lookups by default and provide WITHOUT_NIS to
disable them.
3) Bump PORTREVISION accordingly.
Submitted by: Matthew Byng-Maddick <mbm+freebsd@colondot.net> (1)
Requested by: Nicolas Kowalski <Nicolas.Kowalski@imag.fr> (2)
quality.
Move exim to exim-old for folks who need exim-3.xx, because the
configuration file for exim-4.xx is not backward compatible. Move
exim-devel to exim, removing NO_LATEST_LINK:
repo-copy exim -> exim-old
copy over exim-devel -> exim
retire exim-devel
Slave ports are intended for use with the exim port, as before, so they
now build and install for exim-4.xx.
in the configuration affecting the base system's MTA, the management
of multiple POST-INSTALL-NOTES files could easily become a nightmare.
Instead, use a single POST-INSTALL-NOTES file that includes instructions
that, at worst, suggest unnecessary but harmless changes.
While here, use bullets instead of a numbered list for the notes, so
that future deltas are easier to read.
Also, mention the 'daily_status_include_submit_mailq' periodic.conf(5)
knob, as reported in PR ports/38925.
PR: ports/38925
Submitted by: Pat Lashley <patl+freebsd@phoenix.volant.org>
by using an rc.d script to launch Exim, as was done before I took over
this port.
This seems to be the most popular approach, and is arguably the
simplest. Folks like me who attach some aesthetic value to using rc(8)
and mailer.conf(8) to launch Exim at startup time should know enough to
blow away the rc.d script and do things any way they please.
For now, use two versions of the POST-INSTALL-NOTES, the only
difference being that the one given to -CURRENT users suggests setting
sendmail_enable to 'NONE', while the one for -STABLE users suggests
'NO'.
When the databases/postgresql7 port was updated from postgresql-7.1.x to
postgresql-7.2, libpq-fe.h moved from PREFIX/include/pgsql to
PREFIX/include for reasons I can't figure out.
This applies a band-aid until I can get clarification from the postgresql
port maintainer <girgen@partitur.se>, but I think the port might be
"broken" in its placement of some header files.
Reported by: kris
Exim may be linked (MySQL) uses a startup script to add its library
path to the linker hints.
Explain the problem in POST-INSTALL-NOTES and provide a sample
startup script.
I think such packages should do away with the script and provide
POST-INSTALL-NOTES that encourage the operator to add the library
path to ldconfig_paths in /etc/rc.conf, but provide this work-around
anyway.
Reported by: Oliver Brandmueller <ob@e-Gitt.NET>
Most notable fixes include tightened string handling in a few
pathalogical cases that some people suspect might be exploitable, at
least in the form of a DoS.
Requested by: Randy Bush <randy@psg.com>
adding information important to operators of SMTP services used
by a number of Windows (and probably Unix) MUA packages.
This text has been approved by the author and will be included in
the next release of exim-4. Another release of exim-3.3x is not
expected.
This change is based on an explanation of SSL certificates attributed
below, but was not a direct submission. Errors are my own, etc.
Submitted by: terry
Message-Id: <3C3F3A93.C1ECF9B0@mindspring.com>
* Mostly incorporates patches already carried by the port.
* Fixes a vulnerability in pipe handling, which was not exposed
by the default configuration, but which could have been exposed
if the configuration were altered appropriately.
Use the newly added mailnull user, and the now well-established group
mail.
The use of compile-time defaults for these values is not required for
many sites, but are important for more exotic applications.
This ensures that the packages are useful to the widest audience
possible.
Build Exim with compile-time defaults for exim_user and exim_group.
Use the newly added mailnull user, and the now well-established group
mail.
The use of compile-time defaults for these values is not required for
many sites, but are important for more exotic applications.
This ensures that the packages are useful to the widest audience
possible.
Use the newly added mailnull user, and the now well-established group
mail.
The use of compile-time defaults for these values is not required for
many sites, but are important for more exotic applications.
This ensures that the packages are useful to the widest audience
possible.
the documentation by installing them.
Update the post-install notes to reflect the presence of the new
exim-doc-* ports for alternative documentation formats.
Bump PORTREVISION.
on pipeline input.
Bump PORTREVISION to reflect the change.
Obtained from: exim-users@exim.org
Message-Id: <Pine.SOL.4.33.0111131315260.9828-100000@virgo.cus.cam.ac.uk>
where SIG_IGN as the signal handler for SIGCHLD is bad. This is only
an issue when a significant number of messages is received via pipe
(e.g. with -bS) at a faster rate than they can be dealt with by parallel
delivery agents (e.g. -odqs).
Bump PORTREVISION to reflect the change.
Obtained from: exim-users@exim.org
Message-Id: Pine.SOL.4.33.0111021349170.19636-100000@virgo.cus.cam.ac.uk
* Move the contents of pkg-message into POST-INSTALL-NOTES, which
gets installed in the !NOPORTDOCS case for future reference.
* Refer to POST-INSTALL-NOTES from pkg-message in the !NOPORTDOCS
case. In the NOPORTDOCS case, use POST-INSTALL-NOTES as the
pkg-message.
to install and use Exim from the packages without having to install
XFree86.
* Remove a stale SEDLIST entry for BINOWN handling.
* Use LOCALBASE instead of PREFIX when referring to already installed
software.
* Use more strict pattern matching in SEDLIST.
Folks who want eximon (the Exim monitor) must now either build exim
or one of its slave ports with WITH_EXIMON defined or install the
standalone exim-monitor package.
- Fixes bug where setting local part to /dev/null without setting
file_transport caused Exim to crash.
- Other fixes do not apply to FreeBSD.
* Now that RELENG_4 has bzip2 in the base system, use the bz2
distfiles.
Incorporates the fixes for non-mapped IPv6 listening sockets.
Fixes unclosed MySQL connection bug in delivery subprocesses.
Better RFC compliance with respect to Resent-Subject and
Resent-Reply-To.
Fix handling of unset hostname for OpenLDAP2.
Drop an unclosed connection if more than 5 uncrecognized commands are
received.
Handle \t in fail messages properly.
Bite the bullet _now_ and use MTA user exim instead. This means that
only early adopters of Exim-3.31 are affected, rather than lots more
folks further down the line.
I still think mailnull is better, but nobody in the Exim community
agrees with me. :-)
Bump PORTREVISION as appropriate.
users.
Fix the call to bind() in daemon.c so that the correct addrlen is
passed for a IPv4 or IPv6 struct sockaddr. This fixes the problem
where an exim binary compiled for IPv6 support won't bind() to any IPv4
addresses. The author approves of this patch.
Now that exim+ipv6 works for non-ipv6 FreeBSD hosts, make IPv6 support
default and provide a WITHOUT_IPV6 knob for folks who don't want it.
Turn on WITHOUT_IPV6 for pre-KAME systems, to give RELENG_3 folks a
fighting chance.
* Define LDAP_LIB_TYPE conditionally so that the operator can override
it.
* Allow OPENLDAP1 (or UMICHIGAN) and OPENLDAP2 for LDAP_LIB_TYPE,
depending on the correct ports for each.
The default behaviour of the port is unchanged. However, this change
allows for an exim-ldap2 slave port, if desired, and limits LDAP lookup
types to those that can be supported by the FreeBSD ports tree.
utility supplied with Exim is intended for systems that don't have
something as nifty as newsyslog(8).
I'm tempted to remove the utility from the port/package, but this
delta to pkg-message is less controversial.
