20150501
Support for Linux 4.*, and some simplification for future
makedefs files. Files: makedefs, util/sys_defs.h.
20150718
Security: opportunistic TLS by default uses "medium" or
stronger ciphers instead of "export" or stronger. See the
RELEASE_NOTES file for how to get the old settings back.
Files: global/mail_params.h, proto/TLS_README.html,
proto/postconf.proto, and files derived from those.
20150719
Security: Postfix TLS support by default no longer uses
SSLv2 or SSLv3. See the RELEASE_NOTES file for how to get
the old settings back. Files: global/mail_params.h,
proto/postconf.proto, and files derived from those.
Incompatible change with Postfix 2.11.6 / 3.0.2
-------------------------------------------------
As of the middle of 2015, all supported Postfix releases no longer
enable "export" grade ciphers for opportunistic TLS, and no longer
use the deprecated SSLv2 and SSLv3 protocols for mandatory or
opportunistic TLS.
These changes are very unlikely to cause problems with server-to-server
communication over the Internet, but they may result in interoperability
problems with ancient client or server implementations on internal
networks. To address this problem, you can revert the changes with:
Postfix SMTP client settings:
lmtp_tls_ciphers = export
smtp_tls_ciphers = export
lmtp_tls_protocols = !SSLv2
smtp_tls_protocols = !SSLv2
lmtp_tls_mandatory_protocols = !SSLv2
smtp_tls_mandatory_protocols = !SSLv2
Postfix SMTP server settings:
smtpd_tls_ciphers = export
smtpd_tls_protocols =
smtpd_tls_mandatory_protocols = !SSLv2
These settings, if put in main.cf, affect all Postfix SMTP client
or server communication, which may be undesirable. To be more
selective, use "-o name=value" parameter overrides on specific
services in master.cf. Execute the command "postfix reload" to make
the changes effective.
20150501
Support for Linux 4.*, and some simplification for future
makedefs files. Files: makedefs, util/sys_defs.h.
20150718
Security: opportunistic TLS by default uses "medium" or
stronger ciphers instead of "export" or stronger. See the
RELEASE_NOTES file for how to get the old settings back.
Files: global/mail_params.h, proto/TLS_README.html,
proto/postconf.proto, and files derived from those.
20150719
Security: Postfix TLS support by default no longer uses
SSLv2 or SSLv3. See the RELEASE_NOTES file for how to get
the old settings back. Files: global/mail_params.h,
proto/postconf.proto, and files derived from those.
Incompatible change with Postfix 2.11.6 / 3.0.2
-------------------------------------------------
As of the middle of 2015, all supported Postfix releases no longer
enable "export" grade ciphers for opportunistic TLS, and no longer
use the deprecated SSLv2 and SSLv3 protocols for mandatory or
opportunistic TLS.
These changes are very unlikely to cause problems with server-to-server
communication over the Internet, but they may result in interoperability
problems with ancient client or server implementations on internal
networks. To address this problem, you can revert the changes with:
Postfix SMTP client settings:
lmtp_tls_ciphers = export
smtp_tls_ciphers = export
lmtp_tls_protocols = !SSLv2
smtp_tls_protocols = !SSLv2
lmtp_tls_mandatory_protocols = !SSLv2
smtp_tls_mandatory_protocols = !SSLv2
Postfix SMTP server settings:
smtpd_tls_ciphers = export
smtpd_tls_protocols =
smtpd_tls_mandatory_protocols = !SSLv2
These settings, if put in main.cf, affect all Postfix SMTP client
or server communication, which may be undesirable. To be more
selective, use "-o name=value" parameter overrides on specific
services in master.cf. Execute the command "postfix reload" to make
the changes effective.
<file> on ELF systems, but this doesn't really do what -export-symbols is
meant to do. On GNU ELF systems it converts <file> to a simple version
script first and then uses -version-script instead of -retain-symbols-file.
Let USES=libtool patch libtool scripts to do this on all systems with GNU
ld(1).
Bump PORTREVISION on all ports where the build log contains -export-symbols.
audio/calf: This port builds a module that now exports only one function,
but it also builds a number of executables that link to this module and
expect to see other functions. Because it's already a bit dodgy to link to
a module (libtool warns about this) let the module continue to export only
one function and instead build an ordinary library from the same source that
the executables can link to. Fix a number of other issues in the same
Makefile.am and clean up the port Makefile.
japanese/scim-honoka: Tries to hide all symbols that start with an
underscore, but because this library is written in C++ all symbols start
with _Z so it ends up hiding everything. Just don't hide anything at all
like the textproc/scim configure script does.
multimedia/schroedinger: Apply an upstream patch.
textproc/scim-input-pad: Same as japanese/scim-honoka.
PR: 201922
Approved by: portmgr (antoine)
Exp-run by: antoine
2015-07-31 japanese/p5-Acme-Lou: Needs ja-p5-Text-MeCab that does not work with 5.18 or above
2015-07-31 mail/maildirsync: Requires an unsupported version of Perl
2015-07-31 mail/qar-bufo: Requires an unsupported version of Perl
2015-08-01 net/py-soapy: Abandonware depending on ancient py-xml. Please use net/py-soappy instead
2015-08-01 net-p2p/btqueue: Runtime broken (does not download anything)
2015-07-31 sysutils/vhdtool: Use mkimg(1) instead
2015-07-31 www/rubygem-modernizr: This gem has been removed from rubygems.org by upstream
- Fetch distfile from project site, SF distribution is postponed till
situation with site is clear
- Include configure patch that prevents linking all binaries to libarchive [1]
- Switch archiver plugin to USES=libarchive [1]
- Add new Manage Sieve plugin which allows manipulation of IMAP filters
- Mark gdata plugin as IGNOREd, needs newer version of devel/libgdata
library, which is not in ports yet
Release notes: http://claws-mail.org/news.php
PR: 201949 [1]
Submitted by: tijl [1]
- Remove %%PORTDOCS%% in pkg-plist and use PORTDOCS in Makefile instead.
- Fix a wrong pathname in pkg-message.
- Use {opt}_* variables instead of ".if ${PORT_OPTIONS:Mfoo}".
- Remove patch-Makefile.in because it is no longer needed.
Approved by: hiroto.kagotani@gmail.com (maintainer)
Now that a port dns/p5-Net-DNS has been upgraded to version 1.01,
this revealed an incompatibility with DNS resolving in SpamAssassin.
In short: Net::DNS::Packet->new no longer sets the RD (recursion
desired) bit in new packets, so essentially DNS queries no longer
work. Details at:
https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7223
To bridge the time until SpamAssassin 3.4.2 gets released,
the attached patch is needed ( equivalent to
https://svn.apache.org/viewvc?view=rev&rev=1691992 ).
For earlier version of dns/p5-Net-DNS this patch is redundant,
but does no harm.
PR: 201741
Submitted by: Mark.Martinec@ijs.si
- Remove long command timer
- Misc parser and fixes
- Avoid / in generated message-id
- More improvements to find_message function
- Add cyrus IMAP extension commands
- Support extended-list options to list command
- Avoid undef warning on missing foldermode response
- Handle unexpected capability response
- Add ability to enable tracing when you "use" the module
- Replace multigetannotation with multigetmetadata
- Add IMAP myrights command
- Add IMAP id command
- Use release_socket to close connection
- Update root folder and Inbox vs INBOX handling
- Choose socket library to use, add SSL socket support
- Better formatting of email strings from envelope structure
mail/rainloop-community: new slave port, community edition
rainloop is a modern and interactive webmail.
Changelog since 1.8.2:
http://www.rainloop.net/changelog/
PR: 200091
Submitted by: brnrd
Approved by: loic.blot@unix-experience.fr (maintainer)
- Update mail/sqwebmail to 5.8.3
- Update security/courier-authlib to 0.66.3
- Remove no more needed patch from mail/maildrop
Approved by: oliver (maintainer)
Differential Revision: https://reviews.freebsd.org/D2975
- Update mail/maildrop to 2.8.3
- Add make.conf variable for maildrop to force it choosing a non standard mailbox directory [1]
Reported by: Jim Trigg <jktrigg at gmail.com> [1]
2015-06-29 audio/padevchooser: Broken for more than 6 months
2015-06-29 devel/xtla: Broken for more than 6 months
2015-06-29 mail/mail-notification: Broken for more than 6 months
2015-06-29 ports-mgmt/gnome-packagekit: Broken for more than 6 months
2015-06-29 sysutils/py-salt-api: Broken for more than 6 months
/usr/local/include/clamav.h:167: error: expected identifier or '(' before '/' token
/usr/local/include/clamav.h:167: error: stray '#' in program
MFH: 2015Q2
- Switch to CDN by default as mirrors are no longer kept up to date
- Drop obsolete pointer to http://www.mozilla.org/mirrors.html
- Drop redundant BUGZILLA and MOZILLA_EXTEND
- Shorten MASTER_SITES in gecko@ ports
- Move MOZILLA_ADDONS to bsd.sites.mk
- Move one of MOZILLA mirrors with old addons under MOZILLA_ADDONS
- Addons CDN redirects to https://, so don't mislead with http://
https://blog.mozilla.org/it/2012/08/03/dear-mozilla-mirrors-thank-you/
Differential Revision: https://reviews.freebsd.org/D2550
Tested by: distilator
Reviewed by: mat (partial)
Approved by: bz-ports (ohauer), portmgr blanket (office@ et al.)
Approved by: portmgr (bapt, earlier version)
MFH: 2015Q2
PR: 200547
- fix GROUPS, USERS
- enable option IPV6 per default
- do not create default config on install
- fix most regression tests
- add pkg-message for new installs
Add USES=uidfix to get the definition of GID
Overwrite via MAKE_ARGS the owner and groups enforced by upstream Makefile
Ownership remains unchanged in the final package given the ownership is now set
by plist
Change modes when installing to allow stripping in post-install as a regular
user
Replace INSTALL_SCRIPT by INSTALL_LIB which takes care of stripping the binaries
when installing
ecosystem maintainers makes this not a viable mail system today. Personally
I am moving to postfix and have so far found it incredibly easy to setup and
already prefer it over qmail.
This stemmed from older VDA patches which provided a default patch which only
used 'long' for its data types and a '64bit' patch which used 'long long'.
On 32bit systems 'long' is limited to a 2GB quota while on 64bit systems it will
not be. They later renamed the '64bit' patch to be 'bigquota'. They no longer
provide a 'bigquota' patch due to less demand as most systems are 64bit
today and do not have the small 2GB quota limitation with the 'long' type.
The description of '32bit' was not accurate or useful anymore.
Upstream discussion: http://sourceforge.net/p/vda/mailman/message/24713171/
Fixes potential CVE-2014-3566 vulnerability
DavMail 4.6.1
Bugfix release to fix recent regression with Office 365,
also includes a few Linux and IMAP enhancements.
Linux:
- RPM: exclude Growl library from RPM package
- Add genericname to desktop entry
- RPM: Fix warning the init script refers to runlevel 4 which is
admin defined. No distribution script must use it
- Detect and log message for Unity users
- RPM: Fix JAVA HOME detection for openSUSE_13.2
- RPM: update spec file from OpenSuse build by Dmitri Bachtin and
Achim Herwig
SWT:
- SWT: improve tray init, preload image and add a delay on first message
Enhancements:
- Add a few more logging statements
IMAP:
- Fix#36 Endless loop when using IMAP IDLE feature with SSL sockets,
replaced thread sleep with a short timeout on socket read
EWS:
- EWS: update checkEndPointUrl, send get root folder request instead
of static wsdl request no longer available on Office365
DavMail 4.6.0
Bugfix release with many IMAP enhancements over EWS, implement batch
move items, also includes a brand new generic OSX package to handle
new OSX java behaviour.
OSX:
- OSX: refactor OSX package based on universalJavaApplicationStub
- Replace Java application stub with
https://github.com/tofi86/universalJavaApplicationStub/blob/master/src/universalJavaApplicationStub
Doc:
- Doc: update OSX setup documentation
- Doc: additional Linux instructions for Ubuntu 14
- Fix#31 A typo in davmail.properties example
EWS:
- EWS: improve main calendar folder test
- EWS: fix batch move
- EWS: Adjust paged search for folders
- EWS: implement batch move items
- EWS: improve folder paged search
- Prepare batch move implementation
- EWS: force NTLM in direct EWS mode
- EWS: implement batch move method
- EWS: switch to GetMethod to check endpoint
- EWS: take paging into account in appendSubFolders
- EWS: fix ErrorExceededFindCountLimit on FindFolder requests
- EWS: avoid NullPointerException in fixAttendees
Linux:
- Allow Java 8 and default jre in debian package
IMAP:
- IMAP: fix 587 log and skip broken messages
Caldav
- Caldav: fix#98 Support of Contacts in CardDav REPORT
- Fix#35 duplicates in updated reoccurring events
Enhancements
- From audit: remove throws statement
- Adjust KerberosHelper logging message
- Fix for #534 Kerberos Authentication doesn't seem to be work cross domain
LDAP:
- LDAP: reset icon after search
PR: 198297
Submitted by: John Hein <z7dr6ut7gs@snkmail.com>
Approved by: <john.c.prather@gmail.com> (maintainer (timeout))
Remove converters/p5-MIME-Base64 from RUN_DEPENDS since it is already in
all supported Perl releases. While here, reset maintainership since it's
been 5 years since maintainer was last seen.
PR: 196700
Submitted by: Yasuhiro KIMURA
Approved by: maintainer timeout (4 months, maintainer reset)
There was an attempt to support ports sendmail made, but the attempt
didn't work. Well, it accidently worked because the compilers looked
for headers and libraries at LOCALBASE/include and LOCALBASE/lib so
the bad LDFLAGS value was ignored. Fix ports-sendmail LDFLAGS and
explicitly set -I so milter-bogom builds on all compilers.
Approved by: just fix it
- Fix sidebar patch [1]. This version introduces a new config variable
"sidebar_shortpath" which is set to yes by default to ensure
backwards compatibility.
- Fix an issue with recent gpg (and gpgme) versions (GnuPG version 2.1
stops exporting the GPG_AGENT_INFO environment variable, so mutt can't
check for the presence of that to ensure the agent is running).
- Fix pgp key selection [2].
- Bump port revision because of major change to sidebar patch and gpg
handling.
PR: 199727
PR: 199115 [1]
PR: 199341 [2]
Submitted by: Udo.Schweigert@siemens.com (maintainer)
MFH: 2015Q2
identified in 2.2.17.
Changes:
- director: Login UNIX sockets were normally detected as doveadm or
director ring sockets, causing it to break in existing installations.
- sdbox: When copying a mail in alt storage, place the destination to
alt storage as well.
Bump PORTREVISION on antispam-plugin and pigeonhole, like I should have
done last time.
Thunderbird 31.7.0 wasn't actually released yet despite
THUNDERBIRD_31_7_0_RELEASE tag in comm-esr31 hg repo 1 week old.
Based on #releng IRC logs it seems there was an issue with automation.
Hopefully, upstream doesn't abandon 31.7.0 in favor of 38.0.
To avoid in future testing patience (BROKEN vs. PORTEPOCH) due to
discrepancy with release announcments let's fall back to candidates.
Reported by: pkg-fallout
MFH: 2015Q2
X-MFH-With: r386162
- Replace ${MASTER_SITE_FOO} with FOO.
- Merge MASTER_SITE_SUBDIR into MASTER_SITES when possible. (This means 99.9%
of the time.)
- Remove occurrences of MASTER_SITE_LOCAL when no subdirectory was present and
no hint of what it should be was present.
- Fix some logic.
- And generally, make things more simple and easy to understand.
While there, add magic values to the FESTIVAL, GENTOO, GIMP, GNUPG, QT and
SAMBA macros.
Also, replace some EXTRACT_SUFX occurences with USES=tar:*.
Checked by: make fetch-urlall-list
With hat: portmgr
Sponsored by: Absolight
For a full change list, see:
http://dovecot.org/list/dovecot-news/2015-May/000292.html
There are two changes that could potentially break setups:
* Dovecot no longer checks or warns if a mountpoint is removed. This
was causing more trouble than it was worth. Make sure that all the
mountpoints that Dovecot accesses aren't writable by mail processes
when they're unmounted.
* dict server wasn't properly escaping/unescaping data. Fixing this
broke backwards compatibility with data that contains line feeds.
This hopefully affects only very few installations. If you're using
dict to save multiline data (Sieve scripts to SQL), you may be
affected.
For this release I've introduced many new OPTIONS:
* boehm-gc support
* CDB database support
* icu (for FTS)
* libtextcat FTS
* disabling kqueue support also disables kqueue fs change notification
* databases and FTS plugins moved to their own config sections
When appropriate:
- Try to use DISTVERSION{SUF,PRE}FIX
- Replace PORTNAME-PORTVERSION by DISTNAME
- Convert MASTER_SITES to use macros
- Other light cleanup
With hat: portmgr
Sponsored by: Absolight
- rename OPTIONS to match default name of most ports
- SASL2 -> SASL
- OPENLDAP -> LDAP
- install main.cf and master.cf with the @sample macro
- rework pkg-install
- fix wrong permission for /var/db/postfix [1]
- sets WANT_OPENLDAP_SASL option for openldap port when
postfix LDAP_SASL option is set [2]
- make usage of new ${opt}_DEPENDS notation
Changelog:
20150324
Bugfix (introduced: Postfix 2.6): sender_dependent_relayhost_maps
ignored the relayhost setting in the case of a DUNNO lookup
result. It would use the recipient domain instead. Viktor
Dukhovni. Wietse took the pieces of code that enforce the
precedence of a sender-dependent relayhost, the global
relayhost, and the recipient domain, and put that code
together in once place so that it is easier to maintain.
File: trivial-rewrite/resolve.c.
20150330
Bitrot: prepare for future changes in OpenSSL API. Viktor
Dukhovni. File: tls_dane.c.
20150408
Portability: FreeBSD10 support. Files: makedefs, util/sys_defs.h.
Incompatibility: specifying "make makefiles" with "CC=command"
will no longer override the default WARN setting.
PR: 198215 [1]
198857 [2]
- rename OPTIONS to match default name of most ports
- SASL2 -> SASL
- OPENLDAP -> LDAP
- install main.cf and master.cf with the @sample macro
- rework pkg-install
- fix wrong permission for /var/db/postfix [1]
- sets WANT_OPENLDAP_SASL option for openldap port when
postfix LDAP_SASL option is set [2]
- make usage of new ${opt}_DEPENDS notation
Release 3.0.1 or 3.0.2 is now a strong candidate to become the new
default mail/postfix port (missing components are VDA and SPF).
Changelog:
20150211
Cleanup: strncasecmp_utf8() streamlining. Files: util/stringops.h,
util/allascii.c, util/strcasecmp_utf8.c.
20150214
Bugfix (introduced: Postfix 3.0): missing #ifdef USE_TLS
inside #ifdef USE_SASL_AUTH. Viktor Dukhovni. File:
smtpd/smtpd.c.
20150217
Cleanup: missing <string.h> include. File: util/allascii.c.
20150221
Bugfix (introduced: Postfix 3.0): don't append '.' to the
DNS resource record value, when converting TXT records to
the string form that is used used by xxx_dns_reply_filter.
File: dns/dns_strrecord.c.
20150313
Documentation: incorrect Postfix version number for
postscreen_dnsbl_timeout. Quanah Gibson-Mount. File:
postscreen/postscreen.c.
20150324
Bugfix (introduced: Postfix 2.6): sender_dependent_relayhost_maps
ignored the relayhost setting in the case of a DUNNO lookup
result. It would use the recipient domain instead. Viktor
Dukhovni. Wietse took the pieces of code that enforce the
precedence of a sender-dependent relayhost, the global
relayhost, and the recipient domain, and put that code
together in once place so that it is easier to maintain.
File: trivial-rewrite/resolve.c.
20150328
Bugfix (introduced: Postfix 1.1.0): post-install expanded
macros in parameter values when trying to detect parameter
overrides, causing unnecessary main.cf updates during Postfix
start-up. Julian Reich, Viktor Dukhovni, and Wietse. File:
conf/post-install.
20150330
Bitrot: prepare for future changes in OpenSSL API. Viktor
Dukhovni. File: tls_dane.c.
PR: 198215 [1]
PR: 198857 [2]
* Current sympa.rc not show the correct status, always active. grep
with pid string also process.
* The output of ps depends on the windows size. Sometime truncated
/usr/local/libexec/sympa/task_manager.pl -w for avoid it.
* Change ps options to BSD-sytle.
PR: 199145
Submitted by: Igor Zabelin <igorz@yandex.ru>
Approved by: geoffroy desvernay <dgeo@centrale-marseille.fr> (maintainer)
- Update courier-imap to 4.16.1
- Update maildrop to 2.8.2
- Update sqwebmail to 5.8.2
- Update courier-authlib to 0.66.2
- Some plist and Makefile modernization
Approved by: oliver@ (as maintainer of various of these ports)
Differential Revision: https://reviews.freebsd.org/D2391
Changes:
* improved automation to help combat spammers that are abusing new top level
domains;
* tweaks to the SPF support to block more spoofed emails;
* increased character set normalization to make rules easier to develop and
stop spammers from using alternate character sets to bypass tests;
* continued refinement to the native IPv6 support; and
* improved Bayesian classification with better debugging and attachment
hashing.
Full ChangeLog at https://metacpan.org/changes/distribution/Mail-SpamAssassin
The japanese/spamassassin port is broken until it's updated for 3.4.1.
libkrb5 on it. [1]
- Suppress empty share/doc/cyrus-imapd/man directory.
- Since vzic is not built now, we don't need to depend upon glib20.
Spotted by: pkg-fallout [1]
the build failure on FreeBSD 8 (and probably 9), the application
fails to start because the base version of libstdc++ is loaded at
runtime, which does not satify the requirements of webkit-gtk3. The
reason is that evolution does not directly link to libstdc++, so
the rpath added to it by USES=compiler:c++11-lib has no effect. The
first shared library that links to libstdc++ belongs to
evolution-data-server, which does not have USES=compiler:c++11-lib,
which causes the base version of libstdc++ to be loaded.
Unconditionally add USES=compiler:c++11-lib to
databases/evolution-data-server. Adding the rpath to its shared
libraries will cause the newer version of libstdc++ to be loaded
when evolution starts and fix the runtime error on FreeBSD 8 and
9. For standard versions of FreeBSD 10 and higher on amd64 and
i386, it is a no-op, so there is no harm in doing this. If FreeBSD
10 or higher is configured to build with base gcc and clang is not
present, which is an option on amd64 and i386 and is mandatory on
some tier 2 platforms that don't have clang support, then
USES=compiler:c++11-lib is needed.
PR: 199746
Differential Revision: https://reviews.freebsd.org/D2388
Reviewed by: kwm
Approved by: mat (mentor)
MFH: 2015Q2
When using GH_TAGNAME the DISTNAME would have GH_PROJECT and GH_ACCOUNT in
it. When not using GH_TAGNAME it would not have this. Now both cases
will add in the GH_PROJECT and GH_ACCOUNT.
Add special care to ensure that the DISTVERSION is not added in twice. If
a port does GH_TAGNAME=v${PORTVERSION} it will be added in twice though. For
that case DISTVERSIONPREFIX=v should be set and no GH_TAGNAME should be used.
empty() is used rather than (!defined || !${}) to support fmake.
The purpose of setting DISTNAME at all in these cases is to make it more clear
that the distfile is from *GITHUB* and to avoid collisions if a project were
to be renamed or moved. Without adding in GH_PROJECT and GH_ACCOUNT then there
are real risks that collisions on filenames would happen on renamed or moved
projects, which is fairly common. A GITHUB-generated file may not match
a custom-rolled or git-archive-rolled distfile.
PR: 199069
With hat: portmgr
Testing done: All USE_GITHUB ports without GH_COMMIT were checksum/fetch/extract/WRKSRC tested.
Add an XFCE SITE_SUBDIR abbreviation and use it forf or the xfce ports,
which removes the need to set MASTER_SITE_SUBDIR in any of them.
This fixes ports that have USES=xfce but do not use the XFCE MASTER_SITE,
namely sysutils/xfce4-bsdcpufreq-plugin.
With hat: portmgr
