* LDA Sieve plugin: started using Dovecot LDA reject API for the
reject extension. This means that the LDA reject_reason and
reject_subject settings now also work for Pigeonhole's LDA Sieve
plugin.
* Did some work on the new sieve-filter tool. It is mostly
functional, but it is not finished yet.
* Dovecot change: services' default vsz_limits weren't being enforced
correctly in earlier v2.0 releases. Now that they are enforced, you
might notice that the default limits are too low and you need to
increase them. This problem will show up in logs as "out of memory"
errors. See default_vsz_limit and service { vsz_limit } settings.
- Imap4flags: fixed segfault bug occurring in multiscript context.
- Added version checking to the ManageSieve settings plugin. This
plugin was forgotten when the LDA plugin was updated with this
change in the previous release.
- LDA Sieve plugin: fixed memory leak at deinitialization.
* Services' default vsz_limits weren't being enforced correctly in
earlier v2.0 releases. Now that they are enforced, you might notice
that the default limits are too low and you need to increase them.
This problem will show up in logs as "out of memory" errors.
See default_vsz_limit and service { vsz_limit } settings.
* LMTP: In earlier versions if mail was delivered to user+detail@domain
address, LMTP server always attempted to deliver the mail to mailbox
named "detail". This was rather unintentional and shouldn't have been
the default. lmtp_save_to_detail_mailbox=yes setting now preserves
this behavior (default is no).
+ Added systemd support (configure --with-systemdsystemunitdir).
Based on patch by Christophe Fergeau.
+ Replaced broken mbox-snarf plugin with a new more generic snarf
plugin.
- dbox: Fixes to handling external mail attachments
- verbose_proctitle=yes didn't work for all processes in v2.0.7
- imap, pop3: When service { client_count } was larger than 1, the
log messages didn't use the correct prefix. Last logged in user's
prefix was always used, regardless of what user's session actually
logged it. Now the proper log prefix is always used.
- MySQL: Only the first specified host was ever used
version 2.07: Fri Oct 1 12:39:43 CEST 2010
Improvements:
- update README: MailTools 2.* require 5.8.1
rt.cpan.org#61753 [Alexandre Bouillot]
- add "MAIL FROM" to Mail::Mailer::smtp, to be able to
communicate with Comcast [David Myers]
* libclamav/pdf.c: fix crashes
* libclamav/pe_icons.c: off by one while
* libclamav: fix detection of embedded executables
* libclamav/matcher-ac.c: fix offset handling for sigs with {x-y} wildcards
* freshclam/manager.c: fix error path infinite loop
* clamd/clamd.c: fix RLIMIT_DATA setting on BSD
* freshclam: improve mirror management
* libclamav: fix possible use of uninitialized values
* libclamav: Set the unreliability flag on (un)packed files
* libclamav/c++: Update embedded copy of LLVM to version 2.8
* freshclam: make query format backward compatible
* freshclam: get detection stats directly from clamd
* libclamav/cache.c,c++/bytecode2llvm.cpp}: make cl_load thread safe
* freshclam: load database in subprocess
* clamd: add new commands DETSTATS and DETSTATSCLEAR
* libclamav/7z.c: fix file descriptor leak
* clamd, libclamavll: add ability to logg messages from libclamav
* libclamav/builtin_bytecodes.h: Don't disable JIT on pentium4
Changes to the Cyrus IMAP Server since 2.4.4
* Tidy up of the git version number added to the ID response
* Fixed incorrect time field in date searches (Bug #3339) - thanks Greg Banks
for noticing this one
* Fixed reconstruct crash and other potential issues (Bug #3353) - first
reported Paul Dekkers
* Fixed ACL passing for rename/delete on murder backends (Bug #3342) - first
reported by Robert Spellman
* Fixed corruption of long (>1024 byte) seen records on replica (Bug #3344) -
found at FastMail by Bron Gondwana
* Made all perl utilities use /usr/bin/perl in the #! line (Bug #2275) -
reported by Yann Rouillard over 5 years ago!
* Fixed crash on message with incomplete final boundary (Bug #3345) - found
at FastMail by Bron Gondwana
* Regression: sync_crc was being set to 00000000 on repack - introduced in
2.4.4 (Bug #3347) - first found at FastMail, but also seen at multiple
other sites
* Always print [CLOSED] response when selecting a new mailbox, even if a
CONDSTORE enabling command has not been sent (Bug #3352) - reported by Jan
Kundra't, author of the Trojita IMAP client
* Fixed crash with reconstruct -rf and missing mailboxes.db entries (Bug #
3351) - reported by Giles Malet
* Made sync_server report errors earlier if there are extra records on the
master which aren't present on the replica (Bug #3355) - thanks to David
Carter for finding it and a first pass at a fix
* Stopped expunges to never-reported-messages being showed (basically if the
'EXPUNGE' command was run, and it expunged a message that the client had
never even seen - seriously rare race condition, Bug #3356) - discovered by
Bron Gondwana hammering a testbed with Dovecot's imaptest tool
* Fixed compile with old PCRE (Bug #3358) - found and fixed by Simon Matter
* Fixed missing quota usage after XFER (Buf #3349) - found by Dave McMurtrie
changes:
-Enable building with GTK+ 2.22
-QuickSearch can now be run from the command line
-Added a hidden option to set a margin in the text area of the
Compose window
-updated manual and man page
-bugfixes
-translation updates
pkgsrc change: reset MAINTAINER -- he doesn't use the program anymore
- Postfix no longer automatically appends the system default CA
(certificate authority) certificates, when it reads the CA
certificates specified with {smtp, lmtp, smtpd}_tls_CAfile or
with {smtp, lmtp, smtpd}_tls_CApath. This prevents third-party
certificates from getting mail relay permission with the
permit_tls_all_clientcerts feature. Unfortunately, this change
may cause compatibility problems with configurations that rely
on certificate verification for other purposes. To get the old
behavior, specify "tls_append_default_CA = yes".
- A prior fix for compatibility with Postfix < 2.3 was incomplete.
When pipe-to-command delivery fails with a signal, mail is now
correctly deferred, instead of being returned to sender.
- Poor smtpd_proxy_filter TCP performance over loopback (127.0.0.1)
connections was fixed by adapting the output buffer size to the MTU.
- The SMTP server no longer applies the reject_rhsbl_helo feature
to non-domain forms such as network addresses. This would cause
false positives with dbl.spamhaus.org.
- The Postfix SMTP server failed to deliver a "421" response and
hang up the connection after Milter error. Instead, the server
delivered a "503 Access denied" response and left the connection
open, due to some Postfix 1.1 workaround for RFC 2821.
- The milter_header_checks parser failed to enable any of the actions
that have no effect on message delivery (warn, replace, prepend,
ignore, dunno, and ok).
== [release-1-6-2] 1.6.2: 2010-11-23
A bug fix release of 1.6.1.
=== milter manager
==== Improvements
* Made PID file directory prepareing process in init
script on Debian robust.
[Reported by Kenji Shiono]
* Used gint64 for time_t.
[Suggested by OBATA Akio]
==== Fixes
* Fixed missing temporary file close.
[Reported by Kenji Shiono]
=== milter manager admin
==== Improvements
* Documented required sqlite3-ruby version on CentOS.
[Reported by Kenji Shiono]
=== Ruby milter
==== Improvements
* Made milter-tarpit.rb, a sample milter, asynchronous.
[Reported by Kenji Shiono]
* Provided all milter API.
==== Fixes
* Fixed a typo in command line option.
[Reported by Kenji Shiono]
- imap: Fixed SELECT QRESYNC not to crash on mailbox close if a lot
of changes were being sent.
- pop3: Fixed a potential hang
- mbox: Creating new mailboxes should base permissions on mail root
dir, not always use 0600.
- auth: Disable auth caching entirely for master users.
Changes to the Cyrus IMAP Server since 2.4.3
* Rewrite index_upgrade to always parse the message files and
re-create cyrus.cache, to avoid upgrade upgrade failures where
cache errors occured.
* Fixed sync_reset handling of user deletions
* Fixed proc file handling of LOGIN and folder unselect
* use cyrus.expunge file (if still present) to delete bogus records
from a failed index upgrade (cause by bugs in earlier version)
* detect version 2.5 in XFER to support use with master git branch in
a murder
* made pop3 expunge much more efficient
* handle missing seen file in XFER
* Fix procmail vacation rule if no dates are set
* Fix filtering only unseen message if rule should filter all messages in
IMAP driver
Changes 1.2.4:
* Correctly escape addresses in procmail driver
* Fix procmail scripts when using composite headers
* Support some non-standard Date: headers in Sieve vacation rules
* Support composite header rules with IMAP backends
* Fix unconditional debug output with Net_Sieve earlier than 1.2.0
* Add Sieve configuration to use UTF-8 encoded folder names (for Dovecot)
Changes 1.2.3:
* Log Sieve communication with DEBUG log level.
* Fix Oracle SQL scripts.
* Add Croatian translation
* Add PostgreSQL-specific upgrade script
* Fix procmail vacation rule
* Prevent deadlock with vacation rule in maildrop driver
* Fix error if user's account only contains an INBOX
Changes 4.3.8:
* SECURITY: Properly escape user input in Fetchmail configuration.
* Fix updating POP3 indices when using mailbox caching
* Include "anyone" user when listing users in the ACL screen
* Turn DNS prefetching off when displaying untrusted message content
Changes 4.3.7:
* Fix spellcheck-on-send when using fckeditor and no errors exist
* Fix authenticate API call and synchronization when using realms
* Optimize folder tree initialization
* Add command line fetchmail script
* Workaround broken PHP number formatting with some locales
* gpglib/configure.in: Use "gpg2" if "gpg" is not found.
* sqwebmail.spec.in: Use gnugp2 as a requirement if gnupg is not
installed. Replace vixie-cron with cronie as a listed req.
(macro changes, need to recompile package using it)
Bump BUILDLINK_ABI_DEPENDS and bump PKGREVISION of two packages using it
(other packages depending on Ruby/GLib2 are part of Ruby/Gnome2 and
already depending on the version).
* master: default_process_limit wasn't actually used anywhere,
rather the default was unlimited. Now that it is enforced, you might
notice that the default limit is too low and you need to increase it.
Dovecot logs a warning when this happens.
* mail-log plugin: Log mailbox name as virtual name rather than
physical name (e.g. namespace prefix is included in the name)
+ doveadm dump: Added imapzlib type to uncompress IMAP's
COMPRESS DEFLATE I/O traffic (e.g. from rawlog).
- IMAP: Fixed LIST-STATUS when listing subscriptions with
subscriptions=no namespaces.
- IMAP: Fixed SELECT QRESYNC not to crash on mailbox close if a lot of
changes were being sent.
- quota: Don't count virtual mailboxes in quota
- doveadm expunge didn't always actually do the physical expunging
- Fixed some index reading optimizations introduced by v2.0.5.
- LMTP proxying fixes
dovecot-sieve option (managesieve support is now included with sieve).
Create additional "dovenull" user for login processes. Add MESSAGE
with upgrade notes. Grab maintainership.
Major changes since 1.2:
* Dovecot uses two system users for internal purposes now by default:
dovenull and dovecot. You need to create the dovenull user or change
default_login_user setting.
* Global ACLs are now looked up using namespace prefixes. For example
if you previously had INBOX. namespace prefix and a global ACL for
"INBOX.Sent", it's now looked up from "INBOX.Sent" file instead of
"Sent" as before.
* Maildir: File permissions are no longer based on dovecot-shared file,
but the mailbox directory.
+ Redesigned master process. It's now more modular and there is less
code running as root.
+ Configuration supports now per-local/remote ip/network settings.
+ dsync utility does a two-way mailbox synchronization.
+ LMTP server and proxying.
+ Added mdbox (multi-dbox) mail storage backend.
+ doveadm utility can be used to do all kinds of administration
functions. Old dovecotpw and *view utilities now exist in its
subcommands.
+ imap and pop3 processes can now handle multiple connections.
+ IMAP: COMPRESS=DEFLATE is supported by imap_zlib plugin
+ director service helps NFS installations to redirect users always
to same server to avoid corruption
Changes to the Cyrus IMAP Server since 2.4.2
* Many fixes to replication edge case handling
* Added missing flags to reconstruct
* Replicate DELETED.user folders in sync_client -u (matches XFER
behaviour now)
* Make sync_client only connect after forking in rolling mode. Fixes
two things - ssl crashes due to shared resource conflicts, and also
means master will start up even if the replica is not contactable
* Fixed crash on cyr_expire and ipurge annotation based expiry
* Many XFER fixes for compatibility across versions:
* allowing XFER in from delayed_expunge mailboxes
* allowing XFER back all the way to Cyrus 2.2.12. This was
accomplished by adding logic that can generate
backwards-compatible older version indexes, and version
detection from the imapd banner.
* correctly fixing seen information for sub-mailboxes on XFER in
* Multi-target replication. Strictly this is a new feature - there
was a broken implementation in 2.4.0, which is how this snuck in to
the bugfix release. It's not super-well documented yet, but it
works by creating a separate log file for each destination
"channel", and then running one sync_client process per channel, so
replication can fall behind on one without affecting replication to
the other.
* Fixed some crashes and errors which occured when upgrading and
opening corrupted mailboxes
* Modified AFS ptloader configure options to allow building on more
modern systems
1.5.21 (2010-09-15):
+ $mail_check_recent controls whether all unread mail or only new mail
since the last mailbox visit will be reported as new
+ %D format expando for $folder_format
! $thorough_search defaults to yes
+ imap-logout-all closes all open IMAP connections
! header/body cache paths are always UTF-8
+ $wrap_headers to control outgoing message's header length
+ all text/* parts can be displayed inline without mailcap
+ send-hooks now run in batch mode; previously only send2-hooks ran.
* mailfilter.c (clrfields): Added the "noquote" option to the filter
screen that sets the donotquote autoreply option.
* rfc822/rfc822.c (rfc822_print_common_nameaddr): Prevent segfault if
address decode fails.
* Fix make check failure when libidn is not available.
* Rebuilt man pages with updated stylesheets.
* gpglib/list.c: Handle GnuPG 2 --with-colons output format changes.
* gpglib/mimegpgfork.c: GnuPG 2 wants --batch when specifying passphrase-fd.
* cone/cursesmessage.C: Strip off trailing CRs from original message
that's being replied or forwarded (shown as trailing ?s on every line
in the reply).
* tcpd/configure.in: Check if explicit linking with libgpg-error is
required.
It adds support for the Sieve language (RFC 5228) and the ManageSieve protocol
(RFC 5804) to the Dovecot Secure IMAP Server.
The Sieve language is used to specify how e-mail needs to be processed. By
writing Sieve scripts, users can customize how messages are delivered, e.g.
whether they are forwarded or stored in special folders. Unwanted messages can
be discarded or rejected, and, when the user is not available, the Sieve
interpreter can send an automated reply. Above all, the Sieve language is meant
to be simple, extensible and system independent. And, unlike most other mail
filtering script languages, it does not allow users to execute arbitrary
programs. This is particularly useful to prevent virtual users from having full
access to the mail store. The intention of the language is to make it impossible
for users to do anything more complex (and dangerous) than write simple mail
filters.
Using the ManageSieve protocol, users can upload their Sieve scripts remotely,
without needing direct filesystem access through FTP or SCP. Additionally,
aManageSieve server always makes sure that uploaded scripts are valid,
preventing compile failures at mail delivery.
This package provides Sieve support as a plugin to Dovecot's Local Delivery
Agent (LDA) and Dovecot's LMTP service. The ManageSieve protocol is provided is
an additional service, next to Dovecot's own POP3 and IMAP services.
written with security primarily in mind. Dovecot is an excellent choice for both
small and large installations. It's fast, simple to set up, requires no special
administration and it uses very little memory.
IMAP (Internet Message Access Protocol) is an Internet standards-track
protocol for accessing messages (mail, bboards, news, etc). The Cyrus
IMAP server differs from other IMAP server implementations in that it
is generally intended to be run on "sealed" servers, where normal users
are not permitted to log in. The mailbox database is stored in parts of
the filesystem that are private to the Cyrus IMAP system. All user
access to mail is through the IMAP, POP3, or KPOP protocols.
and paths being used.
MAJORDOMO_HOMEDIR moves from /home/majordom to $VARBASE/majordomo, unless
overridden by the package builder
MAJORDOMO_CF is now ${PREFIX}/etc/majordomo/majordomo.cf
The Distributed Checksum Clearinghouses or DCC is an anti-spam content filter
that runs on a variety of operating systems. As of the middle of 2007, it
involves millions of users, more than six hundred thousand client computer
systems, and more than 250 servers collecting and counting checksums related to
more than 300 million mail messages on week days. The counts can be used by
SMTP servers and mail user agents to detect and reject or filter spam or
unsolicited bulk mail. DCC servers exchange or "flood" common checksums. The
checksums include values that are constant across common variations in bulk
messages, including "personalizations".
1.4.0 31-July-2010
---------------------------------------------
- Add change notification for collection subscription state changes.
- Enable filesystem payload store by default.
- Fix unicode folder name encoding regression.
1.3.90 04-July-2010
---------------------------------------------
- Reset RIDs on inter-resource moves.
- Optimize disk space usage with internal MySQL.
- Improve error reporting of the Akonadi remote debugging server.
- Fix moving collections into the collection root.
- Report PostgreSQL database errors in english independent of locale settings.
- Fix unicode collection name encoding.
- Optimize cache pruning with filesystem payload store.
- Fix automatic migration between database and filesystem payload store.
1.3.85 09-June-2010
---------------------------------------------
- Avoid unneeded full resource sync when using sync-on-demand cache policies.
- Fix crash when using D-Bus session bus in a secondary thread.
- Reduce emission of unneccessary change notifications.
- Fix empty filename use in fs backend.
1.3.80 27-May-2010
---------------------------------------------
- Fix unicode collection name encoding.
- Support HRID-based FETCH commands.
- Fix Nepomuk-based persistent searches when Nepomuk was not running during
Akonadi startup.
- Fix compilation on Windows CE.
- Optimize item retrieval queries.
- Support modification of existing persistent searches.
- Support different query languages for persistent searches.
- Fix PostgreSQL shutdown.
- Add initial support for Sqlite.
- Fix premature command abortion.
- Fix parsing of cascaded lists.
- Support for mysql_update_db.
- Support for mysql_install_db.
- Improved protocol tracing for akonadiconsole.
- Support MySQL backend on Maemo.
- Allow RID changes only to the owning resource.
- Add Akonadi remote debugging server.
- Add support for marking chaced payloads as invalid.
- Add support for remove revision property.
- Fix MySQL connection loss after 8 hours of inactivity.
- Fix D-Bus race on server startup.
- Fix internal MySQL on Windows.
- Fix config and data file location on Windows.
- Fix PostgreSQL startup when using internal server.
- Refactor database configuration abstraction.
This seems to fix the security problem with '\0' in domain names which
was also present in openssl and nss. (CVE-2010-1192)
(The bundled changelog does only beat around the bush.)
* lib/Mail/DKIM/DkSignature.pm, Signature.pm: avoid calling lc() on
an undefined value (this generates warnings in Perl 5.12.x).
* lib/Mail/DKIM/PrivateKey.pm (load): fix bug where a private key file
named '0' could not be loaded
* lib/Mail/DKIM/DkSignature.pm (new): accept Key parameter when
constructing a DomainKey signature object
* t/external_signer.t: test use of an alternate object for Key
during a "sign" operation
* lib/Mail/DKIM/Signer.pm: document use of an alternate object for
PrivateKey objects
* lib/Mail/DKIM/Signer.pm: import PrivateKey.pm in this module,
rather than in the Algorithm modules
* lib/Mail/DKIM/PrivateKey.pm: document the sign_digest() method
* lib/Mail/DKIM/Algorithm/*: use sign_digest() rather than
sign_sha1_digest()
* t/public_key.t: test that DNS failure reason is given, when
DNS returns no results
* lib/Mail/DKIM/DNS.pm: bugfix (introduced by async_dns branch):
preserve $@ in case of no error
* lib/Mail/DKIM/{DNS,Signature,PublicKey,Policy}.pm: merged my
"async dns" branch
* lib/Mail/DKIM/Policy.pm: new fetch_async method, seems to work
* lib/Mail/DKIM/Signature.pm: new fetch_public_key method,
which starts an asynchronous query for the public key
referenced by this signature; redesign get_public_key to
know how to complete the query
* lib/Mail/DKIM/PublicKey.pm: new fetch_async method: starts a
query and returns a subref that when called will complete the
query
* lib/Mail/DKIM/DNS.pm: new query_async method: starts a query and
returns a subref that when called will complete the query
* MANIFEST: include sample_mime_lite.pl script in tarball
* lib/Mail/DKIM/DNS.pm: restart timer after a DNS lookup
Mail) sender authentication system proposed by the E-mail Signing Technology
Group (ESTG), now standardized by the IETF (RFC4871). It also includes
implementations of the Author Domain Signing Practises (ADSP, RFC5617) and
Vouch By Reference (VBR, RFC5518) proposed standards.
The project started from a code fork of version 2.8.3 of the open source
dkim-milter package developed and maintained by Sendmail, Inc.
Patch submitted by Todd Kover in PR pkg/43974
-> bump pkgrev
- make myself maintainer
- add restriction (majordomos license does not allow redistribution of
modified binaries)
-------------
- Fix handling of backslash as IMAP delimiter
- Fix charset replacement in HTML message bodies (#1487021)
- Fix: contact group input is empty when using rename action more than once on t
he same group record
- Fix "Server Error! (Not Found)" when using utils/save-pref action (#1487023)
- Fix handling of Thunderbird's vCards (#1487024)
Oked by wiz@
(bugfixes only).
Changelog for Dovecot 1.2.15:
* acl: Fixed the logic of merging multiple ACL entries. Now it works as
documented, while previously it could have done slightly different
things depending on the order of the entries.
For details see http://www.dovecot.org/list/dovecot/2010-October/053452.html
* acl: Don't give admin rights to all owner mailboxes. This was
originally done to make sure that mailbox owner couldn't accidentally
remove their own admin rights. But this is already prevented by
SETACL command, so it's not necessary. Also sysadmin may have
intentionally removed some admin rights from some mailboxes
(especially when using symlinked shared mailboxes).
- Maildir: Fixed potential "Duplicate file entry" in dovecot-uidlist
file errors.
- Maildir: Avoid unnecessary uidlist recreation during mail delivery.
- imap: When SELECT fails, it didn't close the previous mailbox.
- Dovecot master process could have died if it got SIGCHLD signals
very rapidly while it was trying to log. This could have happened
for example if a lot of imap/pop3 sessions disconnected at the exact
same time.
Changelog for Sieve 0.1.18:
- Imap4flags: fixed segfault bug occuring in multiscript context.
Occured in specific situations when a script using imap4flags was
followed in the sequence by scripts not using imap4flags.
- Imap4flags: fixed bug in setflag command; when parameter was a
stringlist, only the last item was actually set.
- Prevented assertion failure due to currupt binary string
representation. If the string were missing a final \0 character an
assertion was produced in stead of a binary corruption error.
- Multiscript: fixed duplicate implicit keep caused by erroneous
execution state update.
- Fixed Sieve script name checking to properly handle length limit
and added 0x00ff as invalid character.
- Removed spurious old stdio.h (top) includes; these caused compile
issues on specific systems.
- Fixed default Sieve capability (as reported by ManageSieve): extra
extensions spamtest, spamtestplus and virustest were enabled by
default. These should, however, only be enabled when properly
configured and there is no default configuration.
- Variables extension: fixed :length set modifier to recognize utf8
characters in stead of octets.
- Fixed unnecessary reporting of dummy extensions in ManageSieve
SIEVE capability; the comparator-i;octet and
comparator-i;ascii-numeric 'extensions' were reported explicitly.
- LDA Sieve plugin: added _version symbol to enable Dovecot's plugin
version check. Without this check, people can forget to recompile
the plugin, which can lead to unexpected effects.
Changelog for ManageSieve 0.11.12:
- Fixed error handling of PUTSCRIPT commmand; save commit errors
would not make the command fail.
- Fixed PUTSCRIPT bug causing it to hang when given an empty script
name.
-------------
- Fix space-stuffing in format=flowed messages (#1487018)
- Fix msgexport.sh now using the new imap wrapper
- Avoid displaying password on shell (#1486947)
- Only lower-case user name if first login attempt failed (#1486393)
- Make alias setting in squirrelmail_usercopy plugin configurable (patch by pomm
i, #1487007)
- Prevent from saving a non-existing skin path in user prefs (#1486936)
- Improve handling of single-part messages with bogus BODYSTRUCTURE (#1486898)
- Fix path to SQL files when using pgsql/mysqli/sqlsrv drivers (#1486902)
- Fix upgrade script for SQLite (#1486903)
- Fixes in SQL init script + added update script for MSSQL database
- Remove redundant date in syslog messages (#1486945)
- Fix contacts list page controls when a group is selected (#1486946)
- Fix SMTP test in Installer (#1486952)
- Fix "Select all" causes message to be opened in folder with exactly one messag
e (#1486913)
- Fix Tab key doesn't work in HTML editor in Google Chrome (#1486925)
- Fix TinyMCE uses zh_CN when zh_TW locale is set (#1486929)
- Fix TinyMCE buttons are hidden in Opera (#1486922)
- Fix JS error on IE when trying to send HTML message with enabled spellchecker
(#1486940)
- Display inline images with known extensions and non-image content-type (#14869
34)
- Fix "Threaded" checkbox after subfolder creation (#1486928)
- Fix timezone string in sent mail (#1486961)
- Show disabled checkboxes for protected folders instead of dots (#1485498)
- Added fieldsets in Identity form, added 'identity_form' hook
- Re-added 'Close' button in upload form (#1486930, #1486823)
- Fix handling of charsets with LATIN-* label
- Fix messages background image handling in some cases (#1486990)
- Fix format=flowed handling (#1486989)
- Fix when IMAP connection fails in 'get' action session shouldn't be destroyed
(#1486995)
- Fix list_cols is not updated after column dragging (#1486999)
- Support %z variable in host configuration options (#1487003)
Oked by wiz@
+ virtual mailboxes: Added support for IDLE notifications.
- master: Don't crash on config reload when using dict processes.
- IMAP: QRESYNC parameters for SELECT weren't handled correctly.
------------------
- Fix disapearing upload form disapears when user selects a file on Safari (#148
6823)
- Don't replace error messages with loading info (#1486300)
- Fix JS errors on compose mode switch (#1486870)
- Fix message structure parsing when it lacks optional fields (#1486881)
- Include all recipients in sendmail log
- Support HTTP_X_FORWARDED_PROTO header for HTTPS detecting (#1486866)
- Fix default IMAP port configuration (#1486864)
- Create Sent folder when starting to compose a new message (#1486802)
- Fix handling of messages with Content-Type: application/* and no filename (#14
84050)
- Improved compose screen: resizable body and attachments list, vertical splitte
r, options menu
- Fix RC forgets search results (#1483883)
- TinyMCE 3.3.7
- Improve parsing of styled empty tags in HTML messages (#1486812)
- Add %dc variable support in base_dn/bind_dn config (#1486779)
- Add button to hide/unhide the preview pane (#1484215)
- Fix no-cache headers on https to prevent content caching by proxies (#1486798)
- Fix attachment filenames broken with TNEF decoder using long filenames (#14867
95)
- Use user's timezone in Date header, not server's timezone (#1486119)
- Add option to set separate footer for HTML messages (#1486660)
- Add real SMTP error description to displayed error messages (#1485927)
- Fix some IMAP errors handling when opening the message (#1485443)
- Fix related parts aren't displayed when got mimetype other than image/* (#1486
432)
- Multiple identity and database support for squirrelmail_usercopy plugin (#1486
517)
- Support dynamic hostname (%d/%n) variables in configuration options (#1485438)
- Add 'messages_list' hook (#1486266)
- Add request* event triggers in http_post/http_request (#1486054)
- Fix use RFC-compliant line-delimiter when saving messages on IMAP (#1486712)
- Add 'imap_timeout' option (#1486760)
- Fix forwarding of messages with winmail attachments
- Fix handling of uuencoded attachments in message body (#1485839)
- Added list_mailboxes hook in rcube_imap::list_unsubscribed() (#1486668)
- Fix wrong message on file upload error (#1486725)
- Add support for data URI scheme [RFC2397] (#1486740)
- Added 'actionbefore', 'actionafter', 'responsebefore', 'responseafter' events
- Fix double-addition of e-mail domain to content ID in HTML images
- Read and send messages with format=flowed (#1484370), fixes word wrapping issu
es (#1486543)
- Fix duplicated attachments when forwarding a message (#1486487)
- Fix message/rfc822 attachments containing only attachments are not parsed prop
erly (#1486743)
- Fix %00 character in winmail.dat attachments names (#1486738)
- Fix handling errors of folder deletion (#1486705)
- Parse untagged CAPABILITY response for LOGIN command (#1486742)
- Renamed all php-cli scripts to use .sh extension
- Some files from /bin + spellchecking actions moved to the new 'utils' task
- Added thread tree icons
- Extend contact groups support (#1486682)
- Fix check-recent action issues and performance (#1486526)
- Fix messages order after checking for recent (#1484664)
- Fix autocomplete shows entries without email (#1486452)
- Fix listupdate event doesn't trigger on search response (#1486708)
- Fix select_all_mode value after selecting a message (#1486720)
- Set focus to editor on reply in HTML mode (#1486632)
- Fix composing in HTML jumps cursor to body instead of recipients (#1486674)
- Allow columns order change per user - drag&drop (#1485795)
- Add References header in read receipt (#1486681)
- Fix database constraint violation when opening a message (#1486696)
- Add 'loading' message while login is in progress (#1486667)
- Fix quota_zero_as_unlimited (#1486662)
- Fix folder subscription checking (#1486684)
- Fix INBOX appears (sometimes) twice in mailbox list (#1486672)
- Fix listing of attachments of some types e.g. "x-epoc/x-sisx-app" (#1486653)
- Fix DB Schema checking when some db_table_* options are not set (#1486654)
RELEASE 0.4-beta
----------------
- Add sizelimit and timelimit variables in LDAP config (#1486544)
- Hide IMAP host dropdown when single host is defined (#1486326)
- Add images pre-loading on login page (#1451160)
- Add HTTP_X_REAL_IP and HTTP_X_FORWARDED_FOR to successful logins log (#1486441
)
- Fix setting spellcheck languages with extended codes (#1486605)
- Fix messages list scrolling in FF3.6 (#1486472)
- Fix quicksearch input focus (#1486637)
- Always set changed date when flagging a DB record as deleted + provide a clean
up script
- Fix address book/group selection (#1486619)
- Assign newly created contacts to the active group (#1486626)
- Added option not to mark messages as read when viewed in preview pane (#148501
2)
- Allow plugins modify the Sent folder when composing (#1486548)
- Added optional (max_recipients) support to restrict total number of recipients
per message (#1484542)
- Re-organize editor buttons, add blockquote and search buttons
- Make possible to write inside or after a quoted html message (#1485476)
- Fix bugs on unexpected IMAP connection close (#1486190, #1486270)
- Iloha's imap.inc rewritten into rcube_imap_generic class
- Added contact groups in address book (not finished yet)
- Added PageUp/PageDown/Home/End keys support on lists (#1486430)
- Added possibility to select all messages in a folder (#1484756)
- Added 'imap_force_caps' option for after-login CAPABILITY checking (#1485750)
- Password: Support dovecotpw encryption
- TinyMCE 3.3.1
- Implemented messages copying using drag&drop + SHIFT (#1484086)
- Improved performance of folders operations (#1486525)
- Fix blocked.gif attachment is not attached to the message (#1486516)
- Managesieve: import from Horde-INGO
- Managesieve: support for more than one match (#1486078)
- Managesieve: support for selectively disabling rules within a single sieve scr
ipt (#1485882)
- Threaded message listing now available
- Added sorting by ARRIVAL and CC
- Message list columns configurable by the user
- Removed 'index_sort' option, now we're using empty 'message_sort_col' for this
- virtuser_query: support other identity data (#1486148)
- Options virtuser_* replaced with virtuser_* plugins
- Plugin API: Implemented 'email2user' and 'user2email' hooks
- Fix forwarding message omits CC header (#1486305)
- Add 'default_charset' option to user preferences (#1485451)
- Add 'delete_always' option to user preferences
- Support/Require tls:// prefix in 'smtp_server' option for TLS connections
- Fix inconsistent behaviour of 'delete_always' option (#1486299)
- Fix deleting all messages from last list page (#1486293)
- Flag original messages when sending a draft (#1486203)
- Changed signature separator when top-posting (#1486330)
- Let the admin define defaults for search modifiers (#1485897)
- Fix long e-mail addresses validation (#1486453)
- Remember search modifiers in user prefs (#1486146)
- Added force_7bit option to force MIME encoding of plain/text messages (#148651
0)
- Use case sensitive check when checking for default folders (#1486346)
- Fix checking for new mail: now checks unseen count of inbox (#1485794)
- Improve performance by avoiding unnecessary updates to the session table (#148
6325)
- Fix invalid <font> tags which cause HTML message rendering problems (#1486521)
- Fix CVE-2010-0464: Disable DNS prefetching (#1486449)
- Fix Received headers to behave better with SpamAssassin (#1486513)
- Password: Make passwords encoding consistent with core, add 'password_charset'
global option (#1486473)
- Fix adding contacts SQL error on mysql (#1486459)
- Squirrelmail_usercopy: support reply-to field (#1486506)
- Fix IE spellcheck suggestion popup issue (#1486471)
- Fix email address auto-completion shows regexp pattern (#1486258)
- Fix merging of configuration parameters: user prefs always survive (#1486368)
- Fix quota indicator value after folder purge/expunge (#1486488)
- Fix external mailto links support for use as protocol handler (#1486037)
- Fix attachment excessive memory use, support messages of any size (#1484660)
- Fix setting task name according to auth state
- Password: fix vpopmaild driver (#1486478)
- Add workaround for MySQL bug [http://bugs.mysql.com/bug.php?id=46293] (#148647
4)
- Fix quoted text wrapping when replying to an HTML email in plain text (#148414
1)
- Fix handling of extended mailto links (with params) (#1486354)
- Fix sorting by date of messages without date header on servers without SORT (#
1486286)
- Fix inconsistency when not using default table names (#1486467)
- Fix folder rename/delete buttons do not appear on creation of first folder (#1
486468)
- Fix character set conversion fails on systems where iconv doesn't accept //IGN
ORE (#1486375)
- Log in performance: Create default folders on first login only
- Import contacts into the selected address book (by Phil Weir)
- Add support for MDB2's 'sqlsrv' driver (#1486395)
- Use jQuery-1.4
- Removed problematic browser-caching of messages
- Fix incompatybility with suhosin.executor.disable_emodifier (#1486321)
- Use PLAIN auth when CRAM fails and imap_auth_type='check' (#1486371)
- Fix removal of <title> tag from HTML messages (#1486432)
- Fix 'force_https' to specified port when URL contains a port number (#1486411)
- Fix to-text converting of HTML entities inside b/strong/th/hX tags (#1486422)
- Bug in spellchecker suggestions when server charset != UTF8 (#1486406)
- Managesieve: Fix requires generation for multiple actions (#1486397)
- Fix LDAP problem with special characters in RDN (#1486320)
- Improved handling of message parts of type message/rfc822
- Plugin API: added 'quota' hook
- Fix parsing conditional comments in HTML messages (#1486350)
- Use built-in json_encode() for proper JSON format in AJAX replies
- Allow setting only selected params in 'message_compose' hook (#1486312)
- Plugin API: added 'message_compose_body' hook (#1486285)
- Fix counters of all folders are checked in 'getunread' action with check_all_
folders disabled (#1486128)
- Fix displaying alternative parts in messages of type message/rfc822 (#1486246)
- Fix possible messages exposure when using Roundcube behind a proxy (#1486281)
- Fix unicode para and line separators in javascript response (#1486310)
- Additional_message_headers: allow unsetting headers, support plugin's config f
ile (#1486268)
- Fix displaying of hidden directories in skins list (#1486301)
- Fix open_basedir restriction error when reading skins list (#1486304)
- Fix pasting from Office apps into html editor (#1486271)
- Fix empty <a> tags parsing (#1486272)
- Don't cut off attachment names when using non-RFC2231 encoding (#1485515)
- Allow inserting signatures above replied message body (#1484272)
- Managesieve 2.0: multi-script support
- Fix imap_auth_type regression (#1486263)
(ok schmonz, take over maintainer)
Changelog:
1.5.4: 2010-09-13 23:59 UTC
Critical Security release.
It is highly recommended that users of 1.5.3 upgrade to this release, a change in the boundary detection
code introduced a potential denial of service attack.
Bug Fixes
#17862 - quote boundary preg_split code
1.5.3: 2010-09-05 09:26 UTC
Major Bugfix release.
Apart from a major cleanout of the bug tracker for this package, this
release includes a revamped parseHeaderValue which removes the rather
flakey regex, with a real parser, which should be considerably more
robust.
Bug Fixes
#17844 - all regression tests fixed - remove the last of the while
list each() .. this is 2010 ;)...
#11410 - support wap multipart
#9616 - long strings as filename
etc.. aaa*0=.... aaa*1=.... aaa*2=.... (merged into aaa=.....)
#9100 - change to preg_split for mime boundary detection , in theory
should catch boundaries in nested situations better...
#7709 - check for last element on boundary split to see if its usable
#7065 - wrapped header lines with encoding should be concated without spaces
#6495 - missing body in decoded object
#11537 - better decode and multi-line support
1.5.2: 2010-09-02 12:01 UTC
Bug Fixes
#4739 - regexp parsing of header values does not balance quoting
correctly - Fix sponsored by http://webyog.com#17325 - empty body messages are valid messages
#17276 - remove &new usage which throws errors now
1.8.0: 2010-07-29 06:46 UTC
Changelog:
Bugs Fixed:
* Double-addition of e-mail domain to content ID in HTML images [alec]
* #17311: Multi-octet characters are split across adjacent 'encoded-word's
[alec]
* #17573: Place charset parameter in first line of Content-Type header
(if possible) [alec]
Implemented Features:
* #17518: addTo() method [alec]
1.7.0: 2010-04-12 12:03 UTC
Changelog:
Implemented Features:
* Added Mail_mime::setContentType() function with possibility to set various
types in Content-Type header (also fixes problem with boundary parameter
when Content-Type header was specified by user) [alec]
== Mon Sep 13 02:31:21 UTC 2010 Mikel Lindsaar <mikel@rubyx.com>
* Replace some missing documentation
* Version bump to 2.2.6.1
== Sat 11 Sep 2010 05:13:36 UTC Mikel Lindsaar <mikel@rubyx.com>
* Fixed parsing an email with an empty In-Reply-To header (Reported by Eugene Pimenov)
* Adding address spec for groupname+domain.com@example.com format emails
* Version bump to 2.2.6
== Sat Sep 11 01:56:59 UTC 2010 Mikel Lindsaar <mikel@rubyx.com>
* Added new way to do versioning for rubygems
* Added additional specs for Content-Disposition: inline which are not being encoded correctly - Shawn Pyle
* Make sure Mail::Message#attachment? returns true/false - Simone Carletti
* Replace hard-coded references to Mail with more generic self references to allow easier inheritance (closes#61) - Simone Carletti
* Force encoding on Regexp for Ruby 1.9 to avoid encoding conflicts - Golubev Pavel
* Added lazy evaluation to message body: body is not parsed until need. It greatly improves performance with big mails if you don't need to read the body (yet)
* Added Mail.read_from_string as an explicit method (mcansky)
* Fixed bounce detection for multipart reports that contain a human readable report status part
* Closed Issue #65 found (incredibly) by quetz - major Kudos for bug hunting
* Fixed missing trailing CRLF in content type field - Closes issue #57 - Kudos to Henry Flower for finding it
* Version bump to 2.2.5.2
== Sat Sep 11 01:32:13 UTC 2010 Mikel Lindsaar <mikel@rubyx.com>
* Closed issue #58 - Content Type not parsing unless lower case.
* Version bump to 2.2.5.1
Upstream changes:
0.10 Fri Jul 8 15:45:42 CEST 2010
- fix: authentificate against Cyrus CPAN bug #58192 Rudy Gevaert
You can pass different user and authname to auth() now
- fix: added missed entry in Changes of v0.09
- fix: stall in select() CPAN bug #58235 Rudy Gevaert
When the SSL layer buffers data, select() does not return
true, hence, is not indicating that pending data. It seems
that select() queries the TCP stack only.
The now choosen maximal size in sysread() is larger than
the block size of Net::SSLeay at the current time of 32KB.
0.09 Thu Sep 24 14:29:07 CEST 2009
- fix: CPAN bug#49333: bug in Mangesieve by Oliver Eales
base64 encoded password in fallback branch contains line
feeds
pkgsrc changes:
- adjusting license definition
- adjusting module type
- tidy Makefile
- re-sort dependencies
Upstream changes:
2.102 2010-02-14
minor documentation improvements
do not break chaining on $stuff->FOO_text(undef);
2.101 2009-11-12
accept character (unicode) strings for bodies and headers
ucfirst header names
(above changes by Aristotle Pagaltzis)
2.100 2009-08-11
Allows attach_file to accept attribute arguments ie (content_type)
just like attach does (twek)
2.09 Sat 16 May 2009
- documentation tweaks for SMTP hostname; thanks Kieren Kiment
Action Mailer is a framework for designing email-service layers. These layers
are used to consolidate code for sending out forgotten passwords, welcome
wishes on signup, invoices for billing, and any other use case that requires
a written notification to either a person or another system.
Action Mailer is in essence a wrapper around Action Controller and the
Mail gem. It provides a way to make emails using templates in the same
way that Action Controller renders views using templates.
Additionally, an Action Mailer class can be used to process incoming email,
such as allowing a weblog to accept new posts from an email (which could even
have been sent from a phone).
(This is part of Ruby on Rails 3.)
Mail is an internet library for Ruby that is designed to handle emails
generation, parsing and sending in a simple, rubyesque manner.
The purpose of this library is to provide a single point of access to handle
all email functions, including sending and receiving emails. All network
type actions are done through proxy methods to Net::SMTP, Net::POP3 etc.
Built from my experience with TMail, it is designed to be a pure ruby
implementation that makes generating, sending and parsing emails a no
brainer.
It is also designed form the ground up to work with Ruby 1.9. This is because
Ruby 1.9 handles text encodings much more magically than Ruby 1.8.x and so
these features have been taken full advantage of in this library allowing
Mail to handle a lot more messages more cleanly than TMail. Mail does run on
Ruby 1.8.x... it's just not as fun to code.
Finally, Mail has been designed with a very simple object oriented system
that really opens up the email messages you are parsing, if you know what
you are doing, you can fiddle with every last bit of your email directly.
* Use lang/ruby/gem.mk instead of misc/rubygems/rubygem.mk.
* Add LICENSE.
* Remove default value of GEM_BUILD.
=== 1.2.7.1 / 2010-02-07
* Fixed stray ruby-debug
* Re indented RChardet, and handled old syntax
* Add LICENSE.
* Remove default value of GEM_BUILD.
== MIME::Types 1.16
* Made compatible with Ruby 1.8.6, 1.8.7, and 1.9.1.
* Switched to the 'hoe' gem system and added a lot of build-time tools.
* Updated the MIME types to the list based on the values in the Perl library
version 1.27. Also updated based on external source information and bug
reports.
* This is the last planned version of MIME::Types 1.x. Work will be
starting soon on MIME::Types 2.x with richer data querying mechanisms
and support for external data sources.
* Several fixes to improve stability.
* Several fixes to the user interface.
* Several security fixes:
MFSA 2010-63 Information leak via XMLHttpRequest statusText
MFSA 2010-62 Copy-and-paste or drag-and-drop into designMode document allows XSS
MFSA 2010-61 UTF-7 XSS by overriding document charset using <object> type
attribute
MFSA 2010-59 SJOW creates scope chains ending in outer object
MFSA 2010-58 Crash on Mac using fuzzed font in data: URL
MFSA 2010-57 Crash and remote code execution in normalizeDocument
MFSA 2010-56 Dangling pointer vulnerability in nsTreeContentView
MFSA 2010-55 XUL tree removal crash and remote code execution
MFSA 2010-54 Dangling pointer vulnerability in nsTreeSelection
MFSA 2010-53 Heap buffer overflow in nsTextFrameUtils::TransformText
MFSA 2010-52 Windows XP DLL loading vulnerability
MFSA 2010-51 Dangling pointer vulnerability using DOM plugin array
MFSA 2010-50 Frameset integer overflow vulnerability
MFSA 2010-49 Miscellaneous memory safety hazards (rv:1.9.2.9/ 1.9.1.12)
* QUOTA and MYRIGHTS IMAP extension support.
* IMAP compression (COMPRESS=DEFLATE) when supported by server
* making opening attachment easier by saving them in a directory
* downloadable images when using Webkit html widget
* faster opening of the compose window.
* text searching enabled in the WebKit html viewer.
* options to hide toolbars and other parts of the UI (useful on netbooks etc).
* For laptop/wifi users: not trying to reach POP3 servers while disconnected,
and instead checking immediately on reconnection.
* infinite loop avoided.
* avoid crashes when manually verifing GPG signature.
GMime 2.4 has had a number of API changes since GMime 2.2. To start, ALL public
APIs that used to use off_t in GMime 2.2 now use gint64 so that the API and ABI
do not change based on whether or not large file support is enabled.
In addition, all of the functions marked as deprecated in 2.0 and 2.2 were
removed (usually they had equivalent functionality in a parent class).
Many functions have also been renamed for better clarity and/or consistency.
For convenience, GMime 2.4 source packages include a shell-script to aid in
porting applications using GMime 2.2 (should work for most GMime 2.0
applications as well) to the 2.4 API. You can find this script under the
tools/ directory, named `gmime-port-2-2-to-2-4.sh'.
This script won't fix everything, but it should help quite a bit.
pkgsrc changes:
- adjust dependencies
Upstream changes:
0.102370 2010-08-25 08:37:22 America/New_York
remove spurious prereq on Sys::Hostname::Long (thanks ABH)
tweak some tests for truth/definedness in SMTP transport
0.102360 2010-08-24 07:47:24 America/New_York
avoid the need to use "excludes" in role application; this silences
warnings with Moose 1.10
0.101760 2010-06-25 08:18:26 America/New_York
fix sendmail.t with latest Capture::Tiny (Justin Hunter)
pkgsrc changes:
- tidy
- add license definition
- adjust dependencies
Upstream changes:
3.002 2010-06-11
avoid a warning in MailInternet with zero headers found
Patch from upstream cvs repository to allow exmh to function
correctly with tcl 8.5 (or any earlier version). This patch
will not be needed after the next exmh upgrade.
No PKGREVISION bump since no uservisible changes.
* Restores compatibility with Postfix (which was broken in 2.70).
* Properly fixes signal-handling in child processes. 2.70 included a partial fix,
but signal-handling would break if you ran md-mx-ctrl reread.
* contrib: add safe_clamd from Luca
* freshclam: uses private symbol which changed proto, change name to prevent
crash
* libclamav: fix callback_sigload
* clamdscan: fix parsing of virus names in extended mode and --stream
* libclamav/c++/detect.cpp: Mac OS X can run 64-bit apps on 32-bit kernel
* libclamav/others.h: bump f-level
* sigtool/sigtool.c: fix handling of --datadir
* libclamav/matcher-ac.c: improve offset handling
* libclamav/7z/Archive/7z/7zDecode.c: shut up a warning
* libclamav/autoit.c: properly resume from empty files regression introduced
in ac867aad
* libclamav/elf.c: fix zero mem alloc warning
* win32: fix libclamav's triple and fix GetVersion
* libclamav/bytecode.c: save lsig counts/offsets
* libclamav/{bytecode,matcher}.c: matchicon API
* libclamav/pe_icons.c: BE fixes
* more...
- Build fix for Solaris
- Fix .m4 file
- Allow k or M suffix after data sizes
- Add a missing comma in X-Greylist (Kouhei Sutou)
- Look for liresolv in ${libdir} instead of /usr/lib (DUFRESNE VINCENT)
- Fix SPF on Postfix (Kouhei Sutou)
to trigger/signal a rebuild for the transition 5.10.1 -> 5.12.1.
The list of packages is computed by finding all packages which end
up having either of PERL5_USE_PACKLIST, BUILDLINK_API_DEPENDS.perl,
or PERL5_PACKLIST defined in their make setup (tested via
"make show-vars VARNAMES=..."), minus the packages updated after
the perl package update.
sno@ was right after all, obache@ kindly asked and he@ led the
way. Thanks!
== [release-1-6-1] 1.6.1: 2010-08-21
A bug fix release of 1.6.0.
=== milter manager
==== Fixes
* Fixed a bug that no statistics information isn't logged to syslog.
[Reported by akira yamada]
=== Thanks
* akira yamada
5.428 2010-04-22 Dave O'Neill <dmo@roaringpenguin.com>
* VERSION 5.428 RELEASED
* (ticket 56764) Build release with a newer Module::Install
* (ticket 52924) ensure we add <> around Content-id data
* (ticket 48036) make mimesend example script a bit more useful
(courtesy of Jerrad Pierce)
* (ticket 43439) fix for parsing of doubled ; in multipart headers
* (ticket 41632) If both RFC-2231 and non-RFC-2231 parameters are
present, use only the RFC-2231 ones
* (ticket 40715) Reference Encode::MIME::Header in docs
* (ticket 39985) correct POD typos
* Only bind to localhost in smtpsend test, rather than to all available
interfaces. This might avoid some of the test failures seen on
cpantesters.
== [release-1-6-0] 1.6.0: 2010-08-11
The first release of stable 1.6.x series.
=== milter manager
==== Improvements
* Added parsers for Postfix cidr_table(5) and regexp_table(5):
PostfixCIDRTable, PostfixRegexpTable
== [release-1-5-3] 1.5.3: 2010-08-03
The last release of 1.5.x series. (plan)
=== Document
==== Improvements
* Added a description for
((<SocketAddress#to_ip_address|configuration#to-ip-address>)).
=== milter manager
==== Improvements
* Ensured to reply for negotiation on negotiation failure.
* Reduced the default timeout for reporting timeout error
to MTA. The previous default timeout is the same as MTA
default. With the value, we can't have a time to report
timeout error to MTA.
* command launcher: Supported syslog.
* Added an applicable condition:
* ((<Trust|"doc/configuration.rd.ja#trust">))
* Supported Solaris. [Patched by SATOH Fumiyasu]
=== milter manager admin
==== Improvements
* Supported Rails 2.3.8.
=== milter-test-server
==== Improvements
* Added ((<--color|milter-test-server#--color>)) option.
* Added ((<--threads|milter-test-server#--threads>)) option.
=== milter-core
==== Improvements
* Chanaged default log level to output error and critical message.
=== Ruby milter
==== Improvements
* Added --user, --gorup, --unix-socket-group,
--unix-socket-mode, --syslog, --library-version options.
* Added milter-test-client implemented by Ruby as a sample.
* Added milter-regexp.rb as a sample.
=== Thanks
* SATOH Fumiyasu
== [release-1-5-2] 1.5.2: 2010-05-29
A bug fix release of 1.5.1.
We recommend development version users who use a milter that uses
NO_REPLY_* or milter-greylist 4.3.x upgrade to this version.
=== Document
==== Improvements
* Created ((<available milters|available-milters>)) list.
* Updated recommended milter-greylist configuration.
=== milter manager
==== Improvements
* Supported S25R ((<whitelist customize
|"doc/configuration.rd#s25r.add_whitelist">)) and
((<blacklist
customize|"doc/configuration.rd#s25r.add_blacklist">)).
=== milter-manager-log-analyzer
==== Improvements
* Supported milter-greylist 4.3.x.
=== milter-toolkit
==== Improvements
* Used inet_pton()/inet_pton() instead of
inet_aton()/inet_ntoa(). [Suggested by SATOH Fumiyasu]
=== Thanks
* SATOH Fumiyasu
* ROSSO
== [release-1-5-1] 1.5.1: 2010-04-20
A bug fix release of 1.5.0.
It includes a memory leak fix derived from Ruby/GLib2
because bundled Ruby/GLib2 is updated. If bundled Ruby/GLib2
is used, upgrade is recommended.
=== Document
==== Improvements
* Added install document for development release on Ubuntu
Karmic Koara.
* Added a description that installs Rack
explicitly. [Reported by Tsuchiya]
==== Fixes
* FreeBSD: Fixed package name [Reported by Tsuchiya]
=== libmilter-core
==== Improvements
* Supported syslog level change by MILTER_LOG_SYSLOG_LEVEL
environment variable.
* Added memory profiler.
=== milter manager
==== Improvements
* Supported Solaris. [Reported and patched by SATOH Fumiyasu]
* Bundled Ruby/GLib2 0.19.4.
=== milter-test-client
==== Improvements
* Added
((<--report-memory-profile|milter-test-client#--report-memory-profile>)) option.
=== Thanks
* Tsuchiya
* SATOH Fumiyasu
== [release-1-5-0] 1.5.0: 2010-03-29
A development release.
=== Document
==== Improvements
* For Debian GNU/Linux・Ubuntu:
* Removed needless group change description [Suggested by ZnZ]
* For CentOS:
* Used Yum instead of RPM directly.
* For FreeBSD:
* Upgraded target version: 7.2-RELEASE -> 8.0-RELEASE
* Changed to use CPPFLAGS instead of CFLAGS for configure.
==== Bug fixes
* For FreeBSD:
* Fixed pw command options.
=== milter manager
==== Improvements
* init script for Debian GNU/Linux:
* Supported 'status'. [Suggested by ZnZ]
* Delayed parameter checks until they are needed.
[Suggested by ZnZ]
* Removed needless dependencies. [Suggested by ZnZ]
* [#2921072] Showed loaded configuration file path on
verbose mode. [Suggested by Antuan Avdioukhine]
* [#2921072] Showed file and line that are changed the
configuration item. [Suggested by Antuan Avdioukhine]
* [#2921078] Supported no child milter work.
[Suggested by Antuan Avdioukhine]
* Added configuration items:
* ((<remove_milter|"doc/configuration.rd#remove_milter">))
* ((<manager.connection_check_interval|"doc/configuration.rd#manager.connection_check_interval">))
* ((<manager.define_connection_checker|"doc/configuration.rd#manager.define_connection_checker">))
* ((<manager.use_netstat_connection_checker|"doc/configuration.rd#manager.use_netstat_connection_checker">))
* ((<manager.report_memory_statistics|"doc/configuration.rd#manager.report_memory_statistics">))
* ((<manager.maintained|"doc/configuration.rd#manager.maintained">))
* ((<stress.threshold_n_connections|"doc/configuration.rd#stress.threshold_n_connections">))
* ((<stress.threshold_n_connections=|"doc/configuration.rd#stress.threshold_n_connections=">))
* ((<remote_network.add_local_address|"doc/configuration.rd#remote_network.add_local_address">))
* Added new applicable conditions
* ((<No Stress|"doc/configuration.rd#no-stress">))
* ((<Stress Notify|"doc/configuration.rd#stress-notify">))
* Bundled Ruby/GLib 0.19.3. (For FreeBSD)
* Changed to use /usr/sbin/service or /sbin/service if it
is available.
* Supported OpenDKIM detection on CentOS.
* Supported Syslog facility change:
MILTER_LOG_SYSLOG_FACILITY environment variable is used.
* ((<manager.max_file_descriptors|"doc/configuration.rd.ja#manager.max_file_descriptors">)):
Changed both of soft and hard limit not only soft limit.
* Supported ((<Munin|URL:http://munin-monitoring.org/>)).
* Speed up and effective memory usage.
==== Bug fixes
* FreeBSD: Fixed OpenDKIM detection when any profiles
aren't used in /etc/rc.conf. [Reported by Tsuchiya]
* Fixed a bug that applicable condition is ignored by
Ruby's GC.
==== Experimental
* Introduced policy framework to specify condition and
milter all together.
=== milter-toolkit
* Supported milter development by Ruby bindings: ((<Ruby integration|ruby>))
* Specify --enable-ruby-milter option in configure.
=== milter-manager-log-analyzer
* Speed up (almost 2 times faster)
* Supported visualization about number connections that is
disconnection from SMTP clients.
=== milter-performance-check
* New options
* ((<--n-concurrent-connections|"doc/milter-performance-check#--n-concurrent-connections">)):
Specifies maximum number of concurrency connections.
=== milter-test-client
* New options:
* ((<--no-report-request|"doc/milter-test-client#--no-report-request">)):
Doesn't dump requests from MTA.
* ((<--user|"doc/milter-test-client#--user">)):
Specifies effective user.
* ((<--group|"doc/milter-test-client#--group">)):
Specifies effective group.
* ((<--socket-group|"doc/milter-test-client#--socket-group">)):
Specifies UNIX domain socket's group.
=== Package
==== CentOS
* Split to some packages.
=== Test
* Supported ((<Cutter|URL:http://cutter.sourceforge.net/>)) 1.1.0
=== Thanks
* ZnZ
* Tsuchiya
* Antuan Avdioukhine
the build, understandably, may fail.
If the krb5 option is selected, apply the paths as found in the previous
revision of the Makefile.
Fixes the build under Linux.
This release fixes a bug in ACL plugin, which could be considered a security
bug: If Maildir is used with default settings (INBOX is same as Maildir root
dir) and user set some ACLs to INBOX, those ACLs were copied to all newly
created mailboxes. This should have been done only for "default ACLs", but with
Maildir the INBOX directory is the same as the default ACL directory, so this
mixup happened. This bug exists only in v1.2.x releases.
Other fixes:
- Fixed iconv() crash when it was processing several kilobytes of broken
continuous input. This mainly could have caused a problem with IMAP SEARCH.
Possibly also with some Sieve checks.
- If MIME encoded-words contained line feeds, Dovecot logged cache corruption
errors.
- mbox: Renaming mailbox under newly created dir didn't move index directory.
- mbox: When generating envelope to From_-line, don't append a second
@owndomain if username already has one.
- Now allow more than one plugin to control the compose form submit action.
- When sorting by received date, the received date is now shown on the
message list.
- Explicitly disable browser caching for left_main and right_main pages
(#2983134).
- Fix error with SpamCop reporting plugin not being able to send report as
emails (#1795310).
- Fix typo in SpamCop plugin.
- Reduced default time security tokens stay valid from 30 days to 2 days
(reduces chances of session data growing too large)
- Several speed enhancements for recent fixes regarding the display of
encoded subjects, including a fix for messages with invalid subject
encoding (includes #2987016 amongst several other issues reported via
mailing list, etc.) (Many thanks to Zdenek Pytela for the untiring help
diagnosing and testing.)
- Fixed minor vulnerability in Mail Fetch plugin.
[CVE-2010-1637/TEHTRI-SA-2010-009]
- Now properly quote personal part of encoded addresses when replying.
- Now fill in default subject when forwarding as attachment (#2936541).
- Implement header folding that doesn't add extraneous spaces so unfolding
is less ambiguous (#1951776).
- Fixed issues caused by use of PostgreSQL keyword "user" in SquirrelMail's
default preferences database schema (#2943483).
- Fixed attachment filename decoding problems (#2994865).
- Now default search criteria to the TO header when searching the sent folder.
- Fixed literal processing of 8-bit usernames/passwords during login.
[CVE-2010-2813]
pkgsrc changes:
* accept bdb3 and bdb5, rename db4 option to bdb.
* accept tokyocabinet for db engine.
* buildlink with libiconv for UNICODE support.
-------------------------------------------------------------------------------
1.2.2 2010-10-08 (released)
2010-07-05
* Use a better PRNG for random sleeps. That is arc4random() where
available, and drand48() elsewhere.
* Assorted fixes for issues found with clang analyzer:
+ Fix a potential NULL deference
+ Fix a potential division by zero
+ Remove dead assignments and increments
* Update Doxyfile and source contrib/bogogrep.c for docs, too.
2010-07-03
* Security bugfix, CVE-2010-2494:
Fix a heap corruption in base64 decoder on invalid input.
Analysis and patch by Julius Plenz <plenz@cis.fu-berlin.de>.
Please see doc/bogofilter-SA-2010-01 for details.
2010-04-07
* Updated sendmail milter contrib/bogofilter-milter.pl to v1.??????
(thanks to Jonathan Kamens)
2010-04-01
* Bump supported/minimum SQLite3 versions and warning threshold.
See doc/README.sqlite for details.
* Mark BerkeleyDB 4.8.26 and 5.0.21 supported.
Note that Berkeley DB 5.0's SQLite3 compatibility API is NOT
supported, it causes shifts in scores and write failures under
contention. Bogofilter can use Berkeley DB 5.0's native interface,
and using that is more efficient than the added SQL shim layer.
2010-03-06
* Make t.maint more robust; ignore .ENCODING token. To fix test
failures on, for instance, FreeBSD with unicode enabled.
2010-02-15
* Fix several compiler warnings "array subscript has type 'char'", by
casting the arguments to unsigned char.
A security audit was conducted and showed that all affected
functions either received the relevant input from the user running
bogofilter, or the input had already been pre-validated by the token
lexer.
2010-02-14
* Split error messages for ENOENT and EINVAL into new function.
* Avoid divison by zero in robx computation by checking if there are at
least one ham message and one spam message registered.
2009-08-13
* contrib/spamitarium.pl updated to version 0.4.0
(thanks to Tom Anderson)
2009-08-05
* Updated and integrated Ted Phelps's "Patch to prevent .ENCODING from
being discarded by bogoutil -m" (SourceForge Patch #1743984).
Thanks to Ted for debugging the issue and providing the patch (which
was for bogofilter v1.1.5).
2009-09-15
* Promoted to "stable"
1.2.1 2009-08-01 (released)
2009-08-01
* Update configure to use "host" rather than "target", to match the
newer autotools cross-build semantics. Untested.
Developers changing the build system and users who build from SVN
will now need automake 1.9 and autoconf 2.60.
2009-07-31
* Fix Christian Frommeyer's MIME decoding bug, Ubuntu/Launchpad Bug
#320829. As a side effect, also fixes misattribution of MIME bodies
as MIME headers with mime: tag. Original bug report:
https://bugs.launchpad.net/ubuntu/+source/bogofilter/+bug/320829
Before this fix, bogofilter did not properly MIME-decode the first
line in a body. This was especially bad with Christian's samples
where the whole body was only one long base64 line.
2009-05-28
* Removed two scripts that are auto-built.
* Added test case for Stephen Davies' Q-P EOL problem (see below).
2009-05-25
* Fixed EOL problem in quoted_printable text. Problem reported by
Stephen Davies and identified by Pavel Kankovsky.
2009-03-28
* Promoted to "stable"
1.2.0 2009-02-21 (released) 2009-03-28 (declared stable)
2009-02-20
* Flex-2.5.35 has fix for memory allocation problem in 2.5.4,
2.5.31, and 2.5.33, making bogofilter's flex patch obsolete.
2009-02-12
* Bogofilter now uses listsort in place of qsort.
2009-01-31
* Added token-count=n, token-count-min=n, and token-count-max=n options.
* Minor code cleanups.
2009-01-21
* spamitarium.pl updated to version 0.3.0
(thanks to Tom Anderson)
2009-01-11
* For compatibility with Sun's Sun Studio 12 compiler, provide
a name for the anonymous union in typedef word_t.
Patch provided by Jack Bailey.
2008-10-20
* update bf_compact documentation by removing explicit Berkeley DB
references, as it has been fixed to work with other database drivers
in March 2008.
2008-10-15
* bf_compact, bf_copy and bf_tar now support transformed program names
(fixes Debian Bug#501947).
* Update sqlite3 adaptor to take advantage of sqlite3_prepare_v2()
API function that appeared in SQLite 3.3.9. The new _v2 interface
allows for more specific error messages when executing SQL
statements. Also enable extended result codes for more precise error
reporting.
2008-07-21
* Update doc/integrating-with-postfix: the script now suggests sendmail
-G -i (where -G will be ignored by Postfix before 2.3) to tell
Postfix it's a gateway submission, not an original injection; the
filter pipe(8) magic for master.cf now suggests flags=Rq (was
flags=R), as per Postfix's FILTER_README.
2008-07-09
* Drop support for systems that reverse setvbuf arguments. The last
systems to do that are reported to be shipped in 1987 by the autoconf
manual, so ditch them.
(Since pkgsrc-2010Q2 has the 3.0 branch of thunderbird I will send a
separate diff to releng for the 3.0.6 security update.)
MFSA 2010-47 Cross-origin data leakage from script filename in error messages
MFSA 2010-46 Cross-domain data theft using CSS
MFSA 2010-44 Characters mapped to U+FFFD in 8 bit encodings cause subsequent
character to vanish
MFSA 2010-43 Same-origin bypass using canvas context
MFSA 2010-42 Cross-origin data disclosure via Web Workers and importScripts
MFSA 2010-41 Remote code execution using malformed PNG image
MFSA 2010-40 nsTreeSelection dangling pointer remote code execution
MFSA 2010-39 nsCSSValue::Array index integer overflow
MFSA 2010-38 Arbitrary code execution using SJOW and fast native function
MFSA 2010-34 Miscellaneous memory safety hazards (rv:1.9.2.7/ 1.9.1.11)
PERL_SET_CONTEXT after forking or Perl gets confused.
In particular, setting signal-handling dispositions using
$SIG{FOO} = sub { ... } breaks.
* Clarify wording of mimedefang-filter man page.
* Remove obsolete code that used to attempt to generate working
directory names. Deactivate the no-longer-needed "-M" mimedefang
option.
* Add new "-y" option to mimedefang-multiplexor. This limits
the number of concurrent "recipok" commands on a per-domain basis.
* Remove Anomy::HTMLCleaner support.
* use MIME::Parser::Filer's ignore_filename() call instead of
subclassing to override evil_filename(). Same effect, less code.
* refactor resend_message_one_recipient() to use
resend_message_specifying_mode() instead of reimplementing it.
* header_timezone() now generates a strictly RFC2822-compliant timezone
string without needing POSIX::strftime()
* Ensure that decode_mimewords() is called in scalar context.
options no longer exist in the current version of evolution.
It still doesn't build for me under Linux, but the spurious warnings about
unrecognised krb4 configure options are gone.
Upstream changes:
version 1.30: Thu Jun 3 12:00:37 CEST 2010
- typo. rt.cpan.org#55655 [Salvatore.Bonaccorso]
- xlsx must be encoded binary [Ben Prew]
- added f4v, f4p, f4a, f4b extensions for mpeg4
rt.cpan.org#55168 [Oskari Ojala]
version 1.29: Tue Mar 16 23:28:00 CET 2010
- added a zillions of new types from debian's /etc/mime.types.
implemented by [Roman V. Nikolaev]
- changed table format, hopefully to speed-up load times per
type, slightly compensating for the increased list.
- Update bundled enigmail to 1.1.2
- Update mozilla branch patches to 1.9.2 (from devel/xulrunner)
- While here fix PR pkg/43598 PLIST problem w/ enigmail
---8<---
Thunderbird 3.1 is based on the Gecko 1.9.2 platform to provide improved
performance, stability, web compatibility, and code simplification and
sustainability.
New features include:
Faster Search Results and Quick Filter Toolbar
* Faster Search Results
* Quick Filter Toolbar
User Experience Improvements
* New Migration Assistant
* Saved Files Manager
* Mail Account Setup Wizard
Performance Improvements
* Improvements to Stability, Memory, and Password Handling
Based on PR#43566, with additional clean up, exactly enable/disable options.
Version 1.4.21:
- No significant changes.
Version 1.4.20:
- Added support for authentication mechanism SCRAM-SHA-1 via GNU SASL.
- The new command tls_fingerprint allows one to trust one particular TLS
certificate, in case tls_trust_file cannot be used for some reason.
- The new script msmtp-gnome-tool.py manages Gnome Keyring passwords for msmtp.
Version 1.4.19:
- When using OpenSSL, msmtp now correctly handles NUL characters in the Common
Name and Subject Alternative Name fields of certificates. This fixes a
security problem. Note that msmtp is not affected by this problem if GnuTLS is
used.
Changed the option "hostname-file" to read /var/qmail/control/me by default.
Added the option "dns-resolv-conf" to read the nameserver from a file other
than /etc/resolv.conf if necessary. Multiple files can be read, if needed.
Changed all uses of strncpy() to memcpy() because strncpy() will fill the
remainder of the destination buffer with zeroes if the source string is
too short. This is not needed because all strings are being explicitly
terminated after copies anyway.
Added two new parameters to search_file() to allow the matching line data to
be returned to the caller.
Changed process_access() to save the contents of the RELAYCLIENT environment
variable, if set.
Added the timefilter program to the utils folder.
Reversed a small change to spamdyke_log() made 4.0.8 that will prevent buffer
overflows in obscure situations.
Changed is_ip_in_name() to look for more patterns of IP addresses in rDNS
names: 044.033.022.011, 44.033.022.011, 44.33.022.011 and 44.33.22.011.
Thanks to Eduard Svarc for suggesting this one.
Changed the syslog output to include an "encryption:" tag at the end that
shows the current status of TLS/SSL encryption. Thanks to Eric Shubert for
suggesting this one.
Added a "-R" option to smtpdummy so it will reject all recipients.
Completely rewrote find_address() to completely conform to RFC 2822 when
parsing addresses, including quoting, comments, folded whitespace and
all the rest.
Added the option "reject-identical-sender-recipient" to block any messages
where the sender and recipient are the same. Thanks to almost everyone
on the mailing list for suggesting this one.
Changed nihdns_mx() to tolerate MX records that contain IP addresses (illegal)
instead of names.
Fixed Makefile.in to use the CPPFLAGS variable from the "configure" script, if
the user provided it in an environment variable. Thanks to Iavor Stoev for
reporting this one.
Fixed the "configure" script to correctly include header files on FreeBSD 7.0.
Thanks to Andrew Khon for reporting this one.
Added a "-S" flag to sendrecv to prevent it from starting a TLS session when
it sees "STARTTLS".
Improved sendrecv's usage display to document what each option does.
Changed do_spamdyke() to set the stdin and stdout file descriptors to
nonblocking before calling middleman(). This works around a bug in the SSL
library that will block forever waiting for input, even after SSL_pending()
and/or select() has already indicated the socket is ready. Thanks to
Teodor Milkov for identifying this problem more than a year ago and trog for
producing a patch to fix it!
Fixed process_config_file() to reject configuration file lines with
bad/missing characters.
Fixed process_config_file() to print an "unknown option" error message instead
of an "illegal option" message when an unknown option is found in a
configuration file.
Added option "rejection-text-identical-sender-recipient" to set the rejection
message for the identical sender/recipient filter.
Created dnsdummy to simulate a nameserver but exit after a short while for
testing spamdyke's DNS routines.
Converted all DNS-related tests to use dnsdummy and removed all references to
spamdyke.org and silence.org. This will also allow the removal of the
(hundreds of) bogus entries from the spamdyke.org zone file.
Removed the use of getprotobyname() from dns.c and used the defined protocol
values in netinet/in.h.
Changed nihdns_query() to retry DNS queries via TCP if the response received
via UDP has the "truncation" flag set (indicating the answers are too large
for a UDP packet). Thanks to Roland Moelle for suggesting this one.
Added option "dns-tcp" to control if spamdyke will retry DNS queries via TCP.
Added option "dns-spoof" to control if spamdyke will attempt to detect DNS
spoofing and, if so, what it should do about it.
Fixed smtp_filter() to offer and accept SMTP AUTH (when appropriate) even if
the connection is already whitelisted. Thanks to Ratko Rudic for
reporting this one.
-update broken link in FAQ. Thanks: Stefan Kangas.
-strip a few extra problematic (on non-Unix systems) characters when
generating oldmail filenames; backslash was requested by Andy Ross.
If upgrading and your current oldmail file contains any of these
characters:
\ ; < > |
... then rename it, replacing runs of one or more of those characters with
a single "-".
-improve clarity of message logged by getmail when an external program exits
0 but getmail considers it failed because it wrote to stderr. Thanks:
Chris Dennis.
ChangeLog for Dovecot 1.2.12:
- deliver: Don't crash when a message with Auto-submitted: header gets
rejected.
- lib-storage: Fixed header searches to work correctly when there are
multiple headers with same name.
- dict client: Disconnect from dict server after 1 second of idling.
- dict: If process crashed, it wasn't automatically restarted
- dict file: If dict file's group permissions equal world permissions,
don't try to change its gid.
- maildir: Fixed a memory leak when copying with hardlinks.
- maildir: Expunging last messages may have assert-crashed if their
filenames had just changed.
Changelog for Sieve 0.1.17:
- Made sure source code positions for compiler messages are recorded
at start of tokens.
- Fixed a few potential memory leaks in the Sieve compiler and the
spam/virustest extensions.
- Made command line tools return proper exit status upon failure.
from postfix-license, of the same level of importance as changing the
name of the copyright holder, rather than in the nature of the terms.
Everyone believes that postfix is Open Source, and this causes postfix
to fall under DEFAULT_ACCEPTABLE_LICENSES.
ok martti@
* gpglib/list.c: Handle GnuPG 2 --with-colons output format changes.
* gpglib/mimegpgfork.c: GnuPG 2 wants --batch when specifying
passphrase-fd.
* rfc2045/rfc2045reply.c (mkreply): Fix sender's name in the
reply salutation.
* html/en-us/newmsg.html: Ditto.
* Big quota patch (with some changes).
(See the Changelog for the previous releases)
Based on patch(es) from PR pkg/42989 by Brian Candler
* maildrop/mailbot.c (main): Set close-on-exec bit on opened files.
* rfc2045/rfc2045reply.c (mkreply): Fix sender's name in the
reply salutation.
* rfc2045/reformime.sgml: Document the -c option to reformime.
* Big quota patch (with some changes).
(See the Changelog for the previous releases)
Based on patch(es) from PR pkg/42989 by Brian Candler
* tcpd/configure.in: Check if explicit linking with libgpg-error is required.
* imapd.c (main): Fix typo in alert message.
* Big quota patch (with some changes).
* imapd.c (main): Dummy FAM/Gamin initialization, report an error
during login, upon a failure.
* imapd.c (imapenhancedidle): Make FAM error more meaningful.
* pop3dserver.c (main): "disableinsecurepop3" account option disables
non-SSL logins.
* imapd.c (chkdisabled): "disableinsecureimap" account option disables
non-SSL logins.
(See the Changelog for the previous releases)
Based on patch(es) from PR pkg/42989 by Brian Candler
* gpglib/list.c: Handle GnuPG 2 --with-colons output format changes.
* gpglib/mimegpgfork.c: GnuPG 2 wants --batch when specifying passphrase-fd.
* tcpd/configure.in: Check if explicit linking with libgpg-error is required.
* tcpd/libcouriergnutls.c (tls_connect): Fix bad call to
gnutls_server_name_set(). Affects Courier compiled with GnuTLS support.
* maildrop/mailbot.c (main): Set close-on-exec bit on opened files.
* courier/doc/courier.sgml: Move the SPF section to a separate refsect2
to work around misformatting by the manpage stylesheet.
* rfc2045/rfc2045reply.c (mkreply): Fix sender's name in the reply salutation.
* html/en-us/newmsg.html: Ditto.
* rfc2045/reformime.sgml: Document the -c option to reformime.
* imapd.c (main): Fix typo in alert message.
* Big quota patch (with some changes).
(See the Changelog(s) for previous releases)
Based on patch(es) from PR pkg/42989 by Brian Candler.
(missed those and *emacs* the first time round because they pull
in their png dependencies via default-on options; they were included
in the test bulk build though)
implementation (for SMTP-based content filters), improves robustness,
and has updates for changes in system or library interfaces.
* Bugfix (introduced Postfix 2.6) in the XFORWARD implementation,
which sends remote SMTP client attributes through SMTP-based
content filters. The Postfix SMTP client did not skip "unknown"
SMTP client attributes, causing a syntax error when sending
an "unknown" client PORT attribute.
* Robustness: skip LDAP queries with non-ASCII search strings,
instead of failing with a database lookup error.
* Safety: Postfix processes now log a warning when a matchlist
has a #comment at the end of a line (for example mynetworks
or relay_domains).
* Portability: OpenSSL 1.0.0 changes the priority of anonymous
cyphers.
* Portability: Mac OS 10.6.3 requires <arpa/nameser_compat.h>
instead of <nameser8_compat.h>.
* Portability: Berkeley DB 5.x is now supported.
- security fixes
- various bug fixes and small improvements
- new XHTML strict template tree
- add UTF-8 support
- add IPv6 support
- add Raven single sign-on authentication
* installed exipick 20100104.1, adding $max_received_linelength, $data_path,
and $header_path variables; fixed documentation bugs and typos
* installed exipick 20100222.0, added --input-dir and --finput to allow
exipick to access non-standard spools, including the "frozen" queue (Finput)
* Support mysql stored procedures.
* Spacing fix (syntax error) on Makefile directives for NetBSD
* Documentation fix for max_rcpts.
* Fix for unknown responses from Dovecot authenticator.
* Added umask to procmail example.
* installed exipick 20100323.0, fixing doc bug
* CVE-2010-2023 - prevent hardlink attack on sticky mail directory.
* Upgrade PolarSSL files to upstream version 0.12.1.
* Improve log output when DKIM signing operation fails.
* Treat the transport option dkim_domain as a colon separated list, not as
a single string, and sign the message with each element, omitting multiple
occurences of the same signer.
* Null terminate DKIM strings, Null initialise DKIM variable
* dnsdb DNS TXT record bug fix (DKIM-related)
* CVE-2010-2024 - work round race condition on MBX locking.
Regenerate patch for malformed received lines from upstream CVS via:
cvs diff -r RELEASE_0_3_1
Store the patch on ftp.netbsd.org, rather than wrongly trying to put
it in files.
PKGREVISION++.
* A new, more permissive license allows people to distribute versions of
Mail Avenger that are linked with OpenSSL.
* Some minor corrections to manual pages, thanks to Dererk.
Changes 0.8.0:
* Minor changes for compilation under gcc 4.3.0.
* Fsync the destination directory and expliticly update its times when
delivering a message to a maildir.
* cone/sgml/cone-folderindex.sgml (prompt): Mention the inn 2.5.x bug.
* cone/myreferences.H (m): Fix NULL ptr deref.
* cone/cursesmessage.C (nextLink): Fix wild pointer.
* libmail/copymessage.C (fail): Fix segfault if fetching the contents,
of the message being copied, fails.
* cone/cursesmessage.C (reformatAddLine): Clear the entire struct
to suppress warnings from valgrind.
* gcc 4.5 portability fixes.
* tcpd/libcouriergnutls.c (tls_connect): Fix bad call to
gnutls_server_name_set().
Changes 0.82:
* cone/curseseditmessage.C (getMarkedRegion): Portability fix (gcc 4.4.3).
* all: Some code cleanup.
Changes 0.81:
* cone/spellcheckerAspell.C: Do not set "lang" and "encoding" to empty values.
Changes 0.80:
* cone/libmail: Link with libidn if this library is installed. Added
getAddrAddr() and setAddrAddr() methods to mail::emailAddress that
use libidn, if installed, to decode/encode the hostname portion of the
email address.
* The GNU IDN library is now required to build Cone
