Special permissions for filterctl and courierfilter have to be applied
in an install script at installation time.
Actions for the post-install target forgot to propagate DESTDIR
appropriately as a make parameter.
to trigger/signal a rebuild for the transition 5.8.8 -> 5.10.0.
The list of packages is computed by finding all packages which end
up having either of PERL5_USE_PACKLIST, BUILDLINK_API_DEPENDS.perl,
or PERL5_PACKLIST defined in their make setup (tested via
"make show-vars VARNAMES=...").
"courier-gnutls" option/toggle that allows using GNU TLS instead of
defaulting to OpenSSL.
Bump the PKGREVISION of couriertcpd, courier-imap, and courier-mta to 1.
include:
+ Add full DESTDIR support.
+ Don't create empty, unused directories under
${PREFIX}/share/examples/courier.
+ Teach mkesmtpdcert generate certificates and keys using the either
GNUTLS or OpenSSL tools.
* Fix a memory stomp in local delivery agent.
* Get rid of the hard 30 minute timeout in sendmail(8).
* Rewrite input processing for submit(8) process to use non-blocking
I/O to read standard input. When the message source is local (or
dsn), get rid of the hard 30 minute timeout, and poll stdin with a
5 minute poll() timeout, at which point the timestamps on all open
control and data files are pinged, to keep courierd from purging
them based on their old timestamp. Continue to use a hard timeout
for all non-local mail.
* Major code cleanup.
* "User unknown" reports complete local address, including extensions.
* Only run courierfilters after all control files are closed.
* "opt BOFHHEADERLIMIT" replaces hardcoded limit of 100,000 bytes of
headers per message.
* Reject <@domain.com> for a recipient's address.
* Tolerate newline-less responses from the filter.
* Document that sysexit 100 from .courier is a permanent failure.
* "courier show all" and "courier clear all" commands for managing
backscatter suppression list.
not be available. Instead, use (OPEN_MAX - 1) which uses the same
"pick a high number" strategy as choosing "99", but is more likely to
be available. This allows users with a soft limit of 64 open files
to run courierfilter and courierldapaliasd.
Bump the following PKGREVISIONs:
mail/courier-mta --> 11
meta-pkgs/courier --> 7
net/couriertcpd --> 3
${COURIER_STATEDIR}/tmp, which defaults to /var/courier/tmp. This
allows some of the servers which drop root privileges too soon to still
write the pid file into a courier-owned directory instead of the
root-owned /var/run.
In mail/courier-mta, de-list ${COURIER_STATEDIR}/webmlm from the list
of owned directories. In fact, webmlmd expects that path to be a
socket file, and breaks horribly if the "webmlm" directory is present
instead.
Bump PKGREVISIONs for the following packages:
mail/courier-imap --> 2
mail/courier-mta --> 9
mail/sqwebmail --> 4
meta-pkgs/courier --> 5
generated permissions.dat file used to create RPMs by the author.
Bump the PKGREVISIONs:
meta-pkg/courier --> 4
mail/courier-mta --> 8
mail/sqwebmail --> 3
mail/courier-mta. Modify mail/courier-imap to build regardless of
the platforms IPv6 support and update meta-pkg/courier to the latest
versions of the Courier mail server suite. Bump the PKGREVISIONs
of the following packages:
mail/courier-mta --> 7
meta-pkgs/courier --> 3
net/couriertcpd --> 2
This fixes PR pkg/37013 by Aleksej Saushev.
a new TLS_PROTOCOL selection "SSL23" that allows for trying to negotiate
initially with SSLv3 but falling back to SSLv2:
courier/tcpd/libcouriertls.c:1.21
This allows Courier to interoperate with older mail servers and clients
that are still using SSLv2 when advertising or attempting to use
advertised STARTTLS capabilities.
This change modifies the following packages and bumps their PKGREVISIONs:
mail/courier-imap to 1.
mail/courier-mta to 6.
meta-pkgs/courier to 2.
net/couriertcpd to 1.
+ Drop the uucp module from the default option set.
+ Patch the webmlm sources to not use "stdin" and "stdout" as function or
member names as they can be macros according to the C standards.
* webadmin: Remove check that prevents multiple virtual domains to
be aliased to the same account.
* webmlmd: new CGI module that can manage a Courier mailing list
created with couriermlm.
* Rewrite and code cleanup of couriermlm.
* Use domain name, not MX hostname, for looking up authenticated
SMTP passwords in esmtpauthclient
into the Makefiles of the packages that include it:
(1) PKGNAME and PKG_SUPPORTED_OPTIONS clearly no longer need to be
defined since the only code that used it in Makefile.common was
removed.
(2) Package Makefiles need to properly define PKG_OPTIONS_VAR and
PKG_SUPPORTED_OPTIONS prior to including bsd.options.mk. Set
them to the appropriate values to match the orginal names from
before the botched migration.
the owner of all installed files is a non-root user. This change
affects most packages that require special users or groups by making
them use the specified unprivileged user and group instead.
(1) Add two new variables PKG_GROUPS_VARS and PKG_USERS_VARS to
unprivileged.mk. These two variables are lists of other bmake
variables that define package-specific users and groups. Packages
that have user-settable variables for users and groups, e.g. apache
and APACHE_{USER,GROUP}, courier-mta and COURIER_{USER,GROUP},
etc., should list these variables in PKG_USERS_VARS and PKG_GROUPS_VARS
so that unprivileged.mk can know to set them to ${UNPRIVILEGED_USER}
and ${UNPRIVILEGED_GROUP}.
(2) Modify packages to use PKG_GROUPS_VARS and PKG_USERS_VARS.
(1) they are more likely to do the right thing if the user sets
rc_fast_and_loose; and
(2) they pre-create any necessary directories prior to start the
respective services.
Also, fix the path to the courierwebadmin binary in SPECIAL_PERMS for the
courier-mta package.
Bump the PKGREVISION.
SSL libraries to build couriertls, which encapsulates the logic for
handling SSL connections for Courier services. Drop the dependency
on openssl from both courier-imap and courier-mta, which only need
the "openssl" tool instead. Bump the PKGREVISIONs for all three
packages due to the changed dependencies. Problem noted by Ondrej
Tuma in private email.
* [SECURITY] Fix bug in encoding of usernames that contain '='. This
fixes the security advisories noted here:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2659http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=368834http://secunia.com/advisories/20519/
* Implemented "Purge" option for mail filters.
* Invoke Courier filters in alphabetical order, and uses 050 exit code
to accept a message without running the remaining filters, which gets
converted to a 250 ESMTP code.
* Fix improper parsing of ident/pfix tokens in SPF.
* New command line tool "aliaslookup" to look up mail aliases.
* Added support for the koi8-u character set.
courier-0.53.1 as mail/courier-mta.
The Courier mail transfer agent (MTA) is a modular multiprotocol mail
server that's designed to strike a balance between reasonable performance,
flexibility and features.
This package differs from traditional courier-mta packages in that
the webmail, imap/pop3, and maildrop components are not included
because they are supplied by the mail/sqwebmail, mail/courier-imap,
and mail/maildrop packages, respectively. When Courier-MTA is installed
together with Courier-IMAP and SqWebMail, they form an integrated
mail/groupware server suite that provides ESMTP, IMAP, POP3, webmail,
and mailing list services within a single, consistent, framework. A
web-based administration and configuration tool is included for
comprehensive configuration of the entire Courier software suite.
Many thanks to Yarema <yds@CoolRat.org> whose Courier port for FreeBSD
was an invaluable reference.
