+ auth: passdb/userdb dict rewrite to support much more complex
setups. See doc/example-config/dovecot-dict-auth.conf.ext.
The old settings will continue to work.
+ auth: Added userdb result_success/failure/tempfail and skip
settings, similar to passdb's. See
http://wiki2.dovecot.org/UserDatabase
+ imap: Implemented SETQUOTA command for admin user when quota_set is
configured. See http://master.wiki2.dovecot.org/Quota/Configuration
+ quota: Support "*" and "?" wildcards in mailbox names in quota_rules
+ mysql: Added ssl_verify_server_cert=no|yes parameter. This currently
defaults to "no" to make sure nothing breaks, but likely will become
"yes" in Dovecot v2.3.
+ ldap: Added blocking=yes setting to use auth worker processes for
ldap lookups. This is a workaround for now to be able to use multiple
simultaneous LDAP connections.
+ pop3c+dsync performance improvements
- quota-status: quota_grace was ignored
- ldap: Fixed memory leak with auth_bind=yes and without
auth_bind_userdn.
- imap: Don't send HIGHESTMODSEQ anymore on SELECT/EXAMINE when
CONDSTORE/QRESYNC has never before been enabled for the mailbox.
- imap: Fixes to handling mailboxes without permanent modseqs.
(When [NOMODSEQ] is returned by SELECT, mainly with in-memory
indexes.)
- imap: Various fixes to METADATA support.
- stats plugin: Processes that only temporarily dropped privileges
(e.g. indexer-worker) may have been logging errors about not being
able to open /proc/self/io.
Postfix 2.10.3, 2.9.9, and 2.8.17:
* Future proofing against OpenSSL library API changes. When support
for a bug workaround is removed from OpenSSL, the corresponding
named bit in tls_disable_workarounds will be ignored instead
of causing existing Postfix configurations to fail.
All supported releases:
* Future proofing against PCRE library API changes that introduce
the pcre_free_study() function.
* The postconf '-#' option reset prior options instead of adding
to them.
* Correct an error in MULTI_INSTANCE_README Makefile example.
* Correct an error in SASL_README PostgreSQL example.
* Correct a malformed error message in conf/post-install.
This package contains the mutt-kz fork with notmuch support and
another improvements.
The Mutt E-Mail Client by Michael Elkins <me@cs.hmc.edu>
``All mail clients suck. This one just sucks less.'' -me, circa 1995
Mutt is a small but very powerful text-based MIME mail client.
Mutt is highly configurable, and is well suited to the mail power
user with advanced features like key bindings, keyboard macros,
mail threading, color, PGP and S/MIME, POP3, IMAP, various mailbox
formats, regular expression searches and a powerful pattern matching
language for selecting groups of messages.
and tonnerre.
Notmuch is a system for indexing, searching, reading, and tagging
large collections of email messages in maildir or mh format. It uses
the Xapian library to provide fast, full-text search with a convenient
search syntax.
Version 2.11 includes several new features and bug fixes.
Additions include:
Increase encryption of S/MIME encrypted messages.
Alpine requires version 1.0.0c of Openssl to build.
Pico: Improvements in justification of paragraphs: lines that begin with a
quote string, followed by a space were considered individual paragraphs, now
they are considered part of a paragraph. Based on earlier joint work with Jeff
Franklin.
Unix Alpine: Allow local .pinerc file to be a symbolic link.
- Experimental extended support of recognition of UTF-8 in urls based on
information from http://url.spec.whatwg.org.
- Added recognition of ws and wss URIs.
- Add ability to color folder names, directory names, and text in the FOLDER
SCREEN.
- Add the ability to color any token used in the display of the INDEX SCREEN.
- New option preserve-original-fields that adds the ability to preserve To: and
Cc: fields when replying to a message, as specified by original sender.
- Add a _SILENT_ token to the list of tokens for a display filter, so that
Alpine will not redraw the screen when it is unnecessary.
- Added Quota subcommands for printing, forwarding, saving, etc.
Bugs that have been addressed include:
- Crash when a non-compliant SMTP server closes a connection without a QUIT
command.
- Crash when resizing the screen in a configuration screen.
- Do not bail out during a tcp timeout, instead close connection and avoid
crash.
- Do not use a shell to open a browser.
- Configure script did not test for crypto or pam libraries.
- Configure script attempted to build web component, even if header file tcl.h
was not present.
- Change Cygwin directory separator to "/".
- Alpine could set List- headers, contrary to RFC 2369.
This needs more work but at least allows the package to be built. However,
it segfaults when you try to compose a message. It looks like there are
issues with format strings.
Changelog:
FIXED
Security fixes can be found here
FIXED
Fixed an issue where long messages with multiple signatures could end up unreadable (bug 929006)
FIXED
Fixed an issue where editing account settings was not possible in some non-standard configurations of local folder set-ups (bug 921371)
Fixed in Thunderbird 24.2
MFSA 2013-117 Mis-issued ANSSI/DCSSI certificate
MFSA 2013-116 JPEG information leak
MFSA 2013-115 GetElementIC typed array stubs can be generated outside observed typesets
MFSA 2013-114 Use-after-free in synthetic mouse movement
MFSA 2013-113 Trust settings for built-in roots ignored during EV certificate validation
MFSA 2013-111 Segmentation violation when replacing ordered list elements
MFSA 2013-109 Use-after-free during Table Editing
MFSA 2013-108 Use-after-free in event listeners
MFSA 2013-104 Miscellaneous memory safety hazards (rv:26.0 / rv:24.2)
NOTE: During the development cycle for this release, SourceForge
changed their bug numbering system. Bug numbers are recorded
here as they were generated by the current system at the time
they were filed. The older ones (prefixed "SF") have since
been renumbered or may no longer be in the system.
Feature request #169: Discontinue libxml2 support in the reputation
code.
Feature request #174: Drop internal libstrl implementation.
Feature request #175: Discontinue support for libdkimrep.
Feature request #176: Update to the final REPUTE RFCs.
Activate _FFR_REDIRECT.
Fix bug #178: Add support for "dmarc" as an authentication method
(though it hasn't been formally registered yet) and fix
a minor Authentication-Results parsing problem.
Fix bug #179: Correct handling of SignatureTTL.
Fix bug #180: Drain results object when doing a DB walk of a postgresql
table.
Fix bug #182: Add an Authentication-Results header field even for
messages with no valid From: field or a fatal structural
violation.
Teach dkimf_db_walk() about LDAP soft starting, and don't escape the
forced "*" when walking. Also handle incorrect attribute
counts without causing an assertion failure.
Call dkimf_config_free() on shutdown so that all DBs get properly
closed and everything gets deallocated.
LIBOPENDKIM: Fix bug #168: Report an unresolved CNAME for ADSP records
as simply absent.
LIBOPENDKIM: Add DKIM_LIBFLAGS_REQUESTREPORTS to request that an
"r=y" tag be added to signatures, per RFC6651.
TOOLS: Fix boundary condition in opendkim-testmsg.
DOCS: Feature request #168: Improve documentation of signature
verification failure debugging features.
DOCS: Feature request #172: Describe socket selection procedure in
detail, and mention selinux command to get set up.
source package for providing DMARC report generation and policy enforcement
services. It includes a library for handling DMARC record parsing,
a database schema and tools for aggregating and processing transaction
history to produce DMARC reports, and a filter that ties it all together
with an MTA using the milter protocol.
Fixed in Thunderbird 24.1.1
MFSA 2013-103 Miscellaneous Network Security Services (NSS) vulnerabilities
TODO: put sdk common files into their own PLIST in order to simplify updates to
PLIST.enigmail and PLIST.lightning.
+ Full text search indexing can now be done automatically after
saving/copying mails by setting plugin { fts_autoindex=yes }
+ replicator: Added replication_dsync_parameters setting to pass
"doveadm sync" parameters (for controlling what to replicate).
+ Added mail-filter plugin
+ Added liblzma/xz support (zlib_save=xz)
- v2.2.8's improved cache file handling exposed several old bugs
related to fetching mail headers.
- v2.2.7's iostream handling changes were causing some connections
to be disconnected before flushing their output (e.g. POP3 logout
message wasn't being sent)
+ Mail cache lookups work for the mail being saved. This improves
performance by avoiding the need to parse the mail multiple times
when using some plugins (e.g. mail_log).
+ Mail cache works for recently cached data also with in-memory
indexes.
+ imapc: Many performance improvements, especially when working with
dsync. Also added imapc_feature=fetch-headers which allows using
FETCH BODY.PEEK[HEADER.FIELDS (..)] to avoid reading the entire
header.
+ mail_location = ..:FULLDIRNAME=dbox-Mails is the same as
:DIRNAME=dbox-Mails, but it will also be used for
:INDEX and :CONTROL directories. (It should have worked this way
from the beginning, but can't be changed anymore without breaking
existing installations).
- Fixed infinite loop in message parsing if message ends with
"--boundary" and CR (without LF). Messages saved via SMTP/LMTP can't
trigger this, because messages must end with an "LF.". A user could
trigger this for him/herself though.
- lmtp: Client was sometimes disconnected before all the output was
sent to it.
- imap_zlib plugin caused crashes during client disconnection in
v2.2.7
- replicator: Database wasn't being exported to disk every 15 minutes
as it should have. Instead it was being imported, causing "doveadm
replicator remove" commands to not work very well.
