New in this release:
~~~~~~~~~~~~~~~~~~~~
* added Tags feature
Tags are arbitrary labels that can be applied to messages. It is
possible to create, edit, remove Tags; apply them to mails;
filter on Tags or Tag presence; apply or unset Tags via Filtering
actions; reference Tags in reply Templates.
* Threads can now be sorted by most recent message
/View/Sort/By thread date
* Added "/View/Show or Hide/Column headers"
* Added 'watch thread' feature
* Enabled the running of folder Processing rules on demand
* Added options to stop/enable writing logs to disc, see Logging
page of preferences
* IMAP and News: Implement age-based caching: allow the specifying
of a threshold for the offline synchronisation feature, and whether
old cached bodies should be removed. Accessible from the Folder
Properties.
* IMAP: Made multiple copy, (in the same IMAP account), faster by
matching source/destination message UIDs.
* LDAP: Ability to edit all Person attributes
* Nicer layout of the message part icons
* Speed up and clean up rendering of larger msgs
* Use progress bar when sending messages
* Made mainwindow's /Help/Manual point to the remote copy if the
local copy doesn't exist
* Replaced some deprecated widgets
* Enabled changing the emphasis color used to highlight the
newsreader/x-mailer header value when it matches our preferred
mail agent, (hidden pref 'emphasis_color' added to clawsrc).
* tools/mew2claws-mail.pl
Added new script that imports a Mew address book
* tools/popfile-link.sh
Added a new script that will open selected messages in
POPFile control center, in order to change the message
status.
* Updated the manual
* Check that Dillo's installed when loading the Dillo Browser
plugin
* Maemo improvements:
o Automatically choose the correct application
to open parts
o Better way to notify of new mails
o Destroy messageview after trashing mail
o Simplified layout
o Better toolbars, removal of CTree headers
o Add a specific icon to go back to folder list
o Improvements to the Wizard, About and icon legend dialogues
o add an easy way to store data (mails and IMAP/NNTP caches)
on one of the SD cards, and protect against unmounts if
needed
o plug the online/offline system into maemo's interfaces to
have Claws automatically switch according to the system
status (on IT OS 2007)
o use HildonBanners to display status messages
o force layout to be Small screen
o put the progress bar in the toolbar
* Updated Brazilian Portuguese, Bulgarian, Catalan, Finnish, French,
German, Hungarian, Italian, Polish, Russian, Simplified Chinese and
Slovak translations.
Plus bug fixes
a new TLS_PROTOCOL selection "SSL23" that allows for trying to negotiate
initially with SSLv3 but falling back to SSLv2:
courier/tcpd/libcouriertls.c:1.21
This allows Courier to interoperate with older mail servers and clients
that are still using SSLv2 when advertising or attempting to use
advertised STARTTLS capabilities.
This change modifies the following packages and bumps their PKGREVISIONs:
mail/courier-imap to 1.
mail/courier-mta to 6.
meta-pkgs/courier to 2.
net/couriertcpd to 1.
- When -inet6, explicitly set HAVE_IPV6=NO to avoid use of any inet6 APIs
Note: For entertainment purposes build a NetBSD distribution with
'MKINET=no' and see what breaks in pkgsrc
that called openldap's ldapsearch binary into a standalone binary. We
no longer need to copy "ldapsearch" into ${PKG_SYSCONFDIR} so that the
user can edit it.
Bump the PKGREVISION to 2.
This library was forked from CMS Sieve, it had existed here before.
Changes from fork:
libSieve 2.2.5
--------------
- Allowed CFLAGS to pass through Makefile.am
(thanks to Bernard Johnson).
- Use # instead of __STRING for assertion stringification.
- Fixed off-by-one when reallocing space for repeated headers
(thanks to Petri Laine).
libSieve 2.2.4
--------------
- Improved several test scripts.
- Fixed a memory leak in header parsing.
- Fixed a memory leak in comparator lookup.
- Accepted patch from Steffen Schuetz to respect :from in vacation action.
libSieve 2.2.3
--------------
- Numeric relational comparators were backwards.
libSieve 2.2.2
--------------
- Added more test scripts.
- Added support for RFC 3431 Relational comparators.
- Fixed segfault when parsing group syntax with empty address list.
libSieve 2.2.1
--------------
- Removed accidental dependency on Check.
- Added exception handling system.
- Added test runner scripts to sv_test.
libSieve 2.2.0
--------------
- Updated top-level README.
- Fixed address test not working.
- Fixed innocuous yet annoying GCC 4 warnings.
libSieve 2.1.13
---------------
- Fixed capabilities missingspaces.
- Fixed alloca.h in vasnprintf for FreeBSD.
libSieve 2.1.12
---------------
- Fixed namespace issue with vasnprintf.
libSieve 2.1.11
---------------
- Minor fixes to build with flex 2.5.33.
- Updated to Vacation draft 6.
- Updated to imap4flags.
- Dropped support for imapflags.
- Added callback for subaddress rather than
using a hardcoded user+mailbox format.
- Added a callback for debug messages.
- Regex is always built in now.
- Fixed multiline "text: string ." blocks.
libSieve 2.1.10
--------------
- Fixed sieve2_listextensions.
- Fixed segfault when client returns null
pointers from the getenvelope callback.
- Improved handling of extension require's.
- Fixed segfault when parsing zero length address.
libSieve 2.1.9
--------------
- Fixed subaddress, getenvelope and vacation.
- Added additional debugging messages.
- Added new and updated draft rfc's.
libSieve 2.1.8
--------------
- Created a testsuite of scripts and messages
to exercise RFC and Draft comformance.
- Fixed a memory allocation issue that prevented
the library from being used again after sieve2_free
had been called.
libSieve 2.1.7
--------------
- Rewrote the API again. I finally like it!
- Settled on the LGPL for all of my new code.
- Replaced the RSA MD5 implementation with
a public domain version.
- Documentation updated for the new API.
libSieve 2.1.6
--------------
- Added a set of error-retrieval functions.
libSieve 2.1.5
--------------
(formerly libsieve 2.2.0_pre3)
- CFLAGS now includes -Wall and compiles very
cleanly. Messages from lex/yacc are benign.
- Namespace cleanups: internal global functions
prefixed with "libsieve_" for consistency.
- Local regex library, borrowed from GNU glibc
2.3.2. Used under LGPL license version 2.1.
- Compiles under Win32 with Visual C++, with
many thanks to Brandon Knitter.
libSieve 2.1.4
--------------
(formerly libsieve 2.2.0_pre1)
- Sieve 2 API has begun. More changes should
be expected during the 2.1 series.
- All later-CMU code removed and/or replaced;
original licensing is now entirely old-CMU
style and augmented by the GNU GPL as it is
placed on all new code and applies to the
distribution as a whole from here forward.
- "Poor man's parsers" for RFC 2/822 addresses
and message headers replaced with lex/yacc.
- Extensive Valgrinding performed to identify
memory leaks; no known leaks remain.
- Many more changes, amounting to perhaps a
70% rewrite of all code.
libSieve 2.1.3
--------------
- Accepted patches from Timo Sirainen:
- Added function xstrconcat
- Changed strdup to strndup
- Changed strcpy to xstrcpy
- Changed uglies to xstrconcat
- Rebuild .y and .l in Makefile.am
- Changed int to size_t where applicable
- Added explicit casting where applicable
- Accepted patches from Oliver Tappe:
- Fixed examples for the web site
- Removed useless headers
- Now builds on BeOS
- Cleaned up lots of K&R style function declarations
libSieve 2.1.2
--------------
- Changed `timestamp` to $timestamp in configure scripts.
- Added missing autoconf and libtool scripts.
- Fixed a typo in index.html
libSieve 2.1.1
--------------
- First public release of the libSieve distribution.
- com_err library removed.
- Conversion to GNU autotools for the build process.
libSieve 2.1.0
--------------
- Forked from CMU Sieve 2.1.
- SourceForge project site and a new web site and CVS tree and prepared.
- Dependencies on libCyrus trimmed to a bare minimum.
* Assume a MIME message if Content-Type: header exists, even if
Mime-Version: header doesn't.
- IMAP: CREATE ns_prefix/box/ didn't work right when namespace prefix
existed.
- deliver: plugin {} settings were overriding settings from userdb.
- mbox: Expunging the first message might not have worked always
- PostgreSQL: If we can't connect to server, timeout queries after
a while instead of trying forever.
- Solaris: sendfile() support was broken and could have caused
100% CPU usage and the connection hanging.
And one more thing I forgot from NEWS file:
- IMAP: Fixed infinite loop in some situations
Based on patch provided by L. Schmidt in PR 36939.
Version 1.4.13:
- Added the set_sendmail.sh script by Gautam Iyer to the new scripts
subdirectory.
- Added the msmtpqueue scripts to the new scripts subdirectory.
- Make the search of an account by the envelope from address case insensitive.
Problem reported and fixed by Brandon Philips.
- Update the license of the source code to GPLv3 or later, and change the
license of the documentation to the GFDLv1.2 or later.
- Gnulib update to 2007-07-15.
Version 1.4.12:
- Handle the special envelope from address MAILER-DAEMON correctly: send
"MAIL FROM:<>" instead of "MAIL FROM:<MAILER-DAEMON>". Reported by
Andre Egerer.
- Improve the documentation for TLS vs. SSL. Thanks to Carlos Martin Nieto for
suggestions.
- Add documentation on how to find the right CA certificate for
tls_trust_file. Thanks to Bryan Kam for suggestions.
Version 1.4.11:
- Require either tls_trust_file or tls_certcheck=off for TLS sessions, so that
msmtp is not silently vulnerable to man-in-the-middle attacks.
- Do not use NTLM authentication automatically anymore unless TLS is active.
NTLM is not an open standard and must therefore be considered broken.
- Gnulib update 2007-04-07.
- Move build-aux files to separate directory build-aux.
- Provide a hstrerror() function for systems that lack getaddrinfo(), so that
gethostbyname() must be used instead, and do not provide hstrerror()
themselves. Needed for Solaris 2.6. Reported and tested by Chris Green.
Version 1.4.10:
- Updated copyright info to 2007.
- Gnulib update to 2007-01-10.
- From mpop: Switch to autoconf-2.61 and automake-1.10, to avoid problems with
configure trying to run "sh /usr/bin/install" where /usr/bin/install is not a
shell script on NetBSD. Reported by Jeremy C. Reed.
- From mpop: Remove the obsolete "extern int errno;" declaration. It does not
conform to POSIX and causes trouble. Thanks to Jeremy C. Reed for the patch.
- Added AC_SYS_LARGEFILE to configure.ac, for large file support. Removed the
unnecessary AC_C_CONST and AC_HEADER_STDC.
Version 1.4.9:
- Remove gnulib module nanosleep. This fixes more build problems.
Version 1.4.8:
- Gnulib update. There are no local changes anymore.
- Do not use nanosleep() on W32 anymore. Use Sleep() instead.
Do not use nanosleep() on DJGPP anymore. Use usleep() instead.
- Update gettext files to gettext-0.16.
- Improved the configure check for the OpenSSL libraries. This fixes a build
failure on Mac OS X. Reported by Michael Williams, who also tested the fix.
Thanks!
- Fix a bug in string_replace(). This bug did not affect msmtp.
- Gnulib update. Removes the initialization of pkgdata_DATA from
gnulib/Makefile.am, thanks to a fix by Bruno Haible. 'make install' will no
longer create an empty directory $(pkgdatadir) anymore (the default for
$(pkgdatadir) is /usr/local/share/msmtp). Reported by Roman Bogorodskiy.
Version 1.4.7:
- Gnulib update. The nanosleep module still differs from the official gnulib
source.
- Disable SSLv2 because it has known flaws. This only affects the OpenSSL
version because GNU TLS does not implement SSLv2.
- Add new command tls_force_sslv3 and option --tls-force-sslv3 to force
TLS/SSL version SSLv3. This is needed to use SSL with some old and broken
servers. Closes Debian bug #374610, reported by Marko Makela. Thanks to
Julien Louis for tracking this problem down and testing the patch.
- Changed detection of libgnutls so that it works with version >= 1.2.0 again.
- Improvements for the build system:
- Quote arguments of M4 macros.
- Use AC_LIB_HAVE_LINKFLAGS to detect libraries. Do not use *-config scripts
or pkg-config. This avoids problems that are reported in this thread:
http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/
1610/focus=1610 .
- Use HAVE_LIB* macros instead of USE_* or others, for consistency.
- Link with LIB_NANOSLEEP as determined by the gnulib nanosleep module. This
fixes build problems on Solaris. Reported by Daniel Rechsteiner. Thanks!
- Update to gettext-0.15.
- W32/DJGPP: Assure that all files are opened in binary mode. This seems to
also apply to socket connections, therefore it is necessary.
- Fix error message typo in check_account().
- DJGPP port: include missing header <fcntl.h> in msmtp.c
- Sync from mpop:
- Adapt --version output to the latest GNU conventions.
- Clean up #includes.
- Renamed os_env.[ch] to tools.[ch].
- Replace __MINGW__ with W32_NATIVE in os_env.h.
Version 1.4.6:
- Updated README.
- Minor documentation improvements.
- Do not set a default port for LMTP, because none is officially defined.
- Update gettext files to gettext-0.14.5.
- Another gnulib update, with the additional sys_select module and a patch to
the nanosleep module. See the mailing list gnulib-bugs for these patches
that are not (yet?) part of the official gnulib.
- Gnulib update.
- Improved --help text output.
- Improved error messages when logging to a logfile fails.
- Sync from mpop:
- Enable network connection timeouts on DJGPP/Watt32. Thanks to Gisle Vanem
for pointing out that this works just like it does with UNIX. The
DJGPP/Watt32 port is now on par with the UNIX port.
- Update README.dos.
- Don't check configuration file permissions on Cygwin.
- Renamed README.win32 to README.w32. Updated README.w32 and README.dos.
- Replace '#ifdef _WIN32' with '#ifdef W32_NATIVE', where W32_NATIVE is
defined in config.h if the following is true:
'#if (defined _WIN32 || defined __WIN32__) && !defined __CYGWIN__'.
The reason is that Cygwin defines _WIN32 nowadays, but we want the UNIX API
on that platform.
- Include config.h in list.c.
- Fix warnings emitted for configure.ac by autoreconf.
- lock_file(): If another process holds a lock on the file, then wait 1/10
second instead of 1 second before the next try.
- Gnulib update. Added nanosleep module.
- Improve error handling for file locking: differentiate between timeouts and
other errors.
- Improve checks for libraries in configure.ac. The ./configure options have
changed! See INSTALL for more info.
- Improve --version output.
- Add (optional) support for Internationalized Domain Names (IDN) via
GNU Libidn.
- Initialize TLS only if pop3_connect() succeeded.
- Move SSL_LIBS and GSASL_LIBS into LIBS; do not put them in Makefile.am.
- Fix memory leak in GNU SASL variant of pop3_auth().
(This change applies to smtp_auth(), GNU SASL variant.)
- Fix memory leak in GnuTLS variant of tls_cert_info_get().
- pop3_auth(), GNU SASL variant:
- Check if authentication data is complete before trying to start
authentication.
- Never call password_callback() when no user name is given.
(This change applies to smtp_auth(), GNU SASL variant.)
- Prevent a double free if an invalid argument to the auth command is given.
- Prevent a double free if an invalid argument to --auth is given.
- Replace crypto.[ch] with gnulib hmac-md5 module.
- Gnulib update. Add hmac-md5 module.
- net.c, tls.c: allow all network operations to be interrupted with CTRL+C,
and print an appropriate error message in this case.
(This change does not affect msmtp.)
- tls.c: if an error occurs, clean up *after* building the error message. This
fixes a potential segfault in the OpenSSL version of tls_start().
- net_open_socket(): don't let net_close_socket() clobber errno.
- net_open_socket(): print correct error message if getaddrinfo() returns
EAI_SYSTEM.
- Fixed comment in net.h.
- net_get_canonical_hostname(): Only call freeaddrinfo() if getaddrinfo()
succeeded. Reported and fixed by Raul Nunez de Arenas Coronado.
(This change does not affect msmtp.)
- Update copyright message.
- Gnulib update.
- Minor Win32 portability/cross-compilation updates.
- configure.ac: Rely on PKG_CHECK_MODULES to find GSASL, do not fall back to
manual detection, to prevent using an incompatible version of GSASL.
Problem reported by Jari Aalto.
- Gnulibs sysexit_.h now defines EX_OK; there's no need to use a locally
modified version anymore.
- Use a locally modified version of gnulibs sysexit_.h that defines EX_OK to
0, since the gnulib maintainers apparently won't fix this file.
Include the sysexits.h header after all other system headers to override
previous definitions of EX_OK on systems that use EX_OK for other purposes.
This is needed on Interix, reported by Ben Collver.
and to support the "inet6" option instead.
Remaining usage of USE_INET6 was solely for the benefit of the scripts
that generate the README.html files. Replace:
BUILD_DEFS+= USE_INET6
with
BUILD_DEFS+= IPV6_READY
and teach the README-generation tools to look for that instead.
This nukes USE_INET6 from pkgsrc proper. We leave a tiny bit of code
to continue to support USE_INET6 for pkgsrc-wip until it has been nuked
from there as well.
(CVE-2007-2958)
other changes:
-The potential crash bug in address completion was fixed
-The signature separator '--' is not joined on line wrapping now
* 2007-08-02: version 1.30
- implemented --listen-queue-size option (you usually don't need to set it
except for big sites).
- small fix to the 'native' syslogging implemented in 1.29
* 2007-07-23: version 1.29
- workaround for a possible crash with Sys::Syslog < 0.15 when syslog
messages were generated during syslog file rotation
- use the 'native' logging socket with Sys::Syslog >= 0.15 (Philipp Koller)
* 2007-06-21: version 1.28
- improved logging (postgrey is now more verbose, use the new --quiet
option if that bothers you)
- improved Exim support (see Debian bug #380257)
- workaround for a bug in Exchange dealing with temporary failures
(use DSN code 4.2.0 instead of the default 4.7.1)
- added 'policy-test' script for testing postgrey's performance or pre-seeding
the database
- fix logging of delayed, unresolveable clients in syslog (Andreas Metzler)
- more descriptive error message on DB failure (Adrian von Bidder)
- updated whitelist
- new homepage: http://postgrey.schweikert.ch/
v2.11.0 08/28/07
* fix "can't find message" error with new Yahoo internals
* replace html character entities in msg summaries
v2.10.9 07/28/07
* add safe-download option (Thanks Riley)
* add support for .dk Danish Yahoo (thanks Sune Jorgensen)
* better parsing of e-mail addresses in From_ line (thanks Eric Peterson)
* patch for retrieving multiple folders (thanks sniper11)
v2.10.8 06/08/07
* fix "can't find message" bug
v2.10.7 02/24/07
* fix an off-by-one bug in marking messages unread
* fix bug with msgs wrongly marked read (thanks Paul Marcos)
* fix EmptyTrashBefore / EmptyBulk bug (thanks Sridhar Boovaraghavan)
* fix quota parsing,but only when emptytrashbefore or emptybulk is chosen :(
* fix parsing of sender when they are in contact list
* mark messages unread in spool if they are (thanks Martin Fick)
* fix for new de no-messages message (thanks Ulrich Brandle)
without an explicity "-d" option. Maildrop was breaking because it
was not properly finding the user's home directory (in order to locate
~/.maildroprc). This breakage occurred sometime shortly before maildrop
was updated to 2.0.2 when I tried to make a single maildrop package
usable by both courier-mta and other mailers.
This fixes PR pkg/34275 by Greg Kerr.
Bump the PKGREVISION to 1.
2.185 2006-02-05
- no code changes, only test changes
- use UNLINK not CLEANUP for File::Temp::tempfile
2.184 2006-02-05
- no code changes, only test changes
- create tempdirs under t, in case TMPDIR or /tmp is noexec
(spotted by MST)
2.183 2006-12-14
- fix test skip error on Win32; claimed to skip 1, then skipped 2
thanks for the test report, Steffen Mueller!
2.182 2006-12-07
- skip/fix some tests on Win32
- move to/from finding to another method in ::SMTP
2.181 2006-11-25
- remove dependency on Class::Accessor::Fast, which broke its $VERSION
2.180 2006-08-23
- add support for TLS SMTP, based on a patch by Fayland Lam
2.171 2006-07-29
- improve tests and contents, giving up on Test::Without::Module
2.17 2006-07-28
- skip tests for optional functionality (bug 20740, eloy)
- fix typo in POD (thanks J. Cheetham!)
2.16 2006-07-24
- the without.t test no longer breaks if Test::Without::Module isn't there
2.15 2006-07-21
- append, to not print, to IO::All objects
- added simple test for message modifier (response to bug from ABH)
- use File::Spec->path for path, not ENV{PATH} (bug 20109, Simon Flack)
- use Symbol.pm, not global filehandles
- undef is never a valid message
- remove use warnings
- plan all tests
- improve testing
- add pod tests
2.11 2006-07-05
- fixed bug introduced in 2.10; message modifiers were broken
thanks ABH
2.10 2006-07-03
- improve portability of sendmail.t (rjbs)
- fix bugs with plugins outside Email::Send:: (rjbs)
- allow objects as mailers (rjbs)
- clarify documentation (rjbs)
- improve backwards compat with Email::Send 1 (see no-import.t) (rjbs)
Pkgsrc changes:
- Added security/gnupg as a required package. Without it, sa-update does not
work.
- Added requirement for p5-INET6 which may be needed for IPv6 nameservers.
Until now, this only worked because p5-Net-DNS already pulled in this
package.
- New option "inet6" (enabled by default) for switching off the requirement
for p5-INET6.
- Got rid of some backslashes in options.mk
- patch-ba and patch-bc correct discrepancies between the man page
and the code. Additionally, they adapt hard-coded paths to the actual
installation. Submitted upstream.
Relevant changes since version 3.2.1:
=====================================
3.2.3 is a major bug-fix release. Summary of changes:
- bug 5574: fix new setuid code to work with perl 5.6.1, and to support DCC and
Pyzor in all releases of perl
- bug 5107: change default 'user_scores_ldap_username' to be the null string,
allowing anonymous binding; fix 'schema' syntax error in LDAP config support
- zeroing an 'eval' rule's score did not stop it running. fix, thanks to
Richard Birkett <richard+spamassassin at musicbox.net>
- bug 5571: allow for new message ID format we have seen from Vista or Windows
2003 Server MAPI to avoid false positives
- bug 5397: RDNS_DYNAMIC should never fire on a PTR with 'static' in it; thanks
to Martin Blapp <mbr at freebsd.org>. bug 5563: RDNS_DYNAMIC rules use
order-dependent fields where it is unsafe to depend on this, fix. bug 5564:
__RDNS_DYNAMIC_IPADDR does not hit all of its test patterns, fix.
- bug 5475: fix FORGED_MUA_AOL_FROM to allow <*@{aol,cs}.*> addresses instead
of just <*@{aol,cs}.com>
3.2.2 is a minor bug-fix release. Summary of changes:
- bug 5548: Certain mail input can take a long time to scan with 100% CPU
utilisation, due to backtracking in a rule's regexp. fix
- bugs 5510, 5518, 5529: fix 'make test' when running as root, needed for CPAN
- bug 5419: kill -HUP of pidof spamd causes the ps name to change from spamd
to perl. fixed
- bug 5535: 'make test' errors in Windows caused by nonportable use of
getpwuid
- bug 5462: multiple DNS records for a host name should allow use of spamd -H
for load balancing installs to work
- bugs 5509, 5511: fix network lookup timeouts, where lookups were being lost
once a timeout was hit; also fix code to match documentation on
rbl_timeout's scaling and minimum duration of 1 second; and attempt to
collect already-received DNS responses when the timeout is reached; improve
related debugging output. Thanks to Mark Martinec
- bugs 5412, 5478, 5522: Fix problems using the spamc -x option with certain
other options; 'spamc -x -R' always returned 0, instead of the exit code, on
error. Bug 5478: in addition, 'spamc -x -e /command' would still run the
command, even if errors meant that the filtered text would be unavailable,
which contradicted -x.
- bug 5445: body eval tests defined in user_rules cause ugly 'Subroutine
_eval_tests_type11_prineg400_set3 redefined' warnings
- bug 5355: add in new entries for RegistrarBoundaries
- bug 5515: libsslspamc.so & libsslspamc.so can not build without -fPIC, but
we were picking up the wrong CFLAGS to do this.
- bug 5501: zero score for FH_HAS_XID
- bug 5449: allow_user_rules causes sa-compile / Rule2XSBody plugin to emit
spurious warnings; fix. also, add a new 'user_conf_parsing_end' plugin
hook, which is called after the per-user configuration is parsed
- bug 5182: update the sa-learn doc to mention that -u is only usable w/ sql
- bug 5534: fix harmless-but-ugly C compiler warning in sa-compile
Security fixes in this version:
MFSA 2007-27 Unescaped URIs passed to external programs
MFSA 2007-26 Privilege escalation through chrome-loaded about:blank windows
MFSA 2007-18 Crashes with evidence of memory corruption (rv:1.8.1.5)
For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.13.html
of an emulated operating system. Instead of proliferating things like
SUSE_VERSION_REQD, NETBSD_VERSION_REQD, SOLARIS_VERSION_REQD, etc., a
package can say:
EMUL_REQD= suse>=9.1 netbsd>=2.0 solaris>=10
all in one, succinct line.
* Bugfixes and changes since 0.91.1:
- libclamav/rtf.c: fix possible NULL dereference (bb#611)
- libclamav/ole2_extract.c: properly initialise hdr.max_block_no (bb#603)
- libclamav/htmlnorm.c: fix possible NULL dereference (bb#582),
thanks to Stefanos Stamatis
- libclamav/htmlnorm.c: fix call to tolower() (bb#580)
- libclamav/filetypes.c: some embedded PEs were not being detected
- clamav-milter: Fix compilation error on NetBSD2.0
- clamav-milter: Black-hole-mode no longer needs to be run as root
- libclamav/pdf.c: Bug 618, --block-max not always honoured
- libclamav/phishcheck.c, regex_list.c, phish_whitelist.c: make debug
output look better (patch from Sven)
- libclamav/phishcheck.c: Don't report phishing on broken urls containing
'>' in the hostname. (bb #619)
- libclamav, sigtool: add support for PUA databases (.hdu, .mdu, .ndu),
requested by Christoph
- clamscan: add --detect-pua
- clamd, clamd.conf: add DetectPUA
- freshclam/mirman.c: properly handle mirror access times (bb#606, only
outdated installations - three versions behind the latest one were
affected by this problem),
Reported by David F. Skoll <dfs*roaringpenguin.com>
- clamav-milter: Bug 614
- libclamav/pdf.c: Bug 608
- clamav-milter: SPF checking no longer experimental
- libclamav/phishcheck.c: workaround Solaris problem with regexec() [bb #598
]
- libclamav/matcher-ac.c: fix matching of patterns with prefixes and some
other issues spotted by Glen <daineng*gmail.com>
- clamav-milter/clamav-milter.c: Better use of res_init()
- clamav-milter/clamav-milter.c: HP-UX doesn't have EX_CONFIG, reported
by clam * ministry.se
- Fix order of HTML sanitizing, thanks Tomas Kuliavas.
- Remove unneeded PHP endings from files.
- Also support big5 when listed as 'big-5' in mbstring.
- Fixed html decoding in Eastern functions that use recode and
decoding of iso-2022 html emails.
Pkgsrc changes:
- Required version of p5-Crypt-OpenSSL-RSA changed to >=0.24.
Changes since version 0.26:
=====================================
Version 0.28
* fixed a bug with line-wrapping a signature at the wrong place
Version 0.27 - released 2007-07-25
* Sender signing policies are now better implemented
* Both Yahoo! DomainKeys signing policies and the under-development
IETF DKIM signing policies are supported
* Yahoo! DomainKeys policies can protect the Sender: header
* DKIM signing policies can protect the From: header
Look at Mail::DKIM::Verifier's fetch_author_policy() and
fetch_sender_policy() methods for hints.
Changes since last packaged version (1.3):
Version 2.0.3 - 27 July 2007
----------------------------
- Bug fix; part of the program's functionality didn't seem to work at all (did
nothing), due to problem when providing the results from searching methods to
processing methods
Version 2.0.2 - 30 June 2007
----------------------------
- Bug fix; message cache problem due to non-use of message UIDs
Version 2.0.1 - 29 June 2007
----------------------------
- Bug fix; character set problem with 1.x configuration files
- Bug fix; typo errors in the documentation
Version 2.0 - 27 June 2007
--------------------------
- New, more powerful, feature rich and yet simpler configuration file.
- Easier object oriented view of accounts and mailboxes.
- Simpler approach to filters, with infix logical or/and/not operators.
- No more need to mess with server search queries.
- More and simpler functions instead of few and complicated ones.
- More feature complete interface that can now even manipulate mailboxes.
- Regular expressions integrated into the searching interface.
- Effective caching subsystem when fetching message parts.
- Can still read old version 1.x configuration files for compatibility.
- Lua 5.1 and the PCRE library are now requirements.
Changes since 2.62:
* mimedefang-multiplexor.c: Relax the umask when creating the unprivileged
socket ("-a" command-line option.)
* mimedefang.c(eom): If we do not have a queue ID yet, try to obtain one
in eom. This is designed to improve operation with Postfix, which does
not assign a queue ID until after the first successful RCPT. Based on a
patch from Henrik Krohns.
* examples/init-script.in: Added MD_SKIP_BAD_RCPTS init script option
(suggested by John Nemeth)
* Remove support for OpenAntivirus. It's a dead product.
* mimedefang.pl.in(spam_assassin_status): Call $mail->finish() to prevent
temporary files from accumulating.
* redhat/mimedefang-init.in: Add configtest routine to check filter
syntax.
Changes since 2.61:
* A new "change_sender" action lets you change the envelope sender. Only
works with Sendmail/Milter 8.14.0 and newer!
* Clam interface code has been fixed to work properly with ClamAV 0.90
and later.
* Other minor improvements and bugfixes.
MILTER bugfix:
When a milter replied with ACCEPT at or before the first RCPT
command, the cleanup server would apply the non_smtpd_milters
setting as if the message was a local submission. Problem
reported by Jukka Salmi.
MILTER bugfix:
Problem with header updates after body updates. Reported by
Jose-Marcio Martins da Cruz.
MILTER robustness:
Assorted cleanups to harden error handling in the Postfix Milter
client.
SASL workaround for Postfix SMTP client:
Some non-Cyrus SASL SMTP servers require SASL login without
authzid (authoriZation ID), i.e. the client must send only the
authcid (authentiCation ID) + the authcid's password. This is
now the default Postfix SMTP client behavior.
Loopback TCP performance workaround:
Some systems exhibited poor SMTP and Milter performance with
loopback (127.0.0.1) connections. Problem reported by Mark
Martinec.
MILTER bugfix:
When a milter replied with ACCEPT at or before the first RCPT
command, the cleanup server would apply the non_smtpd_milters
setting as if the message was a local submission. Problem
reported by Jukka Salmi.
MILTER bugfix:
Problem with header updates after body updates. Reported by
Jose-Marcio Martins da Cruz.
MILTER robustness:
Assorted cleanups to harden error handling in the Postfix Milter
client.
SASL workaround for Postfix SMTP client:
Some non-Cyrus SASL SMTP servers require SASL login without
authzid (authoriZation ID), i.e. the client must send only the
+ Move a few more things around so that it looks more like a default
installation of Courier. In particular, the "cgi-bin" directory has
been renamed "webmail", and sbin/sqwebmaild to sbin/webmaild.
* Use address returned from authlib as return address of sent messages.
* Forbid rename folder if new folder name contains a dot.
* Quietly prune trailing ':' from the tail end of a header name.
* Trim whitespace from login username and new folder names.
+ Drop the uucp module from the default option set.
+ Patch the webmlm sources to not use "stdin" and "stdout" as function or
member names as they can be macros according to the C standards.
* webadmin: Remove check that prevents multiple virtual domains to
be aliased to the same account.
* webmlmd: new CGI module that can manage a Courier mailing list
created with couriermlm.
* Rewrite and code cleanup of couriermlm.
* Use domain name, not MX hostname, for looking up authenticated
SMTP passwords in esmtpauthclient
+ Remove BDB_LIB workaround which should already be handled by the wrapper
scripts and db1.builtin.mk.
* Plug some resource leaks in the maildir library code.
- The default configure scripts end up encoding '${prefix}' (note quotes)
at the start of /etc/pine.conf{,.fixed}. Use --with-system-pinerc and
--with-system-fixed-pinerc to explicitly set them to ${PKG_SYSCONFDIR}
Policyd is an anti-spam plugin for Postfix (written in C) that does
greylisting, sender-(envelope, SASL or host/ip)-based throttling (on
messages and/or volume per defined time unit), recipient rate limiting,
spamtrap monitoring/blacklisting, HELO auto blacklisting and HELO
randomization preventation.
Updated: 14 June 2007
imap-2006j is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 5 June 2007
imap-2006i is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
imapd now supports the CHILDREN and ESEARCH extensions.
imapd's attempt to return COPYUID/APPENDUID information for a traditional
UNIX (and MMDF) format mailbox when the mailbox is open by another process
has been declared to be a failure and is now revoked. It was subject to a
timing race, loss of which involved an expensive reset of the mailbox's UID
regime. Any imapd COPY or APPEND to a traditional UNIX or MMDF format that
is open by some other process will now no longer return COPYUID/APPEND.
Although this is technically in violation of RFC 4315, there is a loophole
in that document and the timing race/performance problem is worse.
Updated: 4 April 2007
imap-2006h is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 30 March 2007
imap-2006g is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 30 January 2007
imap-2006f is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
For the benefit of multi-threaded applications, use of strtok() has been
abolished in the c-client library. imapd and ipop3d stuff use it though.
The TOPS-20 and VAX/VMS ports still use strtok() since they don't use UNIX
threads.
This version has been test-built on Linux, Mac OS X, NeXT, Windows XP,
TOPS-20, and VAX/VMS. This will probably be the last test-build on VAX/VMS
since the system I use for that purpose is being shut down. I have no way
to test-build on DOS, legacy Mac OS (OS 9 and earlier), OS/2, or Windows CE;
and the builds on those systems are probably broken.
Updated: 26 January 2007
imap-2006e is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 6 December 2006
imap-2006d is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
The decomposition mapping, title-case mapping, and character widths tables
have been updated to comply with the Unicode 5.0 standard.
Prototypes for the utf8aux.c functions have been moved to a new utf8aux.h.
The general c-client modules now include c-client.h instead of the individual
files. Use of c-client.h instead of individual include files insulates
against future shuffling of include files.
Updated: 23 October 2006
imap-2006c is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
By popular request, if a user has a mix (or other dual-use) format INBOX,
it will no longer be listed as \NoInferiors. It's a bad idea to depend
upon this due to the case ambiguity issue, but it's there.
Updated: 26 September 2006
imap-2006b is a maintenance release, consisting entirely of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 15 September 2006
imap-2006a is a maintenance release, consisting entirely of bugfixes to
problems discovered in the release that affected a small number of users.
If it is necessary to build IPv4-only on one of the ports that has IPv6
preconfigured (ldb, lfd, lmd, lrh, lsu, osx, oxp), this can be done by
using IP6=4. You can't do IP=4 in the build command directly since these
ports set IP themselves; however, now instead of setting IP=6 they now set
IP=$(IP6).
Updated: 30 August 2006
imap-2006 is a major release. Programs written for imap-2004g should
build with this version with minor or no modification. imap-2005 was not
released except as development snapshots.
imap-2006 contains major extensions to its Unicode support. Searching and
sorting are now done with strings canonicalized to titlecase and decomposed
form. Among other things, this means that Latin letters with diacriticals
will now sort with the basic Latin letter, and case-independent searching of
such letters (e.g., German umlauts) now works. Previously, sorting was done
strictly by Unicode codepoint, and case-independence only worked with ASCII.
imapd now supports the UIDPLUS extension for mailboxes in unix, mmdf, mbx, mx,
and mix formats. UID EXPUNGE is fully implemented. Note that UIDPLUS is not
supported in the little-used drivers (mh, mtx, tenex) in which meaningful
APPENDUID/COPYUID data can not be returned. Refer to bugs.txt for more
details.
The new mix format is a dual-use mailbox format designed for performance and
reliability with large mailboxes. mix is documented in file mixfmt.txt.
SSL/TLS certificate validation on UNIX now checks the alternative names in the
certificate if the CN does not match.
The new /tls-sslv23 flag in a mailbox name causes a TLS session to use the
(incorrect) SSLv23 client method instead of the TLSv1 client method. Some
broken servers use the SSLv23 server method, and this flag works around that
problem. WARNING: use of this flag will cause TLS negotiation to fail with
a server which uses the proper TLSv1 server method. Additionally, there are
known security risks in SSLv2; so users should be suspicious if this switch
suddenly becomes necesary.
The silly mailbox flag combination /ssl/tls is now rejected as an invalid
remote specification. Previous versions tried to negotiate TLS over an SSL
session; even if the server permitted such a thing it couldn't work.
The memory management of several drivers has been redesigned to consume less
memory and hopefully be faster.
The private.data member of the MESSAGECACHE (elt) has been replaced with
a union that contains private.spare.data and private.spare.ptr, the latter
being a pointer.
A new FT_RETURNSTRINGSTRUCT flag has been added for mail_fetch_body() and
mail_fetch_text() calls. If this flag is set, *and* if the function returns
NIL, then the requested string data is available on a stringstruct on
stream->private.string. This is a special hack for the IMAP and POP servers
and is subject to incompatible change. The result is a major performance
improvement in the servers with the mbx driver, particularly with large
messages.
into the Makefiles of the packages that include it:
(1) PKGNAME and PKG_SUPPORTED_OPTIONS clearly no longer need to be
defined since the only code that used it in Makefile.common was
removed.
(2) Package Makefiles need to properly define PKG_OPTIONS_VAR and
PKG_SUPPORTED_OPTIONS prior to including bsd.options.mk. Set
them to the appropriate values to match the orginal names from
before the botched migration.
- deliver: v1.0.2's bounce fix caused message to be always saved to
INBOX even if Sieve script had discard, reject or redirect commands.
- LDAP: auth_bind=yes and empty auth_bind_userdn leaked memory
- ACL plugin: If user was given i (insert) right for a mailbox, but
not all s/t/w (seen, deleted, other flags) rights, COPY and APPEND
commands weren't supposed to allow saving those flags. This is
technically a security fix, but it's unlikely this caused problems
for anyone.
- ACL plugin: i (insert) right didn't work unless user was also given
l (lookup) right.
- Solaris: Fixed filesystem quota for autofs mounts.
* tmda-ofmipd now has native STARTTLS and SSL support courtesy of
Stephen Warren. The new options are '--tls', '--ssl', '--ssl-key',
and '--ssl-crt'. Note that the tlslite Python module needs to be
installed to use this feature. For more information, see the
"Builtin SSL/TLS" section of http://wiki.tmda.net/TmdaOfmipdHowto
* Fixed a minor bug that prevented the use of both SMTPSSL and
SMTPAUTH together.
part of an email message. The syntax for date headers is clearly laid out.
Stil, even a perfectly planned world has storms. The truth is, many programs
get it wrong. Very wrong. Or, they don't include a "Date:" header at all.
This often forces you to look elsewhere for the date, and hoping to find
something.
For this reason, the tedious process of looking for a valid date has been
encapsulated in this software. Further, the process of creating RFC compliant
date strings is also found in this software.
Imported from pkgsrc-wip and packaged by kuli0020@umn.edu
multiple Email mailers. The goal if this software is to be small and simple,
easy to use, and easy to extend.
Mailers
Mailers are simple to use. You can pre-load mailers when using "Email::Send".
use Email::Send qw[SMTP NNTP];
If you don't preload a mailer before you use it in the "send" function, it
will by dynamically loaded. Mailers are named either relative to the
"Email::Send" namespace, or fully qualified. For example, when using the "IO"
mailer, "Email::Send" first tries to load "Email::Send::IO". If that fails, an
attempt is made to load "IO". If that final attempt fails, "Email::Send" will
throw an exception.
WWW: http://search.cpan.org/dist/Email-Send/
Imported from pkgsrc-wip and packaged by kuli0020@umn.edu
addresses in strings and returns a list of Email::Address objects
found. The goal of this software is to be correct, fast, and API
compatible with the MailTools version.
Imported from pkgsrc-wip and packaged by kuli0020@umn.edu
binary-only packages that require binary "emulation" on the native
operating system. Please see pkgsrc/mk/emulator/README for more
details.
* Teach the plist framework to automatically use any existing
PLIST.${EMUL_PLATFORM} as part of the default PLIST_SRC definition.
* Convert all of the binary-only packages in pkgsrc to use the
emulator framework. Most of them have been tested to install and
deinstall correctly. This involves the following cleanup actions:
* Remove use of custom PLIST code and use PLIST.${EMUL_PLATFORM}
more consistently.
* Simplify packages by using default INSTALL and DEINSTALL scripts
instead of custom INSTALL/DEINSTALL code.
* Remove "SUSE_COMPAT32" and "PKG_OPTIONS.suse" from pkgsrc.
Packages only need to state exactly which emulations they support,
and the framework handles any i386-on-x86_64 or sparc-on-sparc64
uses.
* Remove "USE_NATIVE_LINUX" from pkgsrc. The framework will
automatically detect when the package is installing on Linux.
Specific changes to packages include:
* Bump the PKGREVISIONs for all of the suse100* and suse91* packages
due to changes in the +INSTALL/+DEINSTALL scripts used in all
of the packages.
* Remove pkgsrc/emulators/suse_linux, which is unused by any
packages.
* cad/lc -- remove custom code to create the distinfo file for
all supported platforms; just use "emul-fetch" and "emul-distinfo"
instead.
* lang/Cg-compiler -- install the shared libraries under ${EMULDIR}
instead of ${PREFIX}/lib so that compiled programs will find
the shared libraries.
* mail/thunderbird-bin-nightly -- update to latest binary
distributions for supported platforms.
* multimedia/ns-flash -- update Linux version to 9.0.48 as the
older version is no longer available for interactive fetch.
* security/uvscan -- set LD_LIBRARY_PATH explicitly so that
it's not necessary to install library symlinks into
${EMULDIR}/usr/local/lib.
* www/firefox-bin-flash -- update Linux version to 9.0.48 as the
older version is no longer available for interactive fetch.
* Reply and forward marks are appended after messages are actually sent.
* The feature to reply to attached message/rfc822 messages was added.
* When a folder is renamed, the path of junk folder is also updated.
* A workaround for the error which occurs with Gmail SMTP server was made.
- libclamav/others.c: bump f-level
- libclamav/unrar/unrarvm.c: fix another occurrence of bb#555, thanks to
Ludwig Nussel <ludwig.nussel*suse.de>
- sigtool/sigtool.c: increase MAX_DEL_LOOKAHEAD, requested by Sven
- libclamav/scanner.c: don't search for embedded PEs in zip files larger
than 1 MB (bb#573)
- clamav-milter: Fix memory leak when load balancing
- clamav-milter: Chroot handling no longer marked as experimental
- libclamav/nsis: fix macro collision on AIX - bb#570
- libclamav/phishcheck.c: fix (null) FOUND
- libclamav: rename x86 macroes due to collisions on HPUX
- libclamav: Fix warnings on HP-UX
Fixes several bugs. This release also adds compatibility with upcoming
Dovecot v1.1 so it'll be possible to upgrade to v1.1 and back to v1.0.2
without anything breaking.
* dbox isn't built anymore by default. It will be redesigned so it
shouldn't be used.
+ Maildir: Support reading dovecot-uidlist (v3) files created by
Dovecot v1.1.
- Maildir: "UIDVALIDITY changed" errors could happen with newly
created mailboxes
- If "INBOX." namespace was used, LIST returned it with \HasNoChildren
which caused some clients not to show any other mailboxes.
- Maildir++ quota: If multiple processes were updating maildirsize
at the same time, we failed with "Unknown error".
- IMAP: IDLE didn't actually disconnect client after 30 minutes of
inactivity.
- LDAP passdb/userdb was leaking memory
- deliver: %variables in plugin {} weren't expanded
- deliver: Don't bounce the mail if Sieve plugin returns failure
ClamAV 0.91 is the first release to enable the anti-phishing technology
in default builds. This technology combines heuristics with special
signatures and provides effective protection against phishing threats.
Other important changes and add-ons in this version include:
- unpacker for NSIS (Nullsoft Scriptable Install System) self-extracting
archives
- unpacker for ASPack 2.12
- new implementation of the Aho-Corasick pattern matcher providing
better detection for wildcard enabled signatures
- support for nibble matching and floating offsets
- improved handling of .mdb files (fixes long startup times)
- extraction of PE files embedded into other executables
- better handling of PE & UPX
- removed dependency on libcurl (improves stability)
- libclamav.dll available under Windows
- IPv6 support in clamav-milter
- many other improvements and bugfixes
1.13 (2007-03-28)
-----------------
* New mailgraph homepage URL: http://mailgraph.schweikert.ch
* XHTML 1.0 strict output (Yllar Pajus)
* add releative jump points (Hugo van der Kooij)
* add commented-out code for clamassassin (Adrian von Bidder)
* add support for Amavisd-new >= 2.4 (Christoph Kessinger)
* add support for Borderware Mxtreme (Postfix variant, Johan Nilsson)
* add support for the ClamAV SpamAssassin plugin (Thomas Brown)
* add support for MxTreme mail gateway (Guido)
* update support for Kaspersky AntiVirus (Igor Moskovko)
* update support for AntiVir (Wolfram Schlich)
* update support for drweb (Lev)
* update support for MailScanner (Simon Hartl, Pierre-Yves Bonnetain)
* update support for AntiVir (Frank Urban)
* fix DST-switch timewarp in autumn (Parse::Syslog 1.09)
* fix hidden rejected line behind are items (Axel Beckert)
* fix virbl DNS name (Eddy Beliveau)
via pkgsrc-wip.
policyd-weight is a Perl policy daemon for the Postfix MTA (2.1 and later)
intended to eliminate forged envelope senders and HELOs (i.e. in bogus mails).
It allows you to score DNSBLs (RBL/RHSBL), HELO, MAIL FROM and client IP
addresses before any queuing is done. It allows you to REJECT messages which
have a score higher than allowed, providing improved blocking of spam and
virus mails. policyd-weight caches the most frequent client/sender
combinations (SPAM as well as HAM) to reduce the number of DNS queries.
the owner of all installed files is a non-root user. This change
affects most packages that require special users or groups by making
them use the specified unprivileged user and group instead.
(1) Add two new variables PKG_GROUPS_VARS and PKG_USERS_VARS to
unprivileged.mk. These two variables are lists of other bmake
variables that define package-specific users and groups. Packages
that have user-settable variables for users and groups, e.g. apache
and APACHE_{USER,GROUP}, courier-mta and COURIER_{USER,GROUP},
etc., should list these variables in PKG_USERS_VARS and PKG_GROUPS_VARS
so that unprivileged.mk can know to set them to ${UNPRIVILEGED_USER}
and ${UNPRIVILEGED_GROUP}.
(2) Modify packages to use PKG_GROUPS_VARS and PKG_USERS_VARS.
For now, DragonFly and FreeBSD use the libc version, it is not reentrant,
but thread-safe. NetBSD 3.0+ and Darwin 8.0+ use libresolv from base
(the BIND9 resolver), all other fall back to net/bind9. Feel free to add
your favorite platform if it has a thread-safe resolver in base.
Modify mail/libspf-alf, mail/milter-greylist, mail/spamdyke and
net/nocol accordingly. Testing on !DragonFly and feedback from tron@
pkgsrc portability patches submitted back upstream but ignored.
Additions include:
* Configuration support for Tru64 and some fixes for other systems
* New color option Header General Color to color all headers in MESSAGE
TEXT screen
* Added NONE color setting for Index symbols and Keyword colors so that
the background color of a symbol can be set to not blot out the
background color of an index line. There is also a similar NORM color
that tracks the Normal Color
* New color options Index Subject Color and Index From Color options to
color parts of MESSAGE INDEX lines
* Some improvements to Enable Incoming Folders Checking option,
including new options Incoming Checking Includes Total, Incoming
Checking Uses Recent, and Incoming Check Interval Secondary
* Eliminate address book sorting wars when two different systems sort an
address book differently. Instead of checking that the address book is
correctly sorted whenever it is opened the sorting will only happen
when a change is made. The sort order you see is the sort order from
the last system where a change was made.
* Added a new category of Rule called a Search Rule. A Search Rule has a
Pattern but no Action is associated with that Pattern. It is used with
the Select command in the MESSAGE INDEX screen to Select the set of
messages that match a rule's Pattern.
* Added minor adjustment to display of opening text with Opening Text
Separator Characters option. Display of opening text is controlled by
configuring your Index Format option to include one of the Subject
tokens that causes this behavior (SUBJECTTEXT, SUBJKEYTEXT, or
SUBJKEYINITTEXT).
* Added tokens OPENINGTEXT and OPENINGTEXTDQ for use with the Index
Format option. These are alternative ways to display the opening text
of a message in the index screen.
* Added SHORTIMAPSTATUS token for the Index Format
* The default values of many features have been changed, exposing a more
advanced user interface by default. In addition, though the names of
features used in the configuration files remains the same, the
displayed text in the Config screen is no longer tied directly to that
name.
* Changed Windows Alpine so that it can show up in the list of default
programs in Vista.
Bugs that have been addressed in this release include:
* INBOX displayed twice in some situations when there was a folder named
INBOX
* Crash in PC-Alpine related to traditional UNIX mailbox format
* Canceling out of the password prompt when opening an incoming folder
was causing the re-open of a previously opened folder to fail
* News collection display empty after canceling out of password prompt
* Extra password prompt when adding incoming folder after canceling out
of earlier password prompt
* Recognize and ignore XML processing instructions in HTML messages
* Window title was being set using Unicode characters instead of the
local character set of the display terminal
* The option Busy Cue Spinner Only was displaying an oncoming two-engine
airplane instead of a spinner
* Got rid of default green Subject header color added in 0.99
* Title Closed Color wasn't being shown when in the composer
* Disable-Input-History, which was added in previous version, is changed
to Disable Save Input History and its effect is restricted to
ambiguous situations, like Save
* Added missing input history command for Pipe Attachment
* Cannot open another folder after an empty directory is opened when
Combined Folder Display and Expanded View of Folders options are set
* When answering No to the commit changes question after changing the
Inbox Path the change was written to the config file anyway
* When the Threading Display Style results in the information being
truncated add a thread depth indicator in brackets at the right hand
edge
* 2.4.3 (stable)
* The quick search entry is cleared when Escape key is pressed on it.
* UTF-8 with BOM is handled correctly when inserting signature.
* A possible crash when adding address from address book was fixed.
- fixed an ancestral wrong compilation flag for regexes, no more REG_NEWLINE
- supereva.lua: plugin updates
- libero.lua: fixed bug for attachments
- libero.lua: changed pattern matching
- hotmail.lua: update the logout url, try to handle an expired session better
- supereva.lua, tin.lua: fixed attachments in tin and supereva, added dada.net
- libero.lua: fixed mlex
- aol.lua: use the "classic" web interface
- added patch by Viruzzo to mimer and supereva.lua
pkgsrc changes:
* List a few popular supported services in DESCR to help address PR 36569.
Prompted by report from Peter Avalos that exim 4.66 would not build
against openssl 0.9.8e
Changelog:
MH/01 Fix for bug #448, segfault in Dovecot authenticator when interface_address
is unset (happens when testing with -bh and -oMi isn't used). Thanks to
Jan Srzednicki.
PH/01 Added a new log selector smtp_no_mail, to log SMTP sessions that do not
issue a MAIL command.
PH/02 In an ACL statement such as
deny dnslists = X!=127.0.0.2 : X=127.0.0.2
if a client was not listed at all, or was listed with a value other than
127.0.0.2, in the X list, but was listed with 127.0.0.2 in the Y list,
the condition was not true (as it should be), so access was not denied.
The bug was that the ! inversion was incorrectly passed on to the second
item. This has been fixed.
PH/03 Added additional dnslists conditions == and =& which are different from
= and & when the dns lookup returns more than one IP address.
PH/04 Added gnutls_require_{kx,mac,protocols} to give more control over the
cipher suites used by GnuTLS. These options are ignored by OpenSSL.
PH/05 After discussion on the list, added a compile time option ENABLE_DISABLE_
FSYNC, which compiles an option called disable_fsync that allows for
bypassing fsync(). The documentation is heavily laced with warnings.
SC/01 Updated eximstats to collate all SpamAssassin rejects into one bucket.
PH/06 Some tidies to the infrastructure of the Test Suite that is concerned
with the auxiliary C programs that it uses: (1) Arrange for BIND_8_COMPAT
to be defined when compiling on OSX (Darwin); (2) Tidies to the Makefile,
including adding "make clean"; (3) Added -fPIC when compiling the test
dynamically loaded module, to get rid of a warning.
MH/02 Fix for bug #451, causing paniclog entries to be written if a bounce
message fails, move_frozen_messages = true and ignore_bounce_errors_after
= 0s. The bug is otherwise harmless.
PH/07 There was a bug in the dovecot authenticator such that the value of
$auth1 could be overwritten, and so not correctly preserved, after a
successful authentication. This usually meant that the value preserved by
the server_setid option was incorrect.
PH/08 Added $smtp_count_at_connection_start, deliberately with a long name.
PH/09 Installed PCRE release 7.0.
PH/10 The acl_not_smtp_start ACL was, contrary to the documentation, not being
run for batched SMTP input. It is now run at the start of every message
in the batch. While fixing this I discovered that the process information
(output by running exiwhat) was not always getting set for -bs and -bS
input. This is fixed, and it now also says "batched" for BSMTP.
PH/11 Added control=no_pipelining.
PH/12 Added $sending_ip_address and $sending_port (mostly Magnus Holmgren's
patch, slightly modified), and move the expansion of helo_data till after
the connection is made in the smtp transport (so it can use these
values).
PH/13 Added ${rfc2047d: to decoded RFC 2047 strings.
PH/14 Added log_selector = +pid.
PH/15 Flush SMTP output before delaying, unless control=no_delay_flush is set.
PH/16 Add ${if forany and ${if forall.
PH/17 Added dsn_from option to vary the From: line in DSNs.
PH/18 Flush SMTP output before performing a callout, unless control =
no_callout_flush is set.
PH/19 Change 4.64/PH/36 introduced a bug: when address_retry_include_sender
was true (the default) a successful delivery failed to delete the retry
item, thus causing premature timeout of the address. The bug is now
fixed.
PH/20 Added hosts_avoid_pipelining to the smtp transport.
PH/21 Long custom messages for fakedefer and fakereject are now split up
into multiline reponses in the same way that messages for "deny" and
other ACL rejections are.
PH/22 Applied Jori Hamalainen's speed-up changes and typo fixes to exigrep,
with slight modification.
PH/23 Applied sieve patches from the maintainer "tracking the latest notify
draft, changing the syntax and factoring some duplicate code".
PH/24 When the log selector "outgoing_port" was set, the port was shown as -1
for deliveries of the second and subsequent messages over the same SMTP
connection.
PH/25 Applied Magnus Holmgren's patch for ${addresses, ${map, ${filter, and
${reduce, with only minor "tidies".
SC/02 Applied Daniel Tiefnig's patch to improve the '($parent) =' pattern match.
PH/26 Added a "continue" ACL modifier that does nothing, for the benefit of its
expansion side effects.
PH/27 When a message times out after an over-quota error from an Exim-imposed
quota, the bounce message says "mailbox is full". This message was not
being given when it was a system quota that was exceeded. It now should
be the same.
MH/03 Made $recipients available in local_scan(). local_scan() already has
better access to the recipient list through recipients_list[], but
$recipients can be useful in postmaster-provided expansion strings.
PH/28 The $smtp_command and $smtp_command_argument variables were not correct
in the case of a MAIL command with additional options following the
address, for example: MAIL FROM:<foo@bar> SIZE=1234. The option settings
were accidentally chopped off.
PH/29 SMTP synchronization checks are implemented when a command is read -
there is a check that no more input is waiting when there shouldn't be
any. However, for some commands, a delay in an ACL can mean that it is
some time before the response is written. In this time, more input might
arrive, invalidly. So now there are extra checks after an ACL has run for
HELO/EHLO and after the predata ACL, and likewise for MAIL and RCPT when
pipelining has not been advertised.
PH/30 MH's patch to allow iscntrl() characters to be list separators.
PH/31 Unlike :fail:, a custom message specified with :defer: was not being
returned in the SMTP response when smtp_return_error_details was false.
This has been fixed.
PH/32 Change the Dovecot authenticator to use read() and write() on the socket
instead of the C I/O that was originally supplied, because problems were
reported on Solaris.
PH/33 Compile failed with OpenSSL 0.9.8e. This was due to a coding error in
Exim which did not show up earlier: it was assuming that a call to
SSL_CTX_set_info_callback() might give an error value. In fact, there is
no error. In previous releases of OpenSSL, SSL_CTX_set_info_callback()
was a macro that became an assignment, so it seemed to work. This has
changed to a proper function call with a void return, hence the compile
error. Exim's code has been fixed.
PH/34 Change HDA_SIZE in oracle.c from 256 to 512. This is needed for 64-bit
cpus.
PH/35 Applied a patch from the Sieve maintainer which fixes a bug in "notify".
PH/36 Applied John Jetmore's patch to add -v functionality to exigrep.
PH/37 If a message is not accepted after it has had an id assigned (e.g.
because it turns out to be too big or there is a timeout) there is no
"Completed" line in the log. When some messages of this type were
selected by exigrep, they were listed as "not completed". Others were
picked up by some special patterns. I have improved the selection
criteria to be more general.
PH/38 The host_find_failed option in the manualroute router can now be set
to "ignore", to completely ignore a host whose IP address cannot be
found. If all hosts are ignored, the behaviour is controlled by the new
host_all_ignored option.
PH/39 In a list of hosts for manualroute, if one item (either because of multi-
homing or because of multiple MX records with /mx) generated more than
one IP address, and the following item turned out to be the local host,
all the secondary addresses of the first item were incorrectly removed
from the list, along with the local host and any following hosts (which
is what is supposed to happen).
PH/40 When Exim receives a message, it writes the login name, uid, and gid of
whoever called Exim into the -H file. In the case of the daemon it was
behaving confusingly. When first started, it used values for whoever
started the daemon, but after a SIGHUP it used the Exim user (because it
calls itself on a restart). I have changed the code so that it now always
uses the Exim user.
PH/41 (Following a suggestion from Tony Finch) If all the RCPT commands in a
message are rejected with the same error (e.g. no authentication or bad
sender address), and a DATA command is nevertheless sent (as can happen
with PIPELINING or a stupid MUA), the error message that was given to the
RCPT commands is included in the rejection of the DATA command. This is
intended to be helpful for MUAs that show only the final error to their
users.
PH/42 Another patch from the Sieve maintainer.
SC/02 Eximstats - Differentiate between permanent and temporary rejects.
Eximstats - Fixed some broken HTML links and added missing column headers
(Jez Hancock).
Eximstats - Fixed Grand Total Summary Domains, Edomains, and Email
columns for Rejects, Temp Rejects, Ham, and Spam rows.
SC/03 Eximstats - V1.58 Fix to get <> and blackhole to show in edomain tables.
PH/43 Yet another patch from the Sieve maintainer.
PH/44 I found a way to check for a TCP/IP connection going away before sending
the response to the final '.' that terminates a message, but only in the
case where the client has not sent further data following the '.'
(unfortunately, this is allowed). However, in many cases there won't be
any further data because there won't be any more messages to send. A call
to select() can be used: if it shows that the input is "ready", there is
either input waiting, or the socket has been closed. An attempt to read
the next input character can distinguish the two cases. Previously, Exim
would have sent an OK response which the client would never have see.
This could lead to message repetition. This fix should cure that, at
least in a lot of common cases.
PH/45 Do not advertise STARTTLS in response to HELP unless it would be
advertised in response to EHLO.
Fixed a serious bug where spamdyke was closing the connection to qmail and
exiting as soon as the remote host exited. When the remote host sends its
SMTP data in one burst and closes the connection without waiting for the
response code from the DATA segment, qmail doesn't accept the message and
nothing gets delivered.
Added some code to log_writeln() to translate bare carriage returns into
carriage return/linefeed combinations. This allows poorly written remote
servers to send mail, most notably Microsoft web servers. Dogmatically
refusing to accept mail by refusing to be more flexible than RFC 822
will never change the world; let's be reasonable instead of bouncing
messages back to our friends who can't change their mail servers anyway.
Fixed smtp_filter() to accept parameters to AUTH LOGIN when the MUA sends the
authentication information with the command instead of waiting for the
prompts. Thanks to Carlo Blohm for reporting this one.
run as "root".
* Remove unnecessary passing of ROOT_USER and ROOT_GROUP to the
distribution Makefile. Instead, we simply use BSD_INSTALL_* macros
to do the installation and use SPECIAL_PERMS to clean up and special
permissions after the fact.
* Add a TODO section to the package Makefile that highlights the things
that need to be done to fix this package.
* Fix MESSAGE to refer to ${PREFIX}, not ${LOCALBASE}, for the location
of the installed files.
Bump PKGREVISION to 3 due to change in permissions for makevpopdb.
