Update 1.7 to 1.8
(pkgsrc)
- Remove post-build: target in Makefile
(not necessary now)
(upstream)
- No immediate ChangeLog, Release note found other than
1.8 is released on 2014-12-03
Fix bug #177: Plug leaking "result" structures when OpenLDAP is in use.
Truncate configuration file lines at carriage return.
Replace overlapping strlcpy() with memmove() in dkim_get_key_file().
Patch #32: Re-arrange the execution logic to drop privileges in
proper order.
LIBOPENDKIM: dkim_header() is now a lot more strict about the input
it will accept (see RFC5322 Section 2.2).
LIBOPENDKIM: Tighten relaxed modes to break on only DKIM-defined
whitespace characters.
LIBOPENDKIM: Fix bug #208: If a signature fails to verify for either
reason (header hash mismatched or body hash mismatched), set
DKIM_SIGERROR_BADSIG so that Authentication-Results doesn't
report a failure with "no signature error".
TOOLS: Feature request #178: Add "-F" flag to opendkim-genzone so
records are created with the FQDN.
REPUTATION: Handle parameters safely in repute.php.
(1) Info from FreeBSD,
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=128322
says
| mail/libspf-alt has been superceded by mail/libspf2 a long time ago
(2) No objection was answered to my removing proposal at pkgsrc-users@
(2014/12/23 06:57)
(3) finddepends reports nothing (other than self buildlink3.mk)
Thank you,
Significant changes:
- MASTER_SITES now points at ${MASTER_SITE_DEBIAN:=pool/main/h/heirloom-mailx/}
- LICENSE filled out based on content of COPYING file in source
- addresses CVE-2004-2771 and CVE-2014-7844; address expansion disabled by
default
- remove SSL2 related code to match state of OpenSSL
RELEASE 1.0.4
-------------
- Disable TinyMCE contextmenu plugin as there are more cons than pros in using it (#1490118)
- Fix bug where show_real_foldernames setting wasn't honored on compose page (#1490153)
- Fix issue where Archive folder wasn't protected in Folder Manager (#1490154)
- Fix compatibility with PHP 5.2. in rcube_imap_generic (#1490115)
- Fix setting flags on servers with no PERMANENTFLAGS response (#1490087)
- Fix regression in SHAA password generation in ldap driver of password plugin (#1490094)
- Fix displaying of HTML messages with absolutely positioned elements in Larry skin (#1490103)
- Fix font style display issue in HTML messages with styled <span> elements (#1490101)
- Fix download of attachments that are part of TNEF message (#1490091)
- Fix handling of uuencoded messages if messages_cache is enabled (#1490108)
- Fix handling of base64-encoded attachments with extra spaces (#1490111)
- Fix handling of UNKNOWN-CTE response, try do decode content client-side (#1490046)
- Fix bug where creating subfolders in shared folders wasn't possible without ACL extension (#1490113)
- Fix reply scrolling issue with text mode and start message below the quote (#1490114)
- Fix possible issues in skin/skin_path config handling (#1490125)
- Fix lack of delimiter for recipient addresses in smtp_log (#1490150)
- Fix generation of Blowfish-based password hashes (#1490184)
- Fix bugs where CSRF attacks were still possible on some requests
Several patches are dropped because they were integrated upsteam.
(Approval during freeze by wiz@.)
Upstream changes since 0.3.1 from
https://savannah.nongnu.org/forum/forum.php?forum_id=8094
Item posted by Todd Kover <kovert> on Thu 11 Sep 2014 01:05:20 AM GMT.
I am pleased to announce the release of spamass-milt version 0.4.0.
This is the first of what I hope are a number of maintenance releases
with the goal to eliminate the outstanding bug/patch/feature requests:
The following changes are included in this release
- -C option to change the default reject code
- -S option to specify a path to sendmail (for the -x option)
- -R option to specify the rejection message
- -a option to skip messages that were authenticated
- IPv6 address support
- zombie process fix for the - option introduced in 0.3.2
This also includes the fix for CVE-2010-1132 that was in the unannounced but generated 0.3.2 release.
== [release-2-0-5] 2.0.5: 2014-12-09
A bug fix release of 2.0.4.
Add experimental APIs can hold data between the mail transaction.
=== Package
==== Improvements
* Drop CentOS5 support
* Add CentOS7 support
* Drop Ubuntu Saucy (13.10) support
* Add Ubuntu Utopic (14.10) support
* Build deb packages in clean room
[Patched by Youhei SASAKI][milter-manager-users-ja:00224]
* Improve auto detection for ruby-glib2
[Suggested by Youhei SASAKI and Kazuhiro NISHIYAMA][milter-manager-users-ja:00243]
* Require libev
[Reported by OBATA Akio][GitHub #48][GitHub #49]
=== milter manager
==== Fixes
* Ensure to set UTF-8 encoding to file content
[Reported by Panagiotis Skarvelis][SF.net #6]
=== milter-client
==== Improvements
* Add APIs can hold data between the mail transaction. (experimental)
=== Ruby milter
==== Improvements
* Drop Ruby1.8 support
* Add APIs can hold data between the mail transaction. (experimental)
==== Fixes
* Setup signal handler when invoke milter in single process mode
[GitHub #53]
=== Document
==== Fixes
* Execute sa-update before invoke sa-spamd on FreeBSD
[Reported by moto kawasaki][milter-manager-users-ja:00250]
=== Thanks
* Youhei SASAKI
* Kazuhiro NISHIYAMA
* OBATA Akio
* Panagiotis Skarvelis
* moto kawasaki
Note that there was an incompatible config change for IPv6 users.
See the MESSAGE file for details.
pkgsrc change: delete a couple of patches that have been upstreamed
Proofpoint, Inc., and the Sendmail Consortium announce the availability
of sendmail 8.15.1. This release:
o offers more TLS related features,
o does not ignore temporary map lookup failures during header rewriting,
o uses uncompressed IPv6 addresses by default, which is an incompatible
change that requires to update IPv6 related configuration data.
as well as many other enhancements. For details see the release
notes below.
SENDMAIL RELEASE NOTES
This listing shows the version of the sendmail binary, the version
of the sendmail configuration files, the date of release, and a
summary of the changes in that release.
8.15.1/8.15.1 2014/12/06
SECURITY: Properly set the close-on-exec flag for file descriptors
(except stdin, stdout, and stderr) before executing mailers.
If header rewriting fails due to a temporary map lookup failure,
queue the mail for later retry instead of sending it
without rewriting the header. Note: this is done
while the mail is being sent and hence the transaction
is aborted, which only works for SMTP/LMTP mailers
hence the handling of temporary map failures is
suppressed for other mailers. SMTP/LMTP servers may
complain about aborted transactions when this problem
occurs.
See also "DNS Lookups" in sendmail/TUNING.
Incompatible Change: Use uncompressed IPv6 addresses by default,
i.e., they will not contain "::". For example,
instead of ::1 it will be 0:0:0:0:0:0:0:1. This
permits a zero subnet to have a more specific match,
such as different map entries for IPv6:0:0 vs IPv6:0.
This change requires that configuration data
(including maps, files, classes, custom ruleset,
etc) must use the same format, so make certain such
configuration data is updated before using 8.15.
As a very simple check search for patterns like
'IPv6:[0-9a-fA-F:]*::' and 'IPv6::'. If necessary,
the prior format can be retained by compiling with:
APPENDDEF(`conf_sendmail_ENVDEF', `-DIPV6_FULL=0')
in your devtools/Site/site.config.m4 file.
If debugging is turned on (-d0.14) also print the OpenSSL
versions, both build time and run time
(provided STARTTLS is compiled in).
If a connection to the MTA is dropped by the client before its
hostname can be validated, treat it as "may be forged",
so that the unvalidated hostname is not passed to a
milter in xxfi_connect().
Add a timeout for communication with socket map servers
which can be specified using the -d option.
Add a compile time option HESIOD_ALLOW_NUMERIC_LOGIN to allow
numeric logins even if HESIOD is enabled.
The new option CertFingerprintAlgorithm specifies the finger-
print algorithm (digest) to use for the presented cert.
If the option is not set, md5 is used and the macro
{cert_md5} contains the cert fingerprint.
However, if the option is set, the specified algorithm
(e.g., sha1) is used and the macro {cert_fp} contains
the cert fingerprint.
That is, as long as the option is not set, the behaviour
does not change, but otherwise, {cert_md5} is superseded
by {cert_fp} even if you set CertFingerprintAlgorithm
to md5.
The options ServerSSLOptions and ClientSSLOptions can be used
to set SSL options for the server and client side
respectively. See SSL_CTX_set_options(3) for a list.
Note: this change turns on SSL_OP_NO_SSLv2 and
SSL_OP_NO_TICKET for the client. See doc/op/op.me
for details.
A new map type "arpa" is available to reverse an IP (IPv4 or IPv6)
address. It returns the string for the PTR lookup, but
without trailing {ip6,in-addr}.arpa.
New operation mode 'C' just checks the configuration file, e.g.,
sendmail -C new.cf -bC
will perform a basic syntax/consistency check of new.cf.
The mailer flag 'I' is deprecated and will be removed in a
future version.
Allow local (not just TCP) socket connections to the server, e.g.,
O DaemonPortOptions=Family=local, Addr=/var/mta/server.sock
can be used.
If the new option MaxQueueAge is set to a value greater than zero,
entries in the queue will be retried during a queue run
only if the individual retry time has been reached which
is doubled for each attempt. The maximum retry time is
limited by the specified value.
New DontBlameSendmail option GroupReadableDefaultAuthInfoFile
to relax requirement for DefaultAuthInfo file.
Reset timeout after receiving a message to appropriate value if
STARTTLS is in use. Based on patch by Kelsey Cummings
of Sonic.net.
Report correct error messages from the LDAP library for a range of
small negative return values covering those used by OpenLDAP.
Fix compilation with Berkeley DB 5.0 and 6.0. Patch from
Allan E Johannesen of Worcester Polytechnic Institute.
CONFIG: FEATURE(`nopercenthack') takes one parameter: reject or
nospecial which describes whether to disallow "%" in the
local part of an address.
DEVTOOLS: Fix regression in auto-detection of libraries when only
shared libraries are available. Problem reported by
Bryan Costales.
LIBMILTER: Mark communication socket as close-on-exec in case
a user's filter starts other applications.
Based on patch from Paul Howarth.
Portability:
SunOS 5.12 has changed the API for sigwait(2) to conform
with XPG7. Based on patch from Roger Faulkner of Oracle.
Deleted Files:
libsm/path.c
libSieve 2.3.1
--------------
This release is made possible by the tremendous effort of Dilyan Palauzov.
- Many small fixes and improvements.
libSieve 2.3.0
--------------
This release is made possible by the tremendous effort of Dilyan Palauzov.
- Hide internal symbols (do not export them) from the final shared library (works with GCC>=4)
- Add support for DOT in addresses (RFC5322, 4.1. Miscellaneous Obsolete Tokens)
- libsieve is now reentrant
- Add SILENT_RULES to Makefile.am
- Move all Makefile.am-s to single /Makefile.am
- Move the build root from /src/ to /
libSieve 2.2.9
--------------
- Vacation segfault fix (thanks to Paul Stevens).
libSieve 2.2.8
--------------
- Handle empty addresses (thanks to Dilyan Palauzov).
- Short-circuit all(tests) as soon as a test fails (thanks to Dilyan Palauzov).
- Short-circuit any(tests) as soon as a test succeeds (thanks to Dilyan Palauzov).
- Check that 'myaddr' is among those specified in the script (thanks to Paul Stevens).
- Add AM_MAINTAINER_MODE to only rebuild flex/bison sources if required.
- Removing patches/patch-lib_Message_Field.pm, the same fix applied
(upstream)
- Update 2.102 to 2.117
Limitations to be fixed:
- when lines are over 997 chars, then the transfer-encoding should
automatically change from 'none' into 'quoted-printable' or 'base64'
version 2.117: Sun Aug 24 15:19:01 CEST 2014
Fixes:
- missed a line from the patch of
rt.cpan.org#98225 [Andrew Beverley]
version 2.116: Sat Aug 23 11:27:16 CEST 2014
Improvements:
- add Mail::Transport::SMTP->new(esmtp_options) and
trySend(esmtp_options)
rt.cpan.org#97630 [Andrew Beverley]
- add Mail::Transport::SMTP->new(from)
rt.cpan.org#97636 [Andrew Beverley]
- ::Field::Date parse support for numeric months (format used
by some broken clients/Yahoo auto-responder)
rt.cpan.org#98225 [Andrew Beverley]
version 2.115: Wed May 28 15:27:48 CEST 2014
Improvements:
- All regression tests pass on Windows!
[Markus Spann]
version 2.114: Thu May 8 10:49:17 CEST 2014
Fixes:
- check for Test::Pod on Windows [cpantesters]
- do not break PATH in test.pl on Windows [Markus Spann]
- fix ::Locker::POSIX "read-only" error in Perl >5.18.2 [Jim In Aus]
version 2.113: Wed Apr 16 14:07:37 CEST 2014
Fixes:
- revert change which replaced IO::File by open($fh), because it
does not support tell in Perl 5.10 [Scott Smedley]
version 2.112: Fri Mar 14 13:18:57 CET 2014
Changes:
- do not attempt POSIX lock on Windows [Christian Walde]
Fixes:
- ::Field::Date do not attempt to restore TZ with undef.
[Andrew Beverley]
- many regression test fixes for Windows [Christian Walde]
Improvements:
- Mail::Transport::SMTP uses Net::SMTP which sometimes needs
Net::STMPS being installed. [Scott Smedley]
version 2.111: Fri Jan 24 11:21:30 CET 2014
Fixes:
- do not explicitly clean-up head and body during DESTROY of a
message, because those may be reused in other messages.
Fix for rebuild bug, reported by [Andrew Beverley]
- open files in ::Body::File with :raw, not to corrupt line-
endings on Windows. rt.cpan.org#92374 [Joseph Strom]
Improvements:
- add dispositionFilename to replacement text of deleted parts
[Mark Nienberg]
- change documentation syntax
version 2.110: Sun Jan 5 18:50:59 CET 2014
Fixes:
- ::Field::Date must compute in UTC [Andrew Beverley]
- ::Field::Date negated -0600 timestamp [Andrew Beverley]
- ::Field::Attribute should allow blanks around the '='
rt.cpan.org#90035 [Max Bowsher]
- ::dispositionFilename() should use a study()d header
rt.cpan.org#90342 [Claus Jeppesen]
- begin :html in ::Box-Index
Improvements:
- add Mail::Message::Construct::Rebuild::removeExtraAlternativeText()
Implemented by [Andrew Beverley]
version 2.109: Mon Aug 19 12:55:30 CEST 2013
Fixes:
- ::Field::Date format may lack leading 0 in the hour.
rt.cpan.org#86716 [Andrew Beverley]
- ::Field::Date format, rare time formats use dots in time, not
colon. It is illegal, but safe to support.
rt.cpan.org#86864 [Andrew Beverley]
- ::MBox, pass non-default subfolder extension to siblings.
rt.cpan.org#87912 [James Wright]
Improvements:
- spell fixes rt.cpan.org#86450 [Salvatore Bonaccorso]
version 2.108: Tue Jun 25 09:21:59 CEST 2013
Fixes:
- Mail::Box::Locker::FcntlLock cannot set l_pid, read only
Improvements:
- use Devel::GlobalDestruction
rt.cpan.org#80611 [Ribasushi]
- imap4: support TLS
rt.cpan.org#82990 [Rolf Krahl]
version 2.107: Wed Nov 28 12:25:59 CET 2012
Fixes:
- unset $ENV{PERLIO} in test.pl and open more files explicitly
as ":raw"
[Thomas Krichel]
- script/mailbox2html contained a few errors like '$ENV{}' (vars
inside single quotes) [John Delacour]
- ::POP3s should use ::POP3::Message (without 's') [Gabriel Reyes]
- folder->new(message_type) documentation was mistaken about the
default.
Improvements:
- add $date to Mail::Transport::IMAP4::appendMessage()
rt.cpan.org#79680 [Daniel Westermann-Clark]
- remove Mail::Transport::Dbx from the optional extensions: too
old. [John Delacour]
version 2.106: Wed Aug 15 23:49:44 CEST 2012
Fixes:
- $field->study did not handle trailing new-lines correctly.
- perl 5.16 complains about overload +0, which should have
been 0+ rt.cpan.org@77997 [Toby Inkster]
- resolved warning in test tests/30encode/90body.t
Improvements:
- new method $part->partNumber()
version 2.105: Mon May 7 09:09:23 CEST 2012
Fixes:
- warn when transfer-encoding is done without explicit charset.
This flags hard to find bugs in message construction.
Original bug discovered by [Andrew Beverely]
Improvements:
- added tests/30encode/50charset.t
- add overloading to ::Field::Attribute objects, used in study()
- $body->decoded is now optimized when a conversion is needed
between charsets which are aliases of each other, or spelled
differently.
version 2.104: Mon Apr 23 16:51:29 CEST 2012
Fixes:
- ::Body::decoded() seems to work only for plain/text. Not ok.
version 2.103: Fri Apr 20 10:01:35 CEST 2012
Fixes:
- time() calculation in ::Field::Date had time-zone effect
reversed.
- email address phrase parsing should decode (=???=) in
::Field::Full (study)
Detected by [Andrew Beverley]
- replace 'length' by 'defined' to check whether a maildir message
has flags.
Reported by [Steven Preston]
- $msg->decoded did not behave as $msg->body->decoded. Repaired.
- rebuild did not handle removal of all parts of a multipart
correctly. Reported by [Andrew Beverley]
- decoding some encoded headers with study()
- fix "skip tests" logic during installation.
Improvements:
- add contentId() to body objects.
[Gordon Haveland]
- skip empty alternatives of multiparts.
Detected by [Andrew Beverley]
- no 'undefined' warning in ::Field::Date when a date does
not have a day-of-week or timezone.
2.228 2013-09-28 21:11:48 America/New_York
repackage, update repo and bugtracker metadata
2.227 2011-11-14
avoid leaking filehandles for logging
2.226 2011-11-11
do not an impossible-to-survive state when MimeEntity autotype fails
-Add LICENSE= ${PERL5_LICENSE}
(upstream)
- Update 1.6.6 to 1.6.7
1.6.7 Sun Aug 23 14:05:04 CST 2009
- David Mayo sent a patch that adds partition support for the rename function
Changelog:
Fixed Fixes an issue where using LDAP autocomplete could end up with blank entries in the compose addressing list (Bug 1045753)
Fixed Fixes an issue where IRC participants were not removed from the display on leaving a channel.
Fixed Fixes a regression where Thunderbird wasn't respecting the skip integration option on the default client dialog.
Fixed Security fixes can be found here
Fixed in Thunderbird 31.3
2014-90 Apple CoreGraphics framework on OS X 10.10 logging input data to /tmp directory
2014-89 Bad casting from the BasicThebesLayer to BasicContainerLayer
2014-88 Buffer overflow while parsing media content
2014-87 Use-after-free during HTML5 parsing
2014-85 XMLHttpRequest crashes with some input streams
2014-83 Miscellaneous memory safety hazards (rv:34.0 / rv:31.3)
Packaged in wip by Petar Bogdanovic.
The mail gopher (mopher) is an extension to all mail transfer agents
that implement the Sendmail Milter API. It reads a list of rules and
acts on each incoming mail delivery attempt based on various criteria
and existing states.
Mopher supports indiscriminate and selective grey- and whitelisting of
either individual addresses or whole domains (based on reverse lookups
and rules provided by Mozilla's Public Suffix List). Access to tables
and state-related data passes through a generic interface and is then
translated by one of the available backend drivers.
version 2.14: Fri Nov 21 17:12:42 CET 2014
Fixes:
- threads and Mail::Field initiation
rt.cpan.org#99153 [Autumn Lansing] and [Arne Becker]
Improvements:
- warn when loading of some Mail::Field::* fails [Arne Becker]
* GPG stdout buffer is now put into multibyte mode even when emacs is using
unibyte mode in general (such as under 'standard-display-european'). This
should fix the "inserts \201 before non-ascii characters" bugs
(SF#496157, SF#501891, possibly others). A test case was added to catch
these bugs in the future.
* new remailer support for modern mixmaster and mixminion clients, which
send the message directly rather than modify the emacs buffer and
allowing the user to send the message through their emacs MUA mode.
** added "mc-default-remailer-scheme" to choose which remailer method you
want to use: type1, mixmaster, or mixminion. [C-c / r] now does a
remailer-scheme -specific function. Various MUA modes can behave
differently if they wish.
* Added support for PGP 6.5, generously contributed by Derek Atkins.
* Added support for the Wanderlust MUA mode.
* Support GNU Emacs 23.
1.300016 2014-10-10 22:54:00-04:00 America/New_York
- no changes since 1.300015, just made non-trial release
1.300015 2014-09-12 22:01:37-04:00 America/New_York (TRIAL RELEASE)
[THIS MIGHT BREAK YOUR CODE]
- version 1.300008 was meant to rewrite line endings when sending to
sendmail, but the change was not effective; it has been fixed
1.405 2014-05-09 22:28:43-04:00 America/New_York
minor tweaks to how message-id local part is generated
1.404 2014-01-13 23:04:43-05:00 America/New_York
no changes since previous release
1.403 2013-08-13 09:11:47 America/New_York
[This might break your code]
no longer a subclass of Email::Address!
0.859 2014-09-16 18:29:32-04:00 America/New_York
- all the changes in this release contributed by Pali Rohár
- support for mboxcl and mboxcl2
- add ability to read from a filehandle
- add next_from and next_messageref methods
0.858 2014-01-07 10:54:18-05:00 America/New_York
typo fixes in docs (thanks, Florian Schlichting)
(upstream) update 2.2.25 to 2.2.27
2011-03-07 Jeffrey Stedfast <fejj@novell.com>
* configure.in: Bumped version to 2.2.27
* gmime/gmime-gpg-context.c (gpg_ctx_parse_status): Treat EXPSIG,
EXPKEYSIG, and REVKEYSIG the same as GOODSIG/BADSIG status
messages in that all of them denote a new signer info.
* gmime/gmime-stream-mem.c (stream_write): Correctly calculate the
end boundary of the stream when bound_end is -1.
* gmime/gmime-utils.h (GMIME_QP_ENCODE_LEN): Fixed to take into
acount the possibility of having to force-wrap lines at 72+
characters.
(GMIME_UUENCODE_LEN): Fixed to prevent possible buffer overflows.
2010-03-26 Jeffrey Stedfast <fejj@novell.com>
* configure.in: Bumped version to 2.2.26
2010-03-26 Jeffrey Stedfast <fejj@novell.com>
Fixes for bug #613653
* gmime/gmime.c (g_mime_init): Initialize GMimeObject's type
registry.
(g_mime_shutdown): Shut it down here.
* gmime/gmime-object.c (g_mime_object_type_registry_init): Renamed
a bit and fixed to not use g_atexit(). Also made internal-public.
(g_mime_object_type_registry_shutdown): Renamed and made
internal-public.
(g_mime_object_register_type): Don't init the type system anymore.
(g_mime_object_new_type): Same here.
* configure.ac: Bumped version to 2.6.20
2014-02-19 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-parser.c (parser_scan_content): Improved performance
by using a SIMD hack when scanning for the end of a line.
2014-02-19 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-message.c (message_remove_header): Don't clear the
mime_part header stream unless we actually remove a header.
(message_write_to_stream): Only add nwritten to the total if we've
written a MIME-Version header.
2013-12-29 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-object.c
(g_mime_object_set_content_disposition_parameter): Unref the
disposition. Thanks to Mario Theodoridis for this patch.
2013-11-02 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-message.c (write_references): Don't write out 2
spaces between the ':' and the first message-id. Fixes bug
#711305.
2013-10-19 Jeffrey Stedfast <fejj@gnome.org>
* configure.ac: Bumped version to 2.6.19
2013-09-29 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-message.c (write_references): Custom writer for
References headers so that individual msgid tokens do not get
folded. Fixes bug #709031.
2013-09-26 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime.c (g_mime_init): Initialize the mutexes
earlier. Fixes bug #708818.
2013-09-15 Jeffrey Stedfast <fejj@gnome.org>
* configure.ac: Bumped version to 2.6.18
2013-08-21 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-part.c (write_content): Reset the content stream
after writing it.
2013-08-14 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-filter-html.c (citation_depth): Fixed an ABR by
passing in an inend parameter.
2013-08-12 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-stream-file.c (g_mime_stream_file_new_for_path): New
convenience function that handles opening the file for you.
* gmime/gmime-stream-fs.c (g_mime_stream_fs_new_for_path): New
convenience function that handles opening the file for you.
2013-08-11 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-message.c (g_mime_message_set_reply_to): Fixed this
function to parse the reply_to string just like
g_mime_message_set_sender() does so that the reply_to field can be
guaranteed to be in UTF-8.
* gmime/*.c: Updated API documentation for functions taking or
returning strings to clarify whether the strings should be in
UTF-8 or not.
2013-08-10 Jeffrey Stedfast <fejj@gnome.org>
* mono/GMime.metadata: Various fixups to get rid of warnings.
* gmime/gmime.c (g_mime_init): Don't call g_type_init() if glib >=
2.35.1
2013-08-08 Jeffrey Stedfast <fejj@gnome.org>
* gmime/internet-address.c (decode_address): Properly deal with
obsolete routing information.
2013-08-08 Jeffrey Stedfast <fejj@gnome.org>
* configure.ac: Bumped version to 2.6.17
2013-08-08 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-parser.c (parser_content_type): If no Content-Type
header exists and the parent is a multipart/digest, default to
message/rfc822 instead of text/plain.
(parser_construct_leaf_part): If the Content-Type header didn't
exist, use the default content-type values instead of assuming
text/plain.
2013-08-07 Jeffrey Stedfast <fejj@gnome.org>
According to Rfc2046 Section 5.1.1, boundary markers may optionally
be followed by lwsp.
* gmime/gmime-parser.c (is_boundary): New convenience function to
check that the text matches a boundary, possibly followed by lwsp.
(check_boundary): Use is_boundary().
(found_immediate_boundary): Use is_boundary().
Fixes bug #705612
2013-07-02 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-stream-cat.c (stream_substream): Fixed to properly
handle a 0-byte substream at the end of the very last source
stream. Fixes bug #701572.
2013-06-30 Jeffrey Stedfast <fejj@gnome.org>
* configure.ac: Bumped version to 2.6.16
2013-06-30 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-gpg-context.c (gpg_ctx_set_mode):
GPG_CTX_MODE_SIGN_ENCRYPT also requires a passphrase.
2013-05-05 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-filter-best.c (filter_filter): Reset the linelen
state to 0 when we encounter a '\n'.
2013-05-04 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-part-iter.c: Modified to work for non-multipart
messages.
2013-05-04 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-utils.c (rfc2047_encode): Respect the new
GMIME_ENABLE_USE_ONLY_USER_CHARSETS initialization flag.
* gmime/gmime.h: Define a new GMIME_ENABLE_USE_ONLY_USER_CHARSETS
initialization flag.
2013-04-05 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-utils.c (header_fold_tokens): New internal function
that replaces the older header_fold() function. This new one uses
the rfc2047 tokenizer so that we share the same rfc2047 workaround
logic in the tokenizer.
Fixes bug #697407
2013-02-23 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-filter-html.c: Disable g_warnings unless warnings
are enabled in the build.
6.44 2014-10-13 Generic regex now matches against the reverse dns PTR value
6.43 2014-07-18 Allow broken SRS0+ rather than the correct SRS0= tag.
6.42 2014-06-28 Never add auto-whitelist entries for outgoing mail from localhost.
6.41 2014-03-21 Unique ip connection limits only apply to authenticated connections.
- Add comment for patch-util_avutil.h (from commit log)
- Remove patches, found the same change incorporated:
patches/patch-libasync_itree.h
patches/patch-libasync_qhash.h
patches/patch-libasync_vec.h
(upstream)
- update 0.8.2 to 0.8.4
* Changes in release 0.8.4
- Switch to new resolver library interface, as previous way of
reloading resolv.conf is no longer compatible with glibc.
- Set IP_FREEBIND option if available.
- Added systemd avenger.service file.
* Changes in release 0.8.3
- Updated to work with gcc 4.7.
2013-06-28
* Fix three crashes in command line and environment variable parsers
that caused NULL pointer dereferences with long option variants
of bogofilter --syslog-tag, or bogoutil --timestamp-date, or when
bogotune -M<file> cannot derive the bogofilter directory.
Reported by Alexandre Rebert, found with Mayhem tool.
* Add getopt_long_chk(), a getopt_long variant that checks if the
overlapping short and long options agree on whether their argument
is not required, mandatory, or optional. If they disagree, the
program aborts.
* Fix a crash in command line parser that causes a NULL pointer
dereference when --db-cachesize is used without argument.
Found with getopt_long_chk().
2013-01-20
* Change lexer API/ABI a bit so as to work with flex 2.5.36 generated
lexers (for instance, on Fedora 18 "Spherical Cow") that flip the
type of yyleng from int to size_t. We use a signed long internally.
2012-12-30
* The bogofilter project was updated to the new SourceForge.net
platform. This has caused the URLs to change. Use one of these
commands for a read-only checkout:
svn checkout svn://svn.code.sf.net/p/bogofilter/code/trunk bogofilter
svn checkout http://svn.code.sf.net/p/bogofilter/code/trunk bogofilter
And developers would use, replacing joe by their sf.net login:
svn checkout --username=joe svn+ssh://m-a@svn.code.sf.net/p/bogofilter/code/trunk bogofilter
2012-12-03
* Add bogofilter-SA-2012-01 (CVE-2012-5468).
* Fix XML form of Bulgarian FAQ so that it validates;
and validate XHTML at build time.
* Mark Berkeley DB 5.2.42 and 5.3.21 supported.
Notmuch 0.19 (2014-11-14)
=========================
Overview
--------
This release improves the reliability of `notmuch dump` and the error
handling for `notmuch insert`. The new `notmuch address` command is
intended to make searching for email addresses more convenient. At the
library level the revised handling of missing messages fixes at least
one bug in threading. The release also includes several interface
improvements to the emacs interface, most notably the ability to bind
keyboard shortcuts to saved searches.
Command-Line Interface
----------------------
Stopped `notmuch dump` failing if someone writes to the database
The dump command now takes the write lock when running. This
prevents other processes from writing to the database during the
dump which would cause the dump to fail. Note, if another notmuch
process already has the write lock the dump will not start, so
script callers should still check the return value.
`notmuch insert` requires succesful message indexing for success status
Previously the `notmuch insert` subcommand indicated success even if
the message indexing failed, as long as the message was delivered to
file system. This could have lead to delivered messages missing
tags, etc. `notmuch insert` is now more strict, also requiring
succesful indexing for success status. Use the new `--keep` option
to revert to the old behaviour (keeping the delivered message file
and returning success even if indexing fails).
`notmuch insert` has gained support for `post-insert` hook
The new `post-insert` hook is run after message delivery, similar to
`post-new`. There's also a new option `notmuch insert --no-hooks` to
skip the hook. See the notmuch-hooks(1) man page for details.
`notmuch deliver` is deprecated
With this release we believe that `notmuch insert` has reached
parity with `notmuch deliver`. We recommend that all users of
`notmuch deliver` switch to `notmuch insert` as the former is
currently unmaintained.
`notmuch search` now supports `--duplicate=N` option with `--output=messages`
Complementing the `notmuch search --duplicate=N --output=files`
options, the new `--duplicate=N --output=messages` combination
limits output of message IDs to messages matching search terms that
have at least `N` files associated with them.
Added `notmuch address` subcommand
This new subcommand searches for messages matching the given search
terms, and prints the addresses from them. Duplicate addresses are
filtered out. The `--output` option controls which of the following
information is printed: sender addresses, recipient addresses and
count of duplicate addresses.
Emacs Interface
---------------
Use the `j` key to access saved searches from anywhere in notmuch
`j` is now globally bound to `notmuch-jump`, which provides fast,
interactive keyboard shortcuts to saved searches. For example,
with the default saved searches `j i` from anywhere in notmuch will
bring up the inbox.
Improved handling of the unread tag
Notmuch now marks an open message read (i.e., removes the unread
tag) if point enters the message at any time in a show buffer
regardless of how point got there (mouse click, cursor command, page
up/down, notmuch commands such as n,N etc). This fixes various
anomalies or bugs in the previous handling. Additionally it is
possible to customize the mark read handling by setting
`notmuch-show-mark-read-function` to a custom function.
Expanded default saved search settings
The default saved searches now include several more common searches,
as well as shortcut keys for `notmuch-jump`.
Improved `q` binding in notmuch buffers
`q` will now bury rather than kill a notmuch search, show or tree
buffer if there are multiple windows showing the buffer. If only a
single window is showing the buffer, it is killed.
`notmuch-show-stash-mlarchive-link-alist` now supports functions
Some list archives may use a more complicated scheme for referring
to messages than just concatenated URL and message ID. For example,
patchwork requires a query to translate message ID to a patchwork
patch ID. `notmuch-show-stash-mlarchive-link-alist` now supports
functions to better cover such cases. See the help documentation for
the variable for details.
Library changes
---------------
Introduced database version 3 with support for "database features."
Features are independent aspects of the database schema.
Representing these independently of the database version number will
let us evolve the database format faster and more incrementally,
while maintaining better forwards and backwards compatibility.
Library users are no longer required to call `notmuch_database_upgrade`
Previously, library users were required to call
`notmuch_database_needs_upgrade` and `notmuch_database_upgrade`
before using a writable database. Even the CLI didn't get this
right, and it is no longer required. Now, individual APIs may
return `NOTMUCH_STATUS_UPGRADE_REQUIRED` if the database format is
too out of date for that API.
Library users can now abort an atomic section by closing the database
Previously there was no supported way to abort an atomic section.
Callers can now simply close the database, and any outstanding
atomic section will be aborted.
Add return status to notmuch_database_close and
notmuch_database_destroy
Bug fixes and performance improvements for thread linking
The database now represents missing-but-referenced messages ("ghost
messages") similarly to how it represents regular messages. This
enables an improved thread linking algorithm that performs better
and fixes a bug that sometimes prevented notmuch from linking
messages into the same thread.
nmbug
-----
The Perl script has been translated to Python; you'll need Python 2.7
or anything from the 3.x line. Most of the user-facing interface is
the same, but `nmbug help` is not `nmbug --help`, and the following nmbug
commands have slightly different interfaces: `archive`, `commit`,
`fetch`, `log`, `pull`, `push`, and `status`. For details on the
new interface for a given command, run `nmbug COMMAND --help`.
nmbug-status
------------
`nmbug-status` can now optionally load header and footer templates
from the config file. Use something like:
{
"meta": {
"header": "<!DOCTYPE html>\n<html lang="en">\n...",
"footer": "</body></html>",
...
},
...
},
Python Bindings
---------------
Add support for `notmuch_query_add_tag_exclude`
Build System
------------
The notmuch binaries and libraries are now build with debugging symbols
by default. Users concerned with disk space should change the
defaults when configuring or use the strip(1) command.
messages into (or out of) a designated IMAP "spam" folder.
Consider the following scenario. Your mailbox is flooded with tons
of mail. They are delivered to the configured folders based on the
arbitrary spam system judgement. This judgement is not always correct
or not always what you would like it to be, however. This is where
this plugin comes into play.
All you have to do is move the mail into the correct folder. All
the rest in order to let the spam system know it made an error will
be done automatically by this plugin.
know grandparent PID. With this change, I can correlate rejections
from my homegrown badrcptto-alike filter with qmail-smtpd sessions.
While here, add LICENSE and otherwise placate pkglint.
Bump PKGREVISION.
Changelog:
31.2.0:
Fixed
Fixed a case where having a contact and card in an address book with the same name could send to the mailing list (Bug 1008718)
Fixed
Invalid certificate issue with mozilla::pkix (see bug 1042889)
Fixed
Importing an RSA private key fails if p < q (see bug 1049435)
Fixed
Security fixes can be found here
31.1.2:
Fixed
Fixed an issue where anchor links would not work in HTML emails (Bug 974857)
Fixed
Security fixes can be found here
31.1.1:
Fixed
Fixed an issue where mailing lists with spaces in their names couldn't be autocompleted (Bug 1060901)
Fixed
Fixed an occasional startup crash (Bug 1005336)
31.1.0:
Fixed
Security fixes can be found here
Fixed
Improved performance of autocomplete for large address books (Bug 984875)
Fixed
Fixed an issue with IMAP being slow when looking for folders on certain server types (Bug 799821, Bug 859269)
Fixed
Fixed various theme issues relating to titlebars and toolbars (Bug 1007225, Bug 1026608, Bug 1041211, Bug 1046563, Bug 1054260)
# Fixed in Thunderbird 31.2
2014-81 Inconsistent video sharing within iframe
2014-79 Use-after-free interacting with text directionality
2014-77 Out-of-bounds write with WebM video
2014-76 Web Audio memory corruption issues with custom waveforms
2014-75 Buffer overflow during CSS manipulation
2014-74 Miscellaneous memory safety hazards (rv:33.0 / rv:31.2)
# Fixed in Thunderbird 31.1.2
2014-73 RSA Signature Forgery in NSS
# Fixed in Thunderbird 31.1
2014-72 Use-after-free setting text directionality
2014-70 Out-of-bounds read in Web Audio audio timeline
2014-69 Uninitialized memory use during GIF rendering
2014-68 Use-after-free during DOM interactions with SVG
2014-67 Miscellaneous memory safety hazards (rv:32.0 / rv:31.1 / rv:24.8)
1.13.0 10-August-2014
----------------------------------------------
- Fixed virtual collections statistics
- Fixed tag RID fetch
- Fixed HRID-based fetches
- Fixed race condition in StorageDebugger
- Use FindBacktrace.cmake from CMake 3.0 instead of our own detection
1.12.90 07-July-2014
----------------------------------------------
- MERGE command for faster synchronization
- Optimizations in various commands handlers
- SELECT command is obsolete now
- Performance and concurrency improvements in QSQLITE3 driver
- Introduced Collection sync preferences as an improvement over the
IMAP-based subscription model
- Disable filesystem copy-on-write for DB files when running on Btrfs
- Introduced direct streaming of external parts
- Fixed SearchManager DBus interface not being registered to DBus
- Fixed handling of tags in AK-APPEND and MERGE commands
- Various fixes in virtual collections handling
1.12.1 07-April-2014
----------------------------------------------
- Fixed deadlock in SearchManager
- Fixed notification emission when appending items
- Fixed ItemRetriever ignoring changeSince argument
- Fixed X-AKAPPEND command response
- Fixed RID-based FETCH
- Fixed data loss in case of long-lasting copy or move operations
1.12.0 25-March-2014
----------------------------------------------
- Improved 'akonadictl status' command output
- Fixed indexing of items in collections with short cache expiration
- Fixed building Akonadi in subdirectory
- Fixed deadlock in SearchManager
- Fixed runtime warnings
1.11.90 19-March-2014
----------------------------------------------
- Fixed collection scheduling
- Fixed indexing of expired items from local resources
- Fixed database schema update with PostgreSQL
- Fixes in searching and search updates
1.11.80 28-February-2014
----------------------------------------------
- Server-search support
- Search plugins support
- Tags support
- Fixes and improvements in search
- Fixes in protocol parser
- Fixed inter-resource moves
- Fixed .desktop files parsing
- Optimized collections tasks scheduling
- Optimized flags handling
- Optimized appending new items via AK-APPEND
- Handle database transactions deadlocks and timeouts
- Improved PostgreSQL support
- Soprano is now an optional dependency
- Removed MySQL Embedded support
1.11.0 28-November-2013
----------------------------------------------
- fix joined UPDATE queries failing with SQLite
1.10.80 05-November-2013
----------------------------------------------
- Servser-side notification filtering
- GID support
- Export custom agent properties to clients
- Faster Akonadi shutdown
- Improved and faster database schema check on start
- Enabled C++11 support
- Optimize some SQL queries
- Store only relative paths to external payload files in database
1.10.3 04-October-2013
----------------------------------------------
- Fix support for latest PostgreSQL
- Check MySQL version at runtime, require at least 5.1
- Fix crash when destroying DataStore with backends other than MySQL
- Fix problem with too long socket paths
- Send dummy queries to MySQL to keep the connection alive
- Fix crash when no flags are changed
Alpine uses a function called panic(). However, mach/mach.h, which somehow
ends up always included, defines panic with different arguments. Rename
alpine's panic to Panic on Darwin.
Version 0.4.5 introduced one new 'feature', but it caused build
problems. This release fixes that. If you've successfully installed
0.4.5, you do not need to upgrade.
Changelog v0.4.6:
- After make distclean, the distributed tarball would fail to recompile.
This causes problems for some distribution builds.
Changelog v0.4.5:
+ Added a Pigeonhole version banner to doveconf output. This way, future
bug reports will also include Pigeonhole version information.
- Fixed handling of implicit keep. Last version erroneously reported
that implicit keep succeeded after an earlier failure, while it in
fact had failed. Particularly occurred for mailbox quota errors.
- Fixed segfault occurring on SunOS systems when there is no active
script.
Changelog v0.4.4:
* Added support for Japanese mail addresses with dots at non-standard
places in localpart.
* Changed handling of ENOSPACE into a normal temporary failure and added
handling of ENOQUOTA as a user error.
* Restructured result execution, so that all actions which involve mail
storage are always committed before all others.
+ Implemented support for generic Sieve storages. Using alternative
storages now also possible for sieve_before/sieve_after.
+ Implemented storage driver for retrieving Sieve scripts from LDAP.
This currently cannot be used with ManageSieve.
+ Implemented sieve_redirect_envelope_from setting, which allows
configuring the envelope sender of redirected messages.
- Fixed handling of mail storage errors occurring while evaluating the
input message.
- managesieve-login:
- Removed bogus ALERT response code returned for AUTHENTICATE
command.
- Fixed handling of invalid initial response argument to AUTHENTICATE
command.
- Fixed handling of stream errors in lexical scanner.
- Fixed handling of SMTP errors. Permanent and temporary errors were
mixed up.
- Fixed several problems reported by CLang 3.4.
- duplicate extension: Fixed erroneous compile error about conflicting
tags when `:handle' argument was used last.
- relational extension: Fixed error handling of `:value' match.
- editheader extension: Fixed header unfolding and header iteration.
- mailbox extension: Fixed the `:create' tag, which erroneously
subscribed an existing folder.
- extprograms plugin: Fixed handling of error codes.
- doveadm-sieve plugin: Fixed several bugs. Synchronization of symbolic
link in the file storage should now also work properly.
Some small fixes and changes to v2.2.14. This release is mainly in the hope
that it could still make it into the next Debian stable instead of v2.2.14 -
mainly because of a couple of new assert crashes that started happening in
v2.2.14 and should be fixed now.
* Plugins can now print a banner comment in doveconf output
(typically the plugin version)
* Replication plugin now triggers low (instead of high) priority for
mail copying operations.
* IMAP/POP3/ManageSieve proxy: If destination server can't be
connected to, retry connecting once per second up to the value of
proxy_timeout. This allows quick restarts/upgrades on the backend
server without returning login failures.
* Internal passdb lookups (e.g. done by lmtp/doveadm proxy) wasn't
returning failure in some situations where it should have (e.g.
allow_nets mismatch)
* LMTP uses mail_log_prefix now for logging mail deliveries instead of
a hardcoded prefix. The non-delivery log prefix is still hardcoded
though.
+ passdb allow_nets=local matches lookups that don't contain an IP
address (internally done by Dovecot services)
+ Various debug logging and error logging improvements
- Various race condition fixes to LAYOUT=index
- v2.2.14 virtual plugin crashed in some situations
Notmuch 0.18.2 (2014-10-25)
===========================
Test Suite
----------
Translate T380-atomicity to use gdb/python
The new version is compatible with gdb 7.8
Emacs 24.4 related bug fixes
The Messages buffer became read-only, and the generated mime
structure for signatures changed slightly.
Simplify T360-symbol-hiding
Replace the use of `objdump` on the object files with `nm` on the
resulting lib.
Bugfix for Postfix 2.11, 2.10, 2.9 and 2.8:
* Fix for configurations that prepend message headers with Postfix
access maps, policy servers or Milter applications. Postfix now
hides its own Received: header from Milters and exposes prepended
headers to Milters, regardless of the mechanism used to prepend
a header. This fix reverts a partial solution that was released
on October 13, 2014, and replaces it with a complete solution.
Portability fix for Postfix 2.11:
* Portability fix for MacOS X 10.7.x (Darwin 11.x) build procedure.
* lmtp: Delivered-To: header no longer contains <> around the email
address. Other MDAs don't have it either.
* "Out of disk space" errors are now treated as temporary errors
(not the same as "Out of disk quota").
* replication plugin: Use replication only for users who have a
non-empty mail_replica setting.
+ lmtp proxy: Log a line about each mail delivery.
+ Added login_source_ips setting. This can be used to set the source IP
address round-robin from a pool of IPs (in case you run out of TCP
ports).
+ Rawlog settings can use tcp:<host>:<port> as the path.
+ virtual plugin: Don't keep more than virtual_max_open_mailboxes
(default 64) number of backend mailboxes open.
+ SSL/TLS compression can be disabled with ssl_options=no_compression
+ acl: Global ACL file now supports "quotes" around patterns.
+ Added last-login plugin to set user's last-login timestamp on login.
+ LDAP auth: Allow passdb credentials lookup also with auth_bind=yes
- IMAP: MODSEQ was sent in FETCH reply even if CONDSTORE/QRESYNC wasn't
enabled. This broke at least old Outlooks.
- passdb static treated missing password field the same as an empty
password field.
- mdbox: Fixed potential infinite looping when scanning a broken
mdbox file.
- imap-login, pop3-login: Fixed potential crashes when client
disconnected unexpectedly.
- imap proxy: The connection was hanging in some usage patterns. This
mainly affected older Outlooks.
- lmtp proxy: The proxy sometimes delivered empty mails in error
situations or potentially delivered truncated mails.
- fts-lucene: If whitespace_chars was set, we may have ended up
indexing some garbage words, growing the index size unnecessarily.
- -c and -i parameters for dovecot/doveadm commands were ignored if
the config socket was readable.
- quota: Quota recalculation didn't include INBOX in some setups.
- Mail headers were sometimes added to dovecot.index.cache in wrong
order. The main problem this caused was with dsync+imapc incremental
syncing when the second sync thought the local mailbox had changed.
- doveadm backup didn't notice if emails were missing from the middle
of the destination mailbox. Now it deletes and resyncs the mailbox.
Bugfixes for Postfix 2.11, 2.10, 2.9 and 2.8:
* Fix for DMARC implementations based on SPF policy plus DKIM
Milter. The PREPEND access/policy action added headers ABOVE
Postfix's own Received: header, exposing Postfix's own Received:
header to Milters (protocol violation) and hiding the PREPENDed
header from Milters. PREPENDed headers are now added BELOW
Postfix's own Received: header and remain visible to Milters.
* The Postfix SMTP server logged an incorrect client name in
reject messages for check_reverse_client_hostname_access and
check_reverse_client_hostname_{mx,ns}_access. They replied with
the verified client name, instead of the name that was rejected.
* The qmqpd daemon crashed with null pointer bug when logging a
lost connection while not in a mail transaction.
"p5-Mail-SPF". The first two packages install "bin/spfd" while the
latter install "sbin/spfd".
Problem pointed out by Petar Bogdanovic in PR pkg/49271.
- Fix insert-signature command in external compose window if opened from inline compose screen
- Initialize HTML editor before restoring a message from localStorage
- Add 'sig_max_lines' config option to default config file
- Add option to specify IMAP connection socket parameters - imap_conn_options
- Add option to set default message list mode - default_list_mode
- Enable contextmenu plugin for TinyMCE editor
- Fix some mime-type to extension mapping checks in Installer
- Fix errors when using localStorage in Safari's private browsing mode
- Fix bug where $Forwarded flag was being set even if server didn't support it
- Fix various iCloud vCard issues, added fallback for external photos
- Fix invalid Content-Type header when send_format_flowed=false
- Fix errors when adding/updating contacts in active search
- Fix incorrect thumbnail rotation with GD and exif orientation data
- Fix contacts list update after adding/deleting/moving a contact
- Fix handling of email addresses with quoted domain part
- Fix comm_path update on task switch
- Fix error in MSSQL update script 2013061000.sql
- Fix validation of email addresses with IDNA domains
version 2.09: Sun Sep 14 18:12:08 CEST 2014
Improvements:
- documentation use consistent parameter casing
- do not use '//' to support 5.8.*
rt.cpan.org#98664 [Paul]
Integrated SPF checking is now available through the new
SPFSelfValidate and SPFIgnoreResults settings.
Feature request #79: Optionally ignore clients that authenticated
using SMTP AUTH.
Fix bug #60, part II: Default AuthservID to the name provided by the
MTA, not the local host name, which is consistent with what
OpenDKIM does.
Fix bug #72: Don't crash when From fields are absent.
Fix bug #74: Change "Forensic" to "Failure" just about everywhere
to match the language now being used in the base DMARC
draft. Note that this also changes some names in the
configuration file.
Fix bug #75: Correct typo in MIME of forensic reports.
Fix bug #76: Repair damage with respect to Authentication-Results
header field selection.
Fix bug #77: Request quarantine from the MTA during option
negotiation.
Fix bug #78: Add missing newline in forensic report header.
Fix bug #90: Make "--with-sql-backend" without any value do the
right thing.
Fix bug #93: Honor size limits in URIs.
Make "smime" and "rrvs" legal Authentication-Results methods.
Provide better logging when pclose() for a forensic report returns
non-zero.
Add configuration support for internal SPF checks. Includes hooks in
the milter to check that SPF is configured to do so.
This can use a private SPF implementation or libspf2.
Fix strlcat() and strlcpy() support for Debian.
REPORTS: Feature request #80: Generate aggregate reports on UTC
day boundaries.
REPORTS: Feature request #84: Optionally expire old data from
lower-growth tables.
REPORTS: Fix bug #70: Fix date range generation in reports.
REPORTS: Fix bug #82: Fix recording of report timestamp to avoid lost
records.
REPORTS: Fix bug #83: When expiring data, truncate the signatures table
if all messages were expired..
REPORTS: Fix bug #85: Report subdomain policy.
LIBOPENDMARC: Fix bug #71: Fix "rua" extraction from DMARC records.
LIBOPENDMARC: Added support for milter to perform own spf checks.
Three new files: opendmarc_spf.c, opendmard_spf_dns.c and
test/test_spf.cl, allow integrated SPF support. Support for
use of libspf2 is also provided.
arc4random_buf(); netbsd-5 (and presumably earlier) has the one but
not the other. Just disable it, because all it's using the randomness
for is message-ids. Fixes the netbsd-5 build.
Note: this commit is part of reorganizing some of the recently
imported R packages, which are being reimported into more appropriate
categories (and removed from math) as a result of a recent discussion
on tech-pkg and privately with wiz@. See the thread starting with:
http://mail-index.netbsd.org/tech-pkg/2014/09/05/msg013558.html
This package guesses the MIME type from a filename extension using the
data derived from /etc/mime.types in UNIX-type systems.
Note: this commit is part of reorganizing some of the recently
imported R packages, which are being reimported into more appropriate
categories (and removed from math) as a result of a recent discussion
on tech-pkg and privately with wiz@. See the thread starting with:
http://mail-index.netbsd.org/tech-pkg/2014/09/05/msg013558.html
Handle possible NULL returns from crypt(3).
Revised the included MD5 routines to help the compiler detect a common
subexpression between steps in round 3.
Switched to heavily cut-down BSD license.
version 2.08: Fri Sep 5 15:29:52 CEST 2014
Fixes:
- fix test t/40mojo.t which mojo is not installed
rt.cpan.org#98639 [Chris]
Improvements:
- remove dependency on Scalar::Util
- documentation fixes
version 2.07: Fri Sep 5 12:08:06 CEST 2014
Fixes:
- MIME::Type::equals() did cmp not eq
Improvements:
- new httpAccept() wth tests in t/21accept.t
- new httpAcceptBest() and httpAcceptSelect() with tests
in t/22accbest.t
- add MojoX::MIME::Types with tests in t/40mojo.t
- now depends on List::Util and Scalar::Util
Contributed by: Leonardo Taccari <iamleot@gmail.com>
Update mail/nmh to 1.6.
Changes:
The biggest changes in this release are in the arena of MIME handling.
Specifically relating to MIME composition and display. On the
composition front, mhbuild(1) will now automatically be run by send(1)
for all drafts. Specifically, mhbuild is now run with the new -auto
flag, which will suppress the processing of mhbuild directives and cause
mhbuild to silently exit if the draft is already MIME-formatted. When
invoking mhbuild manually via the "mime" command at the WhatNow? prompt,
mhbuild will behave as before and process mhbuild directives.
In both cases (automatic and manual invocation) mhbuild will encode email
headers according to RFC-2047 rules. Mhbuild also will use RFC 2231
encoding rules for MIME parameters when appropriate. In addition, the
attach system has been substantially reworked; the new header name is
now "Attach" (to better align with other MUA behavior) and cannot be
changed by the end-user. The existing "attach" command simply adds
the filename(s) to the draft in new Attach: headers, and the actual
file processing is done by mhbuild; this attachment processing will
take place in either automatic or manual mode.
On the display front, mhshow(1) will now automatically convert text
into the user's native character set using iconv, if nmh was built
with iconv support. Also, mhshow will now by default only display
text content that was not marked as an attachment. By default all
displayed content wll be run under one pager, as opposed to individual
pagers for each part as was in the past. Non-displayed parts will be
indicated using a marker string, which can be customized by a new
mh-format(5) string.
All nmh utilites now understand RFC 2231-encoded MIME parameters and
will automatically convert the encoded parameters into the native
character set, when appropriate (again, assuming nmh was built with
iconv support).
In other changes, sequence files are now locked using transactional
locks: locks that are held across sequence file reading, modification,
and writing. The locking algorithm used for spool files and nmh data
files is now runtime configurable.
For people that struggle with mh-format(5) files, a new utility for testing
them has been developed: fmttest(1). It includes the ability to trace the
execution of format instructions.
For users that wish to use Unix utilities on their mail, a new utility
to transform MIME messages to more easily-digestable format is now
available: mhfixmsg(1). It supports a number of options to control
the message transformation.
For users of spost(8), the support for spost has been rolled into post(8)
under a new sendmail/pipe MTS. A shell script emulating the old behavior
of spost has been provided.
1.195 2014-09-01 08:38:58-04:00 America/New_York
- handle domain part with MX but no A record (thanks, Karel Miko)
1.194 2014-05-28 17:21:53-04:00 America/New_York
- yhaoo.com grew an MX record; use something that won't
1.193 2014-03-26 22:29:28-04:00 America/New_York
- improve behavior on CNAME MX records
Upstream changes:
1.300014 2014-08-28 14:21:26-04:00 America/New_York
- do not try passing an empty string as a Failure message
1.300013 2014-08-28 11:00:16-04:00 America/New_York
- sometimes, if no error is given and $smtp->message returns (),
the arguments to the Failure constructor were out of alignment and
the failure's error message would be "code"; this has been fixed
1.300012 2014-07-10 09:55:35-04:00 America/New_York
- documentation fix: there's no Email::MIME->delete_header
(thanks, Kris Matthews)
1.300011 2014-03-02 18:16:12-05:00 America/New_York
- run the sendmail program with -i by default (thanks, William Blunn)
- do not die when a race causes mkpath(Maildir/new) to fail because the
directory already exists
1.300010 2014-01-11 14:15:13-05:00 America/New_York
- the SMTP transport now has a "debug" option
1.300009 2013-09-01 12:03:06 America/New_York
see also 1.300008!
switch to automatic determination of prereqs to improve accuracy
1.300008 2013-09-01 09:39:13 America/New_York
[THIS MIGHT BREAK YOUR CODE]
at long last, Sendmail and Maildir transports replaces CRLF with CR
before piping
[BUG FIXES]
fixes a bug where recipients beginning with a - would not work with
the Sendmail transport [rt.perl.org #66246]
require Email-Abstract 3.006, to get Email-Simple 1.998, to get
Email::Simple->new(\$str), resolving [rt.perl.org #85926]
1.300007 2013-03-19 14:58:27 America/New_York
when sending over SMTP, send DATA in hunks of 1 mebibyte or smaller
* Catch and error out if a user adds a feed with a duplicate name.
* Split sender into both sendmail's -F and -f.
* Fix an error with SMTPConnectionError inhertence order ("does not
take keyword arguments").
* Add a new `smtp-ssl-protocol` setting, to select acceptable
protocols for SMTP connections.
* Fix non-compliant User-Agent header for HTTP/1.1.
* Fix an error in the NoToEmailAddress invocation.
* Add a new `trust-link` setting, to prefer the `link` attribute
over the `id` attribute for identifying entries.
[10541] src/lib/List.pm: [Submitted by S. Shipway, Univ. of Auckland]
Workaround for aggressive DMARC policy such as yahoo.com. The patch
adds option #3 of this DMARC FAQ: http://dmarc.org/faq.html#s_3
- New list config paragraph "dmarc_protection" to munge "From:" header
and put original header content erc. into comment.
[10540] src/lib/Bulk.pm: New parameters for merged messages.
"part.description", "part.disposition", "part.encoding" and "part.type"
may be used for each part of input messages. These are all-lowercase
(except "part.description").
***** [10207] src/etc/script/create_db.Oracle, src/etc/script/create_db.Pg,
***** src/etc/script/create_db.SQLite, src/etc/script/create_db.Sybase,
***** src/etc/script/create_db.mysql: Two new database fields appeared in
***** this version and a field was modified.
***** - The new fields are prev_id_session (varchar(30)) and
***** refresh_date_session (int(11)). they are located in the session_table
***** table.
***** - The modified field is dkim_privatekey_bulkspool and is located in the
***** bulkspool_table table. Its length went from varchar(1000) to
***** varchar(2000).
***** Sympa install using MySQL and SQLite backends will have no trouble at
***** all, as the database structure is updated by Sympa.
***** However, if you use Postgres, Oracle or Sybase, please have a look
***** (respectively) at the create_db.Pg, create_db.Oracle or
***** create_db.Sybase to check the definition of those fields. Please update
***** your database structure before running Sympa.
[10206] src/lib/Sympa/DatabaseDescription.pm: Changing length of DKIM
private key in database to ensure database creation scripts will be
updated.
[10074] mail_tt2/command_report.tt2, mail_tt2/info_report.tt2,
mail_tt2/review.tt2, src/lib/Commands.pm, src/lib/List.pm,
src/lib/tt2.pm, web_tt2/edit_list_request.tt2,
web_tt2/review_family.tt2, web_tt2/search_user.tt2,
web_tt2/suboptions.tt2, web_tt2/subscriber_table.tt2,
web_tt2/suspend_request.tt2, wwsympa/wwslib.pm,
wwsympa/wwsympa.fcgi.in: i18n of options for list parameters and
subscriber options.
- Options on edit_list page are shown by i18n'ed titles.
- Only listmasters can view real config values.
- Subscriber options on review pages, command results, subscriber
option pages and so on are shown by i17n'ed titles (along with real
option values).
***** [10051] src/lib/tt2.pm, web_tt2/Makefile.am, web_tt2/css.tt2,
***** web_tt2/ja_JP, web_tt2/ja_JP/css.tt2, web_tt2/ko_KR,
***** web_tt2/ko_KR/css.tt2, web_tt2/main.tt2, web_tt2/zh_CN,
***** web_tt2/zh_CN/css.tt2, web_tt2/zh_TW, web_tt2/zh_TW/css.tt2,
***** wwsympa/wwsympa.fcgi.in: Per-language css.tt2 will override any
***** portion of main css, not fully replacing it. So they may be used for
***** locale-specific customization.
***** Background: Default css.tt2 specifies the font families covering
***** Western scripts (Latin, Cyrillic, ...). East Asian users may prefer
***** consistent font family supporting Western along with Eastern scripts
***** (Han, Hangul, ...).
[9966] src/lib/Message.pm, src/lib/confdef.pm: New site config
parameter "sender_headers" to specify header fields by which message
sender is detected.
This is a enhancement to S. Shipway's improvement.
[9963] web_tt2/review.tt2, web_tt2/show_exclude.tt2,
wwsympa/wwsympa.fcgi.in: [Reported by so many listmasters we lost the
count] Exclusion table was just a display of the users excluded. list
owners could not do anything to restore subscriptions;
This page is now a form, similar to the review page, which allows to
restore users subscriptions.
[9951] src/lib/List.pm: Now you can define a "scenari" directory in
the lists family directory. These scenarii will be available for lists
instantiated from this family.
The "scenari" directory must be put directly in the family directory,
not in the overall "families" directory. For example, if you want to
define scenarii specific to the "staff" family, you must define a
scenari directory in the /home/sympa/etc/families/staff/ directory. Not
in /home/sympa/etc/families/.
***** [9989] configure.ac, src/Makefile.am, src/alias_manager.pl.in,
***** src/etc/script/ldap_alias_manager.pl.in,
***** src/etc/script/mysql_alias_manager.pl.in, src/lib/confdef.pm,
***** src/sympa_newaliases-wrapper.c, src/sympa_newaliases.pl.in: Now alias
***** maintenance utilities other than newaliases may be used without special
***** configure options nor patch to alias_manager.pl.
***** Changes:
***** - aliaswrapper and virtualwrapper were deprecated and replaced with
***** sympa_newaliases-wrapper.
***** - New alias management program sympa_newaliases.pl which will typically be
***** called by alias_manager.pl via sympa_newaliases-wrapper.
***** - New site configuration parameters aliases_db_type and aliases_program
***** will control behaviour of alias database maintenance.
***** - configure script:
***** - Options --with-sendmail_aliases and --with-virtual_aliases were
***** deprecated. Use --with-aliases_file instead.
***** - New options --with-makemap and --with-postalias, along with
***** options --with-newaliases and --with-postmap are available.
***** - Option --with-postmap_arg was removed.
***** - Alias managers can handle postmap/makemap style maps (delimited by
***** whitespace), not only newaliases style maps (delimited by colon).
[9953] wwsympa/wwsympa.fcgi.in: [Submitted by S. Shipway, univ.
Auckland] several changes in privilegs to ease everyday lists
moderation:
- Owners and lismasters can moderate messages and shared repository
- Editors can moderate subscriptions
- 'del' and 'add' sceanrios are evaluated to make their result
available in each page.
[8451] src/etc/Makefile.am, src/etc/create_list_templates/confidential,
src/etc/create_list_templates/confidential/comment.tt2,
src/etc/create_list_templates/confidential/config.tt2,
src/etc/scenari/send.confidential: New "confidential" list model.
These lists are used for groups who don't want any publicity around
their activities; All possible restrictions are applied to prevent
unauthorized users to know these lists exist and to learn anything
about them.
[8454] web_tt2/footer.tt2, web_tt2/tt2_error.tt2: Removing references
to the Sympa version in web pages to avoid pages to be searched by bad
guys willing to exploit known vulnerabilities on out of date servers.
For complete list of changes, see
http://www.sympa.org/distribution/latest-stable/NEWS
Hope this works on case-insensitive file systems. If not, let's
just rm this thing.
Bump PKGREVISION.
XXX: Why is this package "destdir" and not "user-destdir"?
Muir.
For the baker's dozen of binaries unreadable (or worse) to non-root,
chmod them 0755 at post-install for pkg_create(1), and chmod them
back with SPECIAL_PERMS at pkg_add(1) time. Permissions on the
installed binaries compare equal before and after this change, so
no PKGREVISION bump.
included lua-curl to also avoid defining an unneeded (and apparently
so old as to be dangling) curl compatibility #define.
Caution: this is a diff to a diff of a diff; cvs diff will give you
a diff of a diff to a diff of a diff.
While here, recenter another pkgsrc patch.
Add notmuch emacs option that pulls in emacs and installs compiled lisp
files as well.
Based on a similar patch by J. Lewis Muir on pkgsrc-users.
Bump PKGREVISION.
TL/01 Bugzilla 1506: Re-add a 'return NULL' to silence complaints from static
checkers that were complaining about end of non-void function with no
return.
JH/01 Bug 1513: Fix parsing of quoted parameter values in MIME headers.
This was a regression intruduced in 4.83 by another bugfix.
JH/02 Fix broken compilation when EXPERIMENTAL_DSN is enabled.
TL/02 Bug 1509: Fix exipick for enhanced spoolfile specification used when
EXPERIMENTAL_DNS is enabled.
This is Trojita, a Qt IMAP e-mail client.
Features:
* A pure Qt4 (and Qt5!) application with no additional dependencies
* Robust IMAP core implemented using Qt's Model-View framework
* Standards compliance is a design goal
* On-demand message list and body part loading
* Offline IMAP support
* Support for bandwidth-saving mode aimed at mobile users with
expensive connection
* IMAP over SSH -- in addition to usual SSL/TLS connections, the
server could be accessed via SSH
* Safe and robust dealing with HTML mail
* Update enigmail to 1.7
Changelog:
NEW
Autocompleting email addresses now matches against any part of the name or email (bug 529584)
NEW
Composing a mail to a newsgroup will now autocomplete newsgroup names (bug 61491)
FIXED
Insecure NTLM (pre-NTLMv2) authentication disabled (see 828183)
Fixed in Thunderbird 31
MFSA 2014-66 IFRAME sandbox same-origin access through redirect
MFSA 2014-65 Certificate parsing broken by non-standard character encoding
MFSA 2014-64 Crash in Skia library when scaling high quality images
MFSA 2014-63 Use-after-free while when manipulating certificates in the trusted cache
MFSA 2014-62 Exploitable WebGL crash with Cesium JavaScript library
MFSA 2014-61 Use-after-free with FireOnStateChange event
MFSA 2014-59 Use-after-free in DirectWrite font handling
MFSA 2014-58 Use-after-free in Web Audio due to incorrect control message ordering
MFSA 2014-57 Buffer overflow during Web Audio buffering for playback
MFSA 2014-56 Miscellaneous memory safety hazards (rv:31.0 / rv:24.7)
Mozilla Thunderbird is a redesign of the Mozilla mail component. The
goal is to produce a cross platform stand alone mail application using
the XUL user interface language. This version uses the gtk2 toolkit.
This package tracks Thunderbird 24 branch.
- Fix storing unsaved drafts in localStorage
- Fix redundant horizontal scrollbar in HTML editor
- Fix PHP error in Preferences when default_folders was in dont_override
- Add configurable LDAP_OPT_DEREF option
- Fix unintentional draft autosave request if autosave is disabled
- Fix malformed References: header in send/saved mail
- Fix handling unicode characters in links
- Fix incorrect handling of HTML comments in messages sanitization code
- Fix so current page is reset on list-mode change
- Fix so responses menu hides on click in classic skin
- Fix unintentional line-height style modification in HTML messages
- Fix broken normalize_string(), add support for ISO-8859-2
- Support csv contacts import in German localization
- Fix so message list and counters are updated when a message is opened in new window
- Fix malformed recipient name when composing a message by clicking on mailto link
- Fix list reload after sending message in another window
- Fix so address format errors are ignored when saving a draft
- Fix incorrect label translation in return receipt
- Fix security issue in delete-response action - allow only ajax request
- Fix Delete button state after deleting identity/response
- Fix bug where contacts with no email address were listed on compose addressbook
- Fix images import from various vCard formats
- Fix sorting messages by size on servers without SORT capability
1. If built with the EXPERIMENTAL_PROXY feature enabled, Exim can be
configured to expect an initial header from a proxy that will make the
actual external source IP:host be used in exim instead of the IP of the
proxy that is connecting to it.
2. New verify option header_names_ascii, which will check to make sure
there are no non-ASCII characters in header names. Exim itself handles
those non-ASCII characters, but downstream apps may not, so Exim can
detect and reject if those characters are present.
3. New expansion operator ${utf8clean:string} to replace malformed UTF8
codepoints with valid ones.
4. New malware type "sock". Talks over a Unix or TCP socket, sending one
command line and matching a regex against the return data for trigger
and a second regex to extract malware_name. The mail spoofile name can
be included in the command line.
5. The smtp transport now supports options "tls_verify_hosts" and
"tls_try_verify_hosts". If either is set the certificate verification
is split from the encryption operation. The default remains that a failed
verification cancels the encryption.
6. New SERVERS override of default ldap server list. In the ACLs, an ldap
lookup can now set a list of servers to use that is different from the
default list.
7. New command-line option -C for exiqgrep to specify alternate exim.conf
file when searching the queue.
8. OCSP now supports GnuTLS also, if you have version 3.1.3 or later of that.
9. Support for DNSSEC on outbound connections.
10. New variables "tls_(in,out)_(our,peer)cert" and expansion item
"certextract" to extract fields from them. Hash operators md5 and sha1
work over them for generating fingerprints, and a new sha256 operator
for them added.
11. PRDR is now supported dy default.
12. OCSP stapling is now supported by default.
13. If built with the EXPERIMENTAL_DSN feature enabled, Exim will output
Delivery Status Notification messages in MIME format, and negociate
DSN features per RFC 3461.
1.905 2014-06-17 22:55:00-04:00 America/New_York
- additional change to avoid slowdown; this addresses CVE-2014-0477
change provided by Bastian Blank <waldi@debian.org>
1.904 2014-06-14 00:21:21-04:00 America/New_York (TRIAL RELEASE)
- avoid being fooled by an addr-like string in the phrase
- avoid a slowdown by avoiding backtracking into the phrase
1.903 2014-04-17 21:02:14-04:00 America/New_York
- correctly parenthesize false comment "0" (sigh)
1.902 2014-04-17 10:45:11-04:00 America/New_York
- when formatting an address where phrase is empty but comment is not,
do not include "" for the phrase; just omit it
- when formatting and address where comment lacks enclosing parens, add
them
Changelog:
0.05 2014-02-16
- Correct typos in documentation; no functionality changes
0.04 2014-02-03
- Update minimum perl version to 5.10, because of use of ++ quantifier
0.03 2014-01-22
- Include documentation updates present in the released version of
0.01, but never checked into the repository
0.02 2014-01-15
- Prevent a quadratic-time check when the provided string did not
contain a valid address
Notmuch 0.18.1 (2014-06-25)
===========================
This is a bug fix and portability release.
Build System
------------
Add a workaround for systems without zlib.pc
Make emacs install robust against the non-existence of emacs
Put notmuch lib directory first in RPATH
Fix handling of html_static_path in sphinx
Both the python bindings and the main docs had spurious settings of
this variable.
Test Suite
----------
Use --quick when starting emacs
This avoids a hang in the T160-json tests.
Allow pending break points in atomicity script
This allows the atomicity tests to run on several more architectures/OSes.
Command-Line Interface
----------------------
To improve portability use fsync instead of fdatasync in
`notmuch-dump`. There should be no functional difference.
Library changes
---------------
Resurrect support for single-message mbox files
The removal introduced a bug with previously indexed single-message
mboxes. This support remains deprecated.
Fix for phrase indexing
There were several bugs where words intermingled from different
headers and MIME parts could match a single phrase query. This fix
will affect only newly indexed messages.
Emacs Interface
---------------
Make sure tagging on an empty query is harmless
Previously tagging an empty query could lead to tags being
unintentionally removed.
Notmuch 0.18 (2014-05-06)
=========================
Overview
--------
This new release includes some enhancements to searching for messages
by filesystem location (`folder:` and `path:` prefixes under *General*
below). Saved searches in *Emacs* have also been enhanced to allow
distinct search orders for each one. Another enhancement to the
*Emacs* interface is that replies to encrypted messages are now
encrypted, reducing the risk of unintentional information disclosure.
The default dump output format has changed to the more robust
`batch-tag` format. The previously deprecated parsing of single
message mboxes has been removed. For detailed release notes, see
below.
General
-------
The `folder:` search prefix now requires an exact match
The `folder:` prefix has been changed to search for email messages
by the exact, case sensitive maildir or MH folder name. Wildcard
matching (`folder:foo*`) is no longer supported. The new behaviour
allows for more accurate mail folder based searches, makes it
possible to search for messages in the top-level folder, and should
lead to less surprising results than the old behaviour. Users are
advised to see the `notmuch-search-terms` manual page for details,
and review how the change affects their existing `folder:` searches.
There is a new `path:` search prefix.
The new `path:` search prefix complements the `folder:` prefix. The
`path:` prefix searches for email messages that are in particular
directories within the mail store, optionally recursively using a
special syntax. See the `notmuch-search-terms` manual page for
details.
Notmuch database upgrade due to `folder:` and `path:` changes
The above mentioned changes to the `folder:` prefix and the addition
of `path:` prefix require a Notmuch database upgrade. This will be
done automatically, without prompting on the next time `notmuch new`
is run after the upgrade. The upgrade is not reversible, and the
upgraded database will not be readable by older versions of
Notmuch. As a safeguard, a database dump will be created in the
`.notmuch` directory before upgrading.
Library changes
---------------
Notmuch database upgrade
The libnotmuch consumers are reminded to handle database upgrades
properly, either by relying on running `notmuch new`, or checking
`notmuch_database_needs_upgrade()` and calling
`notmuch_database_upgrade()` as necessary. This has always been the
case, but in practise there have been no database upgrades in any
released version of Notmuch before now.
Support for indexing mbox files has been dropped
There has never been proper support for mbox files containing
multiple messages, and the support for single-message mbox files has
been deprecated since Notmuch 0.15. The support has now been
dropped, and all mbox files will be rejected during indexing.
Message header parsing changes
Notmuch previously had an internal parser for message headers. The
parser has now been dropped in favour of letting GMime parse both
the headers and the message MIME structure at the same pass. This is
mostly an internal change, but the GMime parser is stricter in its
interpretation of the headers. This may result in messages with
slightly malformed message headers being now rejected.
Command-Line Interface
----------------------
`notmuch dump` now defaults to `batch-tag` format
The old format is still available with `--format=sup`.
`notmuch new` has a --quiet option
This option suppresses the progress and summary reports.
`notmuch insert` respects maildir.synchronize_flags config option
Do not synchronize tags to maildir flags in `notmuch insert` if the
user does not want it.
The commands set consistent exit status codes on failures
The cli commands now consistently set exit status of 1 on failures,
except where explicitly otherwise noted. The notable expections are
the status codes for format version mismatches for commands that
support formatted output.
Bug fix for checking configured new.tags for invalid tags
`notmuch new` and `notmuch insert` now check the user configured
new.tags for invalid tags, and refuse to apply them, similar to
`notmuch tag`. Invalid tags are currently the empty string and tags
starting with `-`.
Emacs Interface
---------------
Init file
If the file pointed by new variable `notmuch-init-file` (typically
`~/.emacs.d/notmuch-config.el`) exists, it is loaded at the end of
`notmuch.el`. Users can put their personal notmuch emacs lisp based
configuration/customization items there instead of filling
`~/.emacs` with these.
Changed format for saved searches
The format for `notmuch-saved-searches` has changed, but old style
saved searches are still supported. The new style means that a saved
search can store the desired sort order for the search, and it can
store a separate query to use for generating the count notmuch
shows.
The variable is fully customizable and any configuration done
through customize should *just work*, with the additional options
mentioned above. For manual customization see the documentation for
`notmuch-saved-searches`.
IMPORTANT: a new style notmuch-saved-searches variable will break
previous versions of notmuch-emacs (even search will not work); to
fix remove the customization for notmuch-saved-searches.
If you have a custom saved search sort function (not unsorted or
alphabetical) then the sort function will need to be
modified. Replacing (car saved-search) by (notmuch-saved-search-get
saved-search :name) and (cdr saved-search) by
(notmuch-saved-search-get saved-search :query) should be sufficient.
The keys of `notmuch-tag-formats` are now regexps
Previously, the keys were literal strings. Customized settings of
`notmuch-tag-formats` will continue to work as before unless tags
contain regexp special characters like `.` or `*`.
Changed tags are now shown in the buffer
Previously tag changes made in a buffer were shown immediately. In
some cases (particularly automatic tag changes like marking read)
this made it hard to see what had happened (e.g., whether the
message had been unread).
The changes are now shown explicitly in the buffer: by default
deleted tags are displayed with red strike-through and added tags
are displayed underlined in green (inverse video is used for deleted
tags if the terminal does not support strike-through).
The variables `notmuch-tag-deleted-formats` and
`notmuch-tag-added-formats`, which have the same syntax as
`notmuch-tag-formats`, allow this to be customized.
Setting `notmuch-tag-deleted-formats` to `'((".*" nil))` and
`notmuch-tag-added-formats` to `'((".*" tag))` will give the old
behavior of hiding deleted tags and showing added tags identically
to tags already present.
Version variable
The new, build-time generated variable `notmuch-emacs-version` is used
to distinguish between notmuch cli and notmuch emacs versions.
The function `notmuch-hello-versions` (bound to 'v' in notmuch-hello
window) prints both notmuch cli and notmuch emacs versions in case
these differ from each other.
This is especially useful when using notmuch remotely.
Ido-completing-read initialization in Emacs 23
`ido-completing-read` in Emacs 23 versions 1 through 3 freezes unless
it is initialized. Defadvice-based *Ido* initialization is defined
for these Emacs versions.
Bug fix for saved searches with newlines in them
Split lines confuse `notmuch count --batch`, so we remove embedded
newlines before calling notmuch count.
Bug fixes for sender identities
Previously, Emacs would rewrite some sender identities in unexpected
and undesirable ways. Now it will use identities exactly as
configured in `notmuch-identities`.
Replies to encrypted messages will be encrypted by default
In the interest of maintaining confidentiality of communications,
the Notmuch Emacs interface now automatically adds the mml tag to
encrypt replies to encrypted messages. This should make it less
likely to accidentally reply to encrypted messages in plain text.
Reply pushes mark before signature
We push mark and set point on reply so that the user can easily cut
the quoted text. The mark is now pushed before the signature, if
any, instead of end of buffer so the signature is preserved.
Message piping uses the originating buffer's working directory
`notmuch-show-pipe-message` now uses the originating buffer's
current default directory instead of that of the `*notmuch-pipe*`
buffer's.
nmbug
-----
nmbug adds a `clone` command for setting up the initial repository and
uses `@{upstream}` instead of `FETCH_HEAD` to track upstream changes.
The `@{upstream}` change reduces ambiguity when fetching multiple
branches, but requires existing users update their `NMBGIT`
repository (usually `~/.nmbug`) to distinguish between local and
remote-tracking branches. The easiest way to do this is:
1. If you have any purely local commits (i.e. they aren't in the
nmbug repository on nmbug.tethera.net), push them to a remote
repository. We'll restore them from the backup in step 4.
2. Remove your `NMBGIT` repository (e.g. `mv .nmbug .nmbug.bak`).
3. Use the new `clone` command to create a fresh clone:
nmbug clone http://nmbug.tethera.net/git/nmbug-tags.git
4. If you had local commits in step 1, add a remote for that
repository and fetch them into the new repository.
== [release-2-0-4] 2.0.4: 2014-06-20
A bug fix release of 2.0.3
=== Ruby milter
==== Improvements
* Add Milter::Client::Test::MilterRunner
* Add Milter::Client::EnvelopeAddress
==== Fixes
* Fix the bug that milter written in Ruby cannot finish properly on multiple
CPU environment
This should be the last update during the freeze.
PR/48566 - Emmanuel Dreyfus -- typo in patch-aw leading to build failure
PR/48913 - Matthias Scheler -- libmilter fails on unprivileged builds
- remove some HTML cruft from netbsd-proto.mc
- stop trying to set file ownership and group during stage-install
- initialize sm_res earlier and test before calling res_ninit()
- clear SSL_OP_TLSEXT_PADDING by defualt to fix interoperability issues
- eliminate stray call to res_search()
- verified with nm that all deprecated resolver functions have been eradicated
The above should address the folling PRs:
- PR/47207 - Richard Palo -- attempt to set ownership when unprivileged
- PR/48566 - Emmanuel Dreyfus -- problem with TLS timeouts
- PR/48913 - Matthias Scheler -- attempt to set ownership when unprivileged
pkgsrc changes:
- consolidate several patches into site.config.m4
- pkgsrc LDFLAGS should always be used
- don't bother specifying file owner/group anywhere except in Makefile
- create include/sm/os/sm_os_netbsd.h to fix warnings and OS specific stuff
- install mail.local and rmail
- convert to use res_n* functions
- allows for linking against threaded libraries
- add a TODO file
- PR/35249 - Loren M. Lang
- can't find libraries on Linux, this should be fixed by using pkgsrc LDFLAGS
- PR/46694 - Makoto Fujiwara
- bring back netbsd-proto.mc from when sendmail was part of the base system
- PR/47207 - Richard Palo
- let pkgsrc infrastructure handle file ownership and group
- PR/48566 - Emmanuel Dreyfus
- always set _FFR_USE_GETPWNAM_ERRNO on NetBSD
- roll ffr_tls_1 and the suggested ffr_tls_ec into one new ffr_tls option
- not enabled by default because it changes behaviour
8.14.9/8.14.9 2014/05/21
SECURITY: Properly set the close-on-exec flag for file descriptors
(except stdin, stdout, and stderr) before executing mailers.
Fix a misformed comment in conf.c: "/*" within comment
which may cause a compilation error on some systems.
Problem reported by John Beck of Oracle.
DEVTOOLS: Fix regression in auto-detection of libraries when only
shared libraries are available. Problem reported by
Bryan Costales.
Changelog
---------
2.1.18-1 (06-May-2014)
Bug fixes and other patches
- A critical incompatibility between the DMARC Wrap Message action and
Python versions older than 2.6.x for some x <= 5 existed and caused
Wrapped message to be shunted. This is fixed. (LP: #1316682)
- Sender: headers are no longer removed in from_is_list Munge From
actions. (LP: #1315970)
2.1.18 (03-May-2014)
Acknowledgements
- Thanks to Jim Popovitch and Phil Pennock for the branch that formed the
basis of the dmarc_moderation_action feature.
- Thanks to Franck Martin et al for the branch that formed the basis of
the from_is_list feature.
Dependencies
- There is a new dependency associated with the new Privacy options ->
Sender filters -> dmarc_moderation_action feature discussed below.
This requires that the dnspython <http://www.dnspython.org/> package
be available in Python. This package can be downloaded from the above
site or from the CheeseShop <https://pypi.python.org/pypi/dnspython/>
or installed with pip.
New Features
- The from_is_list feature introduced in 2.1.16 is now unconditionally
available to list owners. There is also, a new Privacy options ->
Sender filters -> dmarc_moderation_action feature which applies to list
messages where the From: address is in a domain which publishes a DMARC
policy of reject or possibly quarantine. This is a list setting with
values of Accept, Wrap Message, Munge From, Reject or Discard. There is
a new DEFAULT_DMARC_MODERATION_ACTION configuration setting to set the
default for this, and the list admin UI is not able to set an action
which is 'less' than the default. The prior ALLOW_FROM_IS_LIST setting
has been removed and is effectively always Yes. There is a new
dmarc_quarantine_moderation_action list setting with default set by a
new DEFAULT_DMARC_QUARANTINE_MODERATION_ACTION configuration setting
which in turn defaults to Yes. The list setting can be set to No to
exclude domains with DMARC policy of quarantine from
dmarc_moderation_action.
dmarc_moderation_action and from_is_list interact in the following way.
If the message is From: a domain to which dmarc_moderation_action applies
and if dmarc_moderation_action is other than Accept,
dmarc_moderation_action applies to that message. Otherwise the
from_is_list action applies.
Also associated with dmarc_moderation_action are configuration settings
DMARC_RESOLVER_TIMEOUT and DMARC_RESOLVER_LIFETIME. These are described
in more detail in Defaults.py. There are also new vette log entries
written when dmarc_moderation_action is found to apply to a post.
i18n
- Added missing <mm-digest-question-start> tag to French listinfo template.
(LP: #1275964)
Bug Fixes and other patches
- Removed HTML tags from the title of a couple of rmlist.py pages because
browsers don't render tags in the title. (LP: #265848)
- Most Mailman generated notices to list owners and moderators are now
sent as Precedence: list instead of bulk. (LP: #1313146)
- The Reply-To: munging options weren't honored if there was no
from_is_list action. (LP: #1313010)
- Changed from_is_list actions to insert the list address in Cc: if the
list is fully personalized. Otherwise, the list address is only in
From: and Reply-To: overrides it. (LP: #1312970)
- Fixed the Munge From action to only Munge the From: and/or Reply-To: in
the outgoing message and not in archives, digests and messages sent via
the usenet gateway. (LP: #1311431)
- Fixed a long standing issue in which a notice sent to a user whose
language is other than that of the list can cause subsequent things
which should be in the list's language to be in the user's language
instead. (LP: #1308655)
- Fixed the admin Membership List so a search string if any is not lost
when visiting subsequent fragments of a chunked list. (LP: #1307454)
- For from_is_list feature, use email address from original From: if
original From: has no display name and strip domain part from resultant
names that look like email addresses. (LP: #1304511)
- Added the list name to the vette log "held message approved" entry.
(LP: 1295875)
- Added the CGI module name to various "No such list" error log entries.
(LP: 1295875)
- Modified contrib/mmdsr to report module name if present in "No such list
error log entries.
- Fixed a NameError exception in cron/nightly_gzip when it tries to print
the usage message. (LP: #1291038)
- Fixed a bug in ListAdmin._handlepost that would crash when trying to
preserve a held message for the site admin if HOLD_MESSAGES_AS_PICKLES
is False. (LP: #1282365)
- The from_is_list header munging feature introduced in Mailman 2.1.16 is
no longer erroneously applied to Mailman generated notices.
(LP: #1279667)
- Changed the message from the confirm CGI to not indicate approval is
required for an acceptance of an invitation. (LP: #1277744)
- Fixed POSTFIX_STYLE_VIRTUAL_DOMAINS to be case-insensitiive.
(LP: #1267003)
- Added recognition for another simple warning to bounce processing.
(LP: #1263247)
- Fixed a few failing tests in tests/test_handlers.py. (LP: #1262950)
- Fixed bin/arch to not create scrubbed attachments for messages skipped
when processing the --start= option. (LP: #1260883)
- Fixed email address validation to do a bit better in obscure cases.
(LP: #1258703)
- Fixed a bug which caused some authentication cookies to expire too soon
if AUTHENTICATION_COOKIE_LIFETIME is non-zero. (LP: #1257112)
- Fixed a possible TypeError in bin/sync_members introduced in 2.1.17.
(LP: #1243343)
Miscellaneous
- Added to the contrib directory, a script from Alain Williams to count
posts in a list's archive.
2.1.17 (23-Nov-2013)
New Features
- Handling of posts gated from usenet to a list via the Mail <-> News
gateway is changed. Formerly, no list membership, moderation or
*_these_nonmembers checks were done. Now, if the sender of the usenet
post is a moderated member or a nonmember matching a *_these_nonmembers
filter, those checks will be done and actions applied. Nonmember posts
from senders not matching a *_these_nonmembers filter are still accepted
as before. (LP: #1252575)
- There is a new mm_cfg.py setting ANONYMOUS_LIST_KEEP_HEADERS. Since it
is not possible to know which non-standard headers in a message might
reveal sender information, we now remove all headers from incoming posts
to anonymous lists except those which match regular expressions in this
list. The default setting keeps non X- headers except those known to
reveal sender information, Mailman added X- headers and x-Spam- headers.
See the description in Defaults.py for more information. (LP: #1246039)
i18n
- The Japanese message catalog has been updated by SATOH Fumiyasu.
(LP: #1248855)
Bug Fixes and other patches
- Added a reopen command to the sample init.d script in misc/mailman.in.
(LP: #1251917)
- Fixed a misspelling in Tagger.py causing an "unexpected keyword argument
'Delete'" exception. (LP: #1251495)
- Fixed contrib/qmail-to-mailman.py to work with a user other than
'mailman' and to recognize more listname-* addresses. (LP: #412293)
- Fixed a possible UnicodeDecodeError in bin/sync_members. (LP: #1243343)
- Fixed Makefile to not include $DESTDIR in paths compiled into .pyc
files for traceback purposes. (LP: #1241770)
2.1.16 (16-Oct-2013)
New Features
- There is a new list attribute from_is_list to either rewrite the From:
header of posts replacing the posters address with that of the list or
wrap the message in an outer message From: the list for compatability
with DMARC and or ADSP. There is a new mm_cfg.py setting
DEFAULT_FROM_IS_LIST to control the default for new lists, and the
existing REMOVE_DKIM_HEADERS setting has been extended to allow removing
those headers only for certain from_is_list lists. This feature must
be enabled by setting ALLOW_FROM_IS_LIST to Yes in mm_cfg.py. See the
description of these settings in Defaults.py for more detail. This
feature is experimental in 2.1.16, and it is subject to change or to
become just one of the two methods in a subsequent release. People
interested in this feature are encouraged to try it and report their
experiences to the mailman-users@python.org list.
- There is a new DISPLAY_HELD_SUMMARY_SORT_BUTTONS setting which if set
in mm_cfg.py will display a set of radio buttons in the admindb held
message summary to select how the held messages are sorted and grouped
for display. The exact setting determines the default grouping and
sorting. See the description in Defaults.py for details.
- Setting digest_size_threshhold to zero now means no digests will be
sent based on size instead of a digest being sent with every post.
(LP: #558274)
- There is a new mm_cfg.py setting SUBSCRIBE_FORM_SECRET which will put
a dynamically generated, hidden hash in the listinfo subscribe form and
check it upon submission. Setting this will prevent automated processes
(bots) from successfully POSTing web subscribes without first retrieving
and parsing the form from the listinfo page. The form must also be
submitted no later than FORM_LIFETIME nor no earlier than
SUBSCRIBE_FORM_MIN_TIME after retrieval. Note that enabling this will
break any static subscribe forms on your site. See the description in
Defaults.py for more info. (LP: #1082746)
- add_members now has an option to add members with mail delivery disabled
by admin. (LP: #1070574)
- IncomingRunner now logs rejected messages to the vette log.
(LP: #1068837)
- The name of the mailmanctl master lock file is now congigurable via the
mm_cfg.py setting MASTER_LOCK_FILE. (LP: #1082308)
- list_lists now has an option to list only lists with public archives.
(LP: #1082711)
Contributed programs
- A new import_majordomo_into_mailman.pl script has been contributed by
Geoff Mayes. (LP: #1129742)
- A new "sitemap" bash script has been contributed by Tomasz Chmielewski
<mangoo@wpkg.org> to generate a sitemap.xml file of an installation's
public archives for submission to search engines.
i18n
- The Danish translation has been updated thanks to Tom Christensen.
- Fixed a string in the Czech message catalog. (LP: #1234567)
- A Farsi (Persian) translation has been added thanks to Javad Hoseini and
Mahyar Moghimi.
- Fixed several misspelled or garbled string replacements in the Spanish
message catalog. (LP: #1160138)
- pt_BR message catalog has two new and an updated message per Hugo Koji
Kobayashi. (LP: #1138578)
- German message catalog has been updated per Ralf Hildebrandt.
- Corrected typo in templates/it/private.html.
Bug Fixes and other patches
- Fixed a crash in SpamDetect.py which caused messages with unparseable
RFC 2047 encoded headers to be shunted. (LP: #1235101)
- Fixed cron/disabled to send a fresh cookie when notifying disabled
members. (LP: #1203200)
- Added "message_id" to the interpolation dictionary for the Article.html
template. (LP: #725498)
- Changed the admin GUI to report only the bad entries in a list of email
addresses if any are bad. (LP: #558253)
- Added logging for template errors in HyperArch.py. (LP: #558254)
- Added more explanation to the bad owner address message from
bin/newlist. (LP: #1200763)
- Fixed a bug causing the admin web interface to fail CSRF checking if
the list name contains a '+' character. (LP: #1190802)
- Fixed bin/mailmanctl -s to not remove the master lock if it can't be
determined to be truly stale. (LP: #1189558)
- It is no longer possible to add 'invalid' addresses to the ban_list
and the *_these_nonmembers filters from the check boxes on the admindb
interface. (LP: #1187201)
- Backported recognition for mail.ru DSNs and minor bug fixes from
lp:flufl.bounce. (LP: #1074592, LP: #1079249 and #1079254)
- Defended against buggy web servers that don't include an empty
QUERY_STRING in the CGI environment. (LP: #1160647)
- The Switchboard.finish() method now logs the text of the exception when
it fails to unlink/preserve a .bak file. (LP: #1165589)
- The pending (un)subscriptions waiting approval are now sorted by email
address in the admindb interface as intended. (LP: #1164160)
- The subscribe log entry for a bin/add_members subscribe now identifies
bin/add_members as the source. (LP: #1161642)
- Fixed a bug where the Subject: of the user notification of a
bin/remove_members unsubscribe was not in the user's language.
(LP: #1161445)
- Fixed a bug where BounceRunner could create and leave behind zero length
bounce-events files. (LP: #1161610)
- Added recognition for another Yahoo bounce format. (LP: #1157961)
- Changed configure's method for getting Python's include directory from
distutils.sysconfig.get_config_var('CONFINCLUDEPY') to
distutils.sysconfig.get_python_inc(). (LP: #1098162)
- Added an Auto-Generated: header to password reminders. (LP: #558240)
- Fixed a bug where non-ascii characters in the real name in a subscription
request could throw a UnicodeEncodeError upon subscription approval and
perhaps in other situations too. (LP: #1047100)
- The query fragments send_unsub_notifications_to_list_owner and
send_unsub_ack_to_this_batch will now assume default values if not set
in mass unsubscribe URLs. (LP: #1032378)
- Replaced utf-8 encoded characters in newly added German templates with
HTML entities. (LP: #1018208)
2.1.15 (13-Jun-2012)
Security
- Strengthened the validation of email addresses.
- An XSS vulnerability, CVE-2011-0707, has been fixed.
- The web admin interface has been hardened against CSRF attacks by adding
a hidden, encrypted token with a time stamp to form submissions and not
accepting authentication by cookie if the token is missing, invalid or
older than the new mm_cfg.py setting FORM_LIFETIME which defaults to one
hour. Posthumous thanks go to Tokio Kikuchi for this implementation
which is only one of his many contributions to Mailman prior to his
death from cancer on 14 January 2012.
New Features
- Added a password reminder button to the private archive login page.
Backported from the 2.2 branch.
- There is a new list attribute regular_exclude_ignore set from mm_cfg.py
DEFAULT_REGULAR_EXCLUDE_IGNORE. This defaults to True even though the
prior behavior is equivalent to False. A True setting will ignore an
exclude list if the poster is not a member of that list. The False
setting can result in list members not receiving posts if the nonmember
post is not accepted by the exclude list. Backported from 2.2 branch.
- Eliminated the list cache from the qrunners. Indirect self-references
caused lists to never be dropped from the cache which in turn caused
the qrunners to grow very large in installations with many lists or
multiple large lists. Bug #862683.
- The user options 'list my other subscriptions' page now indicates for
each list if the subscription is 'nomail' or 'digest'. Bug #793669.
- A new list poster password has been implemented. This password may only
be used in Approved: or X-Approved: headers for pre-approving posts.
Using this password for that purpose precludes compromise of a more
valuable password sent in plain text email. Bug #770581.
- A new mm_cfg.py setting AUTHENTICATION_COOKIE_LIFETIME has been added.
If this is set to a non-zero value, web authentication cookies will
expire that many seconds following their last use. Its default value is
zero to preserve current behavior.
- A new mm_cfg.py setting RESPONSE_INCLUDE_LEVEL has been added to control
how much of the original message is included in automatic responses to
email commands. The default is 2 to preserve the prior behavior of
including the full message. Setting this to 1 in mm_cfg.py will include
only the original headers, and 0 will include none of the original. It
is recommended to set this to 0 in mm_cfg.py to minimize the effects of
backscatter. Bug #265835.
- A new mm_cfg.py setting DEFAULT_RESPOND_TO_POST_REQUESTS has been added
to control the default for respond_to_post_requests for new lists. It is
set to Yes for backwards compatibility, but it is recommended that
serious consideration be given to setting it to No. Bug #266051.
- A new mm_cfg.py setting DISCARD_MESSAGE_WITH_NO_COMMAND has been added to
control whether a message to the -request address without any commands or
a message to -confirm whose To: address doesn't match VERP_CONFIRM_REGEXP
is responded to or just logged. It defaults to Yes which is different
from prior behavior. Bug #410236.
- Two new mm_cfg.py settings, BROKEN_BROWSER_WORKAROUND and
BROKEN_BROWSER_REPLACEMENTS, have been added to control escaping of
additional characters beyond the standard <, >, &, and " in the web UI.
See the documentation of these settings in Defaults.py. The default
values for these settings result in no change from the prior release.
Bug #774588.
i18n
- Added some missing German templates from Egon Frerich.
- Added Greek translation from Antonis Limperis.
- A few errors in the Basque translation are fixed. Bug #836861.
- Fixed a misspelling in the German invite.txt template. Bug #815444.
- Fixed a missing format character in the Spanish translation.
Bug #670988.
- Thanks go to the following for updating translations for the changes in
this release.
Thijs Kinkhorst
Stefan Foerster
Fabian Wenk
Bug Fixes and other patches
- Fixed a bug that could send an admin notice of a held subscription with
the subject in the user's preferred language instead of the list's
preferred language and possibly not properly RFC 2047 encoded.
(LP: #998949)
- Fixed a possible CPU bound loop in OutgoingRunner if the attempt to
Connect to the SMTP server throws a socket.error. (LP: #966531)
- Fixed a potential crash in the web UI if a language is removed from the
LC_DESCRIPTIONS dictionary. (LP: #966565)
- Added an Auto-Submitted: header to invitations and (un)subscription
confirmation requests to reduce the possibility of an autoresponder
confirming the request. (LP: #265831)
- Added javascript to the private.html and admlogin.html templates to
focus the cursor on the entry field. (LP: #266054)
- Added CPPFLAGS and LDFLAGS to src/Makefile to support their use.
(LP: #637652)
- Stopped removing the trailing slash from the List-Archive: header URL.
(LP: #964190)
- A configured version of contrib/courier-to-mailman.py is now created in
build/contrib/courier-to-mailman.py. (LP: #999250)
- Subscription disabled warnings are now sent without a Precedence:
header. Bug #808821.
- Backported 2.2 branch fix for a problem in SpamDetect.py that could
cause header_filter_rules to fail to match RFC 2047 encoded headers.
- Fix for bug #629738 could cause a crash in the admindb details display
if the decoded message body contained characters not in the character
set of the list's preferred language. Fixed. Bug #910440.
- Added recognition for another Qmail bounce format.
- Fixed an erroneous seek in the Mailman.Mailbox.Mailbox.AppendMessage
method that could cause a corrupt mailbox for files opened 'w+'.
Bug #901957.
- A held message with a null sender caused a crash in the admindb
interface. This is fixed by changing the sender to <missing>.
Bug #897103.
- Changed subject prefixing to allow for possible whitespace between an
'Re' and the following colon when determining how to add the prefix.
Bug #893290.
- Fixed a problem where topics regexps would not match RFC 2047 encoded
Keywords: and/or Subject: headers. Bug #891676.
- Fixed misleading response to an email approval of a held message.
Bug #889968.
- Added masthead.txt to the list of templates that can be edited via the
web admin interface. Bug #266805.
- Changed the way digest_footer is added to the RFC 1153 (plain) format
digest for RFC compliance. Bug #887610.
- Fixed cron/checkdbs to report unsubscriptions waiting approval.
Bug #873821.
- The fix for BUG #266220 (sf1181161) has been enhanced so that if there
is a pathological HTML part such that the Approved: password text isn't
found, but it is found after stripping out HTML tags, the post is
rejected with an informative message.
- A bug that would cause reset of any new_member_options bits other than
the four displayed as checkboxes on the list admin General Options page
whenever the page was updated or bin/config_list attempted to update
new_member_options has been fixed. Bug #865825.
- A problem with the logic avoiding unnecessarily reloading a current list
object from the config.pck arises if the list is updated by another
process within the same second that it was last read/written. That can
cause the reading of latest version of the list to be skipped. This has
been fixed. Bug #862675.
- Fixed bin/export.py to accept case insensitive password schemes.
Bug #833134.
- Added Tokio Kikuchi's icons to the misc/ and installed icons/
directories. Bug #782474.
- Fixed a problem which could result in raw, undecoded message bodies
appearing in plain digests and archives. Bug #787790.
- Fixed a problem in admindb.py where the character set for the display of
the message body excerpt was not correctly determined. Bug #779751.
- Prevented setting user passwords with leading/trailing whitespace.
Bug #778088.
- Mailman now sets the 'secure' flag in cookies set via https URLs.
Bug #770377.
- Added a logout link to the admindb interface and made both admin and
admindb logout effective for a site admin cookie if allowed.
Bug #769318.
- Replaced the old Mailman logos and icon that install to Mailman's icons
directory with the new ones. If you copy these elsewhere on your
server, please copy these new ones.
- Changed bin/genaliases to only call the POSTFIX_*_CMD commands once when
MTA = 'Postfix'. Bug #266408.
- Added a report of the affected members to the warnings issued when
setting a list with digest members digestable=No and when setting a list
with non-digest members nondigestable=no. Bug #761232.
- Fixed a problem where content filtering could remove the headers from
an attached message/rfc822 part if the message in that part is
multipart/alternative and collapse_alternatives is Yes. Bug #757062.
- Changed the subscribe CGI to strip leading and trailing whitespace from
the supplied email address. Bug #745432.
- Changed the maximum number of arguments for the who command to be
considered administrivia from 2 to 1 to help avoid false positives.
Bug #739524.
- Added the list name as 'display-name' in added Sender: headers to help
mitigate Outlook et al 'on behalf of' displays. Bug #736849.
- Fixed a typo in the usage() definition cron/gate_news. Bug #721015.
- Fixed an uncaught KeyError when poster tries to cancel a post which was
already handled. Bug #266224.
- Held message user notifications now come From: list-owner instead of
list-bounces. Bug #714424.
- Issue an HTTP 404 status for private archive file not found.
- @listname entries in *_these_nonmembers are no longer case sensitive.
Bug #705715.
- Changed bin/rmlist to also remove heldmsg files for the removed list and
fixed a problem with removal of stale locks for the list. Bug #700528.
- Fixed a bug where content filtering could leave a multipart message or
part with just one sub-part. These should be recast to just the sub-part.
Bug #701558.
- Fixed a bug that could erroneously handle posts from addresses in
*_these_nonmembers and send held/rejected notices to bogus addresses when
The From or other sender header is RFC 2047 encoded. Bug #702516.
- Updated contrib/mm-handler-2.1.10 to better handle lists with names that
look like admin addresses. Bug #697161.
- Added bounce recognition for a bogus Dovecot MDN. Bug #693134.
- Fixed a problem where an emailed command in the Subject: header with a
non-ascii l10n of an 'Re:' prefix is ignored. Bug #685261.
- Fixed a problem with approving a post by email when the body of the
approval mail is base64 encoded. Bug #677115.
- Fixed the host name in the From: address of the owner notification from
bin/add_members. Bug #666181.
Changelog:
Fixed in Thunderbird 24.6
MFSA 2014-52 Use-after-free with SMIL Animation Controller
MFSA 2014-49 Use-after-free and out of bounds issues found using Address Sanitizer
MFSA 2014-48 Miscellaneous memory safety hazards (rv:30.0 / rv:24.6)
* 2014-06-11: version 1.35
- use just 'postgrey' as process name, instead of '/usr/sbin/postgrey',
because Linux tools are limited to 15 characters (#5)
- Make postgrey work with Perl 5.18 (Yasuhiro KIMURA, #4)
- updated whitelist
* New/changed functionality:
* a single DNS resolver is created for the lifetime of the program,
rather than reinitializing the resolver for each new query.
* bugfixes:
* fix the error message given when an invalid algorithm is
specified in the construction of Mail::DKIM::Signer.
* avoid Perl warning about use of an undefined value in several
places (rt.cpan.org issue #82913).
* speed- improved performance of parsing the message into lines
(rt.cpan.org issue #77902). Patch by Mark Martinec.
* fix DNS queries to use the correct method (txtdata) of Net::DNS
(rt.cpan.org issue #83170). Patch by Mark Martinec.
* fix issue with getting wrong error codes when q= tag is empty
(issue #3011005)
* anti-abuse- prevent a message with thousands of signatures from
thrashing the whole computer (issue #3010997)
* memory usage- significantly reduced memory footprint for
processing a message with a large header and many signatures
* fix error message given when no KeyFile has been specified
(issue #1889690)
* API changes:
* global subroutines resolver() or enable_EDNS0() in module
Mail::DKIM::DNS can be called to specify non-default options
to Net::DNS::Resolver (see also rt.cpan.org issue #80425).
* the Canonicalization::finish_header() method now expects a
argument to be passed to it. In the unusual case that you are
using this method from your own code, please update your code.
* src/mbsync.1:
* don't lie about the default of User
* fix typos
* src/drv_maildir.c:
* don't forget to reset message counts when skipping scan
* remove apparently pointless resetting of recent message count
* src/compat/convert.c:
* error-check renaming of uid mapping database
* error-check reading of old uidvalidity and maxuid files
* src/sync.c:
* error-check committing of sync state
* better error messages for sync state and journal related errors
* remove pointless/counterproductive "Disk full?" error message suffixes
* don't crash in message expiration debug print
* src/compat/config.c:
* fix "inverse copy&pasto" in account labeling code
* don't needlessly quote strings
* write Sync and Expunge to global section if applicable
* don't bother checking impossible condition
* src/main.c:
* fix segfault on passing --{create,expunge}-{master,slave}
* don't needlessly spell out INBOX
* src/drv_imap.c:
* don't crash on malformed response code
* don't crash on truncated LIST response
* fix crash on store without prior fetch with non-UIDPLUS servers
* don't error out if we don't get an X-TUID header
* src/compat/main.c:
* remove pointless pointer assignment
* src/: drv_maildir.c, mdconvert.c:
* fix hypothetical buffer overflows
* close a bunch of fd leaks in error paths
* src/util.c:
* actually use prime numbers for all hash bucket sizes
* src/config.c:
* fix zero MaxSize override in Channels
* src/compat/: config.c, isync.h, util.c:
* rework maildir store mapping
* src/socket.c:
* remove pointless use of AI_V4MAPPED flag
* configure.ac, src/common.h, src/drv_imap.c, src/util.c:
* make date parsing portable, take 2
* src/: drv_maildir.c, sync.c:
* fix _POSIX_SYNCHRONIZED_IO usage
Many of these changes were in response to findings from a Coverity scan.
Fix some conflicting unit tests.
BUILD: Fix bug #195 part II: Compile all binaries with pthreads
support as needed by libopendkim features.
BUILD: Fix packaging damage with autobuild.
2.9.1 2014/03/15
Feature request #177: Add "LuaOnlySigning" so that only the Lua setup
script makes signing requests; suppresses automatic application
of the signing table.
Fix bug #185: odkim.signfor() wasn't processing its arguments properly.
Fix bug #199: Fix use of uninitialized buffer when generating
SMTP response strings due to ADSP rejections.
Fix infinite loop when mlfi_connect() is called with a hostname
starting with a "." character. Reported by Philip Guenther.
Fix loading of refiles when trailing spaces are present in the value.
LIBOPENDKIM: Only call dkiml_dns_close() if there was a
dkiml_dns_service handle set by dkiml_dns_init(). Also,
when closing, reset that handle to NULL.
LIBOPENDKIM: The various dkim_dns_set_*() functions, when passed a
NULL function pointer, merely store it, making the
corresponding function a no-op. Previously, doing
so restored the default.
LIBOPENDKIM: Have dkim_sig_getreportinfo() return descriptors
(if available) regardless of the signer's reporting parameters.
BUILD: Fix bug #188: Clean up last remnants of libstrl.
BUILD: Fix bug #190: Check for HAVE_SUN_LEN in opendkim-db.c.
BUILD: Fix bug #191: Better minimum version checks for libmemcached.
BUILD: Fix bug #192: Different test for libevent.
BUILD: Fix bug #193: Don't throw away user-provided compilation
variables.
BUILD: Fix bug #195: Compile opendkim-genzone with pthreads support.
BUILD: Fix bug #202: Fix pkg-config check for GNUTLS.
BUILD: Fix bug #203: opendkim-genzone requires pthreads.
BUILD: Patch #29: Look for libmilter in lib64.
BUILD: Patch #30: Include libdl when linking in Lua.
BUILD: Don't throw away user-provided compilation variables.
Problem noted by Quanah Gibson-Mount.
BUILD: Rename "--with-mdb" to "--with-lmdb" for consistency
with that package's naming conventions.
CONTRIB: Fix bug #184: Update to contrib/systemd/opendkim.service
MILTERTEST: Add "polite" flag to mt_disconnect().
TOOLS: Fix bug #187: Increase buffer size for the private key in
opendkim-testkey.
TOOLS: Fix opendkim-spam to match the schema found in stats/mkdb.mysql.
Add dependency to net/pear-Net_Sieve.
Please refer UPGRADING from older relase, especially configuration
files are changed.
Please refer CHANGELOG for detail.
* changed english and added Total on qmqtool -s
* added more stats with qmqtool -s -V
* modified some regexs to be arithmetic instead
* changed string finding code:
increased speed
removed fallback routine
use grep -E (egrep) when /pattern/ is used
support case insensitive search with /pattern/i
* rely on PATH instead of statically searching
* improved queue consistency check
* -[lRTLx] /displays/ calculated size
* added -x feature for extended information on a message
* created ./configure ; make ; make install process
(even though we're just a light perl script)
* Many cosmetic improvements to watch-multiple-mimedefangs.tcl
* Fix md_get_bogus_mx_hosts so it checks A records iff a domain has
no MX records.
* Add a forward declaration of rebuild_entity to avoid warnings on
recent Perl versions.
* Reduce potential patch conflicts by switching more DESTDIR support to sed
* Enable `qmail-netqmail` by default
* Install `qmail-viruscan` signatures via CONF_FILES
* With `tls` option, don't generate cert, instruct the user at INSTALL time
That last change also fixes the source build with `tls` enabled on
systems that don't already have a /var/qmail/control, as reported
by Thomas Lazar on pkgsrc-users@.
While here, add a comment with the new location of the qregex patch.
Since it's named strangely, I've also placed a traditionally-named
copy on ftp.n.o.
Bump PKGREVISION.
* Fix IDLE mode regression (it didn't worked) introduced
after v6.5.5 (pointy hat goes to Eygene Ryabinkin, kudos --
to Tomasz Żok)
* Add knob to invoke folderfilter dynamically on each sync (GitHub#73)
* Add knob to apply compression to IMAP connections (Abdó Roig-Maranges)
* Add knob to filter some headers before uploading message
to IMAP server (Abdó Roig-Maranges)
* Allow to sync GMail labels and implement GmailMaildir repository that
adds mechanics to change message labels (Abdó Roig-Maranges)
* Allow to migrate status data across differend backends
(Abdó Roig-Maranges)
* Support XDG Base Directory Specification
(if $XDG_CONFIG_HOME/offlineimap/config exists, use it as the
default configuration path; ~/.offlineimaprc is still tried after
XDG location) (GitHub#32)
* Allow multiple certificate fingerprints to be specified inside
'cert_fingerprint'
Do it for all packages that
* mention perl, or
* have a directory name starting with p5-*, or
* depend on a package starting with p5-
like last time, for 5.18, where this didn't lead to complaints.
Let me know if you have any this time.
This is a SECURITY release, addressing a CRITICAL remote code execution
flaw in Exim version 4.82 (only) when built with DMARC support (an
experimental feature, not on by default). This release is identical to
4.82 except for the small change needed to plug the security hole. The
next release of Exim will, eventually, be 4.83, which will include the
many improvements we've made since 4.82, but which will require the
normal release candidate baking process before release.
You are not vulnerable unless you built Exim with EXPERIMENTAL_DMARC.
This issue is known by the CVE ID of CVE-2014-2957, was reported
directly to the Exim development team by a company which uses Exim for
its mail server. An Exim developer constructed a small patch which
altered the way the contents of the From header is parsed by converting
it to use safer and better internal functions. It was applied and
tested on a production server for correctness. We were notified of the
vulnerability Friday night, created a patch on Saturday, applied and
tested it on Sunday, notified OS packagers on Monday/Tuesday, and are
releasing on the next available work day, which is Wednesday.
This is why we have made the smallest feasible changes to prevent
exploit: we want this chagne to be as safe as possible to expedite into
production (if the packages were built with DMARC).
== [release-2-0-3] 2.0.3: 2014-05-20
A bug fix release of 2.0.2
=== Package
==== Improvements
* Drop Ubuntu Quantal (12.10) support
* Drop Ubuntu Raring (13.04) support
* Add Ubuntu Trusty (14.04) support
* Drop Debian squeeze support
* rpm: Update Ruby1.9.3 package for CentOS6 to Ruby1.9.3-p545.
=== milter manager
==== Improvements
* Update bundled libev to 4.15
==== Fixes
* Fix a bug that data_stopper cannot stop apply children
[GitHub #39]
=== Ruby milter
==== Improvements
* Update bundled glib2 to 2.2.0
* Milter::Logger methods can accept a block
=== Document
==== Fixes
* Fix typos in FreeBSD installation
[Patched by Dave Dodd]
=== Thanks
* Dave Dodd
* Editheader extension: Made control characters allowed for editheader,
except NUL. Before, this would cause a runtime error.
+ Upgraded Dovecot-specific Sieve "vnd.dovecot.duplicate" extension to
match the new draft "duplicate" extension.
- Fixed sieve_result_global_log_error to log only as i_info in
administrator log (syslog) if executed from multiscript context.
- Sieve redirect extension: Adjusted loop detection to show leniency to
resent messages.
- Sieve include extension: Fixed problem with handling of duplicate
includes with different parameters :once or :optional.
- Sieve spamtest/virustest extensions: Tests were erroneously performed
against the original message. When used together with extprograms
filter to add the spam headers, the changes were not being used by
the spamtest and virustest extensions.
- Deprecated Sieve notify extension: Fixed segfault problems in message
string substitution.
- ManageSieve: Fixed active link verification to handle redundant path
slashes correctly.
- Sieve vacation extension:
- Fixed interaction of sieve_vacation_dont_check_recipient with
sieve_vacation_send_from_recipient setting.
- Fixed log message for discarded response.
- Sieve extprograms plugin:
- Forgot to disable the alarm() timeouts set for script execution.
- Fixed fd leak and handling of output shutdown.
- Fixed 'Bad filedescriptor' error occurring when disconnecting
script client.
- Made sure that programs are never forked with root privileges.
* Fixed a DoS attack against imap/pop3-login processes. If SSL/TLS
handshake was started but wasn't finished, the login process
attempted to eventually forcibly disconnect the client, but failed
to do it correctly. This could have left the connections hanging
arond for a long time. (Affected Dovecot v1.1+)
+ mdbox: Added mdbox_purge_preserve_alt setting to keep the file
within alt storage during purge. (Should become enforced in v2.3.0?)
+ fts: Added support for parsing attachments via Apache Tika. Enable
with: plugin { fts_tika = http://tikahost:9998/tika/ }
+ virtual plugin: Delay opening backend mailboxes until it's necessary.
This requires mailbox_list_index=yes to work. (Currently IMAP IDLE
command still causes all backend mailboxes to be opened.)
+ mail_never_cache_fields=* means now to disable all caching. This may
be a useful optimization as doveadm/dsync parameter for some admin
tasks which shouldn't really update the cache file.
+ IMAP: Return SPECIAL-USE flags always for LSUB command.
- pop3 server was still crashing in v2.2.12 with some settings
- maildir: Various fixes and improvements to handling compressed mails,
especially when they have broken/missing S=sizes in filenames.
- fts-lucene, fts-solr: Fixed crash on search when the index contained
duplicate entries.
- Many fixes and performance improvements to dsync and replication
- director was somewhat broken when there were exactly two directors
in the ring. It caused errors about "weak users" getting stuck.
- mail_attachment_dir: Attachments with the last base64-encoded line
longer than the rest wasn't handled correctly.
- IMAP: SEARCH/SORT PARTIAL was handled completely wrong in v2.2.11+
- acl: Global ACL file handling was broken when multiple entries
matched the mailbox name. (Only the first entry was used.)
* 3.4.1 (stable)
* Fixed Bug #193: Lose mails when mailbox is inaccessible.
* 3.4.0 (stable)
* 3.4.0rc (release candidate)
* SSL wildcard certificate is also validated now (#167).
* The compile error with OpenSSL disabled was fixed.
* 3.4.0beta8 (development)
* Mac OS X support was improved.
* SSL certificate hostname is validated now (#167).
* The Japanese manual was modified so that IE correctly detect its
character encoding.
* The rightmost column of folder view and summary view became easier to
resize.
* Appropriate columns of folder view, summary view, etc. are
auto-expanded by window resize when using GTK+ 2.14 or later.
* The initial setup dialog is now resizabe.
* PGP encrypt-to-self feature was added.
* The display period of notification window became configurable.
* 3.4.0beta7 (development)
* Win32: the tray icon is recreated when explorer.exe crashes now.
* The bug that 'File - Folder - Move folder...' menu didn't work was
fixed.
* The bug that MIME nest level restriction was not working was fixed.
* Many defects discovered by Coverity Scan were fixed:
- FILE handle resource leaks
- memory leaks
- possible buffer overrun
- strict error checks
- correct null pointer checks
* 3.4.0beta6 (development)
* Icon theme feature was added.
* HTML mail is distinguished from other messages with attachments now.
* 'Last 30 days' was added to the quick search menu.
* Attached images are rotated based on Exif orientation tag.
* Config.guess and config.sub included in the tarball were updated to the
latest version.
* 3.4.0beta5 (development)
* Basque translation was added.
* Escaped special characters in HTML links are now properly unescaped
(#120).
* IMAP: parsing of folder names that contain brackets was fixed.
* Config.guess and config.sub included in the tarball were updated.
* The order of templates became stable.
* 3.4.0beta4 (development)
* The feature to save message as plain text was added.
* Printing now prints all texts in messages, not only the first one.
* The HTML parser now supports <blockquote> tag.
* An option to prefer HTML part in multipart/alternative was added
(default: off).
* Compose window is raised when the external editor exits.
* Bugfixes of HTML display were made.
* 3.4.0beta3 (development)
* Rebuilding of folder tree which was broken at 3.4.0beta1 was fixed
(#103).
* The bug that double-quote (") and backslash (\) in
folder/username/password were not escaped and could not be used on IMAP4
was fixed.
* Quotation of forwarded messages is enabled for template now.
* When marking a message as junk and moving it to a junk folder, proper
junk folder is selected instead of default one.
* When applying a template for a new message, current date is inserted
with '%d'.
* 3.4.0beta2 (development)
* New message notification window was added.
* An option to the junk filter setting was added:
'Do not classify message as junk if sender is in the address book'.
* Some non-standard Date header patterns are handled now.
* Win32: start menu shortcuts are translated.
* 3.4.0beta1 (development)
* Safe mode (which does not load plug-ins) was added (--safe-mode).
* The existence of destination folders are checked when creating a filter
rule.
* The recursion level is restricted up to 64 when scanning local mailbox
(prevents infinite loop with symlink. Note: Linux automatically limits
the symlink loop up to 40)
* The labels used in POP3 remote mailbox dialog was modified.
* POP3: do not disconnect immediately but send QUIT command on normal
POP3 errors (prevents deleted messages appear again).
* IMAP: "INBOX" folder became case insensitive as specified in RFC 3501.
* IMAP: server name for cache directory is escaped now
(fixes cache creation when using IPv6 address for server name on Windows).
* Win32: socket timeout setting now works on Windows.
Bugfixes (fixed in Postfix 2.11 and Postfix 2.12):
* With connection caching enabled (the default), recipients could
be given to the wrong mail server. The root cause was an incorrect
predicate. Due to this, the Postfix SMTP client could under
rare conditions save and restore plaintext connections that
should not be cached, under a fixed lookup key that did not
distinguish by destination. Problem reported by Sahil Tandon.
* Enforce TLS when TLSA records exist, but all are unusable.
* Don't leak memory when TLSA records exist, but all are unusable.
Workarounds:
* Prepend "-I. -I../../include" to the compiler command-line
options, to avoid name clashes with non-Postfix header files.
Documentation cleanup:
* Corrected postconf(1) manpage for missing version attribution
and incorrect "author" formatting.
* The documentation for Postfix > 2.8 TLS activity logging was
incorrect. Loglevel 0 produces no logging. Instead, information
is logged only with loglevel 1 or higher.
Logging cleanup:
* The TLS client logged that an "Untrusted" TLS connection was
established instead of "Anonymous".
* For consistency, TLS policy lookup errors are now logged as
warnings.
