Version 4.1.5
13 September 2004
-getmail would not delete messages from the server if it was configured not
to retrieve them and the delete_after directive was not in use (i.e. user
normally left messages on server but occasionally wanted to force-delete
them). Fixed. Thanks: Frankye Fattarelli.
Version 4.2.0
18 September 2004
-SECURITY: previous versions of getmail contain a security vulnerability.
A local attacker with a shell account could exploit a race condition (or a
similar symlink attack) to cause getmail to create or overwrite files in a
directory of the local user's choosing if the system administrator ran getmail
as root and delivered messages to a maildir or mbox file under the control of
the attacker, resulting in a local root exploit. Fixed in versions 4.2.0
and 3.2.5.
This vulnerability is not exploitable if the administrator does not deliver
mail to the maildirs/mbox files of untrusted local users, or if getmail is
configured to use an external unprivileged MDA. This vulnerability is
not remotely exploitable.
Thanks: David Watson. My gratitude to David for his work on finding and
analyzing this problem.
-Now, on Unix-like systems when run as root, getmail forks a child
process and drops privileges before delivering to maildirs or mbox files.
getmail will absolutely refuse to deliver to such destinations as root;
the uid to switch to must be configured in the getmailrc file.
-revert behaviour regarding delivery to non-existent mbox files. Versions
4.0.0 through 4.1.5 would create the mbox file if it did not exist; in
versions 4.2.0 and up, getmail reverts to the v.3 behaviour of refusing
to do so.
Version 4.2.1
8 October 2004
-set message attributes on corrupt container objects to prevent problems
with destinations that expect multidrop-retrieved messages.
Thanks: Harry Wearne.
-move tests for existence of file from mbox destination initialization
to delivery method, and change error from configuration to delivery error.
Thanks: David Watson.
Version 4.2.2
11 October 2004
-in child delivery processes, change real as well as effective uid/gid.
Thanks: David Watson.
-handle corrupted oldmail file better. Thanks: Matthias Andree.
v0.99.11 2004-09-04 Timo Sirainen <tss@iki.fi>
+ 127.* and ::1 IP addresses are treated as secured with
disable_plaintext_auth = yes
+ auth_debug setting for extra authentication debugging
+ Some documentation and error message updates
+ Create PID file in /var/run/dovecot/master.pid
+ home setting is now optional in static userdb
+ Added mail setting to static userdb
- After APPENDing to selected mailbox Dovecot didn't always notice the
new mail immediately which broke some clients
- THREAD and SORT commands crashed with some mails
- If APPENDed mail ended with CR character, Dovecot aborted the saving
- Output streams sometimes sent data duplicated and lost part of it.
This could have caused various strange problems, but looks like in
practise it rarely caused real problems.
Fix these bugs..
(1) A problem with displaying mails in Japanese unless they are specified
charset to ISO-2022-JP in Content-Type header;
- encoded with euc-JP or Shift_JIS
- encoded with ISO-2022-JP but no Content-Type header
(2) A problem with replying to a mail with HTML format.
Bump package revision.
changes since 0.11:
0.12 Mon Oct 18 05:22:54 PM 2004
- 0.80 came out today. Updated code to work with the new
version, this however breaks backwards compatibility.
- Updated tests for all the changes.
0.12 Thu Aug 12 02:12:55 PM 2004
- Fixed an issue in Makefile.PL which was causing problems
with Solaris make implementation thanks to
Mike Brudenell <pmb1 [] york * ac * uk>.
- Added taint checking to scan(). It now croaks if
a file path passed in is tainted. This only happens
under -T. Reported by
Mark Martinec <Mark * Martinec [] ijs * si>
- Added "+" overload for the status object. Also reported
by Mark Martinec <Mark * Martinec [] ijs * si>
- Added tests for the above changes.
at startup due to problems when calling sigaction(2). During the build,
there was a hidden warning:
server.o(.text+0x109): In function `main':
/home/jmmv/NetBSD/pkgsrc/mail/evolution-data-server/work/evolution-data-server-1.0.2/src/server.c:129: warning: reference to compatibility sigemptyset(); include <signal.h> for correct reference
that was actually referring to a fatal error at runtime.
This fixes lots of problems in Evolution 2.0, where the address book and
the calendar were not working at all. Probably fixes more errors in this
and other programs.
Bump PKGREVISION to 1.
Changes:
- Fixed problem when filtering the last of a list of EHLO responses
- Send NOOPs to the server when receiving data slowly from client
to prevent timeouts on the server side.
- Made the log line always keep the status, rather than dropping of
the end in the case of many recipeints.
Linux/i386.
changes since 0.04:
0.11 Mon Jun 28 10:26:50 AM 2004
- Inline_Stack_Item() is indexed at zero. All set/get
methods are broken because of this mistake. Thanks to
Michael Carmack <karmak [] karmak * org> for reporting
this.
- Added tests for settings so this doesn't happen again.
0.10 Thu Jun 17 01:35:17 PM 2004
- Whoops, should always make test before upload..
0.09 Thu Jun 17 01:10:58 PM 2004
- More fun with the hook to remove config code. It has now
been made a top level target that works on the code in the
blib directory. This was needed for systems like Gentoo.
0.09 Thu Jun 17 01:06:09 PM 2004
- Updated to use 0.73's clamav-config program to get
include paths and compiler flags.
0.09 Fri Apr 2 08:02:49 AM 2004
- fixed statchkdir, it was not returning the proper value
- updated documentation
0.09 Fri Apr 2 07:49:08 AM 2004
- Moved hook for removing temporary code from
ClamAV.pm from after install to during the all
target.
0.08 Thu Apr 1 04:59:27 PM 2004
- Perl 5.6.1 does not understand a 'const' C function
for binding with XS. Removed the 'const' definiton from
clamav_perl_retdbdir(). Thanks to Homer <hparker _at_ homershut.net>
for reporting this
0.07 Wed Mar 24 02:34:47 PM 2004
- Added support for the new 0.70_rc library. This
unfortunatly it no longer works with anything
older than 0.70_rc.
0.06 Tue Mar 9 17:45:43 PST 2004
- Mention deps in INSTALL mentioned by
Andre Felipe Machado <andremachado at techforce.com dot br>
0.06 Thu Feb 12 08:11:38 AM 2004
- added INC for include paths, LIBS does not work for includes
- updated README
0.06 Thu Feb 12 08:04:27 AM 2004
- added back accidentally removed code which removes the require
code from ClamAV.pm.
Reported by Julian Field <mailscanner at ecs.soton.ac.uk>
0.05 Tue Feb 10 10:12:42 AM 2004
- Finished up statchkdir
- more docs updates
- removed real virus and added eicar
- added INSTALL and updated Makefile.PL
so LIBS can be configured
0.05 Tue Jan 27 01:27:44 PM 2004
- New method statchkdir
- Updated documentation URLs
Bugzilla bugs fixed (see http://bugzilla.ximian.com/show_bug.cgi):
* Calendar
#62868 - Permission denied accepting a GroupWise meeting a second time
(Chen)
#67513 - Evolution corrupts memory if backend autobooks meeting attendees
(JP)
#66230 - tasks from online iCal duplicate after auto-refresh (Rodrigo)
* Address Book
#66368 - VCard parser doesn't add "File under" (Hans)
#66574 - Make e_book_get_self work (Diego Gonzalez
#67600 - fix e-d-s issues on x86_64 machines (Hans)
* All
#65200 - GroupWise backend crash
#67031 - (Partial) show completed status properly for GroupWise tasks
Other bugs
* Address Book
- Restrict system address book queries to groupwise server for performance
reasons (Siva)
* Calendar
- load system tasks backend correctly
Updated Translations:
- fr (Craig Jeffares)
- zh_TW (Craig Jeffares)
- sk (Stanislav Visnovsky)
- fa (Roozbeh Pournader)
- id (Mohammad DAMT)
- ar (Arafat Medini)
Changes since 11.10 include:
* When sending messages that contain ASCII control characters but neither
NULs nor non-ASCII characters, the quoted-printable MIME encoding is now
used instead of 7bit.
* A dangling pointer after a memory reallocation could result in a coredump
when the junk mail database was updated by a 'good' or a 'junk' command.
* The code for accessing the junk mail database has been made more machine-
independent. It will not make a difference on most of the platforms on
which nail runs. If your compiler does insert padding into C structs that
contain only members of type char, you will have to create the junk mail
database from scratch again, though.
Changes:
03-23-04 - Roeland Merks (3.7.1)
o Added code to toggle ASUS Mail LED
12-18-03 - Anton Perich
o Changed IMAP code to use STATUS instead of EXAMINE
11-14-03 - Kurt Granroth
o Updated 'admin' subdir to work with newer autoconf/automake
10-22-03 - Adam Piatyszek
o Bug fix in maildir code to handle 'f'lagged messages
09-26-03 - Clemens Oertel
o New option to set a command that runs whenever the status changes
from New back to Old. Useful to set LEDs and the like
3.0.
Important changes since 2.64 (for details see the file 'Changes')
- support for sender authentication using the Sender Policy Framework
(SPF)
- checking for web links of known spam advertisers (SURBL)
- modular plugin architecture
- improved SQL database support for storing user data in server
installations
- improved email classification
- SpamAssassin is now part of the Apache Foundation
under ${PREFIX} instead of being an absolute path.
So fix the references using RCD_SCRIPTS_EXAMPLEDIR to be
${PREFIX}/${RCD_SCRIPTS_EXAMPLEDIR}.
This should have no changes to use before.
Please note that the MESSAGE files in most cases are wrong in the
first place. We have automated mechanisms and could have an automated
message for explaining rc.d script usage. (This is something to do!)
No need to bump PKGREVISION or something, this was harmless:
some directories were made twice while installing from pkgsrc (by do-install
target and by INSTALL script) and binary packages were safe because the
INSTALL script creates them.
0.9.5
- Fixed problems with the select zeroing out timeouts.
- Added support for setting the PidFile from the config file
0.9
- Don't quit when too many threads created
- Restructured smtp passthru system so it can be used by other apps
- Better IO and SMTP parsing
- Changed default header to be similar to Amavis
- Compiles and runs on systems without error checking mutexes
- Ability to drop privileges and run as a different user [Rubio Vaughan]
- Fixed config file bugs
- Virus Actions. Run a script every time a virus is found.
- By default don't use ClamAV sessions. This fixes several stability
problems that were being experienced with clamd.
Update exim-exiscan to 4.43_28 from 4.42_27
Update exim-html to 4.40 from 4.30
exim-exiscan:
28 - Added F-Secure support, thanks to Johan Thelmen <jth@home.se>.
- Upgraded SRS support to libsrs_alt 0.5 via Miles
Wilton's patch.
- REMOVED exiscan-acl implementation of custom header
placement in favor of Philip Hazel's native implementation.
However, a new option option was added for it to
mimic the behaviour of the old header_pos_middle option.
Read section 10 of exiscan-acl-spec.txt.
exim:
1. Fixed a longstanding but relatively impotent bug: a long time ago, before
PIPELINING, the function smtp_write_command() used to return TRUE or FALSE.
Now it returns an integer. A number of calls were still expecting a T/F
return. Fortuitously, in all cases, the tests worked in OK situations,
which is the norm. However, things would have gone wrong on any write
failures on the smtp file descriptor. This function is used when sending
messages over SMTP and also when doing verify callouts.
2. When Exim is called to do synchronous delivery of a locally submitted
message (the -odf or -odi options), it no longer closes stderr before doing
the delivery.
3. Implemented the mua_wrapper option.
4. Implemented mx_fail_domains and srv_fail_domains for the dnslookup router.
5. Implemented the functions header_remove(), header_testname(),
header_add_at_position(), and receive_remove_recipient(), and exported them
to local_scan().
6. If an ACL "warn" statement specified the addition of headers, Exim already
inserted X-ACL-Warn: at the start if there was no header name. However, it
was not making this test for the second and subsequent header lines if
there were newlines in the string. This meant that an invalid header could
be inserted if Exim was badly configured.
7. Allow an ACL "warn" statement to add header lines at the start or after all
the Received: headers, as well as at the end.
8. Added the rcpt_4xx retry error code.
9. Added postmaster_mailfrom=xxx to callout verification option.
10. Added mailfrom=xxxx to the callout verification option, for verify=
header_sender only.
11. ${substr_1_:xxxx} and ${substr__3:xxxx} are now diagnosed as syntax errors
(they previously behaved as ${substr_1_0:xxxx} and ${substr:_0_3:xxxx}).
12. Inserted some casts to stop certain compilers warning when using pointer
differences as field lengths or precisions in printf-type calls (mostly
affecting debugging statements).
13. Added optional readline() support for -be (dynamically loaded).
14. Obscure bug fix: if a message error (e.g. 4xx to MAIL) happened within the
same clock tick as a message's arrival, so that its received time was the
same as the "first fail" time on the retry record, and that message
remained on the queue past the ultimate address timeout, every queue runner
would try a delivery (because it was past the ultimate address timeout) but
after another failure, the ultimate address timeout, which should have then
bounced the address, did not kick in. This was a "< instead of <=" error;
in most cases the first failure would have been in the next clock tick
after the received time, and all would be well.
15. The special items beginning with @ in domain lists (e.g. @mx_any) were not
being recognized when the domain list was tested by the match_domain
condition in an expansion string.
16. Added the ${str2b64: operator.
17. Exim was always calling setrlimit() to set a large limit for the number of
processes, without checking whether the existing limit was already
adequate. (It did check for the limit on file descriptors.) Furthermore,
18. Imported PCRE 5.0.
19. Trivial typo in log message " temporarily refused connection" (the leading
space).
20. If the log selector return_path_on_delivery was set and an address was
redirected to /dev/null, the delivery process crashed because it assumed
that a return path would always be set for a "successful" delivery. In this
case, the whole delivery is bypassed as an optimization, and therefore no
return path is set.
21. Internal re-arrangement: the function for sending a challenge and reading
a response while authentication was assuming a zero-terminated challenge
string. It's now changed to take a pointer and a length, to allow for
binary data in such strings.
22. Added the cyrus_sasl authenticator (code supplied by MBM).
23. Exim was not respecting finduser_retries when seeking the login of the
uid under which it was called; it was always trying 10 times. (The default
setting of finduser_retries is zero.) Also, it was sleeping after the final
failure, which is pointless.
24. Implemented tls_on_connect_ports.
25. Implemented acl_smtp_predata.
26. If the domain in control=submission is set empty, Exim assumes that the
authenticated id is a complete email address when it generates From: or
Sender: header lines.
27. Added "#define SOCKLEN_T int" to OS/os.h-SCO and OS/os.h-SCO_SV. Also added
definitions to OS/Makefile-SCO and OS/Makefile-SCO_SV that put basename,
chown and chgrp in /bin and hostname in /usr/bin.
28. Exim was keeping the "process log" file open after each use, just as it
does for the main log. This opens the possibility of it remaining open for
long periods when the USR1 signal hits a daemon. Occasional processlog
errors were reported, that could have been caused by this. Anyway, it seems
much more sensible not to leave this file open at all, so that is what now
happens.
29. The long-running daemon process does not normally write to the log once it
has entered its main loop, and it closes the log before doing so. This is
so that log files can straightforwardly be renamed and moved. However,
there are a couple of unusual error situations where the daemon does write
log entries, and I had neglected to close the log afterwards.
30. The text of an SMTP error response that was received during a remote
delivery was being truncated at 512 bytes. This is too short for some of
the long messages that one sometimes sees. I've increased the limit to
1024.
31. It is now possible to make retry rules that apply only when a message has a
specific sender, in particular, an empty sender.
32. Added "control = enforce_sync" and "control = no_enforce_sync". This makes
it possible to be selective about when SMTP synchronization is enforced.
33. Added "control = caseful_local_part" and "control = "caselower_local_part".
32. Implemented hosts_connection_nolog.
33. Added an ACL for QUIT.
34. Setting "delay_warning=" to disable warnings was not working; it gave a
syntax error.
35. Added mailbox_size and mailbox_filecount to appendfile.
36. Added control = no_multiline_responses to ACLs.
37. There was a bug in the logic of the code that waits for the clock to tick
in the case where the clock went backwards by a substantial amount such
that the microsecond fraction of "now" was more than the microsecond
fraction of "then" (but the whole seconds number was less).
38. Added support for the libradius Radius client library this is found on
FreeBSD (previously only the radiusclient library was supported).
Bugzilla bugs fixed (see http://bugzilla.ximian.com/show_bug.cgi):
* Calendar
#66383 - Warning fixes in calendar code (Dave Malcom)
#64955 - C99-ism in libecal (Vincent Noel)
#59904 - Calendar query caching (Rodrigo)
#65167 - Crash sending task to GroupWise (Chen)
#64685 - Appointment requests that have been replied to give
"Invalid Object" error (Chen)
#63513 - G/W appointment acceptance fails ('invalid object') (Chen)
#64688 - mixing UTC and localtime in Appointment view (Chen)
* All
#66209 - only first source color change is saved to gconf (Michael)
#64062 - new all day recurring events do not show busy time or as
all day appts (Chen)
Other bugs
* Address Book
- disable debugging noise (William Jon McCann)
- don't search summary for groupwise system address book (Siva)
* Calendar
- support groupwise all day events
* All
- fix e-d-s issues on NPTL and AMD machines (Chris, Frederic Crozat,
Hans, Dave Malcolm)
Updated Translations:
- fr (Craig Jeffares)
- zh_TW (Craig Jeffares)
- sk (Stanislav Visnovsky)
- fa (Roozbeh Pournader)
- id (Mohammad DAMT)
- ar (Arafat Medini)
in the process. (More information on tech-pkg.)
Bump PKGREVISION and BUILDLINK_DEPENDS of all packages using libtool and
installing .la files.
Bump PKGREVISION (only) of all packages depending directly on the above
via a buildlink3 include.
Mail Notification is a status icon (aka tray icon) that informs you if
you have new mail.
It works with system trays implementing the freedesktop.org System Tray
Specification, such as the GNOME Panel Notification Area, the Xfce
Notification Area and the KDE System Tray.
Mail Notification features include:
* Multiple mailbox support.
* Mbox, MH, Maildir, Sylpheed, POP3, IMAP and Gmail support.
* SASL authentication support.
* APOP authentication support.
* SSL/TLS support.
* Automatic detection of mailbox format.
* Immediate notification (the status icon is updated within seconds after
a mailbox changes).
* HIG 2.0 compliance.
Too many changes and bugfixes to list here, see installed file
${PREFIX}/share/doc/sympa/NEWS.
Highlights of package changes: use regular PREFIX, pervasive use of
bsd.pkg.install.mk framework, add dependencies on mhonarc package and
openssl, use bsd.options.mk framework to select MySQL or PostgreSQL support,
introduce SYMPA_VARBASE to select "/var" directory
(defaults to ${VARBASE}/sympa).
Take stewardship with previous maintainer blessing.
XXX Better startup script(s) than the ones I use should be provided, so
I'm not including them in this package.
