Changes from previous:
2011-10-26 Hatuka*nezumi - IKEDA Soji <hatuka@nezumi.nu>
* Release 1.012.4.
* Chg: encode_mimewords(): 'B' was advantageous over 'Q' by 4/3 byte
on average...
* Updated address of FSF.
2011-06-05 Hatuka*nezumi - IKEDA Soji <hatuka@nezumi.nu>
* Release 1.012.3.
* Fix: encode_mimewords(): inproper handling of Encoding => 'S'.
* Imp: decode_mimewords(): Broken "Q" encoding also warned: "=" not
leading two hexdigits (raw " " and "\t" are allowed).
* Imp: encode_mimewords(): negative MaxLineLen allows unlimited length
of line.
* Encode::MIME::EncWords: Rewritten. 0.03.
- Any newlines not forming folding white space are preserved.
cf. CPAN RT #68582 for standard encodings.
- Error handling.
* Doc: typos etc.
2011-06-01 Hatuka*nezumi - IKEDA Soji <hatuka@nezumi.nu>
* Release 1.012.2.
* Chg: encode_mimewords(): By 'A' or 'S' encodings, 'Q' will be used
more often: When number of bytes to be encoded exceeds 6th of
entire bytes, words may be encoded by 'B'. In other words,
``S encoding'' is to choose shorter one of 'B' or 'Q' according to
length of maximally-encoded result.
* Fix: encode_mimewords(): Pure ASCII words containing unsafe sequence
ignored Encoding option; encoded by header_encoding() of its charset.
* Updated Encode::MIME::EncWords.
* Added test #03 & #04. Added UTF-8 cases to #02.
2011-05-29 Hatuka*nezumi - IKEDA Soji <hatuka@nezumi.nu>
* Release 1.012.1.
* Unicode/multibyte support on Perl 5.7.3 (experimental).
* New: Encode::MIME::EncWords [alpha release] - Encode module for
"MIME-EncWords", "MIME-EncWords-B", "MIME-EncWords-Q" and
"MIME-EncWords-ISO_2022_JP".
* Requires MIME::Charset >= 1.008.2.
+ Sieve vacation extension: made discard message for implicit
delivery more verbose
- The sieve-test tool: mixed up original and final envelope recipient
in implementation of command line arguments.
- Sieve vacation extension: resolved FIXME regarding the use of
variables in the :handle argument. Variables are now handled
correctly.
- Sieve body extension: fixed handling of :content "message/rfc822".
This now yields the headers of the embedded message as required by
the specification. Handling of :content "multipart" remains to be
fixed.
- LDA Sieve plugin: fixed problem with recipient_delimiter
configuration. Now it falls back to global recipient_delimiter
setting if plugin/recipient_delimiter is not set.
Changes from previous:
0.185 2011-08-11
do not die in t/valid.t when testing for working DNS
(address RT #70157, thanks, Alexey Tourbin)
avoid a pointless warning (mentioned in RT #68312)
check TLD validity before MX records
(address RT #32237, thanks, meyerdigital)
reject addresses with non-ASCII characters
(address RT #50230, thanks, ferreira)
* VSZ limits weren't being enforced for any processes. On server with
large mailboxes you may now see errors about it if the limits aren't
high enough. To fix them, either increase individual service {
vsz_limit } values or simply increase the default_vsz_limit setting.
* Proxying: If using ssl=yes or starttls=yes with a hostname (not IP)
as proxy destination, require that the certificate matches the given
hostname.
* LMTP: Changed default client_limit to 1. This should improve LMTP
throughput with default settings.
* dsync: Quota is no longer enforced (i.e. dsync can't fail because
user is over quota).
+ Added "auto" mail storage driver, which can be used to autodetect
mailbox location and format. This behavior is already the default
for empty mail_location setting, so this change is mainly useful for
shared namespace's location setting.
+ checkpassword: Export all auth %variables to AUTH_* environment.
A bug fix release of 1.8.0.
Now, manager.event_loop_backend and manager.n_workers aren't
experimental!
=== milter manager
==== Improvements
* [applicable-condition][sendmail] clear DNS cache for each 100 IP
addresses.
==== Fixes
* detach IO for launcher on daemon mode.
use milter_client_is_run_as_daemon() to get whether daemonize or
not. [Reported by OBATA Akio]
* add a workaround for Ruby cleanup.
If environment variable
MILTER_MANAGER_RUBY_STOP_TIMER_THREAD_BEFORE_CLEANUP=yes,
skip timer thread before cleanup.
* use rb_fork() as fork implementation.
This will fix --daemon doesn't work on *BSD.
[Reported by OBATA Akio]
* use INCLUDES to use configured libev include path rather than
CPPFLAGS. [Reported by moto kawasaki]
=== milter-core
==== Fixes
* fix missing null FD close by inverted condition.
[Reported by OBATA Akio]
=== milter-client
==== Improvements
* use higher priority for accepting connection.
==== Fixes
* fix a bug that workers don't shutdown on master shutdown. It's
GLib evnet loop backend specific problem.
=== milter-server
==== Improvements
* add more information to error message.
* [server] unify unknown name logging.
==== Fixes
* fix a bug that all milters can't find on 2nd RCPT in the same
session.
=== Ruby milter
==== Improvements
* add Milter::Client::Configuration::MilterConfiguration#name.
==== Fixes
* fix event_loop_created hook can't get event loop.
* do not raise error if process raw shift_jis mail file. Ruby 1.9.
* udpate bundled test-unit file list. [Reported by Hirohisa Yamaguchi]
* [ruby][glib2] fix a SEGV bug on Solaris10.
=== milter-test-server
==== Fixes
* fix quoted charset detection. [Reported by nobu]
* fix multiline header parsing.
* --mail-file keeps new line type of the original mail.
=== Document
==== Improvements
* add log list to HTML.
* fix typos. [Pull requested by Norio Suzuki]
=== Admin
==== Improvements
* use locale "en" if Accept-Language is not "ja".
[Reported by Larry G. Wapnitsky]
8.0 changes:
Thunderbird is based on the new Mozilla Gecko 8 engine
Add-ons installed by third party programs are now disabled by default
New Search and Find Shortcuts
Improved accessibility of the attachment list
Folder switching pane widget has been removed, can be added back with the
Folder Pane View Switcher Add-on
Numerous platform fixes to stability
Fixed several security issues
7.0 changes:
Thunderbird is based on the new Mozilla Gecko 7 engine
Several user interface fixes and improvements
Several fixes to attachment handling
Ability to print a summary of selected email messages
Platform improvements to Address Book
Fixed several security issues
Numerous platform fixes that improve speed, performance and stability
Changes from previous:
0.110001 2011-04-03 16:32:15 America/New_York
prevent Test::MinimumVersion test from causing a requirement on T::MV
and, thus, PPI! Thanks for the report, Matt S. Trout!
0.110000 2011-03-17 21:40:36 America/New_York
provide a much clearer and more fatal error when SASL authentication
has failed because Authen::SASL or MIME::Base64 is not available
Change from previous:
3.004 2011-02-18
If present, MIME::Entity must be v5.501; v5.500 had a regression (or
a bug fix, depending how you look at it) that broke header-reading.
While technically older versions that are not 5.500 would work, it is
much simpler to just require the newest version, rather than to
support a version range with a hole in it.
Postfix stable release 2.8.7 is available. This contains a workaround
for a problem that is fixed in Postfix 2.9.
* The postscreen daemon, which is not enabled by default, sent
non-compliant SMTP responses (220- followed by 421) when it
could not give a connection to a real smtpd process. These
responses caused some remote SMTP clients to return mail as
undeliverable.
The workaround is to hang up after sending 220- without sending
the 421 "sorry" reply; this is harmless.
The complete fix involves too much change for a stable release:
send the 220 greeting, wait for the EHLO command, then send
the 421 "sorry" reply and hang up.
Changes from previous:
1.910 2011-09-12
document the header_str arg to ->create more thoroughly (i.e., at all)
1.909 2011-09-08
dial the perl prereq back to 5.8.1 by popular demand... actually
1.908 2011-06-01
dial the perl prereq back to 5.8.1 by popular demand
1.907 2011-02-02
require 5.8.5 for sane encoding
be more lenient with Content-Tranfser-Encoding values; stop at
semicolons
update to 2.7.0. Excerpt from the release notes:
NEW FEATURES SUMMARY
- significant improvements affecting a pre-queue content filtering setup
(time limiting, warm/flying restart, ...) - requires Postfix 2.7.0 and
SpamAssassin 3.3.0, or later;
- new daemon amavisd-signer makes it possible to sign mail with DKIM
signatures without requiring amavisd process to have access to private
signing keys;
- added support for the Sophos-SSSP, Avira SAVAPI and ClamAV clamd streaming
protocols allows amavisd to communicate with these antivirus solutions;
- allow specifying multiple (fail-over) back-end mailers for resubmission
of messages from amavisd back to MTA;
- support for Postfix 2.8.0 XFORWARD IDENT, passes a local message identifier
(queue id) downstream to a post-queue content filter and back to Postfix;
- speedup in data transfer rate on receiving large mail via SMTP/LMTP
sessions by a factor of 3.9 for plain text sessions, and by a factor
of 11 for encrypted (TLS) sessions;
- recognize and insert header fields as prepared by SpamAssassin 3.3.0
or later through its 'add_header' configuration option;
- a new setting allows a forward_method to be chosen based on a message
content type and/or recipient address; this may be useful for outgoing
mail routing purposes or to implement sender reputation schemes;
- per-recipient (or per- policy bank) SpamAssassin configuration files or
SQL configuration sets are supported (@sa_userconf_maps), and per-recipient
SQL Bayes database usernames (@sa_username_maps);
- new macros: client_helo, client_addr, client_port, client_addr_port,
mime2utf8, rusage, ADDEDHEADERHAM, ADDEDHEADERSPAM, banned_parts_as_attr,
actions_performed, new arguments to macros dkim, header_field, HEADER,
YESNO and YESNOCAPS;
- @listen_sockets setting offers a unified configuration of listening
sockets; it may be configured directly, or the traditional way: the
$inet_socket_port, $unix_socketname and $inet_socket_bind just add their
entries to the @listen_sockets list;
- lists of lookup tables (the @*_maps variables) can now contain
explicit SQL and LDAP lookup objects as their elements, instead of
(or in addition to) the implied SQL and LDAP lookups;
- a new configuration variable @virus_name_to_policy_bank_maps allows
loading of policy banks based on a virus name;
- a new configuration variable $mail_id_size_bits allows setting the size
of randomly generated mail_id and secret_id codes;
- a new configuration variable $sql_store_info_for_all_msgs allows storing
information on mail messages selectively just for quarantined messages;
- added SNMP counters InMsgsStatus* which combine the final mail checking
status with a direction of a mail flow;
- optional transparent archival quarantine, retaining envelope recipient
addresses on delivery to a dedicated SMTP server;
Postfix stable release 2.8.6, 2.7.7, 2.6.13 and 2.5.16 are available.
These contain fixes that are also included with the Postfix 2.9
experimental release.
* The Postfix SMTP daemon sent "bare" newline characters instead
of <CR><LF> when a header_checks REJECT pattern matched
multi-line header. This bug was introduced with Postfix 1.1.
* The Postfix SMTP daemon sent "bare" newline characters instead
of <CR><LF> when an smtpd_proxy_filter returned a multi-line
response. This bug was introduced with Postfix 2.1.
* For compatibility with future EAI (email address
internationalization) implementations, the Postfix MIME
processor no longer enforces the strict_mime_encoding_domain
check on unknown message subtypes such as message/global*.
This check is disabled by default.
* The Postfix master daemon could report a panic error
("master_spawn: at process limit") after the process limit
for some service was reduced with "postfix reload". This bug
existed in all Postfix versions.
You can find the updated Postfix source code at the mirrors listed
at http://www.postfix.org/.
Changes from previous:
1.02 14 Nov 2009
- Fix CPAN RT bug 35320 - add missing dependency
- Add Test::Kwalitee to ensure we always have kwalitee.
- Add github repo http://github.com/mstevens/Mail--ListDetector
1.03 30 Jun 2010
- Make license more explicit
1.04 19 Feb 2011
- Fix pod warnings.
* Remove included patches.
Changelog:
Mew 6.4 stable release (2011/10/19)
* cmew falls back to getModificationTime on Windows.
Masamichi HOSODA <trueroad>
* Supporting Ruby 1.9.
Takahiro Kambe <taca>
Mew 6.4 release candidate 1 (2011/09/06)
* A bug of rescan is fixed finally!
* mewl avoids causing error if a folder does not exist.
Masamichi HOSODA <trueroad>
* Catching up to stunnel 4.39.
Ryo ONODERA <ryo_on>
* Supporting text/csv.
Tetsuya Toda <toda>
Mew 6.3.51 (2011/06/29)
* A hack for calling browser on Unix.
"Diogo F. S. Ramos" <diogofsr> and Tatsuya Kinoshita <tats>
* Bug fixes for hankaku.
<tmurata> and Tatsuya Kinoshita <tats>
* Avoiding broken end-of-line for quoted-printable.
* Multibyte hack for Emacs 23 and 24.
* Supporting GBK.
* Fixing excel and powerpoint on Unix.
Kan Sasaki <sasaki@fcc.ad.jp>
* pdftotext support for Windows.
Shuichi KITAGUCHI <ki>
* &rest to mew-user-agent-compose for Emacs 24.
Harald Hanche-Olsen <hanche>
* More gentle for broken Multipart/Signed.
Eisaku YAMAGUCHI <eisaku>
* Improving the documentation of mew-draft-use-format-flowed.
Christophe TROESTLER <Christophe.Troestler>
* varsx hack.
* Fixing regex of time.
Christophe TROESTLER <Christophe.Troestler>
* Fixing major mode hooks.
Hayashi Masahiro <mhayashi1120>
* Inline display of PDF with "pdftotext".
Hideyuki SHIRAI <shirai>
Harumitsu YOSHITAKE <yositake>
* Text/Pdf for Thunderbird
Christophe TROESTLER <Christophe.Troestler>
* Removing warnings for Emacs 23.3
Yu-ji Hosokawa <yu-ji>
* Killing stunnel with -KILL since the spec of stunnel changed.
* The -b option for mewest.
"Diogo F. S. Ramos" <diogofs>
Mew 6.3.50 (2010/08/31)
* Defining mew-draft-use-format-flowed.
Christophe TROESTLER <Christophe.Troestler>
* Making use of mew-save-dir.
* Fixing the hash-vs-array problem of cmew.
Masamichi HOSODA <trueroad>
* Making cmew safer in the case where mewest works at the same time.
Masamichi HOSODA <trueroad>
* Hack for mew-time-rfc-to-sortkey.
Hideyuki SHIRAI <shirai>
* A patch for unzip.
Yu-ji Hosokawa <yu-ji>
* Supporting unzip.
* Bug fix for PGP/MIME of binary encryption.
Shoichi Kurosaka <sho>
* Both cmew and smew in Haskell works well finally!
Shuichi KITAGUCHI <kit>
* Fixing info/Makefile.
Yasuhiro KIMURA <yasu>
* Guarding mew-addrbook-clean-up.
Hideyuki SHIRAI <shirai>
* A bug fix of mew-mime-content-type.
Yu-ji Hosokawa <yu-ji>
* Setting split-width-threshold to nil in mew-summary-reply.
* "b" in Summary saves the buffer of Message mode to a file.
* header-only now can work for M-x mew.
* Bold of font can be specified on Emacs 23.
* Deleting " " from global-mode-string.
Christophe TROESTLER <Christophe.Troestler>
* Correcting the -P option of stunnel3.
Kendall Shaw <kshaw>
* Define mew-sumsym-encode-folder and mew-sumsym-decode-folder.
* set-buffer -> with-current-buffer.
* Making mew-mime-image() safer.
Hideyuki SHIRAI <shirai>
Changelog:
Version 1.4.25:
- DIGEST-MD5 authentication is not considered secure any longer. See RFC 6331.
- Support for alias expansion was added. See the aliases command and --aliases
option.
Changes from previous:
2011-06-09 Hatuka*nezumi - IKEDA Soji <hatuka(at)nezumi.nu>
* Release 1.009.1.
* Chg: Workaround for aliasing on TIS-620 that is treated as
ISO-8859-11 by Encode.
And added WINDOWS-874 as EXTENDED map of TIS-620.
* Imp: Result of _find_encoder() will be cached.
* Imp/Chg: 'S' encoding will be resolved numerically, without comparing
actually encoded lengths.
* Added informations for WINDOWS-125[03-8].
* Added some cases to test #4.
2011-06-08 Hatuka*nezumi - IKEDA Soji <hatuka(at)nezumi.nu>
* Release 1.009 - withdrawn.
2011-05-28 Hatuka*nezumi - IKEDA Soji <hatuka(at)nezumi.nu>
* Release 1.008.2.
* Bug Fix: Body transfer-encoding profile "S" did not work properly,
and profile for UTF-8 was NOT really updated.
2011-02-19 Hatuka*nezumi - IKEDA Soji <hatuka(at)nezumi.nu>
* Release 1.008.1.
* Chg: Workaround for CPAN RT #65796: Deep recursion error finding
invalid charset. Limit length of charset name upto 75.
* Imp: Supports Unicode/multibyte on Perl 5.7.3 (experimental).
* Perl 5.7.3 & 5.8.3:
avoid ``Useless use of a constant in void context'' warnings.
* Doc: small fixes.
* Solaris build fix for Oracle's LDAP libraries.
* HP/UX build fix: avoid arithmetic on a void pointer.
* DKIM Verification: Fix relaxed canon for empty headers w/o whitespace trailer
* Fix a couple more cases where we did not log the error message when unlink()
failed.
* Make the exiwhat support code safe for signals. Previously Exim might lock up
or crash if it happened to be inside a call to libc when it got a SIGUSR1
from exiwhat.
* Improved ratelimit ACL condition.
* Removed a few PCRE remnants.
* Automatically extract Exim's version number from tags in the git repository
when doing development or release builds.
* Raise smtp_cmd_buffer_size to 16kB.
* Implement SSL-on-connect outbound with protocol=smtps on smtp transport.
* Use .dylib instead of .so for dynamic library loading on MacOS.
* Variable $av_failed, true if the AV scanner deferred.
* Stop make process more reliably on build failure.
* Make maildir_use_size_file an _expandable_ boolean.
* Handle ${run} returning more data than OS pipe buffer size.
* Handle IPv6 addresses with SPF.
* GnuTLS: support TLS 1.2 & 1.1.
* match_* no longer expand right-hand-side by default.
* fix uninitialised greeting string from PP/03 (smtps client support).
* shell and compiler warnings fixes for RC1-RC4 changes.
Changes to the Cyrus IMAP Server since 2.4.11
* Bug #3150 - fix issue with overview and messages without a
References header
* fixed nntp login with tab and space in password
* Bug #3501 - be more relaxed about names of DELETED folders
* Bug #3553 - fix QRESYNC passing to murder backend - thanks alec
<alec@alec.pl>
* Bug #3554 - only show ENABLED response the first time each option
is ENABLEd
* Lots of cleanup of build process and backporting of APIs
* Bug #3502 - make configure.in more portable - thanks OBATA Akio
<obata@lins.jp>
* Bug #3533 - add missing break statements in sieve - thanks Thomas
Jarosch <thomas.jarosch@intra2net.com>
* Bug #3550 - support wildcards for ACLS in cyradm - thanks
<mark.cave-ayland@siriusit.co.uk>
* Bug #3556 - print remote server in mbpath - thanks Wolfgang Breyha
<wbreyha@gmx.net>
* Bug #3559 - make XFER work with unlimited quota - thanks Wolfgang
Breyha <wbreyha@gmx.net>
* Bug #3547 - use strconcat() in writefile()
* fixed a case where skiplist library could write error messages
directly to stdout
* Bug #3545 - fix sign extension in squat_decode_64
* Bug #3558 - return error if backend doesn't support LIST-EXTENDED
* Bug #3565 - clean up in preparation for automake
* fixed incomplete authentication checks in nntpd, reported by
Secunia as SA46093
Changes to the Cyrus IMAP Server since 2.3.17
* Fix for incomplete authentication checks in nntpd, reported by
Secunia as SA46093 - thanks Stefan Cornelius, Secunia Research
-when retriever supports multiple mail folders (IMAP), store oldmail data for
each folder separately, preventing problems in some cases when using multiple
rc files with the same account. Thanks: Jesse Schobben.
While here, add a patch comment to quell pkglint.
-automatically open IMAP folders read-only if neither the delete nor
delete_after options are in use; necessary to access chatlogs via Gmail.
Thanks: Daniel M. Drucker.
-avoid sorting msgids on each retrieval, reducing overhead when dealing with
folders containing thousands of messages. Thanks: Daniel Koukola.
+ doveadm altmove: Added -r parameter to move mails back to primary storage.
- v2.0.14: Index reading could have eaten a lot of memory in some situations
- doveadm index no longer affects future caching decisions
- mbox: Fixed crash during mail delivery when mailbox didn't yet have GUID
assigned to it.
- zlib+mbox: Fetching last message from compressed mailboxes crashed.
- lib-sql: Fixed load balancing and error handling when multiple hosts are
used.
Changelog:
+ Vacation extension: finally added support for using the original
recipient in vacation address check. It is also possible to disable
the recipient address check entirely. Check doc/vacation.txt for
configuration information.
+ Include extension: made limits on the include depth and the total
number of included scripts configurable. Check doc/include.txt for
configuration information.
+ Implemented ihave extension. This allows checking for the availability
of Sieve language extensions at 'runtime'. Actually, this is checked
at compile time. At runtime the interpreter checks whether extensions
that were not previously available are still unavailable. If the
situation changed, the script is re-compiled and the ihave tests are
evaluated again.
+ Sieve: optimized compilation of tests that yield constant results
(i.e. known at compile tme), such as 'true' and 'false'. No code is
produced anymore for script sections that are never executed. Also,
semantics are not verified anymore in uncompiled script sections.
+ Made vnd.dovecot.debug extension available to the LDA plugin instead
of only the command line tools.
+ Sieve: redirect action now adds X-Sieve-Redirected-From header
(mainly for people using SPF/SRS).
- Sieve: fixed bug in handling flags and keywords; in case of error an
assertion was triggered.
- Script storage: improved handling of unconfigured user home directory.
Originally this would produce an unhelpful error message.
- Imap4flags extension: prevent forcibly enabling imap4flags when
imapflags is enabled.
- Fixed various -Wunused-but-set-variable compiler warnings.
- Include extension: forgot to check variable identifier syntax for
'global' command.
- Sieve: fixed debug mode; no messages were logged in some situations.
- sievec tool: forgot to enable -D (debug) parameter.
2011-09-07
* version 3.1.2
2011-08-03
* src/quick_search.c: applied a patch to fix quick search text color
on dark themes (thanks to speps).
2011-06-24
* src/update_check.c: win32: also check the file size of updater exe.
2011-06-24
* libsylph/utils.c: my_tmpfile(): win32: fixed a memory leak.
unix: removed alloca().
2011-08-08 Jeffrey Stedfast <fejj@gnome.org>
* README: Bumped version
* configure.in: Bumped version to 2.4.26
* build/vs2008/gmime.vcproj: Bumped version.
2011-07-17 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-utils.c (charset_convert): Don't skip validation of
UTF-8 text.
2011-07-17 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-utils.c (charset_convert): Handle ERANGE the same as
EILSEQ.
* gmime/gmime-filter-charset.c (filter_filter): Handle ERANGE the
same as EILSEQ.
* gmime/gmime-charset.c (g_mime_charset_map_init): Improved logic
for Win32 (and even Linux) systems. Don't rely on setlocale().
2011-06-15 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-gpg-context.c: Define nfds_t on OSX.
2011-06-09 Jeffrey Stedfast <fejj@gnome.org>
Fix for bug #652056
* gmime/gmime-param.c (decode_value): If STRICT_PARSER isn't
defined, don't require the value to start with a valid character.
2011-06-08 Jeffrey Stedfast <fejj@gnome.org>
* README: Bumped version
* configure.in: Bumped version to 2.4.25
* build/vs2008/gmime.vcproj: Bumped version.
* gmime/gmime-session.c: Don't crash if the request_passwd()
virtual method is set to NULL. Fixes bug #651825.
2011-06-08 Jeffrey Stedfast <fejj@gnome.org>
* gmime/gmime-gpg-context.c: If building on Apple, force the use
of our own implementation of poll() because Apple's poll() is
broken on some versions of MacOS.
1.9 [2011-01-23]
- Fix build warnings.
- Fix problem on linux not detecting netfilter headers.
- Add true transparent proxying, where both client and server have no
knowledge of the proxy. Documented at the proxsmtp web page.
- Use capabilities to have transparent proxying without running as root.
- Implement a simple reject filter, so no scripts need to be run.
- Allow skipping of filtering for authenticated connections.
- Bump up the top number of simultaneous connections.
- Add client IP addresses to the log line.
1.8 [2008-06-30]
- Make the XFOWARD HELO available as a environment variable in scripts. [Glenn Matthys]
- Send an RSET to the server after filter fails an email.
- Fix an uninitialized pid variable.
1.7 [2007-05-28]
- Use my real name 'Stef Walter'
See: http://memberwebs.com/nielsen/
1.6 [2006-11-13]
- On FreeBSD fix problem where stderr wasn't processed when filter
didn't read stdin.
- Add strcasestr which is missing on Solaris.
- Add back 'Header' option which was accidentally removed in 1.5. Blush!
1.5 [2006-09-05]
- Added support for setting the REMOTE variable when an XFORWARD
command is seen.
1.4 [2006-08-10]
- Fix crasher after connection closes unexpectedly.
- Fix problem with waiting for processes [Jeff Fisher]
- Better message for 'busy' [Akihiro Sagawa]
1.3 [2005-10-21]
- Handle condition of server refusing data transfers more gracefully.
- Less chatty when setting timeouts fail
- Drop privileges after binding to port. Allows listening on ports < 1024
- Ported to Solaris
- Fix problem with binding to certain 'long' addresses
- Support embedded NULLs in email data.
- Fix problems with empty addresses in logs.
- Don't let exchange send it's strange binary data through the proxy
- Don't reject emails when server is overloaded or errors.
- Don't reject emails when starting the filter command fails.
1.2.1 [2005-04-15]
- Fixed bug (introduced in 1.2) when 'Header' option is not present.
1.2 [2005-03-24]
- Don't leak file descriptors when clamsmtpd can't connect to outgoing
SMTP server [Chris Mason]
- 'Header' configuration option with special format arguments [Olivier Beyssac]
- Supress weird warnings when looking up names of local unix connections.
1.1 [2005-01-27]
- Fixed crasher when outgoing connection couldn't be established
- Removed erroneous chown line from clamsmtpd.sh
Changes to the Cyrus IMAP Server since 2.4.10
* fixed replication recovery from different messages at the each end
* Bug #3489 - fixed quotalegacy handling of prefixes so only exact
subfolders match
* Bug #3498 - fixed deletion of users quota files with
unixheriarchysep enabled, thanks Leena Heino
* Bug #3491 - NOOP and UNAUTHENTICATE for timsieved, thanks Dilyan
Palauzov
* Bug #3492 - better response codes for timsieved, thanks Dilyan
Palauzov
* Bug #3497 - fix cmd syslog from master, thanks Kristof Katus
* Bug #3503 - compilation of perl libraries on dragonfly and freebsd,
thanks OBATA Akio
* Bug #3451 - allow CC to have spaces
* Bug #3505 - fix sync_reset, thanks David Carter
* Bug #3506 - use literal+ for sync_(client|server), thanks David
Carter
* Bug #3300 - use portable function for TCP constants, thanks OBATA
Akio
* Bug #3507 - fix replication recovery with non-delayed expunge,
thanks Julien Coloos
* Bug #3495 - improved duplicate suppression, thanks Kristof Katus
* Bug #2772/3463 - fixed crashes in THREAD by correcting folding of
references headers
* Bug #3439 - fix ugly syslog message for vacation
* Bug #3499 - options to disable namespaces to reduce load on big
servers with no shared folders. Thanks Olivier ROLAND
* Changed skiplist to truncate old files after checkpoint, which can
save disk space on tmpfs or small ssds when old copies were held
open by other processes
* Made Cyrus more robust against corruption in mailboxes.db data, so
it will return an error rather than crashing on invalid entries
* Fix for CVE-2011-3208, a remotely exploitable buffer overflow in
nntpd - thanks Coverity
(add an patch to fix compilation on perl 5.14)
Changes to the Cyrus IMAP Server since 2.3.16
* Fix for CVE-2011-3208, a remotely exploitable buffer overflow in
nntpd
2011-03-26 Jeffrey Stedfast <fejj@novell.com>
* README: Bumped version
* configure.in: Bumped version to 2.4.24
* build/vs2008/gmime.vcproj: Bumped version.
* gmime/gmime-gpg-context.c (gpg_ctx_parse_signer_info): Fixed to
actually set the signer status. Fixes bug #645787, based on an
initial patch by Thomas Jost.
2011-03-14 Jeffrey Stedfast <fejj@novell.com>
* configure.in: Check for glib-sharp-2.0 instead of gtk-sharp-2.0
since we really only depend on glib-sharp. Also check for gapi-2.0
via pkgconfig.
* mono/gmime-sharp.dll.config.in: Dll map the .so.MajorVersion
instead of .so.Version.
[An on-line version of this announcement will be available at
http://www.postfix.org/announcements/postfix-2.8.5.html]
Postfix stable release 2.8.5, 2.7.6, 2.6.12, and 2.5.15 are available.
These contain fixes and workarounds for the Postfix Milter client
that were already included with the Postfix 2.9 experimental release.
* The Postfix Milter client logged a "milter miltername: malformed
reply" error when a Milter sent an SMTP response without
enhanced status code (i.e. "XXX Text" instead of "XXX X.X.X
Text").
* The Postfix Milter client sent a random {client_connections}
macro value when the remote SMTP client was not subject to
any smtpd_client_* limit. As a workaround, it now sends a
zero value instead.
* doveadm: Added support for running mail commands by proxying to
another doveadm server.
* Added "doveadm proxy list" and "doveadm proxy kick" commands to
list/kick proxy connections (via a new "ipc" service).
* Added "doveadm director move" to assign user from one server to
another, killing any existing connections.
* Added "doveadm director ring status" command.
* userdb extra fields can now return name+=value to append to an
existing name, e.g. "mail_plugins+= quota".
* script-login attempted an unnecessary config lookup, which usually
failed with "Permission denied".
* lmtp: Fixed parsing quoted strings with spaces as local-part for
MAIL FROM and RCPT TO.
* imap: FETCH BODY[HEADER.FIELDS (..)] may have crashed or not
returned all data sometimes.
* ldap: Fixed random assert-crashing with with sasl_bind=yes.
* Fixes to handling mail chroots
* Fixed renaming mailboxes under different parent with FS layout when
using separate ALT, INDEX or CONTROL paths.
* zlib: Fixed reading concatenated .gz files.
Changes since version 6.3.20:
- The IMAP client no longer inserts NUL bytes into the last line of a
message when it is not closed with a LF or CRLF sequence. Reported
by Antoine Levitt. As a side effect of the fix, and in order to
avoid a full rewrite, fetchmail will now CRLF-terminate the last
line fetched through IMAP, even if it is originally not terminated
by LF or CRLF. This bears no relevance if your messages end up in
mbox, but adds line termination for storages (like Maildir) that do
not require that the last line be LF- or CRLF-terminated.
Release notes for 6.0:
Thunderbird is based on the new Mozilla Gecko 6 engine
Several theme improvements for Windows 7
Support for Windows 7 Jump lists
Several fixes when importing email from Microsoft Outlook
Default mail client check now works with newer Linux distributions
Various other user interface fixes and improvements
Numerous platform fixes that improve speed, performance, stability and security
Release notes for 5.0:
More responsive and faster to start up and use
Thunderbird is based on the new Mozilla Gecko 5 engine
New Add-ons Manager
Revised account creation wizard to improve email setup
New Troubleshooting Information page
Tabs can now be reordered and dragged to different windows
Attachment sizes now displayed along with attachments
Plugins can now be loaded in RSS feeds by default
There are several theme fixes for Windows Vista and Windows 7
Support for Mac 32/64 bit Universal builds (Thunderbird no longer supports PowerPC on Mac)
Over 390 platform fixes that improve speed, performance, stability and security
- Fix parsing bug: https://rt.cpan.org/Ticket/Display.html?id=66025
- Fix typo: https://rt.cpan.org/Ticket/Display.html?id=65387
- Fix unit tests on Perl 5.8.x: https://rt.cpan.org/Ticket/Display.html?id=66188
- Fix unit test failure on Win32: (https://rt.cpan.org/Ticket/Display.html?id=66286)
- Add build_requires 'Test::Deep'; to Makefile (rt.cpan.org #64659)
- Fix spelling errors (rt.cpan.org #64610)
- Fix double-decoding bug when decoding RFC-2231-encoded parameters
(rt.cpan.org #65162)
- Fix inappropriate inclusion of CR characters in parsed headers
(rt.cpan.org #65681)
- Document that MIME::WordDecoder is mostly deprecated.
- Document that MIME::Head->get(...) can include a trailing newline.
- Increase buffer size from 2kB to 8kB in MIME::Entity and MIME::Body
(part of rt.cpan.org #65162)
- (cleanup) IO-Stringy (specifically, IO::ScalarArray, IO::Lines, and
IO::InnerFile) is no longer used
- (ticket 22684) Fix deadlock in filter() when invoking external
programs such as gzip. (Alexey Tourbin <at -at- altlinux.ru>)
- Remove auto_install from Makefile.PL
- (ticket 60931) If preamble is empty, make sure it's still empty after roundtripping through MIME::Entity
- (ticket 63739) Properly decude RFC2231 encodings in attachment filenames
Postfix stable release 2.8.4 is available. This contains fixes and
workarounds that were already included with the Postfix 2.9
experimental release. Where applicable these fixes will also be
made available for the legacy releases Postfix 2.5..2.7.
* Performance: a high load of DSN success notification requests
could slow down the queue manager. Solution: make the trace
client asynchronous, just like the bounce and defer clients.
* The local(8) delivery agent ignored table lookup errors in
mailbox_command_maps, mailbox_transport_maps, fallback_transport_maps
and (while bouncing mail to alias) alias owner lookup.
* Workaround: dbl.spamhaus.org rejects lookups with "No IP
queries" even if the name has an alphanumerical prefix. We
play safe, and skip both RHSBL and RHSWL queries for names
ending in a numerical suffix.
* The "sendmail -t" command reported "protocol error" instead
of "file too large", "no space left on device" etc.
* The Postfix Milter client reported a temporary error instead
of "file too large" in three cases.
* Linux kernel version 3 support. Linus Torvalds has reset the
counters for reasons not related to changes in code.
You can find the updated Postfix source code at the mirrors listed
at http://www.postfix.org/.
* In mimedefang.c, truncate overlong responses from the multiplexor. Also sanitize replies so "\r" doesn't get fed to smfi_setmlreply.
* If a slave process replies with a very long reply, have the multiplexor consume (and discard) the excess input so the multiplexor-to-slave protocol does not become de-synchronized.
* When mimedefang becomes a daemon, have it wait for a "go/no-go" message from the child before exiting. This should eliminate race conditions whereby the MTA starts before the milter socket is present.
* Avoid run-time errors from Unix::Syslog on some platforms.
Version 1.4.22 - 12 July 2011
-----------------------------
- Backported default timezone fix from version 1.5.2; helps mitigate
timezone errors in environments where a default has not been set
by the administrator.
- Fixed system lock-ups caused by a combination of certain rare,
malformed message headers and buggy versions of PHP mbstring
(#3053349).
- Now allow multiple plugins to handle (add links for) a single
attachment MIME type.
- Now allow administrators to disable all plugins or enable just
a select few plugins (overriding the active plugins in the normal
configuration) by setting $temporary_plugins as an empty array
(all disabled) or an array with one or more plugin directory names
in config_local.php.
- Backport fix for call_user_func_array not supporting NULL as empty
array in PHP 5.3.3
- Fixed sqauth_read_password() for plugins on the login_verified hook.
- Added SMTP SASL PLAIN authentication option to configuration tool
(core support for such is not new).
- Gmail doens't support standard search commands; removed sort buttons.
- Forced addition of a file suffix to attachments that lack a filename
(helps forwarded messages avoid spam filters) (thanks to Petr
Kletecka) (#3139004).
- Fixed missing security token in listcommands plugin.
- Added smtp_auth hook (thanks to Emmanuel Dreyfus).
- Made speed enhancements to threaded message display (thanks to Siim
Poder) (#3288123).
- Allow administrators to configure subfolders of user INBOXes to be
treated as special folders by adding $subfolders_of_inbox_are_special
to config_local.php.
- Fixed incorrect display of INBOX subfolders under some configurations.
IMPORTANT: You may need to update your configuration so that
$default_sub_of_inbox is TRUE if it was FALSE (e.g., Courier IMAP users)
and after updating to this version, your special folders are no longer
listed at the top of your folder list. Also, if this change prevents
users from logging in with an error such as "ERROR: Could not complete
request. Query: CREATE "Trash" Reason Given: Invalid mailbox name.",
you will need to correct the user preference values for the problem
folders. You can do so with commands such as the following for file-
based preferences (adjust the data directory location as needed):
find /var/lib/squirrelmail/data/ -name *.pref -exec sed --in-place 's/trash_folder=Trash/trash_folder=INBOX.Trash/g' {} \;
find /var/lib/squirrelmail/data/ -name *.pref -exec sed --in-place 's/trash_folder=Drafts/trash_folder=INBOX.Drafts/g' {} \;
find /var/lib/squirrelmail/data/ -name *.pref -exec sed --in-place 's/trash_folder=Sent/trash_folder=INBOX.Sent/g' {} \;
Or, for database-based preferences:
UPDATE userprefs SET prefval = 'INBOX.Trash' WHERE prefkey = 'trash_folder' AND prefval = 'Trash';
UPDATE userprefs SET prefval = 'INBOX.Drafts' WHERE prefkey = 'draft_folder' AND prefval = 'Drafts';
UPDATE userprefs SET prefval = 'INBOX.Sent' WHERE prefkey = 'sent_folder' AND prefval = 'Sent';
MAKE SURE to back up your user preferences first!
- Optimized message highlighting rules; faster message list display
and faster highlight rules management (thanks to C. Bensend for
extensive effort helping diagnose)
- New Mail plugin no longer removes normal organization title when
putting the number of new messages in the browser title
- Added clickjacking protection (thanks to Asbjorn Thorsen and Geir
Hansen for bringing this to our attention). [CVE-2010-4554]
- Fixed XSS holes in generic options inputs, XSS hole in the SquirrelSpell
plugin, XSS hole in the Index Order page, and added anti-CSRF protection
to the empty trash feature and the Index Order page (thanks to Nicholas
Carlini for finding all these issues). [CVE-2010-4555]
- Fixed XSS problem with unsanitized style tags in messages. [CVE-2011-2023]
While here,
* Exactly enable/disable PCRE support with package option, enabled by default.
* Add workaround patches for PR#44275, sizeof(time_t) > sizeof(unsigned long).
Changes to the Cyrus IMAP Server since 2.4.9
* fixed handling of unparsable emails during append (which would
cause invalid cyrus.index records otherwise)
* quota: fix a pile of bugs. #1801, virtdomain support; #2728, slow
user delete; #3178, "file name too long" with big mailbox names;
#3179, quota -f doubles usage.
* Bug #3043 - parse multiple groups in headers correctly
* Bug #3158 - lmtp backend connection timeout
* Bug #3223 - limit MIME parsing depth to avoid stack overflows
* Bug #3273 - add SORT=DISPLAY support (but note: still questions
about correctness of unicode sorting)
* Bug #3504 - convert all sieve scripts to \r\n line endings on
upload
* Bug #3402 - options to munge 8bit characters in headers during lmtp
delivery to avoid backscatter
* sync_client: fix broken keepalive TCP options (I doubt anyone ever
tried to use it)
* Bug #3482 - add "-o" option to ipurge to only purge messages with
\Deleted flag set
Add PKG_DESTDIR_SUPPORT;
Add LICENSE
`$Cambridge: hermes/src/prayer/docs/DONE,v 1.66 2011/06/27 13:39:56 dpc22 Exp $
27/06/2010
==========
Release: Prayer 1.3.4
22/06/2011
==========
draft.c fixes:
Fold long lines of addresses before the entry which reaches 78 characters
when possible, rather than after the first entry which crosses that
boundary. Long standing bug bear of mine but several support functions
needed to be rewritten to use scratch string in place of output buffer.
Long subject lines which are not RFC1522 encoded need to be folded.
separately. Reported by Andrey N. Oktyabrski <ano@bestmx.ru>.
RFC1522 is not allowed to fold lines in the middle of a UTF-8 multibyte
character. Reported by Andrey N. Oktyabrski <ano@bestmx.ru>.
Tidy library:
Add support for tidyp fork of (apparently abandoned) tidy library.
Fix cross site scripting problem:
MSIE and Chrome think that <!---> is a complete comment. Allows people to
hide scripts inside <!---><script>...<!--->. Strip all comments (which is
something that the old sanitiser had been doing already)
Sieve blocks should check "From: " address in body as well as
envelope sender address. Check "Sender: " as well for completeness.
Linux needs IPPROTO_IPV6 to bind to '0.0.0.0' and '::'
01/11/2010
==========
Mike Brudenell <mike.brudenell@york.ac.uk> reported problem with RFC
2183/RFC 2231 quoting with vey long filenames, or filenames with strange
characters from ASCII range.
20/07/2010
==========
Release: Prayer 1.3.3
08/07/2010
==========
Better handling of complex multipart messages:
Rather than just displaying the first text/plain or text/html that we can
find in the top, (leaving people to access sections for the other parts),
display the entire tree: multipart/alternative are handled as before, but
with other multipart messages, recurse into the subtrees and repeat. Given:
1 (Nested multipart)
1.1 text/html
1.2 text/plain
2 text/plain
we display sections 1.1 and 2. Previously we would display section 2,
which is a bit of a disaster if section (1) was the original message and
a listserver has helpfully tagged on a message footer as a separate bodypart
Combine os_*.c back into a single file (which is where I started off
many years back). Eliminates lots of repeated code.
07/07/2010
==========
Bugs
====
os_bind_inet_socket(unsigned long port, char *interface)
If interface resolves to multiple IP addresses then only binds to the
first. Should really walk along ai->ai_next and bind to each IP address
in turn. Unfortuanetly this means that os_bind_inet_socket() needs to
return an array of sockfds rather than a single int. Parent routines
probably aren't going to play ball either.
Most likely cause will be a hostname which generates both IPv4 and IPv6
addresses. Unfortanately it is a probably that we are going to have
to solve eventually.
05/07/2010
==========
Fix XSS problems reported by:
Jacob H. Hilton <jhh40@cam.ac.uk>
Dr Andrew C Aitchison <A.C.Aitchison@dpmms.cam.ac.uk>
Rather than trying to spot dangerous tags by simple substring matching in C,
I now feed the html through Tidy library (http://tidy.sourceforge.net/),
and then prune unwanted nodes from the parse tree before setting it to
the pretty printer. The only problem is that the Tidy library doesn't
provide any public API for manipulating the parse tree (although it does
provide a public API for walking the tree!?), so I had to dig around to
find the private functions required to remove and manipulate nodes.
Javascript embedded into CSS is also a problem: I need to strip off CSS
character entities before looking for dangerous expressions. The final
part is still a simple string match: I hope that I don't end up having to
generate parse trees for CSS as well as the HTML.
Now passes full test suite at:
https://secure.grepular.com/email_privacy_tester/
Better vacation screen
Subject line
Phrasing
Coping with multiple logins as single user from single browser:
SessionID stored in HTTP Cookie: second login blats first
Can store SessionID in URL (Prayer does this if no cookies available)
Not secure: leaks in HTTP "Referrer" header with links from HTML email.
Solution: Use HTTP Cookie keyed by PID of login session.
Smaller cleanups:
Improve gap between words in spell check (Cambridge house style)
Remove extra blank lines after postpone, restore cycle.
while here, expunge old sites from MASTER_SITES, and add the http site in
release announcement.
Changes to the Cyrus IMAP Server since 2.4.8
* fixed crashes in seen handling
* Bug #3453 - fixed LSUB replication
* Bug #3442 - allow disabling PCRE if it's buggy at your site
* Bug #3443 - LSUB response fixes
* Bug #3448 - XFER error handling (murder)
* Bug #3437 - fixed regression: quotaroot wasn't being updated on
rename
* Bug #3456 - fixed crash on rename user.foo user.foo without
partition change
* config update: database paths for most databases are now
configurable in imapd.conf
* Bug #3303 - fixed index lock breaking on XFER (thanks Julien
Coloos)
* Bug #3457 - fixed ESEARCH parsing (was breaking iPhones)
* Bug #3188 - fixed XFER with unlimited quota (thanks again Julien
Coloos)
* Misc other quota fixes (there are still known bugs with the quota
system)
* Bug #3169 - fixed GETQUOTAROOT for domain quotaroots
* Bug #3465 - fixed compilation with Perl 5.14 (thanks
hsk@imb-jena.de, and also thanks to Ondrej Sury who reported it
separately)
* Bug #3464 - fix for sendmail exec failure. This was a nasty one,
Patch was provided by PR pkg/45088 from ISIHARA Takanori.
Changes of Sylpheed
* 3.1.1 (stable)
* The column width of the address book will be saved now.
* The keyboard shortcut of 'File/Send' menu of compose window was changed
to prevent accidental sending.
* The bug that caused occasional crash when summary was updated while
receiving messages was fixed.
* The compilation problem on some environment was fixed.
* Some locale problems on Mac OS X was fixed.
* The compilation error on newer gcc was fixed.
* Finnish translation was added.
Based on PR#44939 by Susumu Miwa.
Modified by Makoto Fujiwawa and me in pkgsrc-wip.
Quickml server provides very-easy-to-use mailing list service.
It was too open in this age, some limitation is provided in
this package. The original code is written by Satoru Takabayashi.
8.14.5/8.14.5 2011/05/17
Do not cache SMTP extensions across connections as the cache
is based on hostname which may not be a unique identifier
for a server, i.e., different machines may have the
same hostname but provide different SMTP extensions.
Problem noted by Jim Hermann.
Avoid an out-of-bounds access in case a resolver reply for a DNS
map lookup returns a size larger than 1K. Based on a
patch from Dr. Werner Fink of SuSE.
If a job is aborted using the interrupt signal (e.g., control-C from
the keyboard), perform minimal cleanup to avoid invoking
functions that are not signal-safe. Note: in previous
versions the mail might have been queued up already
and would be delivered subsequently, now an interrupt
will always remove the queue files and thus prevent
delivery.
Per RFC 6176, when operating as a TLS client, do not offer SSLv2.
Since TLS session resumption is never used as a client, disable
use of RFC 4507-style session tickets.
Work around gcc4 versions which reverse 25 years of history and
no longer align char buffers on the stack, breaking calls
to resolver functions on strict alignment platforms.
Found by Stuart Henderson of OpenBSD.
Read at most two AUTH lines from a server greeting (up to two
lines are read because servers may use "AUTH mechs" and
"AUTH=mechs"). Otherwise a malicious server may exhaust
the memory of the client. Bug report by Nils of MWR
InfoSecurity.
Avoid triggering an assertion in the OpenLDAP code when the
connection to an LDAP server is lost while making a query.
Problem noted and patch provided by Andy Fiddaman.
If ConnectOnlyTo is set and sendmail is compiled with NETINET6
it would try to use an IPv6 address if an IPv4 (or
unparseable) address is specified.
If SASLv2 is used, make sure that the macro {auth_authen} is
stored in xtext format to avoid problems with parsing
it. Problem noted by Christophe Wolfhugel.
CONFIG: FEATURE(`ldap_routing') in 8.14.4 tried to add a missing
-T<TMPF> that is required, but failed for some cases
that did not use LDAP. This change has been undone
until a better solution can be implemented. Problem
found by Andy Fiddaman.
CONFIG: Add cf/ostype/solaris11.m4 for Solaris11 support.
Contributed by Casper Dik of Oracle.
CONTRIB: qtool.pl: Deal with H entries that do not have a
letter between the question marks. Patch from
Stefan Christensen.
DOC: Use a better description for the -i option in sendmail.
Patch from Mitchell Berger.
Portability:
Add support for Darwin 10.x (Mac OS X 10.6).
Enable HAVE_NANOSLEEP for FreeBSD 3 and later. Patch
from John Marshall.
Enable HAVE_NANOSLEEP for OpenBSD 4.3 and later.
Use new directory "/system/volatile" for PidFile on
Solaris 11. Patch from Casper Dik of Oracle.
Fix compilation on Solaris 11 (and maybe some other
OSs) when using OpenSSL 1.0. Based on patch from
Jan Pechanec of Oracle.
Set SOCKADDR_LEN_T and SOCKOPT_LEN_T to socklen_t
for Solaris 11. Patch from Roger Faulkner of Oracle.
New Files:
cf/ostype/solaris11.m4
== Tue Apr 26 09:49:54 UTC 2011 Mikel Lindsaar <mikel@rubyx.com>
* Update activesupport require to use inflector - closes#217
== Tue Apr 26 06:18:19 UTC 2011 Mikel Lindsaar <mikel@rubyx.com>
* Fixed charset warning issue with multipart messages - https://github.com/arvindsv
* Version bump to 2.2.18 and gem release
== Wed 20 Apr 2011 15:16:20 UTC Mikel Lindsaar <mikel@rubyx.com>
* Mail::Field.new("Subject: foobar", 'iso-2022-jp') does not set charset - https://github.com/yalab
== Tue Apr 19 00:20:54 UTC 2011 Mikel Lindsaar <mikel@rubyx.com>
* Fixed an exception with nil in Reply-To and References field - https://github.com/dcormier
* Version bump to 2.2.17 and gem release
== Sat Apr 16 12:57:27 UTC 2011 Mikel Lindsaar <mikel@rubyx.com>
* Added support for open SMTP connections and returning the Mail server's response - https://github.com/spiegela
* RE: not appended to subject when replying to a reply - https://github.com/prateekdayal
* Support not ascii compatible charset mail send - https://github.com/yalab
* Fix for issue 208 "mail.body after mail.add_file truncates message body" - https://github.com/glongman
* Handle bad subject encoding (or ":invalid => :replace" is ineffective for utf-8 to utf-8 encoding) - https://github.com/choonkeat
* Handle blank Received header field - https://github.com/bcantin
* Handle part with missing content type - https://github.com/bcantin
* Handle a "<>" Return field - https://github.com/bcantin
* Performance improvements for 1.9 - https://github.com/nobu
* Fix heavy CPU issues when messages are missing a space - https://github.com/scsmith
* Tighten up allowed encodings - https://github.com/scsmith
* Added to_yaml & from_yaml (as well as to_hash & from_hash) - https://github.com/srushti
* Fix up some comments - https://github.com/takahashim
* Version bump to 2.2.16 and gem release
Update MANAGESIEVE_VERSION to 0.11.13, for dovecot-1.2.17.
rest part of PR#44970.
Sieve:
v0.1.19 19-05-2011 Stephan Bosch <stephan@rename-it.nl>
- Enotify extension: fixed inappropriate return type in mailto URI parse
function, also fixing ARM compiler warning.
- Vacation extension: fixed handling of sendmail errors. It produced an
additional confusing success message in case of error.
- Removed header MIME-decoding to fix erroneous address parsing. Applies to
address test and vacation command.
ManageSieve:
v0.11.13:
- ManageSieve: fixed bug in UTF-8 checking of string values.
Requested by PR#45030.
fetchmail-6.3.20 (released 2011-06-06, 26005 LoC):
# SECURITY BUG FIXES
* CVE-2011-1947:
STARTTLS: Fetchmail runs the IMAP STARTTLS or POP3 STLS negotiation with the
set timeout (default five minutes) now. This was reported missing, with
observed fetchmail freezes beyond a week, by Thomas Jarosch.
SSL-wrapped connections were unaffected by this timeout, so users of older
versions can force ssl-wrapped connections -- if supported by the server --
with the --ssl command line or ssl rcfile option.
See fetchmail-SA-2011-01.txt for further details.
# BUG FIXES
* IMAP: Do not search for UNSEEN messages in ranges. Usually, there are very few
new messages and most of the range searches result in nothing. Instead, split
the long response to make the IMAP driver think that there are multiple lines
of response. (Sunil Shetye)
* Do not print "skipping message" for old messages even in verbose mode. If
there are too many old messages, the logs just get filled without any real
activity. (Sunil Shetye) (suggested by Yunfan Jiang)
* Build: fetchmail now always uses its own MD5 implementation rather than trying
to find a system library with matched header. The library and header variants
found on systems are too diverse, and the code size saving is not worth any
more wasted user or programmer time.
# CHANGES
* Call strlen() only once when removing CRLF from a line. (Sunil Shetye)
* fetchmail sets Internet domain sockets to "keepalive" mode now. Note that
there is no portable way to configure actual timeouts for this mode, and some
systems only support a system-wide timeout setting. fetchmail does not
attempt to tune the time spans of keepalive mode.
# TRANSLATION UPDATES
[cs] Chech (Petr Pisar)
[nl] Dutch (Erwin Poeze)
[fr] French (Frédéric Marchal)
[de] German (Matthias Andree)
[ja] Japanese (Takeshi Hamasaki)
[pl] Polish (Jakub Bogusz)
[sk] Slovak (Marcel Telka)
# KNOWN BUGS AND WORKAROUNDS
(this section floats upwards through the NEWS file so it stays with the
current release information - however, it was stuck with 6.3.8 for a while)
* fetchmail does not handle messages without Message-ID header well
(See sourceforge.net bug #780933)
* BSMTP is mostly untested and errors can cause corrupt output.
* Sun Workshop 6 (SPARC) is known to miscompile the configuration file lexer in
64-bit mode. Either compile 32-bit code or use GCC to compile 64-bit
fetchmail. Note that fetchmail doesn't take advantage of 64-bit code,
so compiling 32-bit SPARC code should not cause any difficulties.
* fetchmail does not track pending deletes over crashes.
* the command line interface is sometimes a bit stubborn, for instance,
fetchmail -s doesn't work with a daemon running.
* Linux systems may return duplicates of an IP address in some circumstances if
no or no global IPv6 addresses are configured.
(No workaround. Ubuntu Bug#582585, Novell Bug#606980.)
* Kerberos 5 may be broken, particularly on Heimdal, and provide bogus error
messages. This will not be fixed, because the maintainer has no Kerberos 5
server to test against. Use GSSAPI.
fetchmail-6.3.19 (released 2010-12-10, 25945 LoC):
# ERRATUM NOTICE ISSUED
* fetchmail 6.3.18 contains several bug fixes that were considered sufficiently
grave to warrant the issue of an erratum notice, fetchmail-EN-2010-03.txt.
# BUG FIXES
* When specifying multiple local multidrop lists, do not lose wildcard flag.
(Affects "user foo is bar baz * is joe here")
* In multidrop configurations, an asterisk can now appear anywhere in the list
of local users, not just at the end.
* In multidrop mode, header parsing is now more verbose in -vv mode, so that it
becomes possible to see which header is used.
* Make --antispam work from command line (these used to work in rcfiles).
Reported by Kees Bakker, BerliOS Bug #17599. (Sunil Shetye)
* Smoke test XHTML 1.1 validation, and if it fails, skip validating HTML
documents. Skip validating Mailbox-Names-UTF7.html. Several systems have
broken XHTML 1.1 DTD installations that jeopardize the build.
Reported by Mihail Nechkin against FreeBSD port.
Workaround for 6.3.18: build in a separate directory, i. e:
mkdir build && cd build && ../configure --options-go-here
* Send a NOOP only after a failed STARTTLS in IMAP. (Sunil Shetye)
* Demote GSSAPI verbose/debug syslog to INFO severity. Requested by Carlos E. R.
and Derek Simkowiak via the fetchmail-users@ mailing list.
* Do STARTTLS/STLS negotiation in IMAP/POP3 if it is mandatory even if the
server capabilities do not show support for upgradation to TLS.
To use this, configure --sslproto tls1. (Sunil Shetye)
* IMAP: Understand empty strings as FETCH response, seen on Yahoo. Reported by
Yasin Malli to fetchmail-users@ 2010-12-10.
Note that fetchmail continues to expect literals as FETCH response for now.
# DOCUMENTATION
* The manual page now links to IANA for GSSAPI service names.
# TRANSLATION UPDATES
[cs] Czech (Petr Pisar)
[fr] French (Frédéric Marchal)
[de] German
[it] Italian (Vincenzo Campanella)
[pl] Polish (Jakub Bogusz)
fetchmail-6.3.18 (released 2010-10-09, 25936 LoC):
# SECURITY IMPROVEMENTS TO DEFANG X.509 CERTIFICATE ABUSE
* Fetchmail now only accepts wildcard certificate common names and subject
alternative names if they start with "*.". Previous versions would accept
wildcards even if no period followed immediately.
* Fetchmail now disallows wildcards in certificates to match domain literals
(such as 10.9.8.7), or wildcards in domain literals ("*.168.23.23").
The test is overly picky and triggers if the pattern (after skipping the
initial wildcard "*") or domain consists solely of digits and dots, and thus
matches more than needed.
* Fetchmail now disallows wildcarding top-level domains.
# CRITICAL BUG FIXES AND REGRESSION FIXES
* Fetchmail 6.3.15, 6.3.16, and 6.3.17 would pick up libmd5 to obtain MD5*
functions, as an effect of an undocumented Solaris MD5 fix.
This caused all MD5-related functions to malfunction if, for instance,
libmd5.so was installed on other operating systems as part of libwww on
machines where long isn't 32-bits, i. e. usually on 64-bit computers.
Fixes Gentoo Bug #319283, reported, including libwww hint, by Karl Hakimian.
Side effect: fetchmail will now use -lmd on Solaris rather than -lmd5.
* Fetchmail 6.3.17 warned about insecure SSL/TLS connections even if a matching
--sslfingerprint was specified. This is an omission from an SSL usability
change made in 6.3.17.
Fixes Debian Bug#580796 reported by Roland Stigge.
* Fetchmail will now apply timeouts to the authentication stage.
This stage encompasses STARTTLS/STLS negotiation in IMAP/POP3.
Reported missing by Thomas Jarosch.
* Fetchmail now cancels GSSAPI authentication properly when encountering GSS
errors, such as no or unsuitable credentials.
It now sends an asterisk on a line by its own, as required in SASL.
This fixes protocol synchronization issues that cause Authentication
failures, often observed with kerberized MS Exchange servers.
Fixes Debian Bug #568455 reported by Patrick Rynhart, and Alan Murrell, to the
fetchmail-users list. Fix verified by Thomas Voigtmann and Patrick Rynhart.
# BUG FIXES
* Fetchmail will no longer print connection attempts and errors for one host
in "silent" and "normal" logging modes, unless all connections fail. This
should reduce irritation around refused-connection logging if services are
only on an IPv4 socket if the host also supports IPv6. Often observed as
connections refused to ::1/25 when the subsequent connection to 127.0.0.1/25
then - silently - succeeds. Fetchmail, unless in verbose mode, will collect
all connect errors and only report them if all of them fail.
* Fetchmail will not try GSSAPI authentication automatically, unless it has GSS
credentials. However, if GSSAPI authentication is requested explicitly,
fetchmail will always try it.
* Fetchmail now parses response to "FETCH n:m RFC822.SIZE" and "FETCH n
RFC822.HEADER" in a more flexible manner. (Sunil Shetye)
* The manual page clearly states that --principal is for Kerberos 4 only, not
for Kerberos 5 or GSSAPI. Found by Thomas Voigtmann.
# CHANGES
* When encountering incorrect headers, fetchmail will refer to the bad-header
option in the manpage.
Fixes BerliOS Bug #17272, change suggested by Björn Voigt.
* Fetchmail now decodes and reports GSSAPI status codes upon errors.
* Fetchmail now autoprobes NTLM also for POP3.
* The Fetchmail FAQ has a new item #R15 on authentication failures.
# INTERNAL CHANGES
* The common NTLM authentication code was factored out from pop3.c and imap.c.
# TRANSLATION UPDATES
[zh_CN] Chinese/simplified (Ji Zheng-Yu)
[cs] Czech (Petr Pisar)
[nl] Dutch (Erwin Poeze)
[fr] French (Frédéric Marchal)
[de] German
[it] Italian (Vincenzo Campanella)
[ja] Japanese (Takeshi Hamasaki)
[pl] Polish (Jakub Bogusz)
[sk] Slovak (Marcel Telka)
* Potentially safer method for writing feeds.dat on UNIX
* Handle via links with no title attribute
* Handle attributes more cleanly with OVERRIDE_EMAIL and DEFAULT_EMAIL
