Exim changes in 4.34
1. Very minor rewording of debugging text in manualroute to say "list of
hosts" instead of "hostlist".
2. If verify=header_syntax was set, and a header line with an unqualified
address (no domain) and a large number of spaces between the end of the
name and the colon was received, the reception process suffered a buffer
overflow, and (when I tested it) crashed. This was caused by some obsolete
code that should have been removed. The fix is to remove it!
3. When running in the test harness, delay a bit after writing a bounce
message to get a bit more predictability in the log output.
4. Added a call to search_tidyup() just before forking a reception process. In
theory, someone could use a lookup in the expansion of smtp_accept_max_
per_host which, without the tidyup, could leave open a database connection.
5. Added the variables $recipient_data and $sender_data which get set from a
lookup success in an ACL "recipients" or "senders" condition, or a router
"senders" option, similar to $domain_data and $local_part_data.
6. Moved the writing of debug_print from before to after the "senders" test
for routers.
7. Change 4.31/66 (moving the time when the Received: is generated) caused
problems for message scanning, either using a data ACL, or using
local_scan() because the Received: header was not generated till after they
were called (in order to set the time as the time of reception completion).
I have revised the way this works. The header is now generated after the
body is received, but before the ACL or local_scan() are called. After they
are run, the timestamp in the header is updated.
Exim-exiscan version 4.34
22 - added SPF support via libspf_alt. Please read the
docs.
21 - Fix missing fclose() in regex.c. This was causing
scan directories not to be deleted on NFS spools.
- Remove "shutdown socket for writing" from clamd malware
code. It seems to cause problems with the latest
clamd 0.70 release.
- Fix allow tables in acl.c to disallow exiscan conditions
in the RCPT ACL.
- adapted patch to exim 4.34
This modifies Makefile.common to add "-Wl,${RPATH_FLAG}" to the location
of the chosen library (DB implementation). For example:
-Wl,${RPATH_FLAG}${LOCALBASE}/${BUILDLINK_LIBDIRS.db2}
Also bump PKGREVISIONs for this.
use native (since it is the first BDB_ACCEPTED choice). So under
NetBSD this does not change anything.
It can be set to "gdbm" if desiring gdbm as the DB method used.
Else it will use the mk/bdb.buildlink3.mk method.
For example, to choose a specific Berkeley DB implementation
(like DB hash version 7), then do: "make BDB_DEFAULT=db3"
(when EXIM_DB is unset or not set to "gdbm").
Please note that if you change the method, exim may complain
about DB problems. This is okay. You can delete the db files
and regenerate. (exim provides some db management tools too.)
This fixes the problem where exim will not build when
the system's db is not available or correct.
This will close my old PR pkg/19277.
This was discussed with maintainer, David Brownlee.
- Emergency fix: When you were using 'discard', and it was the last verb
affecting a message, the mbox spool files in the scan directory were not
cleaned up. This is fixed now.
Update exim-exiscan to 4.22-11nb1
Include exiqgrep in PLIST, and commit distinfo from previous exim-exiscan
change. Whole exim update was overly hurried due to security announcement.
11 - Fixed "permits" table in acl.c, so you can't "use"
exiscans conditions in the RCPT ACL any more. This
was causing a crash, not you get a proper warning.
- Fixed recursive unpacking when the MIME boundary of
the "parent" message contains spaces.
- Put in a fix for tnef.c that allows clean compile
on AIX. Thanks to David Kreindler
<david@govnet.state.vt.us>.
- Added some proper prototypes for some functions,
beautifying the compiler output with -Wall.
- Added exiscan patch version output to 'exim -bV'.
- Removed demime errors from the panic log.
