"p5-Mail-SPF". The first two packages install "bin/spfd" while the
latter install "sbin/spfd".
Problem pointed out by Petar Bogdanovic in PR pkg/49271.
version 1.2.9 (which is old) is not available. Two improvements that
I noticed are:
1.) A remote DoS vulnerability (for which "pkgsrc" had a patch) has
been fixed.
2.) The SPF records for "gmail.com" are now accepted again.
objects, so provide a dummy file which will always get included to avoid
issues on systems where you are not allowed an empty library. Noticed
by tron.
Bump PKGREVISION.
This can crash applications using "libspf2" (e.g. "milter-greylist")
in an e-mail gets delivered via SMTP over IPv6 depending on the
remote machine's IPv6 address.
Unfortunately there does not appear to be much more information on the
changes other than:
"This fixes aborts when generating explanations for mails with a long envelope sender, amongst other issues. An update is recommended."
Unfortunately details changes don't seem to be available:
After a long hiatus, new releases of libspf2! Development work from a number
of contributors has resulted in the release of versions up to 1.2.8. It is
recommended that all users upgrade as soon as possible, since this release
fixes some significant bugs. This release also comes with new doxygen
documentation which should make the code easier to understand and
cross-reference.
Includes the fix for CVE-2008-2469
protocol pair. libspf2 is a library which allows email systems such as
Sendmail, Postfix, Exim, Zmailer and MS Exchange to check SPF records
and make sure that the email is authorized by the domain name that it
is coming from. This prevents email forgery, commonly used by spammers,
scammers and email viruses/worms.
