Pkgsrc changes:
o Adjust dependencies
o Add commented-out HOMEPAGE using search.cpan.org
Upstream changes:
version 0.92: Wed Jul 25 08:50:51 CEST 2007
Improvements:
- add t/pod.t and distribution clean-ups.
version 0.91: Mon Jan 8 10:52:59 CET 2007
The module hasn't seen changes for some time now, but that
is because it works as expected.
Improvements:
- produced with newest OODoc, thereby
could remove version, mkdoc and mkdist
- removed useless README
revision 1.264
Archiveopteryx 3.0.0
revision 1.263
Added modules versions output.
revision 1.262
Work fine under XP.
revision 1.261
- Fixed bug about ssl and justconnect option
- Cleaned connect code.
- Started gmail support.
revision 1.260
- Added option --idatefromheader :
sets the internal dates on host2 same as the "Date:" headers.
revision 1.259
- Made a function for regexmess() --regexmess to be able to
check it easily
- Added function tests_regexmess() to check regexmess(), 3
tests.
- Removed imapsync copyleft GPL licence output (boring).
Replaced by wishlist link.
- Added thank_author() to avoid duplicate code about thanks.
- Better bug report documentation.
revision 1.258
Change report bug information order.
revision 1.257
removed comment and ugly output
revision 1.256
Applied patch from Simon Heimlicher to avoid non-selectable
folders.
revision 1.255
Domino (Notes) 4.61
revision 1.254
Some server (Microsoft Exchange 6.0.6249.0 for example)
returns message size a lot
s than the real size
Now imapsync accept this silly behavior.
revision 1.253
Archiveopteryx 2.09
revision 1.252
Added mailing list information.
revision 1.251
Fixed message_string returning empty message when < expected size.
revision 1.250
Bug fix "parse_headers want an ARRAY ref"
revision 1.249
warn about BUG_IMAPClient_3.xx
revision 1.248
Cleaned check_lib_version()
revision 1.247
Added id in output warn when no header found.
revision 1.246
Removed $^W use.
revision 1.245
Back to append_string()
Turn on --syncinternaldates by default
Date_Init("TZ=GMT") if no timezone (windows) set.
revision 1.244
Removed old *_2() functions (unused)
revision 1.243
Moved functins *_2() into override_imapclient()
revision 1.242
Ignore message when it has no header.
mail/imapsync due to regressions in 3.x
Mail::IMAPClient module provides perl routines that simplify a
sockets connection to and an IMAP conversation with an IMAP server.
This module was developed on Solaris 2.5.1 and 2.6 against Netscape
IMAP servers versions 3.6 and 4.1. However, since it is written in
perl and designed for flexibility, it should run on any OS with a
TCP/IP stack and a version of perl that includes Socket.pm and
IO::Socket.pm. It also should be able to talk to any IMAP server,
even those that have, um, proprietary features (assuming that the
programmer knows what those features are).
To date, the test suite runs successfully with the following IMAP
servers:
-Netscape Messenger v3.6
-Netscape Messenger v4.1
-UW-IMAP (I think it was 4.5)
-Cyrus IMAP4 v1.5.19
-Mirapoint Message Server Appliances (OS versions 1.6.1 and 1.7.1)
for text classification. It is a port of the OSBF classifier implemented in
the CRM114 project. This implementation attempts to put focus on the
classification task itself by using Lua as the scripting language, a powerful
yet light-weight and fast language, which makes it easier to build and test
more elaborated filters and training methods.
The OSBF algorithm is a typical Bayesian classifier but enhanced with two
techniques originally developed for the CRM114 project: Orthogonal Sparse
Bigrams - OSB, for feature extraction, and Exponential Differential Document
Count - EDDC (a.k.a Confidence Factor), for automatic feature selection.
Combined, these two techniques produce a highly accurate classifier. OSBF
was developed focused on two classes, SPAM and NON-SPAM, so the performance
for more than two classes may not be the same.
spamfilter.lua is an anti-spam filter written in Lua using the OSBF-lua
module. It takes special advantage of EDDC to introduce TONE-HR, a highly
effective training method. The combination of OSB, EDDC and TONE-HR to
enhance a classical Bayesian classifier resulted in the best spam filtering
performance in TREC's Spam Track 2006 and the CEAS 2008 Live Spam Filter
Challenge.
Changes in release 0.7.9
- Added LogTag option to asmtpd.conf.
- Fix err_accum in default unknown script, as Tim Kientzle reports the
old script did not work on FreeBSD.
- Added MSGID environment variable.
- Added IdentTimeout option to asmtpd.conf.
- Addes support for newer DB versions.
Changes in release 0.7.8
- Fixed bug where first group of avenger user could disappear on systems
with HAVE_EGID_IN_GROUPLIST defined (i.e., FreeBSD).
- Added --map option to aliascheck. Make sample unknown file check
recipient in virtusertable.db if one exists.
- SMTPCB can now take on three values, 0, 1, and 2. 2 is equivalent to
the old behavior (do SMTP callbacks and reject mail when the callback
fails). 0 disabled the callbacks entirely. 1 performs the callbacks
but does not reject mail that fails.
- Added an InsecureSASL option to asmtpd.conf.
- Make SASL accept plaintext authentication after STARTTLS, even if
there was an EHLO call before the STARTTLS.
- Fixed a bug in avenger.local when no .avenger/local file exists.
- Fix build of GeoIP code
- Fix auth and tls clauses in ACL so that they accept regex
- Update Debian startup script (Adam Katz)
- Fix bogus ACL when using features not compiled in
- Fix corruption in urlcheck parsing (Benoit Branciard)
- Document what package contains libmilter
- Fix error about stat in greylist.conf (Bob Smith)
- Avoid C99 specific syntax (Greg Troxel)
- Documentation fixes
- Fix typos in documentation (Constantine A. Murenin)
Moved the code for loading configuration files into prepare_settings() from
do_spamdyke(). When the default value for the "log-target" option was
being set before the configuration files were read, the syslog option
could be incorrectly set, even if stderr was specified in a file.
Thanks to Eric Shubert for reporting this one.
Changed the configure script to detect environments where printf()/scanf()
use "%ld" for 64-bit integers instead of "%lld" (CentOS 64-bit). This
wouldn't be necessary if the gcc authors could grasp the idea that
"long int" and "long long int" may be interchangable and not emit warnings.
Thanks to kjl for reporting this one.
ENMA is a milter program for the domain authentication technologies.
It authenticates sender's address with SPF and Sender ID, then
labels the result onto the Authentication-Results: field.
ENMA implements the following RFCs and an Internet Draft:
- RFC4406 (Sender ID)
- RFC4407 (PRA)
- RFC4408 (SPF)
- draft-kucherawy-sender-auth-header-15
(the Authentication-Results: field)
ENMA is developed by IIJ. IIJ has been using several domain
authentication software, though, all of them appeared unstable. ENMA
is designed and implemented in order to stand large ISP's operation
and is well-tested.
Postfix 2.4 and later, on Linux kernel 2.6, is vulnerable to a
denial of service attack by a local user. There is no breach of
data confidentiality or data integrity. This problem was found by
the Postfix author during routine source code maintenance.
An on-line version of this announcement is available at
http://www.postfix.org/announcements/20080902.html
Postfix 2.4 and later, on Linux kernel 2.6, is vulnerable to a
denial of service attack by a local user. There is no breach of
data confidentiality or data integrity. This problem was found by
the Postfix author during routine source code maintenance.
An on-line version of this announcement is available at
http://www.postfix.org/announcements/20080902.html
This fixes several mbox problems previous v1.1 releases have had.
* mail_max_userip_connections limit no longer applies to master user logins.
+ login_log_format_elements: Added %k to show SSL protocol/cipher information.
Not included by default.
+ imap/pop3-proxy: If auth_verbose=yes, log proxy login failures.
+ deliver: Added -s parameter to autosubscribe to autocreated mailboxes.
- message parser fixes - hopefully fixes an infinite looping problem
- SORT: One more assert-crashfix when renumbering index sort IDs.
- mbox: Saving may have truncated the mail being saved
- mbox: Several other bugfixes
- mail_full_filesystem_access=yes was broken when listing mailboxes (it still
is with maildir++ layout).
- maildirlock utility was somewhat broken
- zlib plugin: bzip2 support was somewhat broken
- NFS: Make sure writing to files via output streams don't assert-crash when
write() returns only partial success.
Patch the uses of test == instead. Fixes broken build.
Also, fix interpreter handling in the installed perl script, and
fix some 64-bit issues. Mark that destdir support works.
PKGREVISION++
Security fixes in this version:
MFSA 2008-34 Remote code execution by overflowing CSS reference counter
MFSA 2008-33 Crash and remote code execution in block reflow
MFSA 2008-31 Peer-trusted certs can use alt names to spoof
MFSA 2008-29 Faulty .properties file results in uninitialized memory being used
MFSA 2008-26 Buffer length checks in MIME processing
MFSA 2008-25 Arbitrary code execution in mozIJSSubScriptLoader.loadSubScript()
MFSA 2008-24 Chrome script loading from fastload file
MFSA 2008-21 Crashes with evidence of memory corruption
For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.16/releasenotes/
20080804
Bugfix: dangling pointer in vstring_sprintf_prepend().
File: util/vstring.c.
20080814
Security: some systems have changed their link() semantics,
and will hardlink a symlink, contrary to POSIX and XPG4.
Sebastian Krahmer, SuSE. File: util/safe_open.c.
The solution introduces the following incompatible change:
when the target of mail delivery is a symlink, the parent
directory of that symlink must now be writable by root only
(in addition to the already existing requirement that the
symlink itself is owned by root). This change will break
legitimate configurations that deliver mail to a symbolic
link in a directory with less restrictive permissions.
20080804
Bugfix: dangling pointer in vstring_sprintf_prepend().
File: util/vstring.c.
20080814
Security: some systems have changed their link() semantics,
and will hardlink a symlink, contrary to POSIX and XPG4.
Sebastian Krahmer, SuSE. File: util/safe_open.c.
The solution introduces the following incompatible change:
when the target of mail delivery is a symlink, the parent
directory of that symlink must now be writable by root only
(in addition to the already existing requirement that the
symlink itself is owned by root). This change will break
legitimate configurations that deliver mail to a symbolic
link in a directory with less restrictive permissions.
Pkgsrc changes:
o Fix MASTER_SITES
o Fix up DEPENDS acocrding to updated dependencies
o Change HOMEPAGE to use searc.cpan.org and standardized URL
Upstream changes:
1.315 2008-07-08
http://rt.cpan.org/Public/Bug/Display.html?id=20536
improve docs, improve handling of nested multipart
thanks to DROLSKY and to the guys at Best Practical
1.314 2007-10-02
bug fix: bump up prereq on Email::MIME::Modifier
(fixes a scalar deref issue, reported by JESSE)
Pkgsrc changes:
o Changed MAINTAINER to pkgsrc-users@ as per communication with maintainer
o Adjust dependencies to match Makefile.PL
Upstream changes:
1.22 2006/09/09 18:05:00 alian
- Fix rt#19656: unknown URI schemes cause rewrite to fail
- Fix rt#17385: make test semi-panics
- Fix rt#7841: Text-Only Encoding Ignored
- Fix rt#21339: no license or copyright information provided
- Fix rt#19655: include_css is far too aggressive
This version fixes two bugs. The first is an integer argument
parsing bug on some systems (FreeBSD). Thanks to Shane Bywater for
reporting this one. The second is a bug parsing invalid nameserver
entries in /etc/resolv.conf that prevented spamdyke from defaulting
to 127.0.0.1. Thanks to slamp slamp for reporting this one.
* configure.in: Bumped version to 2.2.22
* src/uudecode.c (uudecode): Don't base64 decode the
end-tag ("====\n"). Fixes bug #542222.
* COPYING: Fixed to reference LGPL v2.1
* gmime/gmime-common.h: Removed unused prototypes.
* gmime/gmime-message.c (g_mime_message_add_recipient): Change
'type' argument to const char *.
(g_mime_message_add_recipients_from_string): Same.
* gmime/gmime-utils.h (GMIME_QP_ENCODE_LEN): Add an extra byte for
\n in the case of quoted_encode_close(). Thanks to Peter
Bloomfield for discovering this.
* gmime/internet-address.c (decode_mailbox): Prevent reading past
the end of the input string.
* examples/basic-example.c: Fixed to use GMimeSignatureValidity.
* gmime/gmime-multipart-encrypted.c (g_mime_multipart_encrypted_encrypt):
Don't use deprecated functions.
* gmime/gmime-stream.c (stream_eos): Fixed a typo.
* mono/StreamWrapper.cs: Allow seeking to position 0 for
GMimeStreamFilter. Thanks to Debajyoti Bera for this patch.
* README: Bumped version
* configure.in: Bumped version to 2.2.21
* gmime/gmime-parser.c: Check parser_step() against
GMIME_PARSER_STATE_ERROR rather than -1 in case the value ever
changes.
(struct _GMimeParserPrivate): Changed state to be 16bit int
instead of a 26bit int which apparently cannot be set to -1 on
Solaris. Fixes bug #534301.
(parser_step_headers): Fixed a corner-case where a read boundary
fell between the \n and \t of a folded header.
* README: Bumped version
* configure.in: Bumped version to 2.2.20
* gmime/gmime-stream-buffer.c (stream_read): Break if
g_mime_stream_read() returns 0 as well (meaning EOF, no more data
to read) and don't keep looping. Fixes bug #533331.
* README: Bumped version
* configure.in: Bumped version to 2.2.19
* gmime/gmime-parser.c (parser_step_headers): Fix for CRLF encoded
input.
* gmime/gmime-parser.c (header_parse): Fixed a memory leak in the
case of an invalid header.
This feature adds a -c switch to LDAPMAP definitions, which can be used to
specify a connection timeout (the equivalent of ldap.conf's bind_timeout)
Here is an usage example, in sendmail.cf:
O LDAPDefaultSpec=-w 3 -c 1 -l 3
If the server does not connect after 1 second (-c 1), we give up. If it does
not anwer after 3 seconds (-l 3), we give up with a temporary failure.
Using -c is the only way to avoid sendmail getting stuck against a half-dead
slapd, where the TCP port is in listening state but the server will not
serve anything.
5.427 2008-06-30 Dave O'Neill <dmo@roaringpenguin.com>
* VERSION 5.427 RELEASED
* (bugfix) fix remove_sig() on invalid multipart message (RT #11901)
* (bugfix) make_singlepart() no longer creates bizzare Content-Type: headers
(RT #37139)
* (bugfix) process_part() no longer sets incorrect charset on empty
parts (RT #35369)
* (bugfix) fix runtime warnings caused by incorrect pack() string
(RT #34451, bugs.debian.org #446342)
* (docs) add "SEE ALSO" sections to POD docs (RT #30391)
* (docs) fix documentation of MIME::Head::get() (RT #34552,
bugs.debian.org #235189)
* (packaging) Depend on IO::File 1.1.3, for its binmode() support (RT #34178)
version 2.04: Tue Jul 29 11:44:26 CEST 2008
Fixes:
- Mail::Field::_require_dir complained on 5.10 about a closed
dirhandle. rt.cpan.org#37114 [Manuel Hecht]
- Bcc line removed before collecting addresses. [Jørgen Thomsen]
Improvements:
- add "die" to "close()" in synopsis of Mail::Send and
Mail::Mailer. rt.cpan.org#36103 [Ed Avis]
Okayed by maintainer (private email to me).
Adds DESTDIR support.
Changes from ChangeLog:
Version 1.4.16:
- Changed all scripts to '#!/usr/bin/env bash' instead of '#!/bin/sh' or
'#!/bin/bash', because they use bash features that are not available in POSIX
/bin/sh and because bash might not live in /bin, e.g. on BSD systems. This is
a quick fix for Debian bug #489635.
- Accept both 250 and 251 in return of the RCPT TO command, as required by RFC
2821 sections 4.3.2 and 3.4. Reported and fixed by Matthias Bernhardt.
Thanks!
- Fix scripts/msmtpqueue/msmtp-runqueue.sh. An error made while applying a
patch accidently broke it. Reported by Thomas Weber. Thanks!
Version 1.4.15:
- Added the new tls_crl_file configuration command and the corresponding
--tls-crl-file option.
- Added the new tls_min_dh_prime_bits configuration command and the
corresponding --tls-min-dh-prime-bits option. This closes Debian bug
#440344.
- Added the new tls_priorities configuration command and the corresponding
--tls-priorities option.
- Gnulib upate to 2008-06-02. Use getpass-gnu instead of getpass module.
- Add msmtpq scripts by Chris Gianniotis to the scripts directory. Suggest
them as a replacement in the README of the msmtpqueue scripts.
- Do not let getpass() read from stdin, because we read the mail from there.
Reported by Karol Lewandowski. Thanks!
- Updated the set_sendmail script by Gautam Iyer. Thanks!
- Return EX_TEMPFAIL instead of EX_DATAERR in case of 4xx replies to the MAIL
FROM, RCPT TO and DATA commands. Reported by Kent Vinther Friis. Thanks!
Version 1.4.14:
- Add support for the SMTPSERVER and EMAIL environment variables. These
variables are used when no other configuration is available. Suggested by
Jari Aalto.
- Add the --read-envelope-from option, which extracts the envelope from address
from the From: header.
- Fix a typo in the man page.
- Add support for Resent-* headers to the -t/--read-recipients option. Fixes
Debian bug #464474, reported by Tim Abbott.
- Buffer read operations also when TLS/SSL is active. Fixes performance problems
with GnuTLS, reported by Dimitrios Apostolou for mpop.
- Fixed a potential problem with VPATH builds.
- Updated gnulib to 2008-02-26. Imported havelib module.
- Always log smtpstatus and smtpmsg, even in case of success. Suggested by
Bruno De Fraine.
- Use locale-independent c_toupper() instead of toupper() to avoid problems
with the tr_TR.UTF-8 locale. Reported by S.Çağlar Onur. Thanks!
- Updated gnulib to 2008-02-15. Imported c-ctype module.
- Support for the Max OS X keychain was added by Jay Soffian. Thanks a lot!
- Fix network input/output timeouts for W32. Bug reported and fixed by
Shoorick for mpop. Thanks!
- many bug fixes
- MM_CHARSET no longer needed; now uses iconv to decode RFC2047-encoded
headers and convert to current locale.
- various MIME improvements
- Take maintainership (ok'd by kim@).
- Replace DESCR with text from web site.
- Support user-destdir.
- Use --with-hash-backup instead of hacking config.h post-configure.
- Drop IRIX-specific part of fmt_scan.c patch-cd, and therefore drop patch-ck
and IRIX bits in Makefile.
- A tmac.h conf file (wtf?) is no longer installed.
- Update what's installed to share/doc/nmh.
- Update PLIST for added/removed/renamed files.
- Patches:
- Update patch-ca and patch-cd.
- Remove errno patches, upstream since XXX: patch-aa, patch-ab, patch-ad,
patch-ae, patch-ag, patch-ah, patch-ai, patch-aj, patch-ak, patch-al,
patch-am, patch-an patch-ao, patch-ap, patch-aq, patch-ar, patch-as,
patch-at, patch-au, patch-av, patch-aw, patch-ax, patch-az, patch-ba,
patch-bb, patch-bc, patch-bd, patch-be, patch-bf, patch-bg, patch-bh,
patch-bi
- patch-aa also had a patch for some fgetstr problem on NetBSD which no
longer seems to happen.
- Remove patch-cb; GCOS_HACK is referenced nowhere in nmh code (only
apparently outdated docs) or in any other pkgsrc patch; HAVE_SYS_PARAM_H
is already elsewhere in config.h, and sys/param.h is included in nmh.h.
- Remove patch-ce (http://savannah.nongnu.org/bugs/?1393 fixed in
uip/sortm.c r1.7).
- Remove patch-ci (fixed in uip/show.c r1.6).
- Remove patch-cj; $(etcdir)/tmac.h is gone and the folders/flists problems
were fixed (differently) in 2000.
- Remove patch-ck (CPPFLAGS support for the IRIX-specific part of patch-cd.
Fixed a bug in filter_graylist() that was creating infinitely deep "_none"
directories. The special-case conversion code added in 4.0.1 was not
checking to see if "_none" was a file or a directory and performing the
conversion every time. Thanks to Bob Alanis for reporting this one.
