Add commented out LICENSE line (gnu-gpl-v3).
From ChangeLog:
Version 1.0.12:
- Gnulib update to 2007-11-27.
- Don't count already retrieved messages twice. This fixes a segfault when
only_new is off and header or size filtering is on. The bug was introduced in
the previous change; no released version is affected.
- If a filter decides to delete a mail, then additionally mark it as
retrieved. This prevents to filter the mail again in a later session when
the 'keep' option is set.
- Fix default UIDLS file on the W32 platform: Use '\' as directory separator,
not '/'. Reported by Ricky Thomas.
Version 1.0.11:
- Update the license of the source code to GPLv3 or later, and change the
license of the documentation to the GFDLv1.2 or later.
- Gnulib update to 2007-07-15.
- Add new option -Q / --half-quiet to print only status information but no
progress information. Suggested by Dimitrios Apostolou.
- Set the default timeout to 180 seconds = 3 minutes. This prevents sessions
from hanging forever. Suggested by Dimitrios Apostolou.
- Make the POP3 commands UIDL, LIST, and DELE abortable. This is useful for
mailboxes with many thousand mails.
- Update the UIDL state after mail retrieval, and save this state in case of
errors in DELE or QUIT. Only update the UIDL state again after successful
DELE and QUIT, and then save this state. This prevents an incorrect UIDL
state if the DELE commands are aborted, for example. Bug reported by
Dimitrios Apostolou.
Version 1.0.10:
- Fix UIDL handling: the first character of UIDs was ignored.
- Improve APOP timestamp checks. Thanks to Carlos Martín Nieto for a
discussion of this.
- Add documentation on how to find the right CA certificate for
tls_trust_file. Thanks to Bryan Kam for suggestions.
- Improve the documentation for TLS vs. SSL and STARTTLS vs. POP3-over-TLS.
Thanks to Carlos Martín Nieto for suggestions.
- Update the spanish translation (Carlos Martín Nieto).
Version 1.0.9:
- Require either tls_trust_file or tls_certcheck=off for TLS sessions, so that
mpop is not silently vulnerable to man-in-the-middle attacks.
- Gnulib update 2007-04-07.
- Protect against the man-in-the-middle attack on APOP authentication as
described in CVE-2007-1558. This is done by doing sanity checks on the
APOP timestamp in the server greeting.
However, this probably makes attacks only harder. It will not make them
impossible. Therefore, APOP authentication is never used automatically
anymore unless TLS is active.
- Do not use NTLM authentication automatically anymore unless TLS is active.
NTLM is not an open standard and must therefore be considered broken.
Version 1.0.8:
- Move build-aux files to separate directory build-aux.
- Gnulib update 2007-03-19.
- Improve and generalize workaround for pop.gmail.com RFC violations. This
enables automatic pipelining support for pop.gmail.com and some other
servers.
- Provide a hstrerror() function for systems that lack getaddrinfo() (so that
gethostbyname() must be used instead) and that do not provide hstrerror()
themselves. Needed for Solaris 2.6. Reported and tested by Chris Green.
* VERSION 5.425 RELEASED
* (bugfix) A stub for MIME::Parser's tmp_recycling() method has been
re-added to preserve compatibility. Since recycling of tempfiles
never worked and has been removed, any code calling tmp_recycling()
should stop attempting to use the feature.
* VERSION 5.424 RELEASED
* (bugfix) [rt.cpan.org #29864] - lines in $entity->body() should be
newline-terminated.
+ Authentication: Added "password_noscheme" field that can be used
instead of "password". "password" treats "{prefix}" as a password
scheme while "password_noscheme" treats it as part of the password
itself. So "password_noscheme" should be used if you're storing
passwords as plaintext. Non-plaintext passwords never begin
with "{", so this isn't a problem with them.
- IMAP: Partial body fetching was sometimes non-optimal, causing
the entire message to be read for every FETCH command.
- deliver failed to save the message when envelope sender address
contained spaces.
- Maildir++ quota: We could have randomly recalculated quota when
it wasn't necessary.
- Login process could have crashed after logging in if client sent
data before "OK Logged in" reply was sent (i.e. before master had
replied that login succeeded).
- Don't assert-crash when reading dovecot.index.logs generated by
Dovecot v1.1.
- Authentication: Don't assert-crash if password beings with "{" but
doesn't contain "}".
- Authentication cache didn't work when using settings that changed
the username (e.g. auth_username_format).
actually need them at all. Add a "fam" option to cone which allows
it to be notified by the OS about changes to local Maildirs. Bump
the PKGREVISION to 1.
v2.1.5
------
[mjr] Fix some fatal errors caused by the IMSP driver when deleting certain
contacts and while adding contacts to lists in certain cases.
[mjr] Fix adding contacts to a new contact list in a source other than the
source the contacts being added are from.
[jan] Fix paging through search results from another than the default address
book (Bug 5137).
[cjh] Fix copy/moving contacts to a new contact list (Bug 5144).
v4.1.5
------
[cjh] Lower memory usage when downloading folders (Andrew Morgan
<morgan@orst.edu>).
[mms] Fix detection of default namespace information when no namespaces are
defined on the server (Bug 5538).
[mms] Don't lose message bodies when moving messages to trash when over quota
(Bug 5470).
[cjh] Remove unused defaults in Fetchmail_imap (Bug 2799).
[jan] Fix empty folder name appearing on Cyrus and servers with similar
namespaces (Bug 5138).
[jan] Only show reply options in iCalendar viewer if a reply is requested.
[cjh] Remove non-responsive www.keyserver.net and wwwkeys.pgp.net from
PGP options (Bug 5323).
[jan] Fix moving messages when over quota on Dovecot servers (Bug 5270).
[jan] Fix parsing of certain distribution lists (Bug 5134).
[mms] Fix rare occurrence where an action perfomed on the mailbox screen would
instead be performed on the INBOX (Bug 5202).
[mms] Don't show save attachments prompt in compose screen if configured to
automatically link all attachments (Request 5189).
security problems:
- MFSA 2007-36 URIs with invalid %-encoding mishandled by Windows
- MFSA 2007-29 Crashes with evidence of memory corruption (rv:1.8.1.8)
Cone is a text-based mail client. Cone seamlessly handles multiple
POP3, IMAP accounts, and local mail folders. Cone is also a simple
newsreader. Cone's interface is foolproof enough to be used by
inexperienced users, but it also offers advanced features for power
users. Cone also serves as a platform for development of a new
experimental network mail access protocol, SMAP, that offers additional
functionality not available with IMAP or POP3.
SQLgrey is a postfix policy service implementing a greylisting policy. It is
written in Perl and uses DBI to access an SQL database. Its goal is reducing
the SPAM reaching user mailboxes.
This should make the pkg build again, and resolve PR pkg/37354
by Jan Danielsson.
(I verified that the pkg installs fine and that I get an "exchange
server" dialog in evolution. I couldn't test against an exchange
server however -- would be nice if someone did it.)
- Improved the documentation for -Y. (Thanks to Justin Gombos
for the suggestion.)
- Dropped tzip support in Mail::Mbox::MessageParser
- Added -L flag to follow symbolic links. (Thanks to Peter Teuben
for prompting the idea.)
- Fixed grepmail so that it works with Mail::Mbox::MessageParser 1.5000
(Thanks to Paul for the bug report, and Alexey Tourbin for the fix.)
- Fixed testspeed.pl to properly call report() instead of get_report() on new
versions of Benchmark::Timer
New message parser (less memory consuming)
Works with PHP safe_mode
Create valid HTML
New LDAP integration
Search for contacts
Improve message compose screen
IPv6 Compatability
Improved XHTML validation
Identify mailboxes case-sensitive
Lowered status message time from 5 to 3 seconds to improve responsiveness
See http://trac.roundcube.net/wiki/Changelog for all the details
Changelog includes:
! --enable-exact-address works again
+ $message_cache_clean (clean cache on sync)
+ %P expando for $pager_format
Improved autoconf code for bdb
Large file support for mutt_pretty_size()
bugfixes
"--enable-inet6" or "--disble-inet6 anymore and decides automatically
whether to enable IPv6 support.
Pointed out by Matthias Andree in private e-mail.
This switches to the new gnome-2.20 branch.
pkgsrc change: require the "time/zonetab" pkg on NetBSD. The zone.tab
file is needed for the "ical" stuff to work correctly.
netbiff is a mail notification utility, like the traditional
xbiff, but designed to handle multiple mailboxes. It can provide
a graphical interface and/or execute shell commands when new
mail is received.
netbiff is the main interface program. It reads a configuration
and communicates with several backend mail checkers. It uses
either GTK or a terminal to display messages to the user.
netbiffd-imap checks for mail on an IMAP connection. It supports
checking multiple folders, and can connect using TCP, SSL,
or an SSH tunnel.
netbiffd-file checks for updates to a specific file using its
mtime field. The behavior is identical to the original xbiff.
* Honor PKG_SYSCONFDIR and VARBASE.
* Added sqlite and ldap option.
* Fixes PLIST when db driver != mysql.
* Install more documentation.
* Install initial create tables sql script files.
* Rename timsieved's rc script to similar name with other scripts.
Bump PKGREVISION.
8.14.2/8.14.2 2007/11/01
If a message was queued and it contained 8 bit characters in
a From: or To: header, then those characters could be
"mistaken" for internal control characters during a queue
run and trigger various consistency checks. Problem
noted by Neil Rickert of Northern Illinois University.
If MaxMimeHeaderLength is set to a value greater than 0 (which
it is by default) then even if the Linelimit parameter
is 0, sendmail corrupted in the non-transfer-encoding
case every MAXLINE-1 characters. Patch from John Gardiner
Myers of Proofpoint.
Setting the suboption DeliveryMode for DaemonPortOptions did not
work in earlier 8.14 versions.
Note: DeliveryMode=interactive is silently converted to
background if a milter can reject or delete a recipient.
Prior to 8.14 this happened only if milter could delete
recipients.
ClientRate should trigger when the limit was exceeded (as
documented), not when it was reached. Patch from
John Beck of Sun Microsystems.
Force a queue run for -qGqueuegroup even if no runners are
specified (R=0) and forking (F=f) is requested.
When multiple results are requested for a DNS map lookup
(-z and -Z), return only those that are relevant for
the query (not also those in the "additional section".)
If the message transfer time to sendmail (when acting as server)
exceeds Timeout.queuewarn or Timeout.queuereturn and
the message is refused (by a milter), sendmail previously
created a delivery status notification (DSN). Patch
from Doug Heath of The Hertz Corporation.
A code change in Cyrus-SASL 2.1.22 for sasl_decode64() requires
the MTA to deal with some input (i.e., "=") itself.
Problem noted by Eliot Lear.
sendmail counted a delivery as successful if PIPELINING is
compiled in but not offered by the server and the
delivery failed temporarily. Patch from Werner Wiethege.
If getting the result of an LDAP query times out then close the
map so it will be reopened on the next lookup. This
should help "failover" configurations that specify more
than one LDAP server.
If check_compat returns $#discard then a "savemail panic" could
be triggered under some circumstances (e.g., requiring
a system which does not have the compile time flag
HASFLOCK set). Based on patch by Motonori Nakamura
of National Institute of Informatics, Japan.
If a milter rejected a recipient, the count for nrcpts= in the
logfile entry might have been wrong. Problem found by
Petra Humann of TU Dresden.
If a milter invoked smfi_chgfrom() where ESMTP arguments are not
NULL, the message body was lost. Patch from Motonori
Nakamura of National Institute of Informatics, Japan.
sendmail(8) had a bogus space in -qGname. Patch from Peng Haitao.
CONTRIB: buildvirtuser: Preserve ownership and permissions when
replacing files.
CONTRIB: buildvirtuser: Skip dot-files (e.g., .cvsignore) when
reading the /etc/mail/virtusers/ directory.
CONTRIB: buildvirtuser: Emit warnings instead of exiting where
appropriate.
LIBMILTER: Fix ABI backwards compatibility so milters compiled
against an older libmilter.so shared library can use an
8.14 libmilter.so shared library.
LIBMILTER: smfi_version() did not properly extract the patchlevel
from the version number, however, the returned value was
correct for the current libmilter version.
Almost missed this one. I had already fixed it in v1.1 tree, but forgot
to fix in v1.0 tree.
- deliver: v1.0.6's "From " line ignoring could have written to a
bad location in stack, possibly causing problems.
Changes since last packaged version (2.0.3):
Version 2.0.6 - 7 October 2007
------------------------------
- Bug fix; the search query that was sent with the select_all() method had an
incorrect format and this caused an error in some mail servers.
Version 2.0.5 - 4 October 2007
------------------------------
- Bug fix; an error in the sample extensions file.
- Bug fix; typo errors in the manual page.
- The documentation was updated with details and examples on how to access
mailboxes inside folders.
- Examples were added on how to define composite filters that include multiple
searching rules.
Version 2.0.4 - 27 September 2007
---------------------------------
- Bug fix; the send_query() method didn't return the special form of table that
the rest of the searching methods did.
- An additional searching method has been added to search for keyword flags
set.
- A new variable that was added to the Makefile makes it possible to set an
alternative environment for the installation path.
* IDLE: Interval between mailbox change notifies is now 1 second,
because some clients keep a long-running IDLE connection and use
other connections to actually read the mails.
* SORT: If Date: header is missing or broken, fallback to using
INTERNALDATE (as the SORT draft nowadays specifies).
+ deliver: If message begins with a "From " line, ignore it.
+ zlib plugin: If maildir file has a "Z" flag, open it with zlib.
- CREATE: Don't assert-crash if trying to create namespace prefix.
- SEARCH: Fixes to handling NOT operator with sequence ranges.
- LDAP reconnection fixes
- Maildir: Don't break when renaming mailboxes with '*' or '%'
characters and children.
- mbox: Fixed "file size unexpectedly shrinked" error in some
conditions.
- quota+mbox: Don't fail if trying to delete a directory.
- Fixes to running from inetd
2007-09-19 11:32 Jochen Striepe
* t-prot, t-prot.1: Updated time stamps, released as v2.5.
2007-09-19 11:31 Jochen Striepe
* t-prot, t-prot.1: New feature, new command line switch: Hide TOFU
produced by Novell Groupwise. Many thanks to Philipp Thomas for
testing and suggesting.
2007-05-24 08:22 Jochen Striepe
* t-prot.1: Update copyright date.
then automatically generate a PLIST that says "${PKGNAME} has no files".
* If PLIST_SRC and GENERATE_PLIST are not set in a package Makefile,
and no PLIST files exist, then fail during the package build with
PKG_FAIL_REASON.
* Remove "intentionally empty" PLISTs again.
Now, the easy way to say that a package installs no files is to just
add the following to the package Makefile:
PLIST_SRC= # empty
that directly manipulate empty PLISTs.
Modify plist/plist.mk so that if the PLIST files are missing and no
GENERATE_PLIST is defined, then the package fails to build.
2006-11-16 Brian Burton <brian@burton-computer.com>
* Released as 1.4d
* configure.ac: Added ability to selectively disable image
processing using --without-gif, --without-jpeg, and/or
--without-png.
* src/spamprobe/spamprobe.cc (set_headers): Added ability to
selectively ignore individual headers using -H-headername.
* src/includes/Ptr,Ref,Array.h: Restored missing <cassert> include.
* src/parser/PngParser.cc (tokenizeImage): added basic tokens from
PNG images.
2006-11-16 Brian Burton <brian@localhost.localdomain>
* src/parser/PngParser.cc (PngParser): Stub for PNG parsing using
libpng.
* src/parser/JpegParser.cc (tokenizeMarker): Preliminary
implementation of jpeg parsing using jpeglib.
* configure.ac: Auto detect of either libungig or libgif depending
on which one is available.
2007-01-04 Brian Burton <brian@burton-computer.com>
* Released as 1.4c
* spamprobe.1: Modified man page to remove unnecessary informaton
and make it more conformant with man page conventions.
* src/spamprobe/spamprobe.cc (process_extended_options): added
ignore-body option.
* src/parser/HeaderPrefixList.cc (HeaderPrefixList::addHeaderPrefix):
Forced header prefixes and names to lower case instead of
relying on an assert to enforce the restriction.
* src/database/FrequencyDBImpl_hash.cc (hash::FrequencyDBImpl_hash):
Disabled experimental hash database auto-cleaning.
* src/includes/Ref.h: Removed cassert include.
* src/spamprobe/spamprobe.cc (process_extended_options): Added
whitelist option to allow use of SP as a bayesian white list in
conjunction with other filters.
* Bug fixes:
o bug 1320, 'Memory leak caused by gtk_container_get_children'
o bug 1321, 'access before allocation when scanning for uris'
o bug 1324, 'Corrupted IMAP cache'
o bug 1327, 'segfault when replying to a non-existent news
message'
o bug 1329, 'error in quicksearch.c'
o bug 1334, 'user defined mail incorporation script not run'
o bug 1336, 'Segfault if empty space before search-string'
o bug 1337, 'Crash on removing uncached emails'
o Prevent unquoted mime boundaries, by always using a /
o Remove unnecessary error when cancelling export to mbox.
o MAEMO: make all Folder Properties pages visible
o MAEMO: fix overlapping buttons in Edit Accounts page
Also update the version dependencies of all plug-ins. The reality
of the numbering for standard plug-ins was different than had been
assumed, and the actual published dependencies were more complex tha
was captured by the previous structure.
5.433 2007-09-27 Dave O'Neill
* VERSION 5.4.33 RELEASED
* (bugfix) Fix API regression - MIME::Entity::body() should return an
arrayref. Fixes RT 29643.
5.422 2007-09-25 Dave O'Neill
* VERSION 5.422 RELEASED
* (bugfix) Require File::Temp 0.17 or newer for IO::Seekable support.
This fixes test failures seen on Darwin.
* (bugfix) Clear filer's purgeable() before calling init_parse(). Fixes RT 7858.
commit 005e387c42957f2a433464beaef1d2b416746963
Author: Dave O'Neill
Date: Fri Sep 21 12:41:03 2007 -0400
Add LICENSE item to Makefile.PL
5.421 2007-09-21 Dave O'Neill
* VERSION 5.421 RELEASED
* (enhancement) Use File::Temp for tempfile generation. MIME::Parser
now has a tmp_dir() method for changing the temporary directory on a
per-parser basis.
5.420_02 2007-08-29 Dave O'Neill
* VERSION 5.420_02 (developer release)
* (bugfix) Correct 'use vars' and add a 'use strict' (fixes RT #22681)
* (bugfix) Don't allow all-whitespace filenames in
recommended_filename() (fixes RT #6115)
* (bugfix) Require IO-stringy 2.110. Fixes RT tickets 11312, 11452,
12375, 12784, and 18791
* (docs) Updated RFC references to refer to MIME RFCs 2045-2049 (RT #14119)
* (cleanup) Warn if no decoder is found for a given encoding. (RT #22682)
* (cleanup) IO::Wrap no longer used, IO::ScalarArray use minimized
5.420_01 2007-06-18 Dave O'Neill
* VERSION 5.420_01 (developer release)
* (bugfix) Fix warning generated by a header of "Content-Type: /".
Previous versions would warn about undefined variables. We now
set a blank type and subtype.
* (cleanup) Partial removal of dependencies on IO::Scalar and
IO::ScalarArray. We now use Perl's built-in I/O on scalars as much
as possible. NOTE THAT THIS REQUIRES PERL 5.8!
* (cleanup) FileHandle usage removed in favour of IO::File
* (cleanup) Remove broken utility methods -- shellquote() because it
didn't really make anything safe, and catfile(), because File::Spec
is better.
* (cleanup) Multiple test cleanups, including removal of
ExtUtils/TBone.pm. Tests now use Test::More.
* (cleanup) Remove support for recycling tempfiles ( tmp_recycling() and
its usage in new_tmpfile() )
* (cleanup) Remove nasty "eval join('',<::DATA>) unless caller()"
testing code from various modules
* (cleanup) Merge all changelog information from README and
MIME/Tools.pm into ChangeLog
- A remote SMTP client TLS certificate with an unparsable canonical
name triggered a panic error in the Postfix SMTP server (attempt
to allocate zero-length memory) while sending a request to an
SMTPD policy server.
- On backup MX servers where the queue file system is mounted with
"atime" (file read/execute access time) updates disabled, the
flush daemon would trigger mail delivery attempts once every 1000
seconds, thus rendering the maximal_backoff_time setting useless
for backup MX service.
* Missing </table> when displaying folder list.
* Use SQWEBMAIL_RANDSEED if it's set, instead of sendit.sh's inode.
* Remove hardcoded reference to TIMEOUTHARD
* Global footer wasn't being added correctly to HTML-formatted mail.
* Fixes to inferred HTML formatting.
* Fix signing of multipart messages that contain 8 bit content.
* Try to autodetect clock skew.
* Include remote port number in IMAP and POP3 logs.
* Optimization: skip over folders not in the current scope, avoiding
unnecessary overhead of checking their ACLs.
* Major code cleanup.
* "User unknown" reports complete local address, including extensions.
* Only run courierfilters after all control files are closed.
* "opt BOFHHEADERLIMIT" replaces hardcoded limit of 100,000 bytes of
headers per message.
* Reject <@domain.com> for a recipient's address.
* Tolerate newline-less responses from the filter.
* Document that sysexit 100 from .courier is a permanent failure.
* "courier show all" and "courier clear all" commands for managing
backscatter suppression list.
* The bug that 'Set display item of summary...' button in the common
preferences dialog always show send folder setting was fixed.
* The previous focus is kept when separation of view is changed.
* The status label is automatically resized now when there is not
enough width.
* The bug that virtual folders were not sorted properly was fixed.
* The crash when trying to use ascii-armored PGP encryption was fixed.
* The most of compiler warnings were removed.
Changes for 2.4.6:
* The 'To' column was added to the summary view.
* In Sent, Draft, and Queue folders, the 'To' column is displayed by
default.
* The display column setting of send folders became independent from
normal folders.
* The ascii-armored PGP encryption was fixed.
* The combined method is used now when both PGP encryption and PGP
signing are specified.
* The PGP passphrase dialog was disabled on filtering and query search.
* The new message notify will be blocked when a new message is read
on receiving.
* 'LIST "" "*"' command is used instead of 'LIST "" "%"' to obtain
folder list from IMAP4 server.
* The bug that noinferior and noselect flags were ignored until rebuilding
folder tree when a new folder was created on IMAP4 server was fixed.
* If attached files become nonexistent on sending, error dialog will be
displayed and the sending will abort.
From DESCR:
This module was created as a low-level inteface to any IMAP server. It
was built to be a 'clear box' solution to working with an IMAP environ-
ment. The idea is that anything an IMAP client should be able to do,
and any information available via the IMAP specs, should be available
to a client interface and user. This way, the full strength of the
IMAP protocol and data can be utilized, ideally in the most network-
efficient mannger possible, rather than being contrained only to a sub-
set of commands or data-limited responses. If the server says it, the
client should be able to see it.
This module also takes steps to be able to handle anticipated situa-
tions for the user rather than forcing a per-implementation behavior
for such expected events, such as referrals. IMAP::Client will fully
support referrals, and will transparently handle them for whatever com-
mand is issued to them (so long as the referral s for anonymous or the
same user with the same password - a new user or different password
would require a new username/password to be obtained. As of 0.01, this
is not supported, however the framework is down.
This module also tries to follow the various RFCs for IMAPrev1 communi-
cations very closely, enforcing client-side responsabilities where
appropriate.
can be disabled to remove the behavior again.
In spite of UW's "recommendations" against enabling this, it should be up
to the sysadmin and user whether to use the rope to build a bridge or
hang him/herself. PC-Pine has it enabled by default; there's no reason
besides FUD to make the Un*x build any different.
working again, and bump PKGREVISION. From the changelog:
- Fix a slew of issues related to changes made by Hotmail and bugs
that finally became issues. Added the "AllowUnsafe" parameter.
- Merged in user submitted change and fixed a bug that was causing
issues with properly ending messages.
- Added the domain parameter for those with a hosted hotmail domain
and fixed the infinite loop issue with live light.
XXX FreePOPs has a self-updater for situations like this, but it's
XXX nontrivial to package.
Version 1.4.11 - 29 September 2007
----------------------------------
- Minimum PHP requirement raised from 4.0.6 to 4.1.0.
SquirrelMail has been broken for a while with 4.0.x without anyone
noticing, this move merely reflects reality.
- Fix broken set_url_var function in functions/html.php (#1729814).
- Fix config.pl not detecting auth support correctly (#1727033).
- Fix display of X-Priority in message view.
- Work around mailers sending broken Date headers with no space after the
first comma.
- Let POP3 class properly cope with lines starting with a '.'.
- Some HTML validation cleanups.
- Invalid year in sent_subfolders plugin (#1607380).
- Always treat Content-Type case-insensitively (#1732092).
- Fix typo: html/plain should be text/html.
- Fix en/decode header swith in MDN (#1694687).
- Fix compatibility with Windows path in administrator plugin (#1740469).
- Fix disabling password encryption in mail_fetch (#1738001).
- Fix busy loop and notice when two literals in IMAP fetch (#1739433).
- Backported code for site wide SMTP authentication (#1531889).
- Fixed issue with compose session not being cleaned after message is
saved or sent.
- Added ability to detect HTTP_X_FORWARDED_PROTO in get_location(),
thanks to Daniel Watts
- Fix test for signout.php in the logged in check in is_logged_in() so it
cannot be circumvented by manipulating the URL. External plugins might
rely on this function guaranteeing that the user is logged in.
- Use attachment_dir only at the point where we're actually
reading from / writing to the files, do not carry it around
in the object. This makes us safer in the event the object
is somehow exposed to the outside world.
- Better support mailboxes named 'None' (#1598890).
- Sort readdir() output in conf.pl (#1755886).
- Fix message cache in printer friendly, thanks Tomas Kuliavas.
- Made the webmail_top hook work again for plugins that want to change
the URI of the "right" frame; plugins have to change the value of the
global variable $right_frame_url
- Fix issue in darkness theme with extra closing bracket.
- No longer store all message composition sessions in the PHP session,
since it was not made use of and in rare cases, made sessions too big.
- Composition restoration functionality now correctly restores attachments.
- Added smtp_auth hook.
- Change default Selection List Style to Indented.
- Added "preselected" query argument to mailbox list.
- Added mailbox_display_buttons hook.
- Removed "Include CCs when Forwarding Messages", which had no functionality
whatsoever.
- Make the Message Details plugin actually show the correct entity when
viewing details of attached messages.
particular, libmilter does *not* support "ldap", "sasl", etc. which are
supported by only sendmail. Do this through the following:
(1) Create libmilter/options.mk with support for the "inet6" option.
(2) Drop inclusion of options.mk from sendmail/Makefile.common and move
it to libmilter/Makefile and sendmail/Makefile.
While here, properly support IPv6 on FreeBSD, which like DragonFly has
getipnodebyname() in libc.
As a result of these changes, libmilter will no longer depend on
cyrus-sasl or openssl or openldap-client depending on what is set
in PKG_DEFAULT_OPTIONS.
Bump the PKGREVISION of libmilter to 1 due to the changed dependency list.
No change to sendmail as the binary package does not change.
you *really* REALLY mean that. Fix the dependencies of all claws-mail
packages on claws-mail itself. Bump all those revisions. Fix some
indentation while here to be at least basic consistent.
not be available. Instead, use (OPEN_MAX - 1) which uses the same
"pick a high number" strategy as choosing "99", but is more likely to
be available. This allows users with a soft limit of 64 open files
to run courierfilter and courierldapaliasd.
Bump the following PKGREVISIONs:
mail/courier-mta --> 11
meta-pkgs/courier --> 7
net/couriertcpd --> 3
${COURIER_STATEDIR}/tmp, which defaults to /var/courier/tmp. This
allows some of the servers which drop root privileges too soon to still
write the pid file into a courier-owned directory instead of the
root-owned /var/run.
In mail/courier-mta, de-list ${COURIER_STATEDIR}/webmlm from the list
of owned directories. In fact, webmlmd expects that path to be a
socket file, and breaks horribly if the "webmlm" directory is present
instead.
Bump PKGREVISIONs for the following packages:
mail/courier-imap --> 2
mail/courier-mta --> 9
mail/sqwebmail --> 4
meta-pkgs/courier --> 5
generated permissions.dat file used to create RPMs by the author.
Bump the PKGREVISIONs:
meta-pkg/courier --> 4
mail/courier-mta --> 8
mail/sqwebmail --> 3
mail/courier-mta. Modify mail/courier-imap to build regardless of
the platforms IPv6 support and update meta-pkg/courier to the latest
versions of the Courier mail server suite. Bump the PKGREVISIONs
of the following packages:
mail/courier-mta --> 7
meta-pkgs/courier --> 3
net/couriertcpd --> 2
This fixes PR pkg/37013 by Aleksej Saushev.
New in this release:
~~~~~~~~~~~~~~~~~~~~
* added Tags feature
Tags are arbitrary labels that can be applied to messages. It is
possible to create, edit, remove Tags; apply them to mails;
filter on Tags or Tag presence; apply or unset Tags via Filtering
actions; reference Tags in reply Templates.
* Threads can now be sorted by most recent message
/View/Sort/By thread date
* Added "/View/Show or Hide/Column headers"
* Added 'watch thread' feature
* Enabled the running of folder Processing rules on demand
* Added options to stop/enable writing logs to disc, see Logging
page of preferences
* IMAP and News: Implement age-based caching: allow the specifying
of a threshold for the offline synchronisation feature, and whether
old cached bodies should be removed. Accessible from the Folder
Properties.
* IMAP: Made multiple copy, (in the same IMAP account), faster by
matching source/destination message UIDs.
* LDAP: Ability to edit all Person attributes
* Nicer layout of the message part icons
* Speed up and clean up rendering of larger msgs
* Use progress bar when sending messages
* Made mainwindow's /Help/Manual point to the remote copy if the
local copy doesn't exist
* Replaced some deprecated widgets
* Enabled changing the emphasis color used to highlight the
newsreader/x-mailer header value when it matches our preferred
mail agent, (hidden pref 'emphasis_color' added to clawsrc).
* tools/mew2claws-mail.pl
Added new script that imports a Mew address book
* tools/popfile-link.sh
Added a new script that will open selected messages in
POPFile control center, in order to change the message
status.
* Updated the manual
* Check that Dillo's installed when loading the Dillo Browser
plugin
* Maemo improvements:
o Automatically choose the correct application
to open parts
o Better way to notify of new mails
o Destroy messageview after trashing mail
o Simplified layout
o Better toolbars, removal of CTree headers
o Add a specific icon to go back to folder list
o Improvements to the Wizard, About and icon legend dialogues
o add an easy way to store data (mails and IMAP/NNTP caches)
on one of the SD cards, and protect against unmounts if
needed
o plug the online/offline system into maemo's interfaces to
have Claws automatically switch according to the system
status (on IT OS 2007)
o use HildonBanners to display status messages
o force layout to be Small screen
o put the progress bar in the toolbar
* Updated Brazilian Portuguese, Bulgarian, Catalan, Finnish, French,
German, Hungarian, Italian, Polish, Russian, Simplified Chinese and
Slovak translations.
Plus bug fixes
a new TLS_PROTOCOL selection "SSL23" that allows for trying to negotiate
initially with SSLv3 but falling back to SSLv2:
courier/tcpd/libcouriertls.c:1.21
This allows Courier to interoperate with older mail servers and clients
that are still using SSLv2 when advertising or attempting to use
advertised STARTTLS capabilities.
This change modifies the following packages and bumps their PKGREVISIONs:
mail/courier-imap to 1.
mail/courier-mta to 6.
meta-pkgs/courier to 2.
net/couriertcpd to 1.
- When -inet6, explicitly set HAVE_IPV6=NO to avoid use of any inet6 APIs
Note: For entertainment purposes build a NetBSD distribution with
'MKINET=no' and see what breaks in pkgsrc
that called openldap's ldapsearch binary into a standalone binary. We
no longer need to copy "ldapsearch" into ${PKG_SYSCONFDIR} so that the
user can edit it.
Bump the PKGREVISION to 2.
This library was forked from CMS Sieve, it had existed here before.
Changes from fork:
libSieve 2.2.5
--------------
- Allowed CFLAGS to pass through Makefile.am
(thanks to Bernard Johnson).
- Use # instead of __STRING for assertion stringification.
- Fixed off-by-one when reallocing space for repeated headers
(thanks to Petri Laine).
libSieve 2.2.4
--------------
- Improved several test scripts.
- Fixed a memory leak in header parsing.
- Fixed a memory leak in comparator lookup.
- Accepted patch from Steffen Schuetz to respect :from in vacation action.
libSieve 2.2.3
--------------
- Numeric relational comparators were backwards.
libSieve 2.2.2
--------------
- Added more test scripts.
- Added support for RFC 3431 Relational comparators.
- Fixed segfault when parsing group syntax with empty address list.
libSieve 2.2.1
--------------
- Removed accidental dependency on Check.
- Added exception handling system.
- Added test runner scripts to sv_test.
libSieve 2.2.0
--------------
- Updated top-level README.
- Fixed address test not working.
- Fixed innocuous yet annoying GCC 4 warnings.
libSieve 2.1.13
---------------
- Fixed capabilities missingspaces.
- Fixed alloca.h in vasnprintf for FreeBSD.
libSieve 2.1.12
---------------
- Fixed namespace issue with vasnprintf.
libSieve 2.1.11
---------------
- Minor fixes to build with flex 2.5.33.
- Updated to Vacation draft 6.
- Updated to imap4flags.
- Dropped support for imapflags.
- Added callback for subaddress rather than
using a hardcoded user+mailbox format.
- Added a callback for debug messages.
- Regex is always built in now.
- Fixed multiline "text: string ." blocks.
libSieve 2.1.10
--------------
- Fixed sieve2_listextensions.
- Fixed segfault when client returns null
pointers from the getenvelope callback.
- Improved handling of extension require's.
- Fixed segfault when parsing zero length address.
libSieve 2.1.9
--------------
- Fixed subaddress, getenvelope and vacation.
- Added additional debugging messages.
- Added new and updated draft rfc's.
libSieve 2.1.8
--------------
- Created a testsuite of scripts and messages
to exercise RFC and Draft comformance.
- Fixed a memory allocation issue that prevented
the library from being used again after sieve2_free
had been called.
libSieve 2.1.7
--------------
- Rewrote the API again. I finally like it!
- Settled on the LGPL for all of my new code.
- Replaced the RSA MD5 implementation with
a public domain version.
- Documentation updated for the new API.
libSieve 2.1.6
--------------
- Added a set of error-retrieval functions.
libSieve 2.1.5
--------------
(formerly libsieve 2.2.0_pre3)
- CFLAGS now includes -Wall and compiles very
cleanly. Messages from lex/yacc are benign.
- Namespace cleanups: internal global functions
prefixed with "libsieve_" for consistency.
- Local regex library, borrowed from GNU glibc
2.3.2. Used under LGPL license version 2.1.
- Compiles under Win32 with Visual C++, with
many thanks to Brandon Knitter.
libSieve 2.1.4
--------------
(formerly libsieve 2.2.0_pre1)
- Sieve 2 API has begun. More changes should
be expected during the 2.1 series.
- All later-CMU code removed and/or replaced;
original licensing is now entirely old-CMU
style and augmented by the GNU GPL as it is
placed on all new code and applies to the
distribution as a whole from here forward.
- "Poor man's parsers" for RFC 2/822 addresses
and message headers replaced with lex/yacc.
- Extensive Valgrinding performed to identify
memory leaks; no known leaks remain.
- Many more changes, amounting to perhaps a
70% rewrite of all code.
libSieve 2.1.3
--------------
- Accepted patches from Timo Sirainen:
- Added function xstrconcat
- Changed strdup to strndup
- Changed strcpy to xstrcpy
- Changed uglies to xstrconcat
- Rebuild .y and .l in Makefile.am
- Changed int to size_t where applicable
- Added explicit casting where applicable
- Accepted patches from Oliver Tappe:
- Fixed examples for the web site
- Removed useless headers
- Now builds on BeOS
- Cleaned up lots of K&R style function declarations
libSieve 2.1.2
--------------
- Changed `timestamp` to $timestamp in configure scripts.
- Added missing autoconf and libtool scripts.
- Fixed a typo in index.html
libSieve 2.1.1
--------------
- First public release of the libSieve distribution.
- com_err library removed.
- Conversion to GNU autotools for the build process.
libSieve 2.1.0
--------------
- Forked from CMU Sieve 2.1.
- SourceForge project site and a new web site and CVS tree and prepared.
- Dependencies on libCyrus trimmed to a bare minimum.
* Assume a MIME message if Content-Type: header exists, even if
Mime-Version: header doesn't.
- IMAP: CREATE ns_prefix/box/ didn't work right when namespace prefix
existed.
- deliver: plugin {} settings were overriding settings from userdb.
- mbox: Expunging the first message might not have worked always
- PostgreSQL: If we can't connect to server, timeout queries after
a while instead of trying forever.
- Solaris: sendfile() support was broken and could have caused
100% CPU usage and the connection hanging.
And one more thing I forgot from NEWS file:
- IMAP: Fixed infinite loop in some situations
Based on patch provided by L. Schmidt in PR 36939.
Version 1.4.13:
- Added the set_sendmail.sh script by Gautam Iyer to the new scripts
subdirectory.
- Added the msmtpqueue scripts to the new scripts subdirectory.
- Make the search of an account by the envelope from address case insensitive.
Problem reported and fixed by Brandon Philips.
- Update the license of the source code to GPLv3 or later, and change the
license of the documentation to the GFDLv1.2 or later.
- Gnulib update to 2007-07-15.
Version 1.4.12:
- Handle the special envelope from address MAILER-DAEMON correctly: send
"MAIL FROM:<>" instead of "MAIL FROM:<MAILER-DAEMON>". Reported by
Andre Egerer.
- Improve the documentation for TLS vs. SSL. Thanks to Carlos Martin Nieto for
suggestions.
- Add documentation on how to find the right CA certificate for
tls_trust_file. Thanks to Bryan Kam for suggestions.
Version 1.4.11:
- Require either tls_trust_file or tls_certcheck=off for TLS sessions, so that
msmtp is not silently vulnerable to man-in-the-middle attacks.
- Do not use NTLM authentication automatically anymore unless TLS is active.
NTLM is not an open standard and must therefore be considered broken.
- Gnulib update 2007-04-07.
- Move build-aux files to separate directory build-aux.
- Provide a hstrerror() function for systems that lack getaddrinfo(), so that
gethostbyname() must be used instead, and do not provide hstrerror()
themselves. Needed for Solaris 2.6. Reported and tested by Chris Green.
Version 1.4.10:
- Updated copyright info to 2007.
- Gnulib update to 2007-01-10.
- From mpop: Switch to autoconf-2.61 and automake-1.10, to avoid problems with
configure trying to run "sh /usr/bin/install" where /usr/bin/install is not a
shell script on NetBSD. Reported by Jeremy C. Reed.
- From mpop: Remove the obsolete "extern int errno;" declaration. It does not
conform to POSIX and causes trouble. Thanks to Jeremy C. Reed for the patch.
- Added AC_SYS_LARGEFILE to configure.ac, for large file support. Removed the
unnecessary AC_C_CONST and AC_HEADER_STDC.
Version 1.4.9:
- Remove gnulib module nanosleep. This fixes more build problems.
Version 1.4.8:
- Gnulib update. There are no local changes anymore.
- Do not use nanosleep() on W32 anymore. Use Sleep() instead.
Do not use nanosleep() on DJGPP anymore. Use usleep() instead.
- Update gettext files to gettext-0.16.
- Improved the configure check for the OpenSSL libraries. This fixes a build
failure on Mac OS X. Reported by Michael Williams, who also tested the fix.
Thanks!
- Fix a bug in string_replace(). This bug did not affect msmtp.
- Gnulib update. Removes the initialization of pkgdata_DATA from
gnulib/Makefile.am, thanks to a fix by Bruno Haible. 'make install' will no
longer create an empty directory $(pkgdatadir) anymore (the default for
$(pkgdatadir) is /usr/local/share/msmtp). Reported by Roman Bogorodskiy.
Version 1.4.7:
- Gnulib update. The nanosleep module still differs from the official gnulib
source.
- Disable SSLv2 because it has known flaws. This only affects the OpenSSL
version because GNU TLS does not implement SSLv2.
- Add new command tls_force_sslv3 and option --tls-force-sslv3 to force
TLS/SSL version SSLv3. This is needed to use SSL with some old and broken
servers. Closes Debian bug #374610, reported by Marko Makela. Thanks to
Julien Louis for tracking this problem down and testing the patch.
- Changed detection of libgnutls so that it works with version >= 1.2.0 again.
- Improvements for the build system:
- Quote arguments of M4 macros.
- Use AC_LIB_HAVE_LINKFLAGS to detect libraries. Do not use *-config scripts
or pkg-config. This avoids problems that are reported in this thread:
http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/
1610/focus=1610 .
- Use HAVE_LIB* macros instead of USE_* or others, for consistency.
- Link with LIB_NANOSLEEP as determined by the gnulib nanosleep module. This
fixes build problems on Solaris. Reported by Daniel Rechsteiner. Thanks!
- Update to gettext-0.15.
- W32/DJGPP: Assure that all files are opened in binary mode. This seems to
also apply to socket connections, therefore it is necessary.
- Fix error message typo in check_account().
- DJGPP port: include missing header <fcntl.h> in msmtp.c
- Sync from mpop:
- Adapt --version output to the latest GNU conventions.
- Clean up #includes.
- Renamed os_env.[ch] to tools.[ch].
- Replace __MINGW__ with W32_NATIVE in os_env.h.
Version 1.4.6:
- Updated README.
- Minor documentation improvements.
- Do not set a default port for LMTP, because none is officially defined.
- Update gettext files to gettext-0.14.5.
- Another gnulib update, with the additional sys_select module and a patch to
the nanosleep module. See the mailing list gnulib-bugs for these patches
that are not (yet?) part of the official gnulib.
- Gnulib update.
- Improved --help text output.
- Improved error messages when logging to a logfile fails.
- Sync from mpop:
- Enable network connection timeouts on DJGPP/Watt32. Thanks to Gisle Vanem
for pointing out that this works just like it does with UNIX. The
DJGPP/Watt32 port is now on par with the UNIX port.
- Update README.dos.
- Don't check configuration file permissions on Cygwin.
- Renamed README.win32 to README.w32. Updated README.w32 and README.dos.
- Replace '#ifdef _WIN32' with '#ifdef W32_NATIVE', where W32_NATIVE is
defined in config.h if the following is true:
'#if (defined _WIN32 || defined __WIN32__) && !defined __CYGWIN__'.
The reason is that Cygwin defines _WIN32 nowadays, but we want the UNIX API
on that platform.
- Include config.h in list.c.
- Fix warnings emitted for configure.ac by autoreconf.
- lock_file(): If another process holds a lock on the file, then wait 1/10
second instead of 1 second before the next try.
- Gnulib update. Added nanosleep module.
- Improve error handling for file locking: differentiate between timeouts and
other errors.
- Improve checks for libraries in configure.ac. The ./configure options have
changed! See INSTALL for more info.
- Improve --version output.
- Add (optional) support for Internationalized Domain Names (IDN) via
GNU Libidn.
- Initialize TLS only if pop3_connect() succeeded.
- Move SSL_LIBS and GSASL_LIBS into LIBS; do not put them in Makefile.am.
- Fix memory leak in GNU SASL variant of pop3_auth().
(This change applies to smtp_auth(), GNU SASL variant.)
- Fix memory leak in GnuTLS variant of tls_cert_info_get().
- pop3_auth(), GNU SASL variant:
- Check if authentication data is complete before trying to start
authentication.
- Never call password_callback() when no user name is given.
(This change applies to smtp_auth(), GNU SASL variant.)
- Prevent a double free if an invalid argument to the auth command is given.
- Prevent a double free if an invalid argument to --auth is given.
- Replace crypto.[ch] with gnulib hmac-md5 module.
- Gnulib update. Add hmac-md5 module.
- net.c, tls.c: allow all network operations to be interrupted with CTRL+C,
and print an appropriate error message in this case.
(This change does not affect msmtp.)
- tls.c: if an error occurs, clean up *after* building the error message. This
fixes a potential segfault in the OpenSSL version of tls_start().
- net_open_socket(): don't let net_close_socket() clobber errno.
- net_open_socket(): print correct error message if getaddrinfo() returns
EAI_SYSTEM.
- Fixed comment in net.h.
- net_get_canonical_hostname(): Only call freeaddrinfo() if getaddrinfo()
succeeded. Reported and fixed by Raul Nunez de Arenas Coronado.
(This change does not affect msmtp.)
- Update copyright message.
- Gnulib update.
- Minor Win32 portability/cross-compilation updates.
- configure.ac: Rely on PKG_CHECK_MODULES to find GSASL, do not fall back to
manual detection, to prevent using an incompatible version of GSASL.
Problem reported by Jari Aalto.
- Gnulibs sysexit_.h now defines EX_OK; there's no need to use a locally
modified version anymore.
- Use a locally modified version of gnulibs sysexit_.h that defines EX_OK to
0, since the gnulib maintainers apparently won't fix this file.
Include the sysexits.h header after all other system headers to override
previous definitions of EX_OK on systems that use EX_OK for other purposes.
This is needed on Interix, reported by Ben Collver.
and to support the "inet6" option instead.
Remaining usage of USE_INET6 was solely for the benefit of the scripts
that generate the README.html files. Replace:
BUILD_DEFS+= USE_INET6
with
BUILD_DEFS+= IPV6_READY
and teach the README-generation tools to look for that instead.
This nukes USE_INET6 from pkgsrc proper. We leave a tiny bit of code
to continue to support USE_INET6 for pkgsrc-wip until it has been nuked
from there as well.
(CVE-2007-2958)
other changes:
-The potential crash bug in address completion was fixed
-The signature separator '--' is not joined on line wrapping now
* 2007-08-02: version 1.30
- implemented --listen-queue-size option (you usually don't need to set it
except for big sites).
- small fix to the 'native' syslogging implemented in 1.29
* 2007-07-23: version 1.29
- workaround for a possible crash with Sys::Syslog < 0.15 when syslog
messages were generated during syslog file rotation
- use the 'native' logging socket with Sys::Syslog >= 0.15 (Philipp Koller)
* 2007-06-21: version 1.28
- improved logging (postgrey is now more verbose, use the new --quiet
option if that bothers you)
- improved Exim support (see Debian bug #380257)
- workaround for a bug in Exchange dealing with temporary failures
(use DSN code 4.2.0 instead of the default 4.7.1)
- added 'policy-test' script for testing postgrey's performance or pre-seeding
the database
- fix logging of delayed, unresolveable clients in syslog (Andreas Metzler)
- more descriptive error message on DB failure (Adrian von Bidder)
- updated whitelist
- new homepage: http://postgrey.schweikert.ch/
v2.11.0 08/28/07
* fix "can't find message" error with new Yahoo internals
* replace html character entities in msg summaries
v2.10.9 07/28/07
* add safe-download option (Thanks Riley)
* add support for .dk Danish Yahoo (thanks Sune Jorgensen)
* better parsing of e-mail addresses in From_ line (thanks Eric Peterson)
* patch for retrieving multiple folders (thanks sniper11)
v2.10.8 06/08/07
* fix "can't find message" bug
v2.10.7 02/24/07
* fix an off-by-one bug in marking messages unread
* fix bug with msgs wrongly marked read (thanks Paul Marcos)
* fix EmptyTrashBefore / EmptyBulk bug (thanks Sridhar Boovaraghavan)
* fix quota parsing,but only when emptytrashbefore or emptybulk is chosen :(
* fix parsing of sender when they are in contact list
* mark messages unread in spool if they are (thanks Martin Fick)
* fix for new de no-messages message (thanks Ulrich Brandle)
without an explicity "-d" option. Maildrop was breaking because it
was not properly finding the user's home directory (in order to locate
~/.maildroprc). This breakage occurred sometime shortly before maildrop
was updated to 2.0.2 when I tried to make a single maildrop package
usable by both courier-mta and other mailers.
This fixes PR pkg/34275 by Greg Kerr.
Bump the PKGREVISION to 1.
2.185 2006-02-05
- no code changes, only test changes
- use UNLINK not CLEANUP for File::Temp::tempfile
2.184 2006-02-05
- no code changes, only test changes
- create tempdirs under t, in case TMPDIR or /tmp is noexec
(spotted by MST)
2.183 2006-12-14
- fix test skip error on Win32; claimed to skip 1, then skipped 2
thanks for the test report, Steffen Mueller!
2.182 2006-12-07
- skip/fix some tests on Win32
- move to/from finding to another method in ::SMTP
2.181 2006-11-25
- remove dependency on Class::Accessor::Fast, which broke its $VERSION
2.180 2006-08-23
- add support for TLS SMTP, based on a patch by Fayland Lam
2.171 2006-07-29
- improve tests and contents, giving up on Test::Without::Module
2.17 2006-07-28
- skip tests for optional functionality (bug 20740, eloy)
- fix typo in POD (thanks J. Cheetham!)
2.16 2006-07-24
- the without.t test no longer breaks if Test::Without::Module isn't there
2.15 2006-07-21
- append, to not print, to IO::All objects
- added simple test for message modifier (response to bug from ABH)
- use File::Spec->path for path, not ENV{PATH} (bug 20109, Simon Flack)
- use Symbol.pm, not global filehandles
- undef is never a valid message
- remove use warnings
- plan all tests
- improve testing
- add pod tests
2.11 2006-07-05
- fixed bug introduced in 2.10; message modifiers were broken
thanks ABH
2.10 2006-07-03
- improve portability of sendmail.t (rjbs)
- fix bugs with plugins outside Email::Send:: (rjbs)
- allow objects as mailers (rjbs)
- clarify documentation (rjbs)
- improve backwards compat with Email::Send 1 (see no-import.t) (rjbs)
Pkgsrc changes:
- Added security/gnupg as a required package. Without it, sa-update does not
work.
- Added requirement for p5-INET6 which may be needed for IPv6 nameservers.
Until now, this only worked because p5-Net-DNS already pulled in this
package.
- New option "inet6" (enabled by default) for switching off the requirement
for p5-INET6.
- Got rid of some backslashes in options.mk
- patch-ba and patch-bc correct discrepancies between the man page
and the code. Additionally, they adapt hard-coded paths to the actual
installation. Submitted upstream.
Relevant changes since version 3.2.1:
=====================================
3.2.3 is a major bug-fix release. Summary of changes:
- bug 5574: fix new setuid code to work with perl 5.6.1, and to support DCC and
Pyzor in all releases of perl
- bug 5107: change default 'user_scores_ldap_username' to be the null string,
allowing anonymous binding; fix 'schema' syntax error in LDAP config support
- zeroing an 'eval' rule's score did not stop it running. fix, thanks to
Richard Birkett <richard+spamassassin at musicbox.net>
- bug 5571: allow for new message ID format we have seen from Vista or Windows
2003 Server MAPI to avoid false positives
- bug 5397: RDNS_DYNAMIC should never fire on a PTR with 'static' in it; thanks
to Martin Blapp <mbr at freebsd.org>. bug 5563: RDNS_DYNAMIC rules use
order-dependent fields where it is unsafe to depend on this, fix. bug 5564:
__RDNS_DYNAMIC_IPADDR does not hit all of its test patterns, fix.
- bug 5475: fix FORGED_MUA_AOL_FROM to allow <*@{aol,cs}.*> addresses instead
of just <*@{aol,cs}.com>
3.2.2 is a minor bug-fix release. Summary of changes:
- bug 5548: Certain mail input can take a long time to scan with 100% CPU
utilisation, due to backtracking in a rule's regexp. fix
- bugs 5510, 5518, 5529: fix 'make test' when running as root, needed for CPAN
- bug 5419: kill -HUP of pidof spamd causes the ps name to change from spamd
to perl. fixed
- bug 5535: 'make test' errors in Windows caused by nonportable use of
getpwuid
- bug 5462: multiple DNS records for a host name should allow use of spamd -H
for load balancing installs to work
- bugs 5509, 5511: fix network lookup timeouts, where lookups were being lost
once a timeout was hit; also fix code to match documentation on
rbl_timeout's scaling and minimum duration of 1 second; and attempt to
collect already-received DNS responses when the timeout is reached; improve
related debugging output. Thanks to Mark Martinec
- bugs 5412, 5478, 5522: Fix problems using the spamc -x option with certain
other options; 'spamc -x -R' always returned 0, instead of the exit code, on
error. Bug 5478: in addition, 'spamc -x -e /command' would still run the
command, even if errors meant that the filtered text would be unavailable,
which contradicted -x.
- bug 5445: body eval tests defined in user_rules cause ugly 'Subroutine
_eval_tests_type11_prineg400_set3 redefined' warnings
- bug 5355: add in new entries for RegistrarBoundaries
- bug 5515: libsslspamc.so & libsslspamc.so can not build without -fPIC, but
we were picking up the wrong CFLAGS to do this.
- bug 5501: zero score for FH_HAS_XID
- bug 5449: allow_user_rules causes sa-compile / Rule2XSBody plugin to emit
spurious warnings; fix. also, add a new 'user_conf_parsing_end' plugin
hook, which is called after the per-user configuration is parsed
- bug 5182: update the sa-learn doc to mention that -u is only usable w/ sql
- bug 5534: fix harmless-but-ugly C compiler warning in sa-compile
Security fixes in this version:
MFSA 2007-27 Unescaped URIs passed to external programs
MFSA 2007-26 Privilege escalation through chrome-loaded about:blank windows
MFSA 2007-18 Crashes with evidence of memory corruption (rv:1.8.1.5)
For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.13.html
of an emulated operating system. Instead of proliferating things like
SUSE_VERSION_REQD, NETBSD_VERSION_REQD, SOLARIS_VERSION_REQD, etc., a
package can say:
EMUL_REQD= suse>=9.1 netbsd>=2.0 solaris>=10
all in one, succinct line.
* Bugfixes and changes since 0.91.1:
- libclamav/rtf.c: fix possible NULL dereference (bb#611)
- libclamav/ole2_extract.c: properly initialise hdr.max_block_no (bb#603)
- libclamav/htmlnorm.c: fix possible NULL dereference (bb#582),
thanks to Stefanos Stamatis
- libclamav/htmlnorm.c: fix call to tolower() (bb#580)
- libclamav/filetypes.c: some embedded PEs were not being detected
- clamav-milter: Fix compilation error on NetBSD2.0
- clamav-milter: Black-hole-mode no longer needs to be run as root
- libclamav/pdf.c: Bug 618, --block-max not always honoured
- libclamav/phishcheck.c, regex_list.c, phish_whitelist.c: make debug
output look better (patch from Sven)
- libclamav/phishcheck.c: Don't report phishing on broken urls containing
'>' in the hostname. (bb #619)
- libclamav, sigtool: add support for PUA databases (.hdu, .mdu, .ndu),
requested by Christoph
- clamscan: add --detect-pua
- clamd, clamd.conf: add DetectPUA
- freshclam/mirman.c: properly handle mirror access times (bb#606, only
outdated installations - three versions behind the latest one were
affected by this problem),
Reported by David F. Skoll <dfs*roaringpenguin.com>
- clamav-milter: Bug 614
- libclamav/pdf.c: Bug 608
- clamav-milter: SPF checking no longer experimental
- libclamav/phishcheck.c: workaround Solaris problem with regexec() [bb #598
]
- libclamav/matcher-ac.c: fix matching of patterns with prefixes and some
other issues spotted by Glen <daineng*gmail.com>
- clamav-milter/clamav-milter.c: Better use of res_init()
- clamav-milter/clamav-milter.c: HP-UX doesn't have EX_CONFIG, reported
by clam * ministry.se
- Fix order of HTML sanitizing, thanks Tomas Kuliavas.
- Remove unneeded PHP endings from files.
- Also support big5 when listed as 'big-5' in mbstring.
- Fixed html decoding in Eastern functions that use recode and
decoding of iso-2022 html emails.
Pkgsrc changes:
- Required version of p5-Crypt-OpenSSL-RSA changed to >=0.24.
Changes since version 0.26:
=====================================
Version 0.28
* fixed a bug with line-wrapping a signature at the wrong place
Version 0.27 - released 2007-07-25
* Sender signing policies are now better implemented
* Both Yahoo! DomainKeys signing policies and the under-development
IETF DKIM signing policies are supported
* Yahoo! DomainKeys policies can protect the Sender: header
* DKIM signing policies can protect the From: header
Look at Mail::DKIM::Verifier's fetch_author_policy() and
fetch_sender_policy() methods for hints.
Changes since last packaged version (1.3):
Version 2.0.3 - 27 July 2007
----------------------------
- Bug fix; part of the program's functionality didn't seem to work at all (did
nothing), due to problem when providing the results from searching methods to
processing methods
Version 2.0.2 - 30 June 2007
----------------------------
- Bug fix; message cache problem due to non-use of message UIDs
Version 2.0.1 - 29 June 2007
----------------------------
- Bug fix; character set problem with 1.x configuration files
- Bug fix; typo errors in the documentation
Version 2.0 - 27 June 2007
--------------------------
- New, more powerful, feature rich and yet simpler configuration file.
- Easier object oriented view of accounts and mailboxes.
- Simpler approach to filters, with infix logical or/and/not operators.
- No more need to mess with server search queries.
- More and simpler functions instead of few and complicated ones.
- More feature complete interface that can now even manipulate mailboxes.
- Regular expressions integrated into the searching interface.
- Effective caching subsystem when fetching message parts.
- Can still read old version 1.x configuration files for compatibility.
- Lua 5.1 and the PCRE library are now requirements.
Changes since 2.62:
* mimedefang-multiplexor.c: Relax the umask when creating the unprivileged
socket ("-a" command-line option.)
* mimedefang.c(eom): If we do not have a queue ID yet, try to obtain one
in eom. This is designed to improve operation with Postfix, which does
not assign a queue ID until after the first successful RCPT. Based on a
patch from Henrik Krohns.
* examples/init-script.in: Added MD_SKIP_BAD_RCPTS init script option
(suggested by John Nemeth)
* Remove support for OpenAntivirus. It's a dead product.
* mimedefang.pl.in(spam_assassin_status): Call $mail->finish() to prevent
temporary files from accumulating.
* redhat/mimedefang-init.in: Add configtest routine to check filter
syntax.
Changes since 2.61:
* A new "change_sender" action lets you change the envelope sender. Only
works with Sendmail/Milter 8.14.0 and newer!
* Clam interface code has been fixed to work properly with ClamAV 0.90
and later.
* Other minor improvements and bugfixes.
MILTER bugfix:
When a milter replied with ACCEPT at or before the first RCPT
command, the cleanup server would apply the non_smtpd_milters
setting as if the message was a local submission. Problem
reported by Jukka Salmi.
MILTER bugfix:
Problem with header updates after body updates. Reported by
Jose-Marcio Martins da Cruz.
MILTER robustness:
Assorted cleanups to harden error handling in the Postfix Milter
client.
SASL workaround for Postfix SMTP client:
Some non-Cyrus SASL SMTP servers require SASL login without
authzid (authoriZation ID), i.e. the client must send only the
authcid (authentiCation ID) + the authcid's password. This is
now the default Postfix SMTP client behavior.
Loopback TCP performance workaround:
Some systems exhibited poor SMTP and Milter performance with
loopback (127.0.0.1) connections. Problem reported by Mark
Martinec.
MILTER bugfix:
When a milter replied with ACCEPT at or before the first RCPT
command, the cleanup server would apply the non_smtpd_milters
setting as if the message was a local submission. Problem
reported by Jukka Salmi.
MILTER bugfix:
Problem with header updates after body updates. Reported by
Jose-Marcio Martins da Cruz.
MILTER robustness:
Assorted cleanups to harden error handling in the Postfix Milter
client.
SASL workaround for Postfix SMTP client:
Some non-Cyrus SASL SMTP servers require SASL login without
authzid (authoriZation ID), i.e. the client must send only the
+ Move a few more things around so that it looks more like a default
installation of Courier. In particular, the "cgi-bin" directory has
been renamed "webmail", and sbin/sqwebmaild to sbin/webmaild.
* Use address returned from authlib as return address of sent messages.
* Forbid rename folder if new folder name contains a dot.
* Quietly prune trailing ':' from the tail end of a header name.
* Trim whitespace from login username and new folder names.
+ Drop the uucp module from the default option set.
+ Patch the webmlm sources to not use "stdin" and "stdout" as function or
member names as they can be macros according to the C standards.
* webadmin: Remove check that prevents multiple virtual domains to
be aliased to the same account.
* webmlmd: new CGI module that can manage a Courier mailing list
created with couriermlm.
* Rewrite and code cleanup of couriermlm.
* Use domain name, not MX hostname, for looking up authenticated
SMTP passwords in esmtpauthclient
+ Remove BDB_LIB workaround which should already be handled by the wrapper
scripts and db1.builtin.mk.
* Plug some resource leaks in the maildir library code.
- The default configure scripts end up encoding '${prefix}' (note quotes)
at the start of /etc/pine.conf{,.fixed}. Use --with-system-pinerc and
--with-system-fixed-pinerc to explicitly set them to ${PKG_SYSCONFDIR}
Policyd is an anti-spam plugin for Postfix (written in C) that does
greylisting, sender-(envelope, SASL or host/ip)-based throttling (on
messages and/or volume per defined time unit), recipient rate limiting,
spamtrap monitoring/blacklisting, HELO auto blacklisting and HELO
randomization preventation.
Updated: 14 June 2007
imap-2006j is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 5 June 2007
imap-2006i is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
imapd now supports the CHILDREN and ESEARCH extensions.
imapd's attempt to return COPYUID/APPENDUID information for a traditional
UNIX (and MMDF) format mailbox when the mailbox is open by another process
has been declared to be a failure and is now revoked. It was subject to a
timing race, loss of which involved an expensive reset of the mailbox's UID
regime. Any imapd COPY or APPEND to a traditional UNIX or MMDF format that
is open by some other process will now no longer return COPYUID/APPEND.
Although this is technically in violation of RFC 4315, there is a loophole
in that document and the timing race/performance problem is worse.
Updated: 4 April 2007
imap-2006h is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 30 March 2007
imap-2006g is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 30 January 2007
imap-2006f is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
For the benefit of multi-threaded applications, use of strtok() has been
abolished in the c-client library. imapd and ipop3d stuff use it though.
The TOPS-20 and VAX/VMS ports still use strtok() since they don't use UNIX
threads.
This version has been test-built on Linux, Mac OS X, NeXT, Windows XP,
TOPS-20, and VAX/VMS. This will probably be the last test-build on VAX/VMS
since the system I use for that purpose is being shut down. I have no way
to test-build on DOS, legacy Mac OS (OS 9 and earlier), OS/2, or Windows CE;
and the builds on those systems are probably broken.
Updated: 26 January 2007
imap-2006e is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 6 December 2006
imap-2006d is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
The decomposition mapping, title-case mapping, and character widths tables
have been updated to comply with the Unicode 5.0 standard.
Prototypes for the utf8aux.c functions have been moved to a new utf8aux.h.
The general c-client modules now include c-client.h instead of the individual
files. Use of c-client.h instead of individual include files insulates
against future shuffling of include files.
Updated: 23 October 2006
imap-2006c is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
By popular request, if a user has a mix (or other dual-use) format INBOX,
it will no longer be listed as \NoInferiors. It's a bad idea to depend
upon this due to the case ambiguity issue, but it's there.
Updated: 26 September 2006
imap-2006b is a maintenance release, consisting entirely of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 15 September 2006
imap-2006a is a maintenance release, consisting entirely of bugfixes to
problems discovered in the release that affected a small number of users.
If it is necessary to build IPv4-only on one of the ports that has IPv6
preconfigured (ldb, lfd, lmd, lrh, lsu, osx, oxp), this can be done by
using IP6=4. You can't do IP=4 in the build command directly since these
ports set IP themselves; however, now instead of setting IP=6 they now set
IP=$(IP6).
Updated: 30 August 2006
imap-2006 is a major release. Programs written for imap-2004g should
build with this version with minor or no modification. imap-2005 was not
released except as development snapshots.
imap-2006 contains major extensions to its Unicode support. Searching and
sorting are now done with strings canonicalized to titlecase and decomposed
form. Among other things, this means that Latin letters with diacriticals
will now sort with the basic Latin letter, and case-independent searching of
such letters (e.g., German umlauts) now works. Previously, sorting was done
strictly by Unicode codepoint, and case-independence only worked with ASCII.
imapd now supports the UIDPLUS extension for mailboxes in unix, mmdf, mbx, mx,
and mix formats. UID EXPUNGE is fully implemented. Note that UIDPLUS is not
supported in the little-used drivers (mh, mtx, tenex) in which meaningful
APPENDUID/COPYUID data can not be returned. Refer to bugs.txt for more
details.
The new mix format is a dual-use mailbox format designed for performance and
reliability with large mailboxes. mix is documented in file mixfmt.txt.
SSL/TLS certificate validation on UNIX now checks the alternative names in the
certificate if the CN does not match.
The new /tls-sslv23 flag in a mailbox name causes a TLS session to use the
(incorrect) SSLv23 client method instead of the TLSv1 client method. Some
broken servers use the SSLv23 server method, and this flag works around that
problem. WARNING: use of this flag will cause TLS negotiation to fail with
a server which uses the proper TLSv1 server method. Additionally, there are
known security risks in SSLv2; so users should be suspicious if this switch
suddenly becomes necesary.
The silly mailbox flag combination /ssl/tls is now rejected as an invalid
remote specification. Previous versions tried to negotiate TLS over an SSL
session; even if the server permitted such a thing it couldn't work.
The memory management of several drivers has been redesigned to consume less
memory and hopefully be faster.
The private.data member of the MESSAGECACHE (elt) has been replaced with
a union that contains private.spare.data and private.spare.ptr, the latter
being a pointer.
A new FT_RETURNSTRINGSTRUCT flag has been added for mail_fetch_body() and
mail_fetch_text() calls. If this flag is set, *and* if the function returns
NIL, then the requested string data is available on a stringstruct on
stream->private.string. This is a special hack for the IMAP and POP servers
and is subject to incompatible change. The result is a major performance
improvement in the servers with the mbx driver, particularly with large
messages.
into the Makefiles of the packages that include it:
(1) PKGNAME and PKG_SUPPORTED_OPTIONS clearly no longer need to be
defined since the only code that used it in Makefile.common was
removed.
(2) Package Makefiles need to properly define PKG_OPTIONS_VAR and
PKG_SUPPORTED_OPTIONS prior to including bsd.options.mk. Set
them to the appropriate values to match the orginal names from
before the botched migration.
- deliver: v1.0.2's bounce fix caused message to be always saved to
INBOX even if Sieve script had discard, reject or redirect commands.
- LDAP: auth_bind=yes and empty auth_bind_userdn leaked memory
- ACL plugin: If user was given i (insert) right for a mailbox, but
not all s/t/w (seen, deleted, other flags) rights, COPY and APPEND
commands weren't supposed to allow saving those flags. This is
technically a security fix, but it's unlikely this caused problems
for anyone.
- ACL plugin: i (insert) right didn't work unless user was also given
l (lookup) right.
- Solaris: Fixed filesystem quota for autofs mounts.
* tmda-ofmipd now has native STARTTLS and SSL support courtesy of
Stephen Warren. The new options are '--tls', '--ssl', '--ssl-key',
and '--ssl-crt'. Note that the tlslite Python module needs to be
installed to use this feature. For more information, see the
"Builtin SSL/TLS" section of http://wiki.tmda.net/TmdaOfmipdHowto
* Fixed a minor bug that prevented the use of both SMTPSSL and
SMTPAUTH together.
part of an email message. The syntax for date headers is clearly laid out.
Stil, even a perfectly planned world has storms. The truth is, many programs
get it wrong. Very wrong. Or, they don't include a "Date:" header at all.
This often forces you to look elsewhere for the date, and hoping to find
something.
For this reason, the tedious process of looking for a valid date has been
encapsulated in this software. Further, the process of creating RFC compliant
date strings is also found in this software.
Imported from pkgsrc-wip and packaged by kuli0020@umn.edu
multiple Email mailers. The goal if this software is to be small and simple,
easy to use, and easy to extend.
Mailers
Mailers are simple to use. You can pre-load mailers when using "Email::Send".
use Email::Send qw[SMTP NNTP];
If you don't preload a mailer before you use it in the "send" function, it
will by dynamically loaded. Mailers are named either relative to the
"Email::Send" namespace, or fully qualified. For example, when using the "IO"
mailer, "Email::Send" first tries to load "Email::Send::IO". If that fails, an
attempt is made to load "IO". If that final attempt fails, "Email::Send" will
throw an exception.
WWW: http://search.cpan.org/dist/Email-Send/
Imported from pkgsrc-wip and packaged by kuli0020@umn.edu
addresses in strings and returns a list of Email::Address objects
found. The goal of this software is to be correct, fast, and API
compatible with the MailTools version.
Imported from pkgsrc-wip and packaged by kuli0020@umn.edu
binary-only packages that require binary "emulation" on the native
operating system. Please see pkgsrc/mk/emulator/README for more
details.
* Teach the plist framework to automatically use any existing
PLIST.${EMUL_PLATFORM} as part of the default PLIST_SRC definition.
* Convert all of the binary-only packages in pkgsrc to use the
emulator framework. Most of them have been tested to install and
deinstall correctly. This involves the following cleanup actions:
* Remove use of custom PLIST code and use PLIST.${EMUL_PLATFORM}
more consistently.
* Simplify packages by using default INSTALL and DEINSTALL scripts
instead of custom INSTALL/DEINSTALL code.
* Remove "SUSE_COMPAT32" and "PKG_OPTIONS.suse" from pkgsrc.
Packages only need to state exactly which emulations they support,
and the framework handles any i386-on-x86_64 or sparc-on-sparc64
uses.
* Remove "USE_NATIVE_LINUX" from pkgsrc. The framework will
automatically detect when the package is installing on Linux.
Specific changes to packages include:
* Bump the PKGREVISIONs for all of the suse100* and suse91* packages
due to changes in the +INSTALL/+DEINSTALL scripts used in all
of the packages.
* Remove pkgsrc/emulators/suse_linux, which is unused by any
packages.
* cad/lc -- remove custom code to create the distinfo file for
all supported platforms; just use "emul-fetch" and "emul-distinfo"
instead.
* lang/Cg-compiler -- install the shared libraries under ${EMULDIR}
instead of ${PREFIX}/lib so that compiled programs will find
the shared libraries.
* mail/thunderbird-bin-nightly -- update to latest binary
distributions for supported platforms.
* multimedia/ns-flash -- update Linux version to 9.0.48 as the
older version is no longer available for interactive fetch.
* security/uvscan -- set LD_LIBRARY_PATH explicitly so that
it's not necessary to install library symlinks into
${EMULDIR}/usr/local/lib.
* www/firefox-bin-flash -- update Linux version to 9.0.48 as the
older version is no longer available for interactive fetch.
