* Assume a MIME message if Content-Type: header exists, even if
Mime-Version: header doesn't.
- IMAP: CREATE ns_prefix/box/ didn't work right when namespace prefix
existed.
- deliver: plugin {} settings were overriding settings from userdb.
- mbox: Expunging the first message might not have worked always
- PostgreSQL: If we can't connect to server, timeout queries after
a while instead of trying forever.
- Solaris: sendfile() support was broken and could have caused
100% CPU usage and the connection hanging.
And one more thing I forgot from NEWS file:
- IMAP: Fixed infinite loop in some situations
Based on patch provided by L. Schmidt in PR 36939.
Version 1.4.13:
- Added the set_sendmail.sh script by Gautam Iyer to the new scripts
subdirectory.
- Added the msmtpqueue scripts to the new scripts subdirectory.
- Make the search of an account by the envelope from address case insensitive.
Problem reported and fixed by Brandon Philips.
- Update the license of the source code to GPLv3 or later, and change the
license of the documentation to the GFDLv1.2 or later.
- Gnulib update to 2007-07-15.
Version 1.4.12:
- Handle the special envelope from address MAILER-DAEMON correctly: send
"MAIL FROM:<>" instead of "MAIL FROM:<MAILER-DAEMON>". Reported by
Andre Egerer.
- Improve the documentation for TLS vs. SSL. Thanks to Carlos Martin Nieto for
suggestions.
- Add documentation on how to find the right CA certificate for
tls_trust_file. Thanks to Bryan Kam for suggestions.
Version 1.4.11:
- Require either tls_trust_file or tls_certcheck=off for TLS sessions, so that
msmtp is not silently vulnerable to man-in-the-middle attacks.
- Do not use NTLM authentication automatically anymore unless TLS is active.
NTLM is not an open standard and must therefore be considered broken.
- Gnulib update 2007-04-07.
- Move build-aux files to separate directory build-aux.
- Provide a hstrerror() function for systems that lack getaddrinfo(), so that
gethostbyname() must be used instead, and do not provide hstrerror()
themselves. Needed for Solaris 2.6. Reported and tested by Chris Green.
Version 1.4.10:
- Updated copyright info to 2007.
- Gnulib update to 2007-01-10.
- From mpop: Switch to autoconf-2.61 and automake-1.10, to avoid problems with
configure trying to run "sh /usr/bin/install" where /usr/bin/install is not a
shell script on NetBSD. Reported by Jeremy C. Reed.
- From mpop: Remove the obsolete "extern int errno;" declaration. It does not
conform to POSIX and causes trouble. Thanks to Jeremy C. Reed for the patch.
- Added AC_SYS_LARGEFILE to configure.ac, for large file support. Removed the
unnecessary AC_C_CONST and AC_HEADER_STDC.
Version 1.4.9:
- Remove gnulib module nanosleep. This fixes more build problems.
Version 1.4.8:
- Gnulib update. There are no local changes anymore.
- Do not use nanosleep() on W32 anymore. Use Sleep() instead.
Do not use nanosleep() on DJGPP anymore. Use usleep() instead.
- Update gettext files to gettext-0.16.
- Improved the configure check for the OpenSSL libraries. This fixes a build
failure on Mac OS X. Reported by Michael Williams, who also tested the fix.
Thanks!
- Fix a bug in string_replace(). This bug did not affect msmtp.
- Gnulib update. Removes the initialization of pkgdata_DATA from
gnulib/Makefile.am, thanks to a fix by Bruno Haible. 'make install' will no
longer create an empty directory $(pkgdatadir) anymore (the default for
$(pkgdatadir) is /usr/local/share/msmtp). Reported by Roman Bogorodskiy.
Version 1.4.7:
- Gnulib update. The nanosleep module still differs from the official gnulib
source.
- Disable SSLv2 because it has known flaws. This only affects the OpenSSL
version because GNU TLS does not implement SSLv2.
- Add new command tls_force_sslv3 and option --tls-force-sslv3 to force
TLS/SSL version SSLv3. This is needed to use SSL with some old and broken
servers. Closes Debian bug #374610, reported by Marko Makela. Thanks to
Julien Louis for tracking this problem down and testing the patch.
- Changed detection of libgnutls so that it works with version >= 1.2.0 again.
- Improvements for the build system:
- Quote arguments of M4 macros.
- Use AC_LIB_HAVE_LINKFLAGS to detect libraries. Do not use *-config scripts
or pkg-config. This avoids problems that are reported in this thread:
http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/
1610/focus=1610 .
- Use HAVE_LIB* macros instead of USE_* or others, for consistency.
- Link with LIB_NANOSLEEP as determined by the gnulib nanosleep module. This
fixes build problems on Solaris. Reported by Daniel Rechsteiner. Thanks!
- Update to gettext-0.15.
- W32/DJGPP: Assure that all files are opened in binary mode. This seems to
also apply to socket connections, therefore it is necessary.
- Fix error message typo in check_account().
- DJGPP port: include missing header <fcntl.h> in msmtp.c
- Sync from mpop:
- Adapt --version output to the latest GNU conventions.
- Clean up #includes.
- Renamed os_env.[ch] to tools.[ch].
- Replace __MINGW__ with W32_NATIVE in os_env.h.
Version 1.4.6:
- Updated README.
- Minor documentation improvements.
- Do not set a default port for LMTP, because none is officially defined.
- Update gettext files to gettext-0.14.5.
- Another gnulib update, with the additional sys_select module and a patch to
the nanosleep module. See the mailing list gnulib-bugs for these patches
that are not (yet?) part of the official gnulib.
- Gnulib update.
- Improved --help text output.
- Improved error messages when logging to a logfile fails.
- Sync from mpop:
- Enable network connection timeouts on DJGPP/Watt32. Thanks to Gisle Vanem
for pointing out that this works just like it does with UNIX. The
DJGPP/Watt32 port is now on par with the UNIX port.
- Update README.dos.
- Don't check configuration file permissions on Cygwin.
- Renamed README.win32 to README.w32. Updated README.w32 and README.dos.
- Replace '#ifdef _WIN32' with '#ifdef W32_NATIVE', where W32_NATIVE is
defined in config.h if the following is true:
'#if (defined _WIN32 || defined __WIN32__) && !defined __CYGWIN__'.
The reason is that Cygwin defines _WIN32 nowadays, but we want the UNIX API
on that platform.
- Include config.h in list.c.
- Fix warnings emitted for configure.ac by autoreconf.
- lock_file(): If another process holds a lock on the file, then wait 1/10
second instead of 1 second before the next try.
- Gnulib update. Added nanosleep module.
- Improve error handling for file locking: differentiate between timeouts and
other errors.
- Improve checks for libraries in configure.ac. The ./configure options have
changed! See INSTALL for more info.
- Improve --version output.
- Add (optional) support for Internationalized Domain Names (IDN) via
GNU Libidn.
- Initialize TLS only if pop3_connect() succeeded.
- Move SSL_LIBS and GSASL_LIBS into LIBS; do not put them in Makefile.am.
- Fix memory leak in GNU SASL variant of pop3_auth().
(This change applies to smtp_auth(), GNU SASL variant.)
- Fix memory leak in GnuTLS variant of tls_cert_info_get().
- pop3_auth(), GNU SASL variant:
- Check if authentication data is complete before trying to start
authentication.
- Never call password_callback() when no user name is given.
(This change applies to smtp_auth(), GNU SASL variant.)
- Prevent a double free if an invalid argument to the auth command is given.
- Prevent a double free if an invalid argument to --auth is given.
- Replace crypto.[ch] with gnulib hmac-md5 module.
- Gnulib update. Add hmac-md5 module.
- net.c, tls.c: allow all network operations to be interrupted with CTRL+C,
and print an appropriate error message in this case.
(This change does not affect msmtp.)
- tls.c: if an error occurs, clean up *after* building the error message. This
fixes a potential segfault in the OpenSSL version of tls_start().
- net_open_socket(): don't let net_close_socket() clobber errno.
- net_open_socket(): print correct error message if getaddrinfo() returns
EAI_SYSTEM.
- Fixed comment in net.h.
- net_get_canonical_hostname(): Only call freeaddrinfo() if getaddrinfo()
succeeded. Reported and fixed by Raul Nunez de Arenas Coronado.
(This change does not affect msmtp.)
- Update copyright message.
- Gnulib update.
- Minor Win32 portability/cross-compilation updates.
- configure.ac: Rely on PKG_CHECK_MODULES to find GSASL, do not fall back to
manual detection, to prevent using an incompatible version of GSASL.
Problem reported by Jari Aalto.
- Gnulibs sysexit_.h now defines EX_OK; there's no need to use a locally
modified version anymore.
- Use a locally modified version of gnulibs sysexit_.h that defines EX_OK to
0, since the gnulib maintainers apparently won't fix this file.
Include the sysexits.h header after all other system headers to override
previous definitions of EX_OK on systems that use EX_OK for other purposes.
This is needed on Interix, reported by Ben Collver.
and to support the "inet6" option instead.
Remaining usage of USE_INET6 was solely for the benefit of the scripts
that generate the README.html files. Replace:
BUILD_DEFS+= USE_INET6
with
BUILD_DEFS+= IPV6_READY
and teach the README-generation tools to look for that instead.
This nukes USE_INET6 from pkgsrc proper. We leave a tiny bit of code
to continue to support USE_INET6 for pkgsrc-wip until it has been nuked
from there as well.
(CVE-2007-2958)
other changes:
-The potential crash bug in address completion was fixed
-The signature separator '--' is not joined on line wrapping now
* 2007-08-02: version 1.30
- implemented --listen-queue-size option (you usually don't need to set it
except for big sites).
- small fix to the 'native' syslogging implemented in 1.29
* 2007-07-23: version 1.29
- workaround for a possible crash with Sys::Syslog < 0.15 when syslog
messages were generated during syslog file rotation
- use the 'native' logging socket with Sys::Syslog >= 0.15 (Philipp Koller)
* 2007-06-21: version 1.28
- improved logging (postgrey is now more verbose, use the new --quiet
option if that bothers you)
- improved Exim support (see Debian bug #380257)
- workaround for a bug in Exchange dealing with temporary failures
(use DSN code 4.2.0 instead of the default 4.7.1)
- added 'policy-test' script for testing postgrey's performance or pre-seeding
the database
- fix logging of delayed, unresolveable clients in syslog (Andreas Metzler)
- more descriptive error message on DB failure (Adrian von Bidder)
- updated whitelist
- new homepage: http://postgrey.schweikert.ch/
v2.11.0 08/28/07
* fix "can't find message" error with new Yahoo internals
* replace html character entities in msg summaries
v2.10.9 07/28/07
* add safe-download option (Thanks Riley)
* add support for .dk Danish Yahoo (thanks Sune Jorgensen)
* better parsing of e-mail addresses in From_ line (thanks Eric Peterson)
* patch for retrieving multiple folders (thanks sniper11)
v2.10.8 06/08/07
* fix "can't find message" bug
v2.10.7 02/24/07
* fix an off-by-one bug in marking messages unread
* fix bug with msgs wrongly marked read (thanks Paul Marcos)
* fix EmptyTrashBefore / EmptyBulk bug (thanks Sridhar Boovaraghavan)
* fix quota parsing,but only when emptytrashbefore or emptybulk is chosen :(
* fix parsing of sender when they are in contact list
* mark messages unread in spool if they are (thanks Martin Fick)
* fix for new de no-messages message (thanks Ulrich Brandle)
without an explicity "-d" option. Maildrop was breaking because it
was not properly finding the user's home directory (in order to locate
~/.maildroprc). This breakage occurred sometime shortly before maildrop
was updated to 2.0.2 when I tried to make a single maildrop package
usable by both courier-mta and other mailers.
This fixes PR pkg/34275 by Greg Kerr.
Bump the PKGREVISION to 1.
2.185 2006-02-05
- no code changes, only test changes
- use UNLINK not CLEANUP for File::Temp::tempfile
2.184 2006-02-05
- no code changes, only test changes
- create tempdirs under t, in case TMPDIR or /tmp is noexec
(spotted by MST)
2.183 2006-12-14
- fix test skip error on Win32; claimed to skip 1, then skipped 2
thanks for the test report, Steffen Mueller!
2.182 2006-12-07
- skip/fix some tests on Win32
- move to/from finding to another method in ::SMTP
2.181 2006-11-25
- remove dependency on Class::Accessor::Fast, which broke its $VERSION
2.180 2006-08-23
- add support for TLS SMTP, based on a patch by Fayland Lam
2.171 2006-07-29
- improve tests and contents, giving up on Test::Without::Module
2.17 2006-07-28
- skip tests for optional functionality (bug 20740, eloy)
- fix typo in POD (thanks J. Cheetham!)
2.16 2006-07-24
- the without.t test no longer breaks if Test::Without::Module isn't there
2.15 2006-07-21
- append, to not print, to IO::All objects
- added simple test for message modifier (response to bug from ABH)
- use File::Spec->path for path, not ENV{PATH} (bug 20109, Simon Flack)
- use Symbol.pm, not global filehandles
- undef is never a valid message
- remove use warnings
- plan all tests
- improve testing
- add pod tests
2.11 2006-07-05
- fixed bug introduced in 2.10; message modifiers were broken
thanks ABH
2.10 2006-07-03
- improve portability of sendmail.t (rjbs)
- fix bugs with plugins outside Email::Send:: (rjbs)
- allow objects as mailers (rjbs)
- clarify documentation (rjbs)
- improve backwards compat with Email::Send 1 (see no-import.t) (rjbs)
Pkgsrc changes:
- Added security/gnupg as a required package. Without it, sa-update does not
work.
- Added requirement for p5-INET6 which may be needed for IPv6 nameservers.
Until now, this only worked because p5-Net-DNS already pulled in this
package.
- New option "inet6" (enabled by default) for switching off the requirement
for p5-INET6.
- Got rid of some backslashes in options.mk
- patch-ba and patch-bc correct discrepancies between the man page
and the code. Additionally, they adapt hard-coded paths to the actual
installation. Submitted upstream.
Relevant changes since version 3.2.1:
=====================================
3.2.3 is a major bug-fix release. Summary of changes:
- bug 5574: fix new setuid code to work with perl 5.6.1, and to support DCC and
Pyzor in all releases of perl
- bug 5107: change default 'user_scores_ldap_username' to be the null string,
allowing anonymous binding; fix 'schema' syntax error in LDAP config support
- zeroing an 'eval' rule's score did not stop it running. fix, thanks to
Richard Birkett <richard+spamassassin at musicbox.net>
- bug 5571: allow for new message ID format we have seen from Vista or Windows
2003 Server MAPI to avoid false positives
- bug 5397: RDNS_DYNAMIC should never fire on a PTR with 'static' in it; thanks
to Martin Blapp <mbr at freebsd.org>. bug 5563: RDNS_DYNAMIC rules use
order-dependent fields where it is unsafe to depend on this, fix. bug 5564:
__RDNS_DYNAMIC_IPADDR does not hit all of its test patterns, fix.
- bug 5475: fix FORGED_MUA_AOL_FROM to allow <*@{aol,cs}.*> addresses instead
of just <*@{aol,cs}.com>
3.2.2 is a minor bug-fix release. Summary of changes:
- bug 5548: Certain mail input can take a long time to scan with 100% CPU
utilisation, due to backtracking in a rule's regexp. fix
- bugs 5510, 5518, 5529: fix 'make test' when running as root, needed for CPAN
- bug 5419: kill -HUP of pidof spamd causes the ps name to change from spamd
to perl. fixed
- bug 5535: 'make test' errors in Windows caused by nonportable use of
getpwuid
- bug 5462: multiple DNS records for a host name should allow use of spamd -H
for load balancing installs to work
- bugs 5509, 5511: fix network lookup timeouts, where lookups were being lost
once a timeout was hit; also fix code to match documentation on
rbl_timeout's scaling and minimum duration of 1 second; and attempt to
collect already-received DNS responses when the timeout is reached; improve
related debugging output. Thanks to Mark Martinec
- bugs 5412, 5478, 5522: Fix problems using the spamc -x option with certain
other options; 'spamc -x -R' always returned 0, instead of the exit code, on
error. Bug 5478: in addition, 'spamc -x -e /command' would still run the
command, even if errors meant that the filtered text would be unavailable,
which contradicted -x.
- bug 5445: body eval tests defined in user_rules cause ugly 'Subroutine
_eval_tests_type11_prineg400_set3 redefined' warnings
- bug 5355: add in new entries for RegistrarBoundaries
- bug 5515: libsslspamc.so & libsslspamc.so can not build without -fPIC, but
we were picking up the wrong CFLAGS to do this.
- bug 5501: zero score for FH_HAS_XID
- bug 5449: allow_user_rules causes sa-compile / Rule2XSBody plugin to emit
spurious warnings; fix. also, add a new 'user_conf_parsing_end' plugin
hook, which is called after the per-user configuration is parsed
- bug 5182: update the sa-learn doc to mention that -u is only usable w/ sql
- bug 5534: fix harmless-but-ugly C compiler warning in sa-compile
Security fixes in this version:
MFSA 2007-27 Unescaped URIs passed to external programs
MFSA 2007-26 Privilege escalation through chrome-loaded about:blank windows
MFSA 2007-18 Crashes with evidence of memory corruption (rv:1.8.1.5)
For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.13.html
of an emulated operating system. Instead of proliferating things like
SUSE_VERSION_REQD, NETBSD_VERSION_REQD, SOLARIS_VERSION_REQD, etc., a
package can say:
EMUL_REQD= suse>=9.1 netbsd>=2.0 solaris>=10
all in one, succinct line.
* Bugfixes and changes since 0.91.1:
- libclamav/rtf.c: fix possible NULL dereference (bb#611)
- libclamav/ole2_extract.c: properly initialise hdr.max_block_no (bb#603)
- libclamav/htmlnorm.c: fix possible NULL dereference (bb#582),
thanks to Stefanos Stamatis
- libclamav/htmlnorm.c: fix call to tolower() (bb#580)
- libclamav/filetypes.c: some embedded PEs were not being detected
- clamav-milter: Fix compilation error on NetBSD2.0
- clamav-milter: Black-hole-mode no longer needs to be run as root
- libclamav/pdf.c: Bug 618, --block-max not always honoured
- libclamav/phishcheck.c, regex_list.c, phish_whitelist.c: make debug
output look better (patch from Sven)
- libclamav/phishcheck.c: Don't report phishing on broken urls containing
'>' in the hostname. (bb #619)
- libclamav, sigtool: add support for PUA databases (.hdu, .mdu, .ndu),
requested by Christoph
- clamscan: add --detect-pua
- clamd, clamd.conf: add DetectPUA
- freshclam/mirman.c: properly handle mirror access times (bb#606, only
outdated installations - three versions behind the latest one were
affected by this problem),
Reported by David F. Skoll <dfs*roaringpenguin.com>
- clamav-milter: Bug 614
- libclamav/pdf.c: Bug 608
- clamav-milter: SPF checking no longer experimental
- libclamav/phishcheck.c: workaround Solaris problem with regexec() [bb #598
]
- libclamav/matcher-ac.c: fix matching of patterns with prefixes and some
other issues spotted by Glen <daineng*gmail.com>
- clamav-milter/clamav-milter.c: Better use of res_init()
- clamav-milter/clamav-milter.c: HP-UX doesn't have EX_CONFIG, reported
by clam * ministry.se
- Fix order of HTML sanitizing, thanks Tomas Kuliavas.
- Remove unneeded PHP endings from files.
- Also support big5 when listed as 'big-5' in mbstring.
- Fixed html decoding in Eastern functions that use recode and
decoding of iso-2022 html emails.
Pkgsrc changes:
- Required version of p5-Crypt-OpenSSL-RSA changed to >=0.24.
Changes since version 0.26:
=====================================
Version 0.28
* fixed a bug with line-wrapping a signature at the wrong place
Version 0.27 - released 2007-07-25
* Sender signing policies are now better implemented
* Both Yahoo! DomainKeys signing policies and the under-development
IETF DKIM signing policies are supported
* Yahoo! DomainKeys policies can protect the Sender: header
* DKIM signing policies can protect the From: header
Look at Mail::DKIM::Verifier's fetch_author_policy() and
fetch_sender_policy() methods for hints.
Changes since last packaged version (1.3):
Version 2.0.3 - 27 July 2007
----------------------------
- Bug fix; part of the program's functionality didn't seem to work at all (did
nothing), due to problem when providing the results from searching methods to
processing methods
Version 2.0.2 - 30 June 2007
----------------------------
- Bug fix; message cache problem due to non-use of message UIDs
Version 2.0.1 - 29 June 2007
----------------------------
- Bug fix; character set problem with 1.x configuration files
- Bug fix; typo errors in the documentation
Version 2.0 - 27 June 2007
--------------------------
- New, more powerful, feature rich and yet simpler configuration file.
- Easier object oriented view of accounts and mailboxes.
- Simpler approach to filters, with infix logical or/and/not operators.
- No more need to mess with server search queries.
- More and simpler functions instead of few and complicated ones.
- More feature complete interface that can now even manipulate mailboxes.
- Regular expressions integrated into the searching interface.
- Effective caching subsystem when fetching message parts.
- Can still read old version 1.x configuration files for compatibility.
- Lua 5.1 and the PCRE library are now requirements.
Changes since 2.62:
* mimedefang-multiplexor.c: Relax the umask when creating the unprivileged
socket ("-a" command-line option.)
* mimedefang.c(eom): If we do not have a queue ID yet, try to obtain one
in eom. This is designed to improve operation with Postfix, which does
not assign a queue ID until after the first successful RCPT. Based on a
patch from Henrik Krohns.
* examples/init-script.in: Added MD_SKIP_BAD_RCPTS init script option
(suggested by John Nemeth)
* Remove support for OpenAntivirus. It's a dead product.
* mimedefang.pl.in(spam_assassin_status): Call $mail->finish() to prevent
temporary files from accumulating.
* redhat/mimedefang-init.in: Add configtest routine to check filter
syntax.
Changes since 2.61:
* A new "change_sender" action lets you change the envelope sender. Only
works with Sendmail/Milter 8.14.0 and newer!
* Clam interface code has been fixed to work properly with ClamAV 0.90
and later.
* Other minor improvements and bugfixes.
MILTER bugfix:
When a milter replied with ACCEPT at or before the first RCPT
command, the cleanup server would apply the non_smtpd_milters
setting as if the message was a local submission. Problem
reported by Jukka Salmi.
MILTER bugfix:
Problem with header updates after body updates. Reported by
Jose-Marcio Martins da Cruz.
MILTER robustness:
Assorted cleanups to harden error handling in the Postfix Milter
client.
SASL workaround for Postfix SMTP client:
Some non-Cyrus SASL SMTP servers require SASL login without
authzid (authoriZation ID), i.e. the client must send only the
authcid (authentiCation ID) + the authcid's password. This is
now the default Postfix SMTP client behavior.
Loopback TCP performance workaround:
Some systems exhibited poor SMTP and Milter performance with
loopback (127.0.0.1) connections. Problem reported by Mark
Martinec.
MILTER bugfix:
When a milter replied with ACCEPT at or before the first RCPT
command, the cleanup server would apply the non_smtpd_milters
setting as if the message was a local submission. Problem
reported by Jukka Salmi.
MILTER bugfix:
Problem with header updates after body updates. Reported by
Jose-Marcio Martins da Cruz.
MILTER robustness:
Assorted cleanups to harden error handling in the Postfix Milter
client.
SASL workaround for Postfix SMTP client:
Some non-Cyrus SASL SMTP servers require SASL login without
authzid (authoriZation ID), i.e. the client must send only the
+ Move a few more things around so that it looks more like a default
installation of Courier. In particular, the "cgi-bin" directory has
been renamed "webmail", and sbin/sqwebmaild to sbin/webmaild.
* Use address returned from authlib as return address of sent messages.
* Forbid rename folder if new folder name contains a dot.
* Quietly prune trailing ':' from the tail end of a header name.
* Trim whitespace from login username and new folder names.
+ Drop the uucp module from the default option set.
+ Patch the webmlm sources to not use "stdin" and "stdout" as function or
member names as they can be macros according to the C standards.
* webadmin: Remove check that prevents multiple virtual domains to
be aliased to the same account.
* webmlmd: new CGI module that can manage a Courier mailing list
created with couriermlm.
* Rewrite and code cleanup of couriermlm.
* Use domain name, not MX hostname, for looking up authenticated
SMTP passwords in esmtpauthclient
+ Remove BDB_LIB workaround which should already be handled by the wrapper
scripts and db1.builtin.mk.
* Plug some resource leaks in the maildir library code.
- The default configure scripts end up encoding '${prefix}' (note quotes)
at the start of /etc/pine.conf{,.fixed}. Use --with-system-pinerc and
--with-system-fixed-pinerc to explicitly set them to ${PKG_SYSCONFDIR}
Policyd is an anti-spam plugin for Postfix (written in C) that does
greylisting, sender-(envelope, SASL or host/ip)-based throttling (on
messages and/or volume per defined time unit), recipient rate limiting,
spamtrap monitoring/blacklisting, HELO auto blacklisting and HELO
randomization preventation.
Updated: 14 June 2007
imap-2006j is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 5 June 2007
imap-2006i is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
imapd now supports the CHILDREN and ESEARCH extensions.
imapd's attempt to return COPYUID/APPENDUID information for a traditional
UNIX (and MMDF) format mailbox when the mailbox is open by another process
has been declared to be a failure and is now revoked. It was subject to a
timing race, loss of which involved an expensive reset of the mailbox's UID
regime. Any imapd COPY or APPEND to a traditional UNIX or MMDF format that
is open by some other process will now no longer return COPYUID/APPEND.
Although this is technically in violation of RFC 4315, there is a loophole
in that document and the timing race/performance problem is worse.
Updated: 4 April 2007
imap-2006h is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 30 March 2007
imap-2006g is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 30 January 2007
imap-2006f is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
For the benefit of multi-threaded applications, use of strtok() has been
abolished in the c-client library. imapd and ipop3d stuff use it though.
The TOPS-20 and VAX/VMS ports still use strtok() since they don't use UNIX
threads.
This version has been test-built on Linux, Mac OS X, NeXT, Windows XP,
TOPS-20, and VAX/VMS. This will probably be the last test-build on VAX/VMS
since the system I use for that purpose is being shut down. I have no way
to test-build on DOS, legacy Mac OS (OS 9 and earlier), OS/2, or Windows CE;
and the builds on those systems are probably broken.
Updated: 26 January 2007
imap-2006e is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 6 December 2006
imap-2006d is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
The decomposition mapping, title-case mapping, and character widths tables
have been updated to comply with the Unicode 5.0 standard.
Prototypes for the utf8aux.c functions have been moved to a new utf8aux.h.
The general c-client modules now include c-client.h instead of the individual
files. Use of c-client.h instead of individual include files insulates
against future shuffling of include files.
Updated: 23 October 2006
imap-2006c is a maintenance release, consisting primarily of bugfixes to
problems discovered in the release that affected a small number of users.
By popular request, if a user has a mix (or other dual-use) format INBOX,
it will no longer be listed as \NoInferiors. It's a bad idea to depend
upon this due to the case ambiguity issue, but it's there.
Updated: 26 September 2006
imap-2006b is a maintenance release, consisting entirely of bugfixes to
problems discovered in the release that affected a small number of users.
Updated: 15 September 2006
imap-2006a is a maintenance release, consisting entirely of bugfixes to
problems discovered in the release that affected a small number of users.
If it is necessary to build IPv4-only on one of the ports that has IPv6
preconfigured (ldb, lfd, lmd, lrh, lsu, osx, oxp), this can be done by
using IP6=4. You can't do IP=4 in the build command directly since these
ports set IP themselves; however, now instead of setting IP=6 they now set
IP=$(IP6).
Updated: 30 August 2006
imap-2006 is a major release. Programs written for imap-2004g should
build with this version with minor or no modification. imap-2005 was not
released except as development snapshots.
imap-2006 contains major extensions to its Unicode support. Searching and
sorting are now done with strings canonicalized to titlecase and decomposed
form. Among other things, this means that Latin letters with diacriticals
will now sort with the basic Latin letter, and case-independent searching of
such letters (e.g., German umlauts) now works. Previously, sorting was done
strictly by Unicode codepoint, and case-independence only worked with ASCII.
imapd now supports the UIDPLUS extension for mailboxes in unix, mmdf, mbx, mx,
and mix formats. UID EXPUNGE is fully implemented. Note that UIDPLUS is not
supported in the little-used drivers (mh, mtx, tenex) in which meaningful
APPENDUID/COPYUID data can not be returned. Refer to bugs.txt for more
details.
The new mix format is a dual-use mailbox format designed for performance and
reliability with large mailboxes. mix is documented in file mixfmt.txt.
SSL/TLS certificate validation on UNIX now checks the alternative names in the
certificate if the CN does not match.
The new /tls-sslv23 flag in a mailbox name causes a TLS session to use the
(incorrect) SSLv23 client method instead of the TLSv1 client method. Some
broken servers use the SSLv23 server method, and this flag works around that
problem. WARNING: use of this flag will cause TLS negotiation to fail with
a server which uses the proper TLSv1 server method. Additionally, there are
known security risks in SSLv2; so users should be suspicious if this switch
suddenly becomes necesary.
The silly mailbox flag combination /ssl/tls is now rejected as an invalid
remote specification. Previous versions tried to negotiate TLS over an SSL
session; even if the server permitted such a thing it couldn't work.
The memory management of several drivers has been redesigned to consume less
memory and hopefully be faster.
The private.data member of the MESSAGECACHE (elt) has been replaced with
a union that contains private.spare.data and private.spare.ptr, the latter
being a pointer.
A new FT_RETURNSTRINGSTRUCT flag has been added for mail_fetch_body() and
mail_fetch_text() calls. If this flag is set, *and* if the function returns
NIL, then the requested string data is available on a stringstruct on
stream->private.string. This is a special hack for the IMAP and POP servers
and is subject to incompatible change. The result is a major performance
improvement in the servers with the mbx driver, particularly with large
messages.
into the Makefiles of the packages that include it:
(1) PKGNAME and PKG_SUPPORTED_OPTIONS clearly no longer need to be
defined since the only code that used it in Makefile.common was
removed.
(2) Package Makefiles need to properly define PKG_OPTIONS_VAR and
PKG_SUPPORTED_OPTIONS prior to including bsd.options.mk. Set
them to the appropriate values to match the orginal names from
before the botched migration.
- deliver: v1.0.2's bounce fix caused message to be always saved to
INBOX even if Sieve script had discard, reject or redirect commands.
- LDAP: auth_bind=yes and empty auth_bind_userdn leaked memory
- ACL plugin: If user was given i (insert) right for a mailbox, but
not all s/t/w (seen, deleted, other flags) rights, COPY and APPEND
commands weren't supposed to allow saving those flags. This is
technically a security fix, but it's unlikely this caused problems
for anyone.
- ACL plugin: i (insert) right didn't work unless user was also given
l (lookup) right.
- Solaris: Fixed filesystem quota for autofs mounts.
* tmda-ofmipd now has native STARTTLS and SSL support courtesy of
Stephen Warren. The new options are '--tls', '--ssl', '--ssl-key',
and '--ssl-crt'. Note that the tlslite Python module needs to be
installed to use this feature. For more information, see the
"Builtin SSL/TLS" section of http://wiki.tmda.net/TmdaOfmipdHowto
* Fixed a minor bug that prevented the use of both SMTPSSL and
SMTPAUTH together.
part of an email message. The syntax for date headers is clearly laid out.
Stil, even a perfectly planned world has storms. The truth is, many programs
get it wrong. Very wrong. Or, they don't include a "Date:" header at all.
This often forces you to look elsewhere for the date, and hoping to find
something.
For this reason, the tedious process of looking for a valid date has been
encapsulated in this software. Further, the process of creating RFC compliant
date strings is also found in this software.
Imported from pkgsrc-wip and packaged by kuli0020@umn.edu
multiple Email mailers. The goal if this software is to be small and simple,
easy to use, and easy to extend.
Mailers
Mailers are simple to use. You can pre-load mailers when using "Email::Send".
use Email::Send qw[SMTP NNTP];
If you don't preload a mailer before you use it in the "send" function, it
will by dynamically loaded. Mailers are named either relative to the
"Email::Send" namespace, or fully qualified. For example, when using the "IO"
mailer, "Email::Send" first tries to load "Email::Send::IO". If that fails, an
attempt is made to load "IO". If that final attempt fails, "Email::Send" will
throw an exception.
WWW: http://search.cpan.org/dist/Email-Send/
Imported from pkgsrc-wip and packaged by kuli0020@umn.edu
addresses in strings and returns a list of Email::Address objects
found. The goal of this software is to be correct, fast, and API
compatible with the MailTools version.
Imported from pkgsrc-wip and packaged by kuli0020@umn.edu
binary-only packages that require binary "emulation" on the native
operating system. Please see pkgsrc/mk/emulator/README for more
details.
* Teach the plist framework to automatically use any existing
PLIST.${EMUL_PLATFORM} as part of the default PLIST_SRC definition.
* Convert all of the binary-only packages in pkgsrc to use the
emulator framework. Most of them have been tested to install and
deinstall correctly. This involves the following cleanup actions:
* Remove use of custom PLIST code and use PLIST.${EMUL_PLATFORM}
more consistently.
* Simplify packages by using default INSTALL and DEINSTALL scripts
instead of custom INSTALL/DEINSTALL code.
* Remove "SUSE_COMPAT32" and "PKG_OPTIONS.suse" from pkgsrc.
Packages only need to state exactly which emulations they support,
and the framework handles any i386-on-x86_64 or sparc-on-sparc64
uses.
* Remove "USE_NATIVE_LINUX" from pkgsrc. The framework will
automatically detect when the package is installing on Linux.
Specific changes to packages include:
* Bump the PKGREVISIONs for all of the suse100* and suse91* packages
due to changes in the +INSTALL/+DEINSTALL scripts used in all
of the packages.
* Remove pkgsrc/emulators/suse_linux, which is unused by any
packages.
* cad/lc -- remove custom code to create the distinfo file for
all supported platforms; just use "emul-fetch" and "emul-distinfo"
instead.
* lang/Cg-compiler -- install the shared libraries under ${EMULDIR}
instead of ${PREFIX}/lib so that compiled programs will find
the shared libraries.
* mail/thunderbird-bin-nightly -- update to latest binary
distributions for supported platforms.
* multimedia/ns-flash -- update Linux version to 9.0.48 as the
older version is no longer available for interactive fetch.
* security/uvscan -- set LD_LIBRARY_PATH explicitly so that
it's not necessary to install library symlinks into
${EMULDIR}/usr/local/lib.
* www/firefox-bin-flash -- update Linux version to 9.0.48 as the
older version is no longer available for interactive fetch.
* Reply and forward marks are appended after messages are actually sent.
* The feature to reply to attached message/rfc822 messages was added.
* When a folder is renamed, the path of junk folder is also updated.
* A workaround for the error which occurs with Gmail SMTP server was made.
- libclamav/others.c: bump f-level
- libclamav/unrar/unrarvm.c: fix another occurrence of bb#555, thanks to
Ludwig Nussel <ludwig.nussel*suse.de>
- sigtool/sigtool.c: increase MAX_DEL_LOOKAHEAD, requested by Sven
- libclamav/scanner.c: don't search for embedded PEs in zip files larger
than 1 MB (bb#573)
- clamav-milter: Fix memory leak when load balancing
- clamav-milter: Chroot handling no longer marked as experimental
- libclamav/nsis: fix macro collision on AIX - bb#570
- libclamav/phishcheck.c: fix (null) FOUND
- libclamav: rename x86 macroes due to collisions on HPUX
- libclamav: Fix warnings on HP-UX
Fixes several bugs. This release also adds compatibility with upcoming
Dovecot v1.1 so it'll be possible to upgrade to v1.1 and back to v1.0.2
without anything breaking.
* dbox isn't built anymore by default. It will be redesigned so it
shouldn't be used.
+ Maildir: Support reading dovecot-uidlist (v3) files created by
Dovecot v1.1.
- Maildir: "UIDVALIDITY changed" errors could happen with newly
created mailboxes
- If "INBOX." namespace was used, LIST returned it with \HasNoChildren
which caused some clients not to show any other mailboxes.
- Maildir++ quota: If multiple processes were updating maildirsize
at the same time, we failed with "Unknown error".
- IMAP: IDLE didn't actually disconnect client after 30 minutes of
inactivity.
- LDAP passdb/userdb was leaking memory
- deliver: %variables in plugin {} weren't expanded
- deliver: Don't bounce the mail if Sieve plugin returns failure
ClamAV 0.91 is the first release to enable the anti-phishing technology
in default builds. This technology combines heuristics with special
signatures and provides effective protection against phishing threats.
Other important changes and add-ons in this version include:
- unpacker for NSIS (Nullsoft Scriptable Install System) self-extracting
archives
- unpacker for ASPack 2.12
- new implementation of the Aho-Corasick pattern matcher providing
better detection for wildcard enabled signatures
- support for nibble matching and floating offsets
- improved handling of .mdb files (fixes long startup times)
- extraction of PE files embedded into other executables
- better handling of PE & UPX
- removed dependency on libcurl (improves stability)
- libclamav.dll available under Windows
- IPv6 support in clamav-milter
- many other improvements and bugfixes
1.13 (2007-03-28)
-----------------
* New mailgraph homepage URL: http://mailgraph.schweikert.ch
* XHTML 1.0 strict output (Yllar Pajus)
* add releative jump points (Hugo van der Kooij)
* add commented-out code for clamassassin (Adrian von Bidder)
* add support for Amavisd-new >= 2.4 (Christoph Kessinger)
* add support for Borderware Mxtreme (Postfix variant, Johan Nilsson)
* add support for the ClamAV SpamAssassin plugin (Thomas Brown)
* add support for MxTreme mail gateway (Guido)
* update support for Kaspersky AntiVirus (Igor Moskovko)
* update support for AntiVir (Wolfram Schlich)
* update support for drweb (Lev)
* update support for MailScanner (Simon Hartl, Pierre-Yves Bonnetain)
* update support for AntiVir (Frank Urban)
* fix DST-switch timewarp in autumn (Parse::Syslog 1.09)
* fix hidden rejected line behind are items (Axel Beckert)
* fix virbl DNS name (Eddy Beliveau)
via pkgsrc-wip.
policyd-weight is a Perl policy daemon for the Postfix MTA (2.1 and later)
intended to eliminate forged envelope senders and HELOs (i.e. in bogus mails).
It allows you to score DNSBLs (RBL/RHSBL), HELO, MAIL FROM and client IP
addresses before any queuing is done. It allows you to REJECT messages which
have a score higher than allowed, providing improved blocking of spam and
virus mails. policyd-weight caches the most frequent client/sender
combinations (SPAM as well as HAM) to reduce the number of DNS queries.
the owner of all installed files is a non-root user. This change
affects most packages that require special users or groups by making
them use the specified unprivileged user and group instead.
(1) Add two new variables PKG_GROUPS_VARS and PKG_USERS_VARS to
unprivileged.mk. These two variables are lists of other bmake
variables that define package-specific users and groups. Packages
that have user-settable variables for users and groups, e.g. apache
and APACHE_{USER,GROUP}, courier-mta and COURIER_{USER,GROUP},
etc., should list these variables in PKG_USERS_VARS and PKG_GROUPS_VARS
so that unprivileged.mk can know to set them to ${UNPRIVILEGED_USER}
and ${UNPRIVILEGED_GROUP}.
(2) Modify packages to use PKG_GROUPS_VARS and PKG_USERS_VARS.
For now, DragonFly and FreeBSD use the libc version, it is not reentrant,
but thread-safe. NetBSD 3.0+ and Darwin 8.0+ use libresolv from base
(the BIND9 resolver), all other fall back to net/bind9. Feel free to add
your favorite platform if it has a thread-safe resolver in base.
Modify mail/libspf-alf, mail/milter-greylist, mail/spamdyke and
net/nocol accordingly. Testing on !DragonFly and feedback from tron@
pkgsrc portability patches submitted back upstream but ignored.
Additions include:
* Configuration support for Tru64 and some fixes for other systems
* New color option Header General Color to color all headers in MESSAGE
TEXT screen
* Added NONE color setting for Index symbols and Keyword colors so that
the background color of a symbol can be set to not blot out the
background color of an index line. There is also a similar NORM color
that tracks the Normal Color
* New color options Index Subject Color and Index From Color options to
color parts of MESSAGE INDEX lines
* Some improvements to Enable Incoming Folders Checking option,
including new options Incoming Checking Includes Total, Incoming
Checking Uses Recent, and Incoming Check Interval Secondary
* Eliminate address book sorting wars when two different systems sort an
address book differently. Instead of checking that the address book is
correctly sorted whenever it is opened the sorting will only happen
when a change is made. The sort order you see is the sort order from
the last system where a change was made.
* Added a new category of Rule called a Search Rule. A Search Rule has a
Pattern but no Action is associated with that Pattern. It is used with
the Select command in the MESSAGE INDEX screen to Select the set of
messages that match a rule's Pattern.
* Added minor adjustment to display of opening text with Opening Text
Separator Characters option. Display of opening text is controlled by
configuring your Index Format option to include one of the Subject
tokens that causes this behavior (SUBJECTTEXT, SUBJKEYTEXT, or
SUBJKEYINITTEXT).
* Added tokens OPENINGTEXT and OPENINGTEXTDQ for use with the Index
Format option. These are alternative ways to display the opening text
of a message in the index screen.
* Added SHORTIMAPSTATUS token for the Index Format
* The default values of many features have been changed, exposing a more
advanced user interface by default. In addition, though the names of
features used in the configuration files remains the same, the
displayed text in the Config screen is no longer tied directly to that
name.
* Changed Windows Alpine so that it can show up in the list of default
programs in Vista.
Bugs that have been addressed in this release include:
* INBOX displayed twice in some situations when there was a folder named
INBOX
* Crash in PC-Alpine related to traditional UNIX mailbox format
* Canceling out of the password prompt when opening an incoming folder
was causing the re-open of a previously opened folder to fail
* News collection display empty after canceling out of password prompt
* Extra password prompt when adding incoming folder after canceling out
of earlier password prompt
* Recognize and ignore XML processing instructions in HTML messages
* Window title was being set using Unicode characters instead of the
local character set of the display terminal
* The option Busy Cue Spinner Only was displaying an oncoming two-engine
airplane instead of a spinner
* Got rid of default green Subject header color added in 0.99
* Title Closed Color wasn't being shown when in the composer
* Disable-Input-History, which was added in previous version, is changed
to Disable Save Input History and its effect is restricted to
ambiguous situations, like Save
* Added missing input history command for Pipe Attachment
* Cannot open another folder after an empty directory is opened when
Combined Folder Display and Expanded View of Folders options are set
* When answering No to the commit changes question after changing the
Inbox Path the change was written to the config file anyway
* When the Threading Display Style results in the information being
truncated add a thread depth indicator in brackets at the right hand
edge
* 2.4.3 (stable)
* The quick search entry is cleared when Escape key is pressed on it.
* UTF-8 with BOM is handled correctly when inserting signature.
* A possible crash when adding address from address book was fixed.
- fixed an ancestral wrong compilation flag for regexes, no more REG_NEWLINE
- supereva.lua: plugin updates
- libero.lua: fixed bug for attachments
- libero.lua: changed pattern matching
- hotmail.lua: update the logout url, try to handle an expired session better
- supereva.lua, tin.lua: fixed attachments in tin and supereva, added dada.net
- libero.lua: fixed mlex
- aol.lua: use the "classic" web interface
- added patch by Viruzzo to mimer and supereva.lua
pkgsrc changes:
* List a few popular supported services in DESCR to help address PR 36569.
Prompted by report from Peter Avalos that exim 4.66 would not build
against openssl 0.9.8e
Changelog:
MH/01 Fix for bug #448, segfault in Dovecot authenticator when interface_address
is unset (happens when testing with -bh and -oMi isn't used). Thanks to
Jan Srzednicki.
PH/01 Added a new log selector smtp_no_mail, to log SMTP sessions that do not
issue a MAIL command.
PH/02 In an ACL statement such as
deny dnslists = X!=127.0.0.2 : X=127.0.0.2
if a client was not listed at all, or was listed with a value other than
127.0.0.2, in the X list, but was listed with 127.0.0.2 in the Y list,
the condition was not true (as it should be), so access was not denied.
The bug was that the ! inversion was incorrectly passed on to the second
item. This has been fixed.
PH/03 Added additional dnslists conditions == and =& which are different from
= and & when the dns lookup returns more than one IP address.
PH/04 Added gnutls_require_{kx,mac,protocols} to give more control over the
cipher suites used by GnuTLS. These options are ignored by OpenSSL.
PH/05 After discussion on the list, added a compile time option ENABLE_DISABLE_
FSYNC, which compiles an option called disable_fsync that allows for
bypassing fsync(). The documentation is heavily laced with warnings.
SC/01 Updated eximstats to collate all SpamAssassin rejects into one bucket.
PH/06 Some tidies to the infrastructure of the Test Suite that is concerned
with the auxiliary C programs that it uses: (1) Arrange for BIND_8_COMPAT
to be defined when compiling on OSX (Darwin); (2) Tidies to the Makefile,
including adding "make clean"; (3) Added -fPIC when compiling the test
dynamically loaded module, to get rid of a warning.
MH/02 Fix for bug #451, causing paniclog entries to be written if a bounce
message fails, move_frozen_messages = true and ignore_bounce_errors_after
= 0s. The bug is otherwise harmless.
PH/07 There was a bug in the dovecot authenticator such that the value of
$auth1 could be overwritten, and so not correctly preserved, after a
successful authentication. This usually meant that the value preserved by
the server_setid option was incorrect.
PH/08 Added $smtp_count_at_connection_start, deliberately with a long name.
PH/09 Installed PCRE release 7.0.
PH/10 The acl_not_smtp_start ACL was, contrary to the documentation, not being
run for batched SMTP input. It is now run at the start of every message
in the batch. While fixing this I discovered that the process information
(output by running exiwhat) was not always getting set for -bs and -bS
input. This is fixed, and it now also says "batched" for BSMTP.
PH/11 Added control=no_pipelining.
PH/12 Added $sending_ip_address and $sending_port (mostly Magnus Holmgren's
patch, slightly modified), and move the expansion of helo_data till after
the connection is made in the smtp transport (so it can use these
values).
PH/13 Added ${rfc2047d: to decoded RFC 2047 strings.
PH/14 Added log_selector = +pid.
PH/15 Flush SMTP output before delaying, unless control=no_delay_flush is set.
PH/16 Add ${if forany and ${if forall.
PH/17 Added dsn_from option to vary the From: line in DSNs.
PH/18 Flush SMTP output before performing a callout, unless control =
no_callout_flush is set.
PH/19 Change 4.64/PH/36 introduced a bug: when address_retry_include_sender
was true (the default) a successful delivery failed to delete the retry
item, thus causing premature timeout of the address. The bug is now
fixed.
PH/20 Added hosts_avoid_pipelining to the smtp transport.
PH/21 Long custom messages for fakedefer and fakereject are now split up
into multiline reponses in the same way that messages for "deny" and
other ACL rejections are.
PH/22 Applied Jori Hamalainen's speed-up changes and typo fixes to exigrep,
with slight modification.
PH/23 Applied sieve patches from the maintainer "tracking the latest notify
draft, changing the syntax and factoring some duplicate code".
PH/24 When the log selector "outgoing_port" was set, the port was shown as -1
for deliveries of the second and subsequent messages over the same SMTP
connection.
PH/25 Applied Magnus Holmgren's patch for ${addresses, ${map, ${filter, and
${reduce, with only minor "tidies".
SC/02 Applied Daniel Tiefnig's patch to improve the '($parent) =' pattern match.
PH/26 Added a "continue" ACL modifier that does nothing, for the benefit of its
expansion side effects.
PH/27 When a message times out after an over-quota error from an Exim-imposed
quota, the bounce message says "mailbox is full". This message was not
being given when it was a system quota that was exceeded. It now should
be the same.
MH/03 Made $recipients available in local_scan(). local_scan() already has
better access to the recipient list through recipients_list[], but
$recipients can be useful in postmaster-provided expansion strings.
PH/28 The $smtp_command and $smtp_command_argument variables were not correct
in the case of a MAIL command with additional options following the
address, for example: MAIL FROM:<foo@bar> SIZE=1234. The option settings
were accidentally chopped off.
PH/29 SMTP synchronization checks are implemented when a command is read -
there is a check that no more input is waiting when there shouldn't be
any. However, for some commands, a delay in an ACL can mean that it is
some time before the response is written. In this time, more input might
arrive, invalidly. So now there are extra checks after an ACL has run for
HELO/EHLO and after the predata ACL, and likewise for MAIL and RCPT when
pipelining has not been advertised.
PH/30 MH's patch to allow iscntrl() characters to be list separators.
PH/31 Unlike :fail:, a custom message specified with :defer: was not being
returned in the SMTP response when smtp_return_error_details was false.
This has been fixed.
PH/32 Change the Dovecot authenticator to use read() and write() on the socket
instead of the C I/O that was originally supplied, because problems were
reported on Solaris.
PH/33 Compile failed with OpenSSL 0.9.8e. This was due to a coding error in
Exim which did not show up earlier: it was assuming that a call to
SSL_CTX_set_info_callback() might give an error value. In fact, there is
no error. In previous releases of OpenSSL, SSL_CTX_set_info_callback()
was a macro that became an assignment, so it seemed to work. This has
changed to a proper function call with a void return, hence the compile
error. Exim's code has been fixed.
PH/34 Change HDA_SIZE in oracle.c from 256 to 512. This is needed for 64-bit
cpus.
PH/35 Applied a patch from the Sieve maintainer which fixes a bug in "notify".
PH/36 Applied John Jetmore's patch to add -v functionality to exigrep.
PH/37 If a message is not accepted after it has had an id assigned (e.g.
because it turns out to be too big or there is a timeout) there is no
"Completed" line in the log. When some messages of this type were
selected by exigrep, they were listed as "not completed". Others were
picked up by some special patterns. I have improved the selection
criteria to be more general.
PH/38 The host_find_failed option in the manualroute router can now be set
to "ignore", to completely ignore a host whose IP address cannot be
found. If all hosts are ignored, the behaviour is controlled by the new
host_all_ignored option.
PH/39 In a list of hosts for manualroute, if one item (either because of multi-
homing or because of multiple MX records with /mx) generated more than
one IP address, and the following item turned out to be the local host,
all the secondary addresses of the first item were incorrectly removed
from the list, along with the local host and any following hosts (which
is what is supposed to happen).
PH/40 When Exim receives a message, it writes the login name, uid, and gid of
whoever called Exim into the -H file. In the case of the daemon it was
behaving confusingly. When first started, it used values for whoever
started the daemon, but after a SIGHUP it used the Exim user (because it
calls itself on a restart). I have changed the code so that it now always
uses the Exim user.
PH/41 (Following a suggestion from Tony Finch) If all the RCPT commands in a
message are rejected with the same error (e.g. no authentication or bad
sender address), and a DATA command is nevertheless sent (as can happen
with PIPELINING or a stupid MUA), the error message that was given to the
RCPT commands is included in the rejection of the DATA command. This is
intended to be helpful for MUAs that show only the final error to their
users.
PH/42 Another patch from the Sieve maintainer.
SC/02 Eximstats - Differentiate between permanent and temporary rejects.
Eximstats - Fixed some broken HTML links and added missing column headers
(Jez Hancock).
Eximstats - Fixed Grand Total Summary Domains, Edomains, and Email
columns for Rejects, Temp Rejects, Ham, and Spam rows.
SC/03 Eximstats - V1.58 Fix to get <> and blackhole to show in edomain tables.
PH/43 Yet another patch from the Sieve maintainer.
PH/44 I found a way to check for a TCP/IP connection going away before sending
the response to the final '.' that terminates a message, but only in the
case where the client has not sent further data following the '.'
(unfortunately, this is allowed). However, in many cases there won't be
any further data because there won't be any more messages to send. A call
to select() can be used: if it shows that the input is "ready", there is
either input waiting, or the socket has been closed. An attempt to read
the next input character can distinguish the two cases. Previously, Exim
would have sent an OK response which the client would never have see.
This could lead to message repetition. This fix should cure that, at
least in a lot of common cases.
PH/45 Do not advertise STARTTLS in response to HELP unless it would be
advertised in response to EHLO.
Fixed a serious bug where spamdyke was closing the connection to qmail and
exiting as soon as the remote host exited. When the remote host sends its
SMTP data in one burst and closes the connection without waiting for the
response code from the DATA segment, qmail doesn't accept the message and
nothing gets delivered.
Added some code to log_writeln() to translate bare carriage returns into
carriage return/linefeed combinations. This allows poorly written remote
servers to send mail, most notably Microsoft web servers. Dogmatically
refusing to accept mail by refusing to be more flexible than RFC 822
will never change the world; let's be reasonable instead of bouncing
messages back to our friends who can't change their mail servers anyway.
Fixed smtp_filter() to accept parameters to AUTH LOGIN when the MUA sends the
authentication information with the command instead of waiting for the
prompts. Thanks to Carlo Blohm for reporting this one.
run as "root".
* Remove unnecessary passing of ROOT_USER and ROOT_GROUP to the
distribution Makefile. Instead, we simply use BSD_INSTALL_* macros
to do the installation and use SPECIAL_PERMS to clean up and special
permissions after the fact.
* Add a TODO section to the package Makefile that highlights the things
that need to be done to fix this package.
* Fix MESSAGE to refer to ${PREFIX}, not ${LOCALBASE}, for the location
of the installed files.
Bump PKGREVISION to 3 due to change in permissions for makevpopdb.
* deliver: If Return-Path doesn't contain user and domain, don't try
to bounce the mail (this is how it was supposed to work earlier too)
* deliver: %variables in mail setting coming from userdb aren't
expanded anymore (again how it should have worked). The expansion
could have caused problems if paths contained any '%' characters.
+ Print Dovecot version number with dovecot -n and -a
+ deliver: Added -e parameter to write rejection error to stderr and
exit with EX_NOPERM instead of sending the rejection by executing
sendmail.
+ dovecot --log-error logs now a warning, an error and a fatal
- Trying to start Dovecot while it's already running doesn't anymore
wipe out login_dir and break the running Dovecot.
- maildir: Fixed "UID larger than next_uid" errors which happened
sometimes when dovecot-uidlist file didn't exist but index files did
(usually because mailbox didn't have any messages when it was
selected for the first time)
- maildir: We violated maildir spec a bit by not having keyword
characters sorted in the filename.
- maildir: If we don't have write access to cur/ directory, treat the
mailbox as read-only. This fixes some internal error problems with
trying to use read-only maildirs.
- maildir: Deleting a symlinked maildir failed with internal error.
- mbox: pop3_uidl_format=%m wasn't working right
- mbox: If non-filesystem quota was enabled, we could have failed
with "Unexpectedly lost From-line" errors while saving new messages
- mysql auth: %c didn't work. Patch by Andrey Panin
- APPEND / SEARCH: If internaldate was outside valid value for time_t,
we returned BAD error for APPEND and SEARCH never matched. With 64bit
systems this shouldn't have happened. With 32bit systems the valid
range is usually for years 1902..2037.
- COPY: We sent "Hang in there.." too early sometimes and checked it
too often (didn't break anything, but was slower than needed).
- deliver: Postfix's sendmail binary wasn't working with mail_debug=yes
- Don't corrupt ssl-parameters.dat files when running multiple Dovecot
instances.
- Cache compression caused dovecot.index.cache to be completely deleted
with big endian CPUs if 64bit file offsets were used (default)
- Fixed "(index_mail_parse_header): assertion failed" crash
Pkgsrc changes:
- Removed requirement for p5-Mail-ListDetector, Mail::Audit::List is no
longer part of this module. p5-Mail-Audit is a leaf package in pkgsrc,
so this has no further impact.
- New requirements are p5-File-HomeDir and p5-File-Tempdir.
- No compiler needed.
- Security fixes in patch-aa and patch-ab are finally integrated with
v2.219.
Changes since version 2.1:
==========================
2.219 2007-06-14
For security reasons, the log is now ~/mail-audit.log, not
/tmp/username-audit.log
fix bug: logging wasn't working when processing mime messages
add optional "reason" argument to ignore method
_log method renamed to log and documented
2.218 2007-03-06
remove List, Razor, and PGP plugins to their own dists
this is the first step in paring down Mail::Audit
2.217 2007-03-05
make the test skipped in 2.216 pass reliable (thanks to HDP for idea)
2.216 2007-02-26
skip a test that doesn't pass reliably
2.215 2007-02-19
subclass File::Tempdir to avoid cleaning up in forked child
2.214 2007-02-15
refactor internals of emergency and default destinations
2.213 2007-02-15
add a no_log option
2.212 2006-10-31
try to avoid letting temp dirs linger too long
2.211 2006-09-19
fix Mail::Audit::List breakage; it needs tests!; rt #20934
2.210 2006-09-19
use File::HomeDir to reduce unix-o-centrism
2.203 2006-07-21
update PEP information
2.202 2006-07-21
test fix: don't rely on default mbox not existing; force it to fail
prune list of sysexits.h-like error code constants
2.201 2006-07-16
use File::Temp a few places where it's indicated
add a munge_name arg to Mail::Audit::List
pipe now returns the exit status of the pipe
fix directory permissions
fixed bugs in proc2ma (ticket 2982, thanks MARKSTOS)
2.200_05 2006-06-04
more testing
more tweaking
more frustration
2.200_04 2006-06-04
log now uses on-object filehandles, rather than globals
delivery to msgprefix completely removed, as it was never implemented
exit behavior somewhat encapsulated for testability
PGP plugin now replaces, rather than adds, content type headers
more tests
2.200_03 2006-06-01
our first meaningful tests!
also some POD tests
POD cleaned up
many undocumented modules given a _-prefix
removed undocumented, bizarre inreplyto_and_references method
2.200_02 2006-05-30
various code cleanup, including perltidy
extra options, previously an optional hashref passed as first arg,
should now be passed as the last arg; factored out and deprecation
warning added; they were mostly undocumented
moved to Module::Install
2.200_01 2006-05-24
maintenance assumed by RJBS
changes inherited from Meng Wong
Fix build problem with db4 following a hint by obache@
04/09/2006
==========
Release: Prayer 1.0.18
Important Security fix:
os_connect_unix() had a strcpy() which should have been strncpy() to
prevent buffer overrun. Prayer 1.0.17 was mostly safe.
By 28/06/2006
=============
Release: Prayer 1.0.17
Fix small foulup wuth gethostbyname() calculations when binding Prayer
to specific interfaces.
Cleanups to stop char vs unsigned char warnings with latest c-client.
Make sure that all internal draft messages consistently use CRLF.
Security audit for Prayer frontend following attack:
Optional Chroot environment (See chroot options in config file).
Stripped out debugging code.
04/11/2005
==========
Fix small foulups with abook_lookup:
Couldn't add last address to existing draft.
Block LDAP metacharacters from search.
By 13/06/2005
=============
Release: Prayer 1.0.16
Fix silly bug when replying to multipart messages where the main message
and the text/plain subpart have different encoding (missing mail_body
call).
Add a limit_vm backstop to stop single runaway process from taking
over the system.
By 10/06/2005
=============
Release: Prayer 1.0.15 (1.0.13 and 14 internal releases only).
list screen doesn't set "current" message to middle of range. Means that
switching between various sort modes works more consistently.
Go fishing for text/plain or failing that text/html bodypart within top
level of multipart/mixed or multipart/alternate message when replying to a
message. Behaviour should now be consistent with cmd_forward and
cmd_display.
Include LDAP and local finger database lookups (latter for Cambridge use only)
Addressbook screen:
Addressbook sort (can be set on Manage => Preferences => Display)
Addressbook bulk removal
Import and Export CSV (Outlook) format address screen
Spellcheck:
Support native aspell as well as ispell, aspell in ispell compatibility mode.
Means that Quoted text is not checked if the following is set:
Manage => Preferences => Extra Compose =>
Skip quoted text on spell check
By 09/08/2005
=============
Spam whitelist
Test the Referer header on login. Two independant prayer.cf options:
referer_block_invalid and referer_log_invalid
Test the Referer: header before performing a /redirect/ action in
order to protect against URL redirector abuse
Doesn't work with "Save Target As". Remove entirely
Confirm on expunge.
Cleanup up account_message error reporting so consistent.
Fix format=flowed quoting problems.
Fix memory leak in mailbox download (2 x size of mail folder) until
next transfer or idle shutdown.
25/01/2005
==========
line_wrap_on_send preference not used by draft_init().
Fixed problems with multipart/alternate display and forwarding
For some reason, the script creates the pid file itself, instead
of using '-p' option to freshclamd. sig_stop=KILL seems unnecessary,
too.
Bump PKGREVISION.
(2.0.0.1-2.0.0.3 skipped to keep the version on par with Firefox?)
Security fixes in this version:
MFSA 2007-15 Security Vulnerability in APOP Authentication
MFSA 2007-12 Crashes with evidence of memory corruption
For more info, see http://www.mozilla.com/en-US/thunderbird/2.0.0.4/releasenotes/
Pkgsrc changes:
- Added some comments to patch files.
- Adapting patch-aq to changes in the README file.
- Added forgotten direct requirement for p5-Compress-Zlib.
- Since 3.2.0 at least version 3.43 of p5-HTML-Parser is needed.
- Installation to DESTDIR is possible as root.
- Substituted correct paths in spamc.pod (source file for spamc.1).
- Added VARBASE to BUILD_DEFS to silence pkglint warnings.
Changes since version 3.2.0:
============================
3.2.1 is a major bug-fix release, including a potential local DoS. The
major highlights are:
- bug 5480: fix for CVE-2007-2873: a local user symlink-attack DoS
vulnerability. It only affects systems where spamd is run as root, is used
with vpopmail or virtual users via the "-v"/"--vpopmail" OR
"--virtual-config-dir" switch, AND with the "-x"/"--no-user-config AND
WITHOUT the "-u"/"--username" switch AND with the "-l"/"--allow-tell" switch.
This is not default on any distro package, and is not a common configuration.
More details of the vulnerability can be read at
<http://spamassassin.apache.org/advisories/cve-2007-2873.txt>.
- bug 5488: zero some rules causing false positives: FH_HOST_EQ_D_D_D_DB and
FH_HOST_EQ_D_D_D_D.
- bug 5257: re-raise autolearn ham threshold to 1.0; the lower value
used in 3.2.0 was creating problems.
- bug 5422: in spamd, deleting hash entries from the SIGCHLD signal handler is
unsafe, causes corruption of the data structure, and results in 'prefork:
ordered child N to accept, but they reported state '1', killing rogue'
errors. fix.
- bug 5102: tighten up regexp for FORGED_HOTMAIL_RCVD to avoid some FPs.
- bug 5457: spamc build and test should handle not having zlib available.
- bug 5379: spamd could crash at startup if its preloading temporary directory
already exists. fix.
- bug 4616: spamc config can cause command line options to be ignored. fix.
- bug 5485: zero score DK/DKIM_POLICY_SIGNSOME rules since they'll always fire
due to defaults (unless there's an explicit SIGNALL policy).
- bug 5492: VBounce rule was looking in header instead of body for whitelisted
relays. fix.
- bug 5487: prevent multiple "urirhssub"s using the same zone from overwriting
each other.
- bug 5432 - Change default in Win32 build to not build spamc.
- bug 5446: add --updatedir option to sa-compile and remove inaccurate re2c
required version info from pod.
- bug 5436: add omitted "ifplugin" statements to the configuration, which would
otherwise cause lint errors if the default plugins were disabled.
- bug 5477: prevent Rule2XSBody info message from appearing on stderr during
spamd startup.
Pkgsrc changes:
none
Changes since version 0.25:
===========================
Version 0.26 - released 2007-05-24
* recognize and generate v=1 signatures (DKIM is now RFC 4871)
Changelog:
Version 0.20 20 March 2007
* Cache uncompressed mbox data (Chris Mason, further work by me)
* Fix gaps in date ranges for search
* Unlock database if mairix is interrupted (Paul Fox)
* Add fast index option (-F)
* Fix conditional compilation errors for compressed mbox
* Reimplement MIME header parsing
* Add capability to search on names of attachments
* Add capability to search on state of message flags
* Create maildir-format mfolder filenames correctly with regard to flags
* Various bug fixes (Oliver Braun, Matthias Teege)
Version 0.19 15 July 2006
* mairix.spec fixes (André Costa)
* bug fix: freeing of message structures (Karsten Petersen)
* Add new -x (--excerpt-output) option, an alternative mode for searching. This displays the key headers from the matching messages on stdout.
* Add notes about the mairix-users mailing list and the SourceForge page to README.
* Fix configuration + compilation to allow building with gzip support but without bzlib support.
* Rename internal functions like zopen() to avoid name conflicts on MacOS X. (Vincent Lefevre)
* Remove a spurious ; in bison input file (Vincent Lefevre)
* Improve output given in various error conditions (based on patch by Karsten Petersen)
Version 0.18 10 March 2006
* Support bzip2'd mbox folders
* Fix bugs in parsing mbox folders containing unquoted 'From ' lines inside MIME body parts
* Fix bug in parsing content-type data containing quotes with whitespace before
* Clone the message flags (when both the source folder and mfolder are both of maildir type)
* New manpages mairix.1 and mairixrc.5 are included, and the old texinfo-based documentation is deprecated into the old_docs/ directory.
* Upgrade scanners to new version of dfasyn
* Support Mew's MH folder subtype
Version 0.17.1 16 December 2005
* Fix detection of MH folder subtype used by nnml (Gnus)
* Fix filename format generated in the /cur/ directory for maildir mfolders.
* Syntax fix in configure script
Version 0.17 14 November 2005
* Support gzipped mbox folders (any file matched by a mbox= line in the config file is considered as a gzipped mbox if its name ends in .gz)
* Rework directory traversal for the '...' construct to speed up indexing and the check that mfolder isn't going to overwrite a real folder when searching.
* Check whether database exists before attempting to do searching.
* Matched new maildir messages go in /new/ subdirectory of maildir mfolder.
* Fix lots of compiler warnings generated by gcc4.x
* Don't create and immediately scrub database entries for empty mbox folders.
* Fix usage() info for bare word in searching
* Allow '.' on the ends of numeric filenames in MH folders (to work with Evolution)
* Update .PHONY target so that 'make install' etc are more reliable.
* Add --version switch
* Fix bug with size argument passed to memset
* Add X-source-folder header to indicate the original folder of a match found in an mbox.
Version 1.3 - 13 February 2007
------------------------------
- Perl Compatible Regular Expression (PCRE) support.
- Compile against Lua 5.1 by default.
- Bug fix; program fault in some cases and when namespace prefix was empty
- Bug fix; program fault on some platforms when running in verbose mode
This release is largely a bug-fix release, but it does contain a couple of
small new features (next-unread-mailbox, $message_cache_clean).
The "change_folder_next" patches are gone, since a similar feature was added,
and it is now possible to use
bind index , next-unread-mailbox
to use , to cycle mailboxes with new mail
Fixed smtp_filter() to accept parameters to AUTH PLAIN when the MUA sends the
authentication information with the command instead of waiting for another
prompt.
Changed find_address() to strip BATV tags from addresses so whitelist/
blacklist matching can still take place. Reported by Walter Russo.
Added utils/passwordcheck to help troubleshoot SMTP AUTH problems.
Added more logging to exec_checkpassword() to aid troubleshooting.
pkgsrc changes: set INSTALLATION_DIRS.
2007-01-30 Dave McMurtrie <davemcmurtrie@gmail.com>
* Version 1.2.5 released.
2007-01-30 Dave McMurtrie <davemcmurtrie@gmail.com>
* common.h: Updated version string to 1.2.5.
2006-10-03 Dave McMurtrie <davemcmurtrie@gmail.com>
* common.h: Updated version string to 1.2.5rc2.
* main.c: Patch by Matt Selsky to log ssl peer verify at Debug
level instead of err level.
* Makefile.in: Patch by Matt Selsky to set the permissions on
the configuration files to 755 instead of 644.
2006-08-15 Dave McMurtrie <davemcmurtrie@gmail.com>
* imapcommon.c: No longer exit() from IMAP_Line_Read() on
failed sanity check.
2006-02-16 Dave McMurtrie <davemcmurtrie@gmail.com>
* pimpstat.c: Patch by Matt Selsky to fix spelling error.
* main.c: Fixed string format bug (Debian DSA 852-1) found by
Steve Kemp. Added version string to startup log message.
* common.h: Patch by Matt Selsky to add a version string.
* request.c: Patch by Matt Selsky to add cmd_version function.
* README: Patch by Matt Selsky to add info about p_version command.
Updated the imapproxy-info mailing list URL.
-make updatefile honour symlinks, so users can alias one server's oldmail
state file to another (for split-horizon DNS and other strange
configurations). Thanks: Scott Hepler.
just explain a little better how RoundCube is setup in pkgsrc.
* While were here update to 20070528
2007/05/28 (thomasb)
---------
- Fixed buggy imap_root settings (closes 1484379)
- Prevent default events on subject links (1484399)
- Typo in rcube_smtp.inc
2007/05/23 (estadtherr)
----------
- Upgrade to TinyMCE v2.1.1.1
2007/05/18 (thomasb)
----------
- Use HTTP-POST requests for actions that change state
2007/05/17 (thomasb)
----------
- Updated Catalan, Russian, Portuguese, Slovak and Chinese translations
- Renamed localization folder for Chinese (Big5)
- Chanegd Slovenian language code from 'si' to 'sl'
- Added Sinhala (Sri-Lanka) localization
- Use global filters and bind username/ for Ldap searches (1484159)
- Hide quota display if imap server does not support it
- Hide address groups if no LDAP servers configured
- Add link to message subjects (closes 1484257)
- Better SQL query for contact listing/search (closes 1484369)
2007/05/13 (thomasb)
----------
- Updated Norwegian (bokmal), Czech, Danish and Portuguese (standard) translation
- Fixed marking as read in preview pane (closes 1484364)
- CSS hack to display attachments correctly in IE6
- Wrap message body text (closes 1484148)
acts as a gateway to a variety of webmail services.
One possible use of this package, which I've tested, is in migrating
from Hotmail (which provides neither mail forwarding nor POP access
to the mailstore) to Gmail (which can act as a POP client).
* Changed calls to tolower() and isalnum() to eliminate warnings
from gcc 3.3.3 on NetBSD 3.1. Thanks to David Frese for reporting
this one.
* Fixed a very small typo in the new mask/flag system that was
preventing spamdyke from advertising SMTP AUTH on unpatched
qmail servers -- FILTER_FLAG_AUTH_ADD had the same value as
FILTER_FLAG_AUTH_NONE. Oops. Thanks to Renato Franzin for
reporting this one.
* Fixed an oversight in the use of gethostbyname() to perform DNS
lookups for A records. If the server is configured to search
a domain for matching names ("search" in /etc/resolv.conf) and
the domain has a wildcard DNS entry, the DNS RBL code was always
matching because an A record was always found. Adding a dot
to the end of the queried name prevents the domain searching
and returns correct results. Thanks to "Paolo", Alexander
Fordyce and Jens Mickerts for reporting and helping me troubleshoot
this one.
version 1.77: Fri May 11 14:16:01 CEST 2007
- fixed syntax error in qmail.pm, patch by [Alexey Tourbin]
also reported by [Volker Paulsen]
- die if qmail's exec fails.
- require Data::Format
- corrected header field folding according to rfc2822, which
may break some ancient (poor) applications.
Patch by [Christopher Madsen]
1.2.3
* Fix: queue display transpose bug
1.2.2
* Fix: added deletion routines to handle files in bounce subdirectory
* Fix: added whitespace remove line for pidof output reported by
Charlies (cng-oz)
1.2.1
* Corrected an error in the README, and one in the HISTORY
20070425
Bugfix: don't falsely report "lost connection from
localhost[127.0.0.1]" when Postfix is being portscanned.
Files: smtpd/smtpd_peer.c, qmqpd/qmqpd_peer.c.
20070430
Robustness: recommend a "0" process limit for policy servers
to avoid "connection refused" problems when the smtpd
process limit exceeds the default process limit. File:
proto/SMTPD_POLICY_README.html.
20070501
Safety: when IPv6 (or IPv4) is turned off, don't treat an
IPv6 (or IPv4) connection from e.g. inetd as if it comes
from localhost[127.0.0.1]. Files: smtpd/smtpd_peer.c,
qmqpd/qmqpd_peer.c.
20070508
Bugfix: Content-Transfer-Encoding: attribute values are
case insensitive. File: src/cleanup/cleanup_message.c.
20070514
Bugfix: mailbox_transport(_maps) and fallback_transport(_maps)
were broken when used with the error(8) or discard(8)
transports. Cause: insufficient documentation. Files:
error/error.c, discard/discard.c.
20070520
Bugfix (problem introduced Postfix 2.3): when DSN support
was introduced it broke "agressive" recipient duplicate
elimination with "enable_original_recipient = no". File:
cleanup/cleanup_out_recipient.c.
20070529
Bugfix (introduced Postfix 2.3): the sendmail/postdrop
commands would hang when trying to submit a message larger
than the per-message size limit. File: postdrop/postdrop.c.
20070530
Sabotage the saboteur who insists on breaking Postfix by
adding gethostbyname() calls that cause maildir delivery
to fail when the machine name is not found in /etc/hosts,
or that cause Postfix processes to hang when the network
is down.
20070531
Portability: Victor helpfully pointed out that change
20070425 broke on non-IPv6 systems. Files: smtpd/smtpd_peer.c,
qmqpd/qmqpd_peer.c.
on par with Firefox?).
Security fixes in this version:
MFSA 2007-15 Security Vulnerability in APOP Authentication
MFSA 2007-12 Crashes with evidence of memory corruption
For more info, see http://www.mozilla.com/en-US/thunderbird/releases/1.5.0.12.html
Added support for STARTTLS, similar to the way SMTP AUTH is implemented -- if
a server certificate is available, spamdyke takes care of the TLS. If not
but qmail supports TLS, spamdyke passes it through.
Changed the read() and write() calls to the network to use macros named
NETWORK_READ() and NETWORK_WRITE() that are replaced by TLS routines when
TLS support has been compiled in.
Changed the smtp_filter() return codes to use a mask/flag system because the
possible permutations of PASS/INTERCEPT/QUIT with ADD/REMOVE/CAPTURE AUTH
and ADD/REMOVE/CAPTURE TLS and CHILD QUIT/CONTINUE were getting too complex.
Fixed search_file() to match a file entry where the search text matches the
entry completely but the entry has wildcard markers at the start and/or end.
Added TLS support to tests/sendrecv so TLS can be tested from scripts.
Fixed numerous small bugs in tests/sendrecv that were causing inaccurate test
results (false positives and false negatives).
Updated all of the test scripts to make renumbering them easier.
Added a new test script to exercise a small whitelist wildcard bug I found.
Added 10 new test scripts to exercise the new TLS features.
Changed process_command_line() and usage() to print a brief usage message if
no parameters are given.
Changed process_command_line() and usage() to print a brief error message if
a bad parameter is given.
Changed process_command_line() and usage() to print the full usage message if
-h or --help is given.
Changed process_command_line() and usage() to print the version header if -v
or --version is given.
Renamed test_smtpauth_crammd5, test_smtpauth_login and test_smtpauth_plain to
smtpauth_crammd5, smtpauth_login and smtpauth_plain, respectively.
Moved smtpauth_crammd5, smtpauth_login and smtpauth_plain from the utils
folder to tests/smtpauth, since they're only used by the test scripts
anyway.
Added alternate command line options for people who spell "gray" with an "e".
They do the same thing.
Updated the documentation.
Pkgsrc changes:
- The package supports installation to DESTDIR.
- Shortened COMMENT (hint by pkglint).
- This is purely a Perl module.
Changes since version 0.34:
===========================
1.01 13 Mar 2007
- Increase CPANTS score.
Pkgsrc changes:
- The package supports installation to DESTDIR.
- This is purely a Perl module.
Changes since version 2.131:
============================
2.132 2007-03-22
packaging improvements
* The recursive download of remote folders was enabled.
* The quick search condition for each folder now persists between sessions.
* The selection now persists when the quick search condition is updated.
* SSL ports in Advanced tab of the account prefs dialog are now automatically
set when SSL is enabled.
* The '--open' command line option which open messages in new window was added.
* Quoted-printable or base64 encoding is now forced on PGP/MIME signing
instead of stripping trailing spaces
(except for the case of ISO-2022-JP encoding).
* The quoted-pair in From header is now processed correctly when displaying
its name.
* The performance of 'Mark all read' on IMAP folders was improved.
* The bug that the character '+' in address was treated as URI-escaped
space was fixed.
* Unix: the problem that 'Get' and 'Get all' button could not be clicked
after receiving while mouse pointer was over the buttons was fixed.
2.4.1:
* If shift or control key is pressed on address completion, only address
string is inserted now.
