drop the security issue hint, it is wrong for 4.98
[exim-website.git] / templates / web / index.xsl
index 66b055cba0a5dcb945c1d5f5bb91c2b5faad1efa..937c0516b8cd75ee93fd336c193ce3164d9a6722 100644 (file)
                                <a href="https://www.exim.org/">
                                        <img src="i/exim-blue-ld-87x65.png" alt="Exim Logo" width="87" height="65"/>
                                </a>
-                               <xsl:text>Exim is a message transfer agent (MTA) developed at the </xsl:text>
+                               <xsl:text>Exim is a message transfer agent (MTA) originally developed at the </xsl:text>
                                <a href="https://www.cam.ac.uk/" title="University of Cambridge Home page">University of Cambridge</a>
                                <xsl:text> for use on Unix systems connected to the Internet. It is freely available under the terms of the </xsl:text>
                                <a href="https://www.gnu.org/licenses/gpl.html" title="GPL Information">GNU General Public Licence</a>
-                               <xsl:text>. In style it is similar to </xsl:text>
-                               <a href="http://freecode.com/projects/smail/" rel="nofollow">Smail 3</a>
-                               <xsl:text>, but its facilities are more general. There is a great deal of flexibility in the way mail can be routed, and there are extensive facilities for checking incoming mail. Exim can be installed in place of </xsl:text>
+                               <xsl:text>. In style it is similar to Smail 3,
+                               but its facilities are more general. There is a great deal of flexibility in the way mail can be routed, and there are extensive facilities for checking incoming mail. Exim can be installed in place of </xsl:text>
                                <a href="https://www.proofpoint.com/us/sendmail-open-source" title="Sendmail home page" rel="nofollow">Sendmail</a>
                                <xsl:text>, although the configuration of Exim is quite different.</xsl:text>
                        </p>
 
       <!-- Version Information -->
-         <p id="obsolete_version_info"><xsl:text>All versions of Exim previous to version </xsl:text><xsl:value-of select="/content/current_version"/><xsl:text> are now obsolete. The last 3.x release was 3.36. It is obsolete and should not be used.</xsl:text>
+         <p id="obsolete_version_info"><xsl:text>All versions of Exim previous to version </xsl:text><xsl:value-of select="/content/current_version"/><xsl:text> are now obsolete. The last 3.x release was 3.36. It is twenty years obsolete and should not be used.</xsl:text>
          </p>
 
          <p id="version_info">
-            <xsl:text>The current version is </xsl:text> <xsl:value-of select="/content/current_version"/><xsl:text>.</xsl:text> </br>
+            <xsl:text>The current version is </xsl:text> <xsl:value-of select="/content/current_version"/><xsl:text>.</xsl:text> <br/>
+       </p>
+
+       <p>
+       <!--
+       <xsl:text>This is a security release. It addresses the SMTP smuggling attack to which SMTP servers may be vulnerable. See </xsl:text>
+       <a href="https://bugs.exim.org/show_bug.cgi?id=3063">our bugtracker (Bug 3063)</a>
+       <xsl:text> for further information. Exim got </xsl:text>
+       <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-51766">CVE-2023-51766</a>
+       <xsl:text> assigned for this issue.</xsl:text>
+       </p>
+       -->
+
+       <p>
            <xsl:text>If necessary, we publish maintenance releases. These releases are mainly intended for package maintainers.</xsl:text>
+        </p>
 
-           <!--
-           This is a security release.  See <a href="{$staticroot}/doc/security/CVE-2020-qualys">CVE-2020-qualys</a> or
-           <a href="https://www.qualys.com/2021/05/04/21nails/21nails.txt">at the reporter's (Qualys) site</a>.
-           -->
-
-         </p>
+        <!--
+         <p>
+           <xsl:text>Currently we're working on a security release. This will be 4.96.1. Please see </xsl:text>
+           <a href="static/doc/security/CVE-2023-zdi.txt">this document for more detailed information.</a>
+       </p>
+       -->
 
          <p id="beta_version_info">
             <xsl:text>There may be beta versions available from the ftp sites in the Testing directory. Many people are using these without problems, but they are not recommended unless you are willing to work with beta software.</xsl:text>
                 <!-- Book Information -->
 
                        <p id="book_info">
-                               <a href="https://www.uit.co.uk/the-exim-smtp-mail-server">
+                               <a href="https://www.uit.co.uk/all-books/the-exim-smtp-mail-server.html">
                                        <img src="i/exim-book.png" width="74" height="100"/>
                                </a>
                                <xsl:text>You may wish to purchase </xsl:text>
-                               <a href="https://www.uit.co.uk/the-exim-smtp-mail-server.html">The Exim SMTP Mail Server</a>
+                               <a href="https://www.uit.co.uk/all-books/the-exim-smtp-mail-server.html">The Exim SMTP Mail Server</a>
                                <xsl:text> book, written by the original author of Exim, </xsl:text>
                                <a href="https://en.wikipedia.org/wiki/Philip_Hazel">Philip Hazel</a>
                                <xsl:text>.</xsl:text>
             <xsl:text>The following organizations provide services which help the Exim project:</xsl:text>
             <ul id="sponsor_list">
                <li class="sponsor">
-                  <a href="https://www.cam.ac.uk/">
-                     <img src="i/cambridge-150x39.png" width="150" height="39" alt="University of Cambridge" class="sponsor_logo"/>
-                     <xsl:text>The University of Cambridge</xsl:text>
-                  </a>
-                  <xsl:text> hosts the central Exim website and domain.</xsl:text>
-               </li>
-               <li class="sponsor">
-                  <a href="https://www.bytemark.co.uk/">
-                     <xsl:text>Bytemark</xsl:text>
+                  <a href="https://www.mythic-beasts.com/">
+                     <xsl:text>Mythic Beasts</xsl:text>
                   </a>
                   <xsl:text> provide us with a VM for running the buildfarm, for the testsuite.</xsl:text>
                </li>
                   </a>
                   <xsl:text> provide us a Mac Mini for our buildfarm, keeping macOS supported.</xsl:text>
                </li>
+               <li class="sponsor">
+                  <a href="https://schlittermann.de/">
+                     <xsl:text>Schlittermann - Internet &amp; Unix Support</xsl:text>
+                  </a>
+                  <xsl:text> provide us resources for hosting and administering the exim.org infrastructure.</xsl:text>
+               </li>
             </ul>
          </div>