X-Git-Url: https://git.exim.org/exim.git/blobdiff_plain/20395676aba7fa5eb9a2c5e0b9f582ec2b3e71e4..f0a4098c909b11829a143fb558156c1d7e12c3f9:/doc/doc-txt/NewStuff?ds=inline diff --git a/doc/doc-txt/NewStuff b/doc/doc-txt/NewStuff index 0ef9ab25e..89df66ba2 100644 --- a/doc/doc-txt/NewStuff +++ b/doc/doc-txt/NewStuff @@ -6,55 +6,60 @@ Before a formal release, there may be quite a lot of detail so that people can test from the snapshots or the Git before the documentation is updated. Once the documentation is updated, this file is reduced to a short list. -Version 4.95 +Version 4.97 ------------ - 1. The fast-ramp two phase queue run support, previously experimental, is - now supported by default. + 1. The expansion-test facility (exim -be) can set variables. - 2. The native SRS support, previously experimental, is now supported. It is - not built unless specified in the Local/Makefile. + 2. An event on a failing SMTP AUTH, for both client and server operations. - 3. TLS resumption support, previously experimental, is now supported and - included in default builds. + 3. Variable $sender_helo_verified with the result of an ACL "verify = helo". - 4. Single-key LMDB lookups, previously experimental, are now supported. - The support is not built unless specified in the Local/Makefile. + 4. Predefined macros for expansion items, operators, conditions and variables. - 5. Option "message_linelength_limit" on the smtp transport to enforce (by - default) the RFC 998 character limit. + 5. The smtp transport option "max_rcpt" is now expanded before use. - 6. An option to ignore the cache on a lookup. + 6. The tls_eccurve option for OpenSSL now takes a list of group names. - 7. Quota checking during reception (i.e. at SMTP time) for appendfile- - transport-managed quotas. + 7. Queue runners for several queues can now be started from one daemon. - 8. Sqlite lookups accept a "file=" option to specify a per-operation - db file, replacing the previous prefix to the SQL string (which had - issues when the SQL used tainted values). + 8. New utility exim_msgdate converts message-ids to human readable format. - 9. Lsearch lookups accept a "ret=full" option, to return both the portion - of the line matching the key, and the remainder. + 9. An expansion operator for wrapping long header lines. -10. A command-line option to have a daemon not create a notifier socket. + 10. A commandline option to print just the message IDs of the queue -11. Faster TLS startup. When various configuration options contain no - expandable elements, the information can be preloaded and cached rather - than the provious behaviour of always loading at startup time for every - connection. This helps particularly for the CA bundle. + 11. An option for the ${readsocket } expansion to set an SNI for TLS. -12. Proxy Protocol Timeout is configurable via "proxy_protocol_timeout" - main config option. + 12. The ACL remove_header modifier can take a pattern. -13. Option "smtp_accept_msx_per_connection" is now expanded. + 13. Variable $recipients_list, a properly-quoted exim list. -14. Log selector "queue_size_exclusive", enabled by default, to exclude the - time taken for reception from QT log elements. + 14. A log_selector for an incoming connection ID. -15. Main option "smtp_backlog_monitor", to set a level abve which listen - socket backlogs are logged. +Version 4.96 +------------ -16. Main option "hosts_require_helo", requiring HELO or EHLO before MAIL. + 1. A new ACL condition: seen. Records/tests a timestamp against a key. + + 2. A variant of the "mask" expansion operator to give normalised IPv6. + + 3. UTC output option for exim_dumpdb, exim_fixdb. + + 4. An event for failing TLS connects to the daemon. + + 5. The ACL "debug" control gains options "stop", "pretrigger" and "trigger". + + 6. Query-style lookups are now checked for quoting, if the query string is + built using untrusted data ("tainted"). For now lack of quoting is merely + logged; a future release will upgrade this to an error. + + 7. The expansion conditions match_ and inlist now set $value for + the expansion of the "true" result of the ${if}. With a static list, this + can be used for de-tainting. + + 8. Recipient verify callouts now set $domain_data & $local_part_data, with + de-tainted values. Version 4.95 ------------ @@ -90,16 +95,29 @@ Version 4.95 11. Faster TLS startup. When various configuration options contain no expandable elements, the information can be preloaded and cached rather - than the provious behaviour of always loading at startup time for every + than the previous behaviour of always loading at startup time for every connection. This helps particularly for the CA bundle. 12. Proxy Protocol Timeout is configurable via "proxy_protocol_timeout" main config option. -13. Option "smtp_accept_msx_per_connection" is now expanded. +13. Option "smtp_accept_max_per_connection" is now expanded. + +14. Log selector "queue_time_exclusive", enabled by default, to exclude the + time taken for reception from QT log elements. + +15. Main option "smtp_backlog_monitor", to set a level above which listen + socket backlogs are logged. + +16. Main option "hosts_require_helo", requiring HELO or EHLO before MAIL. + +17. A main config option "allow_insecure_tainted_data" allows to turn + +18. TLS ALPN handling. By default, refuse TLS connections that try to specify + a non-smtp (eg. http) use. Options for customising. + +19. Support for MacOS (darwin) has been dropped. -13. A main config option "allow_insecure_tainted_data" allows to turn - taint errors into warnings. Version 4.94 ------------