X-Git-Url: https://git.exim.org/exim.git/blobdiff_plain/b8514d1960e259d49ab2c84c89eba52ab993da3f..b07d141af23f2ab160eba2b58a834baee513b3f8:/doc/doc-txt/NewStuff diff --git a/doc/doc-txt/NewStuff b/doc/doc-txt/NewStuff index ecb9814f4..46e6254bb 100644 --- a/doc/doc-txt/NewStuff +++ b/doc/doc-txt/NewStuff @@ -6,6 +6,25 @@ Before a formal release, there may be quite a lot of detail so that people can test from the snapshots or the Git before the documentation is updated. Once the documentation is updated, this file is reduced to a short list. +Version 4.96 +------------ + + 1. A new ACL condition: seen. Records/tests a timestamp against a key. + + 2. A variant of the "mask" expansion operator to give normalised IPv6. + + 3. UTC output option for exim_dumpdb, exim_fixdb. + + 4. An event for failing TLS connects to the daemon. + + 5. Tainted data used for a query-style lookup should be quoted using the + expansion item for the lookup type. If not, a warning will be written to + the main and panic logs. A future release will enforce this by failing + the lookup. + + 6. The ACL "debug" control gains a "stop" option. + + Version 4.95 ------------ @@ -33,6 +52,36 @@ Version 4.95 db file, replacing the previous prefix to the SQL string (which had issues when the SQL used tainted values). + 9. Lsearch lookups accept a "ret=full" option, to return both the portion + of the line matching the key, and the remainder. + +10. A command-line option to have a daemon not create a notifier socket. + +11. Faster TLS startup. When various configuration options contain no + expandable elements, the information can be preloaded and cached rather + than the previous behaviour of always loading at startup time for every + connection. This helps particularly for the CA bundle. + +12. Proxy Protocol Timeout is configurable via "proxy_protocol_timeout" + main config option. + +13. Option "smtp_accept_max_per_connection" is now expanded. + +14. Log selector "queue_time_exclusive", enabled by default, to exclude the + time taken for reception from QT log elements. + +15. Main option "smtp_backlog_monitor", to set a level above which listen + socket backlogs are logged. + +16. Main option "hosts_require_helo", requiring HELO or EHLO before MAIL. + +17. A main config option "allow_insecure_tainted_data" allows to turn + +18. TLS ALPN handling. By default, refuse TLS connections that try to specify + a non-smtp (eg. http) use. Options for customising. + +19. Support for MacOS (darwin) has been dropped. + Version 4.94 ------------ @@ -58,7 +107,7 @@ Version 4.94 7. Named-list definitions can now be prefixed "hide" so that "-bP" commands do not output the content. Previously this could only be done on options. - 8. As an exerimental feature, the dovecot authenticatino driver supports inet + 8. As an experimental feature, the dovecot authentication driver supports inet sockets. Previously it was unix-domain sockets only. 9. The ACL control "queue_only" can also be spelled "queue", and now takes an @@ -85,7 +134,7 @@ Version 4.94 16. An option on all single-key lookups, to return (on a hit) a de-tainted version of the lookup key rather than the looked-up data. -17. $domain_data and $localpart_data are now set by all list-match successes. +17. $domain_data and $local_part_data are now set by all list-match successes. Previously only list items that performed lookups did so. Also, matching list items that are tail-match or RE-match now set the numeric variables $0 (etc) in the same way os other RE matches.