Phil Pennock [Sat, 29 May 2010 12:11:48 +0000 (12:11 +0000)]
Protect against symlink attacks on MBX lockfile in /tmp as best we can:
* if system supports O_NOFOLLOW, use it, protection complete
* else detect the attack "too late" and abort, where at worst an empty file
has been created as the attacked user
Our hands are tied by not changing the locking algorithm.
fixes: bug #989
Nigel Metheringham [Fri, 28 May 2010 15:38:18 +0000 (15:38 +0000)]
Updates to make doc build on tahini
Nigel Metheringham [Wed, 26 May 2010 12:26:00 +0000 (12:26 +0000)]
Prevent hardlink attack on mbox sticky mail directory. fixes: bug #988
John Jetmore [Tue, 23 Mar 2010 14:06:48 +0000 (14:06 +0000)]
JJ/03 installed exipick
20100323.0, fixing doc bug (debian 574778)
Nigel Metheringham [Fri, 5 Mar 2010 16:28:04 +0000 (16:28 +0000)]
Added umask to procmail example Fixes: #671
Nigel Metheringham [Fri, 5 Mar 2010 16:26:46 +0000 (16:26 +0000)]
Fix for unknown responses from Dovecot authenticator. Fixes: #954
Nigel Metheringham [Fri, 5 Mar 2010 16:11:11 +0000 (16:11 +0000)]
Fix for unknown responses from Dovecot authenticator. Fixes: #954
Nigel Metheringham [Fri, 5 Mar 2010 16:08:14 +0000 (16:08 +0000)]
Documentation fix for max_rcpts. Fixes: #955
Nigel Metheringham [Fri, 5 Mar 2010 16:03:59 +0000 (16:03 +0000)]
Spacing change on Makefile directives (syntax fix). Fixes: #961
Nigel Metheringham [Fri, 5 Mar 2010 16:03:59 +0000 (16:03 +0000)]
Spacing change on Makefile directives (syntax fix). Fixes: #961
Nigel Metheringham [Fri, 5 Mar 2010 15:59:29 +0000 (15:59 +0000)]
Support mysql stored procedures. Fixes: #965
John Jetmore [Tue, 23 Feb 2010 03:01:55 +0000 (03:01 +0000)]
Adding exipick
20100222.0, --input-dir and --finput
Michael Haardt [Fri, 19 Feb 2010 10:30:13 +0000 (10:30 +0000)]
Bug fix for yesterday's change, which worked in a production system
for quite some time and broke right after comitting it to CVS.
Michael Haardt [Thu, 18 Feb 2010 12:09:15 +0000 (12:09 +0000)]
Treat the transport option dkim_domain as a colon separated list, not
as a single string, and sign the message with each element, omitting
multiple occurences of the same signer.
The transport option dkim_domain should be renamed to dkim_add_signers.
The values of dkim_selector and dkim_private_key are expanded for
each signer available in $dkim_domain. It is unclear if signatures
for domains that already signed the mail should be omitted and if we
need a new variable for signatures to omit or if it could be hardcoded,
but this question is independent of this patch.
Nigel Metheringham [Mon, 4 Jan 2010 19:35:49 +0000 (19:35 +0000)]
Reset environment for 4.72 development
John Jetmore [Mon, 4 Jan 2010 18:16:54 +0000 (18:16 +0000)]
Updating exipick from
20061117.2 to
20100104.1, adding $max_received_linelength, $data_path, and $header_path variables; fixing documentation bugs and typos
Tom Kistner [Tue, 15 Dec 2009 08:23:15 +0000 (08:23 +0000)]
Improve log output when DKIM signing operation fails.
Tom Kistner [Mon, 7 Dec 2009 13:05:07 +0000 (13:05 +0000)]
PDKIM: Upgrade PolarSSL files to upstream version 0.12.1. Thanks to Andreas Metzler for doing the work!
Nigel Metheringham [Mon, 23 Nov 2009 13:22:05 +0000 (13:22 +0000)]
Ensure version numbers all updated
Nigel Metheringham [Mon, 23 Nov 2009 13:04:49 +0000 (13:04 +0000)]
Correct header sorting for testsuite. Required manual patching, so maybe errors. Fixes: #919
Nigel Metheringham [Mon, 23 Nov 2009 12:47:11 +0000 (12:47 +0000)]
fix for running testsuite with non-ancient gnutls. Fixes: #918
Nigel Metheringham [Mon, 23 Nov 2009 12:34:51 +0000 (12:34 +0000)]
Recommitted change to remove excess newline from debug output
Nigel Metheringham [Mon, 23 Nov 2009 12:27:52 +0000 (12:27 +0000)]
Changelog corrections. Fixes: #920, #921
Tom Kistner [Mon, 23 Nov 2009 08:34:05 +0000 (08:34 +0000)]
DKIM: fix wrong "pass" result on bodyhash mismatch
Nigel Metheringham [Fri, 20 Nov 2009 21:22:20 +0000 (21:22 +0000)]
Flag broken perl installation during build. Fixes: #915
Nigel Metheringham [Fri, 20 Nov 2009 12:18:19 +0000 (12:18 +0000)]
Enable DNSDB lookup by default. Fixes: #847
Nigel Metheringham [Thu, 19 Nov 2009 18:58:44 +0000 (18:58 +0000)]
Fixes for FreeBSD outside of ports. Fixes: #914
Nigel Metheringham [Thu, 19 Nov 2009 18:52:48 +0000 (18:52 +0000)]
Removed excessive newline in debug mode
Nigel Metheringham [Thu, 19 Nov 2009 18:51:11 +0000 (18:51 +0000)]
Better filtering of debug in test suite
Nigel Metheringham [Mon, 16 Nov 2009 19:56:54 +0000 (19:56 +0000)]
Update all copyright messages to cover 1995 - 2009. Remove tab from exim_checkaccess.src
Nigel Metheringham [Mon, 16 Nov 2009 19:50:36 +0000 (19:50 +0000)]
Update all copyright messages to cover 1995 - 2009. Remove tab from exim_checkaccess.src
Nigel Metheringham [Mon, 16 Nov 2009 19:15:36 +0000 (19:15 +0000)]
Documentation for randint. Better randomness defaults. Fixes: #722
Nigel Metheringham [Mon, 16 Nov 2009 19:10:45 +0000 (19:10 +0000)]
Documentation fix for gnutls_* options. Fixes: #913
Nigel Metheringham [Mon, 16 Nov 2009 19:06:35 +0000 (19:06 +0000)]
NewStuff updates to add missing items
Tom Kistner [Mon, 16 Nov 2009 12:47:19 +0000 (12:47 +0000)]
Fix unsigned message rejection when dkim_verify_signers is empty, and acl_smtp_dkim is defined
Nigel Metheringham [Sat, 14 Nov 2009 20:35:54 +0000 (20:35 +0000)]
Changes to work towards a 4.71 release
Tom Kistner [Sat, 14 Nov 2009 14:01:16 +0000 (14:01 +0000)]
Fix NULL pointer deref when there is no message data whatsoever
Nigel Metheringham [Fri, 13 Nov 2009 15:58:16 +0000 (15:58 +0000)]
Fixed MakeLinks build script. Fixes: #911
Nigel Metheringham [Fri, 13 Nov 2009 12:18:35 +0000 (12:18 +0000)]
Removed NetBSD3 support as no longer needed. Fixes: #908
Nigel Metheringham [Thu, 12 Nov 2009 13:02:16 +0000 (13:02 +0000)]
Correct issue with relaxed/simple handling. Fixes: #910
Nigel Metheringham [Thu, 12 Nov 2009 08:34:23 +0000 (08:34 +0000)]
Correct connect() call in dcc code. Fixes: #909
Nigel Metheringham [Wed, 11 Nov 2009 14:43:28 +0000 (14:43 +0000)]
More signed/unsigned fixes. Need confirmation that this completely deals with bug. Related: #905
Nigel Metheringham [Wed, 11 Nov 2009 10:08:01 +0000 (10:08 +0000)]
Applied signed/unsigned fixes. Need confirmation that this completely deals with bug. Related: #905
Nigel Metheringham [Tue, 10 Nov 2009 17:15:03 +0000 (17:15 +0000)]
Added lib resolv to Darwin Makefile - hopefully not breaking older versions
Nigel Metheringham [Tue, 10 Nov 2009 16:55:50 +0000 (16:55 +0000)]
Update build info for SCO
Nigel Metheringham [Mon, 9 Nov 2009 16:12:37 +0000 (16:12 +0000)]
I think this sets up the paths appropriately - probably need to use the OS-Fixups in a more sophisticated fashion. References: #904
Tom Kistner [Mon, 9 Nov 2009 14:31:24 +0000 (14:31 +0000)]
Make SUN compiler happy. Fixes #902
Tom Kistner [Mon, 9 Nov 2009 14:19:48 +0000 (14:19 +0000)]
Make SUN compiler happy. Fixes #902
Nigel Metheringham [Mon, 9 Nov 2009 10:22:10 +0000 (10:22 +0000)]
Changelog corrections
Nigel Metheringham [Sat, 7 Nov 2009 17:17:15 +0000 (17:17 +0000)]
Fix close buglet in mime handling. Fixes: #39
Nigel Metheringham [Fri, 6 Nov 2009 13:29:47 +0000 (13:29 +0000)]
Base64 decode bug fixes. Fixes: #39
Nigel Metheringham [Thu, 5 Nov 2009 19:40:51 +0000 (19:40 +0000)]
Fix signed/unsigned and UTF errors Fixes: #901
Nigel Metheringham [Thu, 5 Nov 2009 19:37:00 +0000 (19:37 +0000)]
Doc corrections from John Horne. Fixes: #899
Nigel Metheringham [Thu, 5 Nov 2009 19:28:10 +0000 (19:28 +0000)]
Transport filter timeout fix. Fixes: #898
Nigel Metheringham [Thu, 5 Nov 2009 19:24:35 +0000 (19:24 +0000)]
Documentation ownership tweaks
Nigel Metheringham [Fri, 30 Oct 2009 15:14:04 +0000 (15:14 +0000)]
Change "expr" to "expr --" in all shell scripts. Fixes: #889
Nigel Metheringham [Fri, 30 Oct 2009 15:08:25 +0000 (15:08 +0000)]
Further fix to maildirsize. Fixes: #727
Tom Kistner [Thu, 29 Oct 2009 11:08:01 +0000 (11:08 +0000)]
Fix bug in relaxed body canon.
Tom Kistner [Thu, 29 Oct 2009 10:12:28 +0000 (10:12 +0000)]
DKIM: Fix insufficient buffer space when relaxing one-word headers (One more byte makes the function look safer)
Tom Kistner [Thu, 29 Oct 2009 10:02:40 +0000 (10:02 +0000)]
DKIM: Fix insufficient buffer space when relaxing one-word headers.
Nigel Metheringham [Tue, 27 Oct 2009 14:42:57 +0000 (14:42 +0000)]
Documentation: Added changebars, fixed date
Nigel Metheringham [Mon, 26 Oct 2009 13:22:13 +0000 (13:22 +0000)]
Dovecot buffer overrun fix. Fixes: #868, Related: #889
Nigel Metheringham [Mon, 26 Oct 2009 13:18:54 +0000 (13:18 +0000)]
Dovecot buffer overrun fix. Fixes: #889
Nigel Metheringham [Mon, 26 Oct 2009 13:14:23 +0000 (13:14 +0000)]
TLS documentation bugfixes Fixes: #888
Nigel Metheringham [Mon, 26 Oct 2009 13:10:23 +0000 (13:10 +0000)]
Documentation bug fixes. Fixes: #862, #866, #875
Nigel Metheringham [Tue, 20 Oct 2009 13:10:15 +0000 (13:10 +0000)]
Improvements to LMTP delivery logging. Fixes: #807
Nigel Metheringham [Tue, 20 Oct 2009 12:46:31 +0000 (12:46 +0000)]
Documentation tweak. Related: #805
Nigel Metheringham [Tue, 20 Oct 2009 12:45:49 +0000 (12:45 +0000)]
Improvements to local interface IP addr detection. Related: #802
Nigel Metheringham [Tue, 20 Oct 2009 12:39:47 +0000 (12:39 +0000)]
Improvements to local interface IP addr detection. Fixes: #802
Tom Kistner [Mon, 19 Oct 2009 14:20:58 +0000 (14:20 +0000)]
Exempt TXT record names from sanity checks
Nigel Metheringham [Mon, 19 Oct 2009 12:57:33 +0000 (12:57 +0000)]
Documentation correction for ratelimit. Fixes: #799
Nigel Metheringham [Mon, 19 Oct 2009 12:42:13 +0000 (12:42 +0000)]
Use transport mode as default mode for maildirsize file. Fixes: #727
Nigel Metheringham [Mon, 19 Oct 2009 12:29:31 +0000 (12:29 +0000)]
Tweak mytypes.h to not redefine TRUE/FALSE
Nigel Metheringham [Mon, 19 Oct 2009 12:26:34 +0000 (12:26 +0000)]
Fixed the eximstats version number to 1.60
Nigel Metheringham [Mon, 19 Oct 2009 11:47:43 +0000 (11:47 +0000)]
Correct exiwhat mishandling log_selector = +pid. Fixes: #688
Nigel Metheringham [Mon, 19 Oct 2009 11:41:27 +0000 (11:41 +0000)]
Correct eximstats misparse. Fixes #687
Tom Kistner [Mon, 19 Oct 2009 11:36:42 +0000 (11:36 +0000)]
Allow add_header condition in DKIM ACL
Nigel Metheringham [Mon, 19 Oct 2009 11:25:31 +0000 (11:25 +0000)]
Further minor tweak to sha256 inclusion. Fixes: #674 yet again
Tom Kistner [Fri, 16 Oct 2009 13:10:34 +0000 (13:10 +0000)]
Correct OPENSSL_VERSION_NUMBER #ifdef
Nigel Metheringham [Fri, 16 Oct 2009 12:49:43 +0000 (12:49 +0000)]
Correction changelog bug id. Fixes: #622
Nigel Metheringham [Fri, 16 Oct 2009 12:43:54 +0000 (12:43 +0000)]
Correcting bug id patch is for
Nigel Metheringham [Fri, 16 Oct 2009 12:33:09 +0000 (12:33 +0000)]
prepend (not append) Resent-Message-ID and Resent-Date. fixes: #508
Tom Kistner [Fri, 16 Oct 2009 11:38:01 +0000 (11:38 +0000)]
Limit SHA256 support to OpenSSL >= 0.9.8
Nigel Metheringham [Fri, 16 Oct 2009 10:36:52 +0000 (10:36 +0000)]
doc os fixup script from Phil Pennock. fixes: #765
Nigel Metheringham [Fri, 16 Oct 2009 09:51:12 +0000 (09:51 +0000)]
gnutls_compat_mode to allow compatibility with broken clients. fixes: #665
Tom Kistner [Fri, 16 Oct 2009 09:10:40 +0000 (09:10 +0000)]
Bugzilla #722
Tom Kistner [Fri, 16 Oct 2009 08:52:05 +0000 (08:52 +0000)]
DKIM Doc update
Tom Kistner [Fri, 16 Oct 2009 08:49:47 +0000 (08:49 +0000)]
Bugzilla #643
Tom Kistner [Fri, 16 Oct 2009 08:46:11 +0000 (08:46 +0000)]
Bugzilla #887
Tom Kistner [Fri, 16 Oct 2009 08:40:53 +0000 (08:40 +0000)]
Bugzilla #871
Tom Kistner [Fri, 16 Oct 2009 08:34:50 +0000 (08:34 +0000)]
OpenSSL: Make sure sha256 digest is available
Tom Kistner [Fri, 16 Oct 2009 07:46:13 +0000 (07:46 +0000)]
Add dkim_disable_verify to configure.default where it makes sense
Tom Kistner [Fri, 16 Oct 2009 07:35:42 +0000 (07:35 +0000)]
Brush up README.UPDATING
Tom Kistner [Fri, 16 Oct 2009 07:30:54 +0000 (07:30 +0000)]
Make sure -lpcre is set in default makefile. Needed for eximon as well.
Tom Kistner [Thu, 15 Oct 2009 15:44:51 +0000 (15:44 +0000)]
Make sure dkim_signers is properly terminated
Tom Kistner [Thu, 15 Oct 2009 15:38:01 +0000 (15:38 +0000)]
Fix eximon build
Tom Kistner [Thu, 15 Oct 2009 13:49:43 +0000 (13:49 +0000)]
Fix dkim_cur_signer undupe logic
Tom Kistner [Thu, 15 Oct 2009 09:22:44 +0000 (09:22 +0000)]
Add some meaningful debug output
Tom Kistner [Thu, 15 Oct 2009 08:27:37 +0000 (08:27 +0000)]
Promote dkim_cur_signer to expansion variable
Tom Kistner [Thu, 15 Oct 2009 08:06:23 +0000 (08:06 +0000)]
Fix dkim_signers condition logic / Renamed dkim_signing_domains to dkim_signers