X-Git-Url: https://git.exim.org/users/jgh/exim.git/blobdiff_plain/c8f419afe4b673ce93b7db07eb3093d8a07afb5f..c3da38a12a2372a7f6a48be97ebfd80aeceda828:/src/README.UPDATING diff --git a/src/README.UPDATING b/src/README.UPDATING index b619f5e03..94a1420eb 100644 --- a/src/README.UPDATING +++ b/src/README.UPDATING @@ -26,6 +26,49 @@ The rest of this document contains information about changes in 4.xx releases that might affect a running system. +Exim version 4.94 +----------------- + +Some Transports now refuse to use tainted data in constructing their delivery +location; this WILL BREAK configurations which are not updated accordingly. + +In particular: any Transport use of $local_user which has been relying upon +check_local_user far away in the Router to make it safe, should be updated to +replace $local_user with $local_part_verified. + + +Exim version 4.93 +----------------- + +For a detailed list of changes that might affect Exim's operation with +an unchanged configuration, please see the doc/ChangeLog file. + +Build: + + * SUPPORT_DMARC replaces EXPERIMENTAL_DMARC + + * DISABLE_TLS replaces SUPPORT_TLS + + * Bump the version for the local_scan API. + +Runtime: + + * smtp transport option hosts_try_fastopen defaults to "*". + + * DNSSec is requested (not required) for all queries. (This seemes to + ask for trouble if your resolver is a systemd-resolved.) + + * Generic router option retry_use_local_part defaults to "true" under specific + pre-conditions. + + * Introduce a tainting mechanism for values read from untrusted sources. + + * Use longer file names for temporary spool files (this avoids + name conflicts with spool on a shared file system). + + * Use dsn_from main config option (was ignored previously). + + Exim version 4.92 -----------------