Phil Pennock [Sat, 5 Jun 2010 09:10:08 +0000 (09:10 +0000)]
Add an openssl_options main configuration option, to allow administrators to
shoot themselves in each foot in turn. The default value is chosen to avoid
a change in behaviour, but since it is disabling a security countermeasure,
I'd like to change the default to be "no options". Fixes: #994
John Jetmore [Sat, 5 Jun 2010 03:08:01 +0000 (03:08 +0000)]
two more header order changes
John Jetmore [Sat, 5 Jun 2010 02:45:01 +0000 (02:45 +0000)]
fix output for SSL logging format change
John Jetmore [Sat, 5 Jun 2010 02:25:16 +0000 (02:25 +0000)]
munge caller's GECOS in output to make more portable across test accounts
John Jetmore [Sat, 5 Jun 2010 01:58:39 +0000 (01:58 +0000)]
runtest - trim trailing whitespace from otherwise un-rewritten host lines in munge function
0190, 0244, 0297, 0350, 0430 - standardize trailing whitespace
0403 - lingering header order fix, fix change in lookup type encoding after dkim lookup type removal
John Jetmore [Fri, 4 Jun 2010 18:20:51 +0000 (18:20 +0000)]
With a few minor exceptions for tests that had additional concerns and tests I don't have working in my environment yet, this should be the last of the header-order-related changes
John Jetmore [Thu, 3 Jun 2010 17:24:39 +0000 (17:24 +0000)]
updating test suite - rolling back incomplete fix for header order change (header order changed back to old behavior)
John Jetmore [Thu, 3 Jun 2010 15:20:41 +0000 (15:20 +0000)]
Added DISABLE_DKIM option to EDITME, leaving some breadcrumbs about it being turned on by default
Nigel Metheringham [Thu, 3 Jun 2010 12:00:38 +0000 (12:00 +0000)]
Added some release maintenance stuff
Phil Pennock [Thu, 3 Jun 2010 08:19:13 +0000 (08:19 +0000)]
Include check_rfc2047_length in configure.default to raise the visibility
because we're seeing more Russian administrators get bitten by this.
Idealism says this option is set correctly by default. Pragmatism says not.
There's a good argument for the idealism but if we see the problems escalate
then the idealism will have lost and we should, IMO, switch.
Phil Pennock [Thu, 3 Jun 2010 05:43:24 +0000 (05:43 +0000)]
Document Date/Message-Id/Resent-* as first 4.73 patch.
Phil Pennock [Thu, 3 Jun 2010 05:40:27 +0000 (05:40 +0000)]
The Date: and Message-Id: headers should normally be *appended* to a message,
and only *prepended* when are Resent-* headers. Regression was introduced
with the prepend logic in Exim 4.70, for bug #607.
John Jetmore [Thu, 3 Jun 2010 02:42:19 +0000 (02:42 +0000)]
updates to test suite - roll back lookup changes after dkim lookup removed, strip OpenSSL version info
Phil Pennock [Tue, 1 Jun 2010 11:21:30 +0000 (11:21 +0000)]
My understanding of the new dnsdb txt lookup syntax was flawed.
Fixed the description and the last example.
Phil Pennock [Tue, 1 Jun 2010 11:13:54 +0000 (11:13 +0000)]
Provide a NewStuff description for 4.72.
Don't blame Dan Rosenberg for the incomplete hack I applied to the MBX case.
Nigel Metheringham [Sun, 30 May 2010 18:16:12 +0000 (18:16 +0000)]
Revert previous incorrect change to XSL files.
Nigel Metheringham [Sun, 30 May 2010 18:01:48 +0000 (18:01 +0000)]
Added changelog entry for MBX fix
Nigel Metheringham [Sat, 29 May 2010 19:26:31 +0000 (19:26 +0000)]
Fix documentation version numbers
Nigel Metheringham [Sat, 29 May 2010 19:23:25 +0000 (19:23 +0000)]
DKIM DNS TXT record bug fix. Fixes: #967
Nigel Metheringham [Sat, 29 May 2010 19:16:50 +0000 (19:16 +0000)]
Null initialise DKIM variable. Fixes: #986
Nigel Metheringham [Sat, 29 May 2010 19:14:06 +0000 (19:14 +0000)]
Null terminate pdkim string. Fixes: #985
Nigel Metheringham [Sat, 29 May 2010 18:59:18 +0000 (18:59 +0000)]
Stripped excess debug newline yet again...
Nigel Metheringham [Sat, 29 May 2010 17:09:09 +0000 (17:09 +0000)]
Added previously missed changelog entries
Phil Pennock [Sat, 29 May 2010 12:11:48 +0000 (12:11 +0000)]
Protect against symlink attacks on MBX lockfile in /tmp as best we can:
* if system supports O_NOFOLLOW, use it, protection complete
* else detect the attack "too late" and abort, where at worst an empty file
has been created as the attacked user
Our hands are tied by not changing the locking algorithm.
fixes: bug #989
Nigel Metheringham [Fri, 28 May 2010 15:38:18 +0000 (15:38 +0000)]
Updates to make doc build on tahini
Nigel Metheringham [Wed, 26 May 2010 12:26:00 +0000 (12:26 +0000)]
Prevent hardlink attack on mbox sticky mail directory. fixes: bug #988
John Jetmore [Tue, 23 Mar 2010 14:06:48 +0000 (14:06 +0000)]
JJ/03 installed exipick
20100323.0, fixing doc bug (debian 574778)
Nigel Metheringham [Fri, 5 Mar 2010 16:28:04 +0000 (16:28 +0000)]
Added umask to procmail example Fixes: #671
Nigel Metheringham [Fri, 5 Mar 2010 16:26:46 +0000 (16:26 +0000)]
Fix for unknown responses from Dovecot authenticator. Fixes: #954
Nigel Metheringham [Fri, 5 Mar 2010 16:11:11 +0000 (16:11 +0000)]
Fix for unknown responses from Dovecot authenticator. Fixes: #954
Nigel Metheringham [Fri, 5 Mar 2010 16:08:14 +0000 (16:08 +0000)]
Documentation fix for max_rcpts. Fixes: #955
Nigel Metheringham [Fri, 5 Mar 2010 16:03:59 +0000 (16:03 +0000)]
Spacing change on Makefile directives (syntax fix). Fixes: #961
Nigel Metheringham [Fri, 5 Mar 2010 16:03:59 +0000 (16:03 +0000)]
Spacing change on Makefile directives (syntax fix). Fixes: #961
Nigel Metheringham [Fri, 5 Mar 2010 15:59:29 +0000 (15:59 +0000)]
Support mysql stored procedures. Fixes: #965
John Jetmore [Tue, 23 Feb 2010 03:01:55 +0000 (03:01 +0000)]
Adding exipick
20100222.0, --input-dir and --finput
Michael Haardt [Fri, 19 Feb 2010 10:30:13 +0000 (10:30 +0000)]
Bug fix for yesterday's change, which worked in a production system
for quite some time and broke right after comitting it to CVS.
Michael Haardt [Thu, 18 Feb 2010 12:09:15 +0000 (12:09 +0000)]
Treat the transport option dkim_domain as a colon separated list, not
as a single string, and sign the message with each element, omitting
multiple occurences of the same signer.
The transport option dkim_domain should be renamed to dkim_add_signers.
The values of dkim_selector and dkim_private_key are expanded for
each signer available in $dkim_domain. It is unclear if signatures
for domains that already signed the mail should be omitted and if we
need a new variable for signatures to omit or if it could be hardcoded,
but this question is independent of this patch.
Nigel Metheringham [Mon, 4 Jan 2010 19:35:49 +0000 (19:35 +0000)]
Reset environment for 4.72 development
John Jetmore [Mon, 4 Jan 2010 18:16:54 +0000 (18:16 +0000)]
Updating exipick from
20061117.2 to
20100104.1, adding $max_received_linelength, $data_path, and $header_path variables; fixing documentation bugs and typos
Tom Kistner [Tue, 15 Dec 2009 08:23:15 +0000 (08:23 +0000)]
Improve log output when DKIM signing operation fails.
Tom Kistner [Mon, 7 Dec 2009 13:05:07 +0000 (13:05 +0000)]
PDKIM: Upgrade PolarSSL files to upstream version 0.12.1. Thanks to Andreas Metzler for doing the work!
Nigel Metheringham [Mon, 23 Nov 2009 13:22:05 +0000 (13:22 +0000)]
Ensure version numbers all updated
Nigel Metheringham [Mon, 23 Nov 2009 13:04:49 +0000 (13:04 +0000)]
Correct header sorting for testsuite. Required manual patching, so maybe errors. Fixes: #919
Nigel Metheringham [Mon, 23 Nov 2009 12:47:11 +0000 (12:47 +0000)]
fix for running testsuite with non-ancient gnutls. Fixes: #918
Nigel Metheringham [Mon, 23 Nov 2009 12:34:51 +0000 (12:34 +0000)]
Recommitted change to remove excess newline from debug output
Nigel Metheringham [Mon, 23 Nov 2009 12:27:52 +0000 (12:27 +0000)]
Changelog corrections. Fixes: #920, #921
Tom Kistner [Mon, 23 Nov 2009 08:34:05 +0000 (08:34 +0000)]
DKIM: fix wrong "pass" result on bodyhash mismatch
Nigel Metheringham [Fri, 20 Nov 2009 21:22:20 +0000 (21:22 +0000)]
Flag broken perl installation during build. Fixes: #915
Nigel Metheringham [Fri, 20 Nov 2009 12:18:19 +0000 (12:18 +0000)]
Enable DNSDB lookup by default. Fixes: #847
Nigel Metheringham [Thu, 19 Nov 2009 18:58:44 +0000 (18:58 +0000)]
Fixes for FreeBSD outside of ports. Fixes: #914
Nigel Metheringham [Thu, 19 Nov 2009 18:52:48 +0000 (18:52 +0000)]
Removed excessive newline in debug mode
Nigel Metheringham [Thu, 19 Nov 2009 18:51:11 +0000 (18:51 +0000)]
Better filtering of debug in test suite
Nigel Metheringham [Mon, 16 Nov 2009 19:56:54 +0000 (19:56 +0000)]
Update all copyright messages to cover 1995 - 2009. Remove tab from exim_checkaccess.src
Nigel Metheringham [Mon, 16 Nov 2009 19:50:36 +0000 (19:50 +0000)]
Update all copyright messages to cover 1995 - 2009. Remove tab from exim_checkaccess.src
Nigel Metheringham [Mon, 16 Nov 2009 19:15:36 +0000 (19:15 +0000)]
Documentation for randint. Better randomness defaults. Fixes: #722
Nigel Metheringham [Mon, 16 Nov 2009 19:10:45 +0000 (19:10 +0000)]
Documentation fix for gnutls_* options. Fixes: #913
Nigel Metheringham [Mon, 16 Nov 2009 19:06:35 +0000 (19:06 +0000)]
NewStuff updates to add missing items
Tom Kistner [Mon, 16 Nov 2009 12:47:19 +0000 (12:47 +0000)]
Fix unsigned message rejection when dkim_verify_signers is empty, and acl_smtp_dkim is defined
Nigel Metheringham [Sat, 14 Nov 2009 20:35:54 +0000 (20:35 +0000)]
Changes to work towards a 4.71 release
Tom Kistner [Sat, 14 Nov 2009 14:01:16 +0000 (14:01 +0000)]
Fix NULL pointer deref when there is no message data whatsoever
Nigel Metheringham [Fri, 13 Nov 2009 15:58:16 +0000 (15:58 +0000)]
Fixed MakeLinks build script. Fixes: #911
Nigel Metheringham [Fri, 13 Nov 2009 12:18:35 +0000 (12:18 +0000)]
Removed NetBSD3 support as no longer needed. Fixes: #908
Nigel Metheringham [Thu, 12 Nov 2009 13:02:16 +0000 (13:02 +0000)]
Correct issue with relaxed/simple handling. Fixes: #910
Nigel Metheringham [Thu, 12 Nov 2009 08:34:23 +0000 (08:34 +0000)]
Correct connect() call in dcc code. Fixes: #909
Nigel Metheringham [Wed, 11 Nov 2009 14:43:28 +0000 (14:43 +0000)]
More signed/unsigned fixes. Need confirmation that this completely deals with bug. Related: #905
Nigel Metheringham [Wed, 11 Nov 2009 10:08:01 +0000 (10:08 +0000)]
Applied signed/unsigned fixes. Need confirmation that this completely deals with bug. Related: #905
Nigel Metheringham [Tue, 10 Nov 2009 17:15:03 +0000 (17:15 +0000)]
Added lib resolv to Darwin Makefile - hopefully not breaking older versions
Nigel Metheringham [Tue, 10 Nov 2009 16:55:50 +0000 (16:55 +0000)]
Update build info for SCO
Nigel Metheringham [Mon, 9 Nov 2009 16:12:37 +0000 (16:12 +0000)]
I think this sets up the paths appropriately - probably need to use the OS-Fixups in a more sophisticated fashion. References: #904
Tom Kistner [Mon, 9 Nov 2009 14:31:24 +0000 (14:31 +0000)]
Make SUN compiler happy. Fixes #902
Tom Kistner [Mon, 9 Nov 2009 14:19:48 +0000 (14:19 +0000)]
Make SUN compiler happy. Fixes #902
Nigel Metheringham [Mon, 9 Nov 2009 10:22:10 +0000 (10:22 +0000)]
Changelog corrections
Nigel Metheringham [Sat, 7 Nov 2009 17:17:15 +0000 (17:17 +0000)]
Fix close buglet in mime handling. Fixes: #39
Nigel Metheringham [Fri, 6 Nov 2009 13:29:47 +0000 (13:29 +0000)]
Base64 decode bug fixes. Fixes: #39
Nigel Metheringham [Thu, 5 Nov 2009 19:40:51 +0000 (19:40 +0000)]
Fix signed/unsigned and UTF errors Fixes: #901
Nigel Metheringham [Thu, 5 Nov 2009 19:37:00 +0000 (19:37 +0000)]
Doc corrections from John Horne. Fixes: #899
Nigel Metheringham [Thu, 5 Nov 2009 19:28:10 +0000 (19:28 +0000)]
Transport filter timeout fix. Fixes: #898
Nigel Metheringham [Thu, 5 Nov 2009 19:24:35 +0000 (19:24 +0000)]
Documentation ownership tweaks
Nigel Metheringham [Fri, 30 Oct 2009 15:14:04 +0000 (15:14 +0000)]
Change "expr" to "expr --" in all shell scripts. Fixes: #889
Nigel Metheringham [Fri, 30 Oct 2009 15:08:25 +0000 (15:08 +0000)]
Further fix to maildirsize. Fixes: #727
Tom Kistner [Thu, 29 Oct 2009 11:08:01 +0000 (11:08 +0000)]
Fix bug in relaxed body canon.
Tom Kistner [Thu, 29 Oct 2009 10:12:28 +0000 (10:12 +0000)]
DKIM: Fix insufficient buffer space when relaxing one-word headers (One more byte makes the function look safer)
Tom Kistner [Thu, 29 Oct 2009 10:02:40 +0000 (10:02 +0000)]
DKIM: Fix insufficient buffer space when relaxing one-word headers.
Nigel Metheringham [Tue, 27 Oct 2009 14:42:57 +0000 (14:42 +0000)]
Documentation: Added changebars, fixed date
Nigel Metheringham [Mon, 26 Oct 2009 13:22:13 +0000 (13:22 +0000)]
Dovecot buffer overrun fix. Fixes: #868, Related: #889
Nigel Metheringham [Mon, 26 Oct 2009 13:18:54 +0000 (13:18 +0000)]
Dovecot buffer overrun fix. Fixes: #889
Nigel Metheringham [Mon, 26 Oct 2009 13:14:23 +0000 (13:14 +0000)]
TLS documentation bugfixes Fixes: #888
Nigel Metheringham [Mon, 26 Oct 2009 13:10:23 +0000 (13:10 +0000)]
Documentation bug fixes. Fixes: #862, #866, #875
Nigel Metheringham [Tue, 20 Oct 2009 13:10:15 +0000 (13:10 +0000)]
Improvements to LMTP delivery logging. Fixes: #807
Nigel Metheringham [Tue, 20 Oct 2009 12:46:31 +0000 (12:46 +0000)]
Documentation tweak. Related: #805
Nigel Metheringham [Tue, 20 Oct 2009 12:45:49 +0000 (12:45 +0000)]
Improvements to local interface IP addr detection. Related: #802
Nigel Metheringham [Tue, 20 Oct 2009 12:39:47 +0000 (12:39 +0000)]
Improvements to local interface IP addr detection. Fixes: #802
Tom Kistner [Mon, 19 Oct 2009 14:20:58 +0000 (14:20 +0000)]
Exempt TXT record names from sanity checks
Nigel Metheringham [Mon, 19 Oct 2009 12:57:33 +0000 (12:57 +0000)]
Documentation correction for ratelimit. Fixes: #799
Nigel Metheringham [Mon, 19 Oct 2009 12:42:13 +0000 (12:42 +0000)]
Use transport mode as default mode for maildirsize file. Fixes: #727
Nigel Metheringham [Mon, 19 Oct 2009 12:29:31 +0000 (12:29 +0000)]
Tweak mytypes.h to not redefine TRUE/FALSE
Nigel Metheringham [Mon, 19 Oct 2009 12:26:34 +0000 (12:26 +0000)]
Fixed the eximstats version number to 1.60
Nigel Metheringham [Mon, 19 Oct 2009 11:47:43 +0000 (11:47 +0000)]
Correct exiwhat mishandling log_selector = +pid. Fixes: #688
Nigel Metheringham [Mon, 19 Oct 2009 11:41:27 +0000 (11:41 +0000)]
Correct eximstats misparse. Fixes #687
Tom Kistner [Mon, 19 Oct 2009 11:36:42 +0000 (11:36 +0000)]
Allow add_header condition in DKIM ACL