d89b18cfe8Autobuild autoformatter for 67025
Ruediger Oertel
2011-04-21 11:25:27 +00:00
fca71a0c39Updating link to change in openSUSE:Factory/exim revision 10.0
OBS User buildservice-autocommit
2011-04-21 11:25:27 +00:00
f0498e94ffAccepting request 67025 from server:mail
Ruediger Oertel
2011-04-21 11:25:07 +00:00
f7af4bf393- postgresql-enabled build when build_with_pgsql is defined (which is done in a linked package named server:mail/exim-postgresql)
Peter Poeml
2011-03-10 18:42:26 +00:00
61aa86ef20Autobuild autoformatter for 60121
Ruediger Oertel
2011-02-07 22:57:23 +00:00
11b73ed588Accepting request 60121 from server:mail
Ruediger Oertel
2011-02-07 22:57:15 +00:00
2ae5632d35Report exim-4.12-tail issue upstream and add the meta information to the header of the patch.
Lars Müller
2011-02-06 16:10:18 +00:00
d66b1e9a61- Workround for PCRE version dependancy in version reporting; (beo#1073).
Lars Müller
2011-02-04 22:21:53 +00:00
977e36dc8b- update to 4.74 - Failure to get a lock on a hints database can have serious consequences so log it to the panic log. - Log LMTP confirmation messages in the same way as SMTP, controlled using the smtp_confirmation log selector. - Include the error message when we fail to unlink a spool file. - Bugzilla 139: Support dynamically loaded lookups as modules. - Bugzilla 139: Documentation and portability issues. Avoid GNU Makefile-isms, let Exim continue to build on BSD. Handle per-OS dynamic-module compilation flags. - Let /dev/null have normal permissions. The 4.73 fixes were a little too stringent and complained about the permissions on /dev/null. Exempt it from some checks. - Report version information for many libraries, including Exim version information for dynamically loaded libraries. Created version.h, now support a version extension string for distributors who patch heavily. Dynamic module ABI change. - CVE-2011-0017 - check return value of setuid/setgid. This is a privilege escalation vulnerability whereby the Exim run-time user can cause root to append content of the attacker's choosing to arbitrary files. - Bugzilla 1041: merged DCC maintainer's fixes for return code. - Bugzilla 1071: fix delivery logging with untrusted macros. If dropping privileges for untrusted macros, we disabled normal logging on the basis that it would fail; for the Exim run-time user, this is not the case, and it resulted in successful deliveries going unlogged. - update to 4.73 - Date: & Message-Id: revert to normally being appended to a message, only prepend for the Resent-* case. Fixes regression introduced in Exim 4.70 by NM/22 for Bugzilla 607. - Include check_rfc2047_length in configure.default because we're seeing increasing numbers of administrators be bitten by this. - Added DISABLE_DKIM and comment to src/EDITME - Bugzilla 994: added openssl_options main configuration option. - Bugzilla 995: provide better SSL diagnostics on failed reads. - Bugzilla 834: provide a permit_coredump option for pipe transports. - Adjust NTLM authentication to handle SASL Initial Response. - If TLS negotiated an anonymous cipher, we could end up with SSL but without a peer certificate, leading to a segfault because of an assumption that peers always have certificates. Be a little more paranoid. Problem reported by Martin Tscholak. - Bugzilla 926: switch ClamAV to use the new zINSTREAM API for content filtering; old API available if built with WITH_OLD_CLAMAV_STREAM=yes NB: ClamAV planning to remove STREAM in "middle of 2010". CL also introduces -bmalware, various -d+acl logging additions and more caution in buffer sizes. - Implemented reverse_ip expansion operator. - Bugzilla 937: provide a "debug" ACL control. - Bugzilla 922: Documentation dusting, patch provided by John Horne. - Bugzilla 973: Implement --version. - Bugzilla 752: Refuse to build/run if Exim user is root/0. - Build without WITH_CONTENT_SCAN. Path from Andreas Metzler. - Bugzilla 816: support multiple condition rules on Routers. - Add bool_lax{} expansion operator and use that for combining multiple condition rules, instead of bool{}. Make both bool{} and bool_lax{} ignore trailing whitespace. - prevent non-panic DKIM error from being sent to paniclog - added tcp_wrappers_daemon_name to allow host entries other than "exim" to be used - Fix malware regression for cmdline scanner introduced in PP/08. Notification from Dr Andrew Aitchison. - Change ClamAV response parsing to be more robust and to handle ClamAV's ExtendedDetectionInfo response format. Notification from John Horne. - OpenSSL 1.0.0a compatibility const-ness change, should be backwards compatible. - Added a CONTRIBUTING file. Fixed the documentation build to use http: XSL and documented dependency on system catalogs, with examples of how it normally works. - Added Valgrind hooks in store.c to help it capture out-of-bounds store access. - Bugzilla 1044: CVE-2010-4345 - partial fix: restrict default behaviour of CONFIGURE_OWNER and CONFIGURE_GROUP options to no longer allow a configuration file which is writeable by the Exim user or group. - Bugzilla 1044: CVE-2010-4345 - part two: extend checks for writeability of configuration files to cover files specified with the -C option if they are going to be used with root privileges, not just the default configuration file. - Bugzilla 1044: CVE-2010-4345 - part three: remove ALT_CONFIG_ROOT_ONLY option (effectively making it always true). - Add TRUSTED_CONFIG_PREFIX_FILE option to allow alternative configuration files to be used while preserving root privileges. - Set FD_CLOEXEC on SMTP sockets after forking in the daemon, to ensure that rogue child processes cannot use them. - Bugzilla 1047: change the default for system_filter_user to be the Exim run-time user, instead of root. - Add WHITELIST_D_MACROS option to let some macros be overriden by the Exim run-time user without dropping privileges. - Remove use of va_copy() which breaks pre-C99 systems. Duplicate the result string, instead of calling string_vformat() twice with the same arguments. - Allow TRUSTED_CONFIG_PREFIX_FILE only for Exim or CONFIGURE_OWNER, not for other users. Others should always drop root privileges if they use -C on the command line, even for a whitelisted configure file. - Turn TRUSTED_CONFIG_PREFIX_FILE into TRUSTED_CONFIG_FILE. No prefixes. - Fixed bug #1002 - Message loss when using multiple deliveries
Lars Müller
2011-02-04 19:47:13 +00:00
f69fd428f0- silence some rpmlint warnings, by removing executable permissions from utilities packaged under documentation.
Peter Poeml
2009-06-09 15:29:34 +00:00
1950a5b835fill Required-Stop
Peter Poeml
2008-10-29 18:49:01 +00:00
ec3bd58b38add Required-Stop to init script
Peter Poeml
2008-10-29 17:40:46 +00:00
43bc92e656add 'spamd postgresql mysql' to should-start/stop
Peter Poeml
2008-08-20 14:36:00 +00:00
Ruediger Oertel
OBS User buildservice-autocommit
Peter Poeml
Lars Müller
Marcus Rueckert
Stephan Kulow