71324ebc7d
- The new ldap_require_cert option would segfault if used; use upstream patch to address the ldap_set_option() issue; (beo#230); (beo#1108).
Lars Müller
2011-05-07 13:33:18 +00:00
5f88d73f56
- Use upstream patch to address ldap_set_option() third arg issue; (beo#230); (beo#1108).
Lars Müller
2011-05-07 13:15:50 +00:00
5099ec172f
Add header to patch.
Lars Müller
2011-05-06 20:31:26 +00:00
2b642981ee
Cast third arg to void * when calling ldap_set_option().
Lars Müller
2011-05-06 20:03:01 +00:00
ff09813c02
- update to 4.75 - Workround for PCRE version dependency in version reporting Bugzilla 1073 - Permit LOOKUP_foo enabling on the make command-line. Also via indented variable definition in the Makefile. - Restore caching of spamd results with expanded spamd_address. - Build issue: lookups-Makefile now exports LC_ALL=C Improves build reliability. - Fix wide character breakage in the rfc2047 coding; Fixes bug 1064. - Allow underscore in dnslist lookups; Fixes bug 1026. - Bugzilla 230: Support TLS-enabled LDAP (in addition to ldaps). - Fixed exiqgrep to cope with mailq missing size issue Fixes bug 943. - Bugzilla 1083: when lookup expansion defers, escape the output which is logged, to avoid truncation. - Bugzilla 1042: implement freeze_signal on pipe transports. - Bugzilla 1061: restrict error messages sent over SMTP to not reveal SQL string expansion failure details. - Bugzilla 486: implement %M datestamping in log filenames. - New lookups functionality failed to compile on old gcc which rejects extern declarations in function scope. - Use sig_atomic_t for flags set from signal handlers. Check getgroups() return and improve debugging. Fixed developed for diagnosis in bug 927 (which turned out to be a kernel bug). - Bugzilla 1055: Update $message_linecount for maildir_tag. - Bugzilla 1056: Improved spamd server selection. - Bugzilla 1086: Deal with maildir quota file races. - Bugzilla 1019: DKIM multiple signature generation fix.
Lars Müller
2011-05-06 19:19:54 +00:00
418a2f7e59
Fix patch2 typo.
Lars Müller
2011-05-06 19:00:24 +00:00
0150f23138
- Don't pass DKIM compound log line as format string; (beo#1106); (bnc#692227).
Lars Müller
2011-05-06 18:59:57 +00:00
d89b18cfe8
Autobuild autoformatter for 67025
Ruediger Oertel
2011-04-21 11:25:27 +00:00
fca71a0c39
Updating link to change in openSUSE:Factory/exim revision 10.0
OBS User buildservice-autocommit
2011-04-21 11:25:27 +00:00
f7af4bf393
- postgresql-enabled build when build_with_pgsql is defined (which is done in a linked package named server:mail/exim-postgresql)
Peter Poeml
2011-03-10 18:42:26 +00:00
61aa86ef20
Autobuild autoformatter for 60121
Ruediger Oertel
2011-02-07 22:57:23 +00:00
2ae5632d35
Report exim-4.12-tail issue upstream and add the meta information to the header of the patch.
Lars Müller
2011-02-06 16:10:18 +00:00
d66b1e9a61
- Workround for PCRE version dependancy in version reporting; (beo#1073).
Lars Müller
2011-02-04 22:21:53 +00:00
977e36dc8b
- update to 4.74 - Failure to get a lock on a hints database can have serious consequences so log it to the panic log. - Log LMTP confirmation messages in the same way as SMTP, controlled using the smtp_confirmation log selector. - Include the error message when we fail to unlink a spool file. - Bugzilla 139: Support dynamically loaded lookups as modules. - Bugzilla 139: Documentation and portability issues. Avoid GNU Makefile-isms, let Exim continue to build on BSD. Handle per-OS dynamic-module compilation flags. - Let /dev/null have normal permissions. The 4.73 fixes were a little too stringent and complained about the permissions on /dev/null. Exempt it from some checks. - Report version information for many libraries, including Exim version information for dynamically loaded libraries. Created version.h, now support a version extension string for distributors who patch heavily. Dynamic module ABI change. - CVE-2011-0017 - check return value of setuid/setgid. This is a privilege escalation vulnerability whereby the Exim run-time user can cause root to append content of the attacker's choosing to arbitrary files. - Bugzilla 1041: merged DCC maintainer's fixes for return code. - Bugzilla 1071: fix delivery logging with untrusted macros. If dropping privileges for untrusted macros, we disabled normal logging on the basis that it would fail; for the Exim run-time user, this is not the case, and it resulted in successful deliveries going unlogged. - update to 4.73 - Date: & Message-Id: revert to normally being appended to a message, only prepend for the Resent-* case. Fixes regression introduced in Exim 4.70 by NM/22 for Bugzilla 607. - Include check_rfc2047_length in configure.default because we're seeing increasing numbers of administrators be bitten by this. - Added DISABLE_DKIM and comment to src/EDITME - Bugzilla 994: added openssl_options main configuration option. - Bugzilla 995: provide better SSL diagnostics on failed reads. - Bugzilla 834: provide a permit_coredump option for pipe transports. - Adjust NTLM authentication to handle SASL Initial Response. - If TLS negotiated an anonymous cipher, we could end up with SSL but without a peer certificate, leading to a segfault because of an assumption that peers always have certificates. Be a little more paranoid. Problem reported by Martin Tscholak. - Bugzilla 926: switch ClamAV to use the new zINSTREAM API for content filtering; old API available if built with WITH_OLD_CLAMAV_STREAM=yes NB: ClamAV planning to remove STREAM in "middle of 2010". CL also introduces -bmalware, various -d+acl logging additions and more caution in buffer sizes. - Implemented reverse_ip expansion operator. - Bugzilla 937: provide a "debug" ACL control. - Bugzilla 922: Documentation dusting, patch provided by John Horne. - Bugzilla 973: Implement --version. - Bugzilla 752: Refuse to build/run if Exim user is root/0. - Build without WITH_CONTENT_SCAN. Path from Andreas Metzler. - Bugzilla 816: support multiple condition rules on Routers. - Add bool_lax{} expansion operator and use that for combining multiple condition rules, instead of bool{}. Make both bool{} and bool_lax{} ignore trailing whitespace. - prevent non-panic DKIM error from being sent to paniclog - added tcp_wrappers_daemon_name to allow host entries other than "exim" to be used - Fix malware regression for cmdline scanner introduced in PP/08. Notification from Dr Andrew Aitchison. - Change ClamAV response parsing to be more robust and to handle ClamAV's ExtendedDetectionInfo response format. Notification from John Horne. - OpenSSL 1.0.0a compatibility const-ness change, should be backwards compatible. - Added a CONTRIBUTING file. Fixed the documentation build to use http: XSL and documented dependency on system catalogs, with examples of how it normally works. - Added Valgrind hooks in store.c to help it capture out-of-bounds store access. - Bugzilla 1044: CVE-2010-4345 - partial fix: restrict default behaviour of CONFIGURE_OWNER and CONFIGURE_GROUP options to no longer allow a configuration file which is writeable by the Exim user or group. - Bugzilla 1044: CVE-2010-4345 - part two: extend checks for writeability of configuration files to cover files specified with the -C option if they are going to be used with root privileges, not just the default configuration file. - Bugzilla 1044: CVE-2010-4345 - part three: remove ALT_CONFIG_ROOT_ONLY option (effectively making it always true). - Add TRUSTED_CONFIG_PREFIX_FILE option to allow alternative configuration files to be used while preserving root privileges. - Set FD_CLOEXEC on SMTP sockets after forking in the daemon, to ensure that rogue child processes cannot use them. - Bugzilla 1047: change the default for system_filter_user to be the Exim run-time user, instead of root. - Add WHITELIST_D_MACROS option to let some macros be overriden by the Exim run-time user without dropping privileges. - Remove use of va_copy() which breaks pre-C99 systems. Duplicate the result string, instead of calling string_vformat() twice with the same arguments. - Allow TRUSTED_CONFIG_PREFIX_FILE only for Exim or CONFIGURE_OWNER, not for other users. Others should always drop root privileges if they use -C on the command line, even for a whitelisted configure file. - Turn TRUSTED_CONFIG_PREFIX_FILE into TRUSTED_CONFIG_FILE. No prefixes. - Fixed bug #1002 - Message loss when using multiple deliveries
Lars Müller
2011-02-04 19:47:13 +00:00
f69fd428f0
- silence some rpmlint warnings, by removing executable permissions from utilities packaged under documentation.
Peter Poeml
2009-06-09 15:29:34 +00:00
1950a5b835
fill Required-Stop
Peter Poeml
2008-10-29 18:49:01 +00:00
ec3bd58b38
add Required-Stop to init script
Peter Poeml
2008-10-29 17:40:46 +00:00
43bc92e656
add 'spamd postgresql mysql' to should-start/stop
Peter Poeml
2008-08-20 14:36:00 +00:00
Cristian Rodríguez
Sascha Peilicke
Lars Müller
Ruediger Oertel
Peter Poeml
Marcus Rueckert
Stephan Kulow