./mail/qmail-acceptutils, Offer TLS and SMTP AUTH with new features and no patch conflicts

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 20181228, Package name: qmail-acceptutils-20181228, Maintainer: schmonz

To SMTP-authenticate users without patching ofmipd(8) or qmail-smtpd(8),
compose the following programs into your configuration:

- reup runs a program repeatedly until it succeeds.
- authup offers SMTP or POP3 authentication and calls checkpassword.
- checknotroot refuses to run as UID 0.
- fixsmtpio filters SMTP I/O and exit status to suit authup.

authup and fixsmtpio can also offer STARTTLS for message submission and
incoming SMTP, respectively.


Required to run:
[net/ucspi-ssl] [mail/mess822]

Required to build:
[pkgtools/cwrappers]

Package options: djbware-errno-hack

Master sites:

SHA1: 9ee9a603e2ad3d8e1d34b900e19b7a5d275f538b
RMD160: d31598afa862abb35bc1feb8d038ab619b5a17a2
Filesize: 254.825 KB

Version history: (Expand)


CVS history: (Expand)


   2018-12-29 13:21:57 by Amitai Schleier | Files touched by this commit (2)
Log message:
- authup, fixsmtpio: Fail tls_info() if SSL environment is 0-length.
- authup: Catch up die_nomem() to fixsmtpio's.
- reup: Log more concisely and greppably.
- Manual pages: Fix refs to qmail-qfilter-queue(8).
- Makefile: Add acceptutils-install target.

Bump version.
   2018-11-28 17:17:36 by Amitai Schleier | Files touched by this commit (3) | Package updated
Log message:
Update to 20181128. Changes:

- Add qmail-qfilter-addtlsheader, a filter to add a Received header with
  TLS protocol and ciphers.
- Fix spurious errors when initializing TLS environment.
   2018-11-24 18:11:08 by Amitai Schleier | Files touched by this commit (2) | Package updated
Log message:
Update to 20181124.1, quickly fixing 20181124's regression in
authup. Changes:

- fixsmtpio: Set FIXSMTPIOTLS in the environment when TLS has been negotiated.

When upgrading, be sure to add _this_ entry to control/fixsmtpio:

   # Remove greeting for child process restarted after upgrading to STARTTLS
   FIXSMTPIOTLS:greeting::2*::
   2018-11-24 17:36:30 by Amitai Schleier | Files touched by this commit (2) | Package updated
Log message:
Update to 20181124. Changes:

- fixsmtpio: Fix "out of memory" errors with big attachments by handling
  DATA specially (no parsing or copying).
- FIXSMTPIODEBUG: log our pid and child's basename and pid.
- fixsmtpio: Ensure STARTTLS resets all state by restarting qmail-smtpd.

When upgrading, be sure to add this entry to control/fixsmtpio:

    # Remove greeting for child process restarted after upgrading to STARTTLS
    SSL_CIPHER:greeting::2*::
   2018-11-21 20:51:20 by Amitai Schleier | Files touched by this commit (2) | Package updated
Log message:
Update to 20181121. Changes:

- NOFIXSMTPIO: new environment variable to perform no filtering.
- FIXSMTPIODEBUG: prefix program name to log messages.
- Compile as C99.
- Have die_nomem() log two levels of call stack.
- Have get_one() log one caller further.
- Avoid extern in declarations.
- Empty next_pile and free event when done.
- Use acceptutils' stralloc wrappers in tls_info().
- Don't call tls_info(): no point setting TLS connection environment
  variables when our child has already forked.
   2018-11-08 21:54:53 by Amitai Schleier | Files touched by this commit (3) | Package updated
Log message:
Update to 20181108. Changes:

- Add STARTTLS support to fixsmtpio(8), which needs to terminate TLS in
  order to continue observing requests and responses and do its job.
- Restore missing trailing " ESMTP" in greeting.
- Fix all warnings in acceptutils code.
- Document FIXSMTPIODEBUG, UCSPITLS, and DISABLETLS.
   2018-10-27 19:28:22 by Amitai Schleier | Files touched by this commit (2) | Package updated
Log message:
Update to 20181027. Changes:

- Implement SMTP "STARTTLS" and POP3 "STLS", relying on \ 
sslserver's UCSPI-TLS.
  Derived from s/qmail's implementation.
- Catch up to s/qmail's base64 implementation.
- Implement POP3 "CAPA" verb for POP3.
- Require admin to describe child program in control/{pop3,smtp}capabilities.
- Fix regression from qmail-popup: sleep after auth failure for SMTP only.
- Update authup(8) manual page.

pkgsrc changes:

- Replace security/stunnel dependency with net/ucspi-ssl.
   2018-10-24 17:30:54 by Amitai Schleier | Files touched by this commit (1)
Log message:
Mainly intended for use with mess822. Add dependency. Ride previous bump.