2019-06-19 19:49:13 by Amitai Schleier | Files touched by this commit (1) |
Log message:
Keep it simple: set PKG_SYSCONFSUBDIR to match mail/qmail's. Bump version just \
in case.
|
2019-04-14 15:28:44 by Amitai Schleier | Files touched by this commit (3) |
Log message:
Check case-insensitively whether recipient is exempt from greylisting.
Since ucspi-tcp6's tcpserver can no longer listen to 127.0.0.1 without
specifying -4, specify it by default. Bump version.
|
2019-03-21 16:33:06 by Amitai Schleier | Files touched by this commit (4) | |
Log message:
Defer SSL_UID and SSL_GID to qmailfoo_enable_tls(). Listen on ":0",
the updated dual-stack pseudo-host for ucspi-tcp6 and ucspi-ssl.
Bump version.
|
2019-01-18 19:25:34 by Amitai Schleier | Files touched by this commit (4) |
Log message:
To override sslserver's default cipher list, set qmailfoo_tls_ciphers.
While here, make it easier to use envdir by prepending to
${qmailfoo_postenv} rather than appending.
At least one Linux shell needs "--" between greetdelay and rblsmtpd, and
this doesn't break NetBSD.
Bump version.
|
2019-01-07 05:29:46 by Amitai Schleier | Files touched by this commit (3) |
Log message:
Use RCD_SCRIPTS_DIR in MESSAGE and README.pkgsrc, and SUBST_VARS the latter.
|
2018-12-30 20:09:05 by Amitai Schleier | Files touched by this commit (2) |
Log message:
Require latest acceptutils and rejectutils. While here, remove ancient
chkconfig comment in the qmail rc.d script (not sure this ever worked,
and now we have rc.d-boot). Bump version.
|
2018-12-16 06:32:07 by Amitai Schleier | Files touched by this commit (6) |
Log message:
rc.d scripts:
- ucspi-ssl and ucspi-tcp6 correctly dual-stack v4/v6 on NetBSD, so we
can go back to "0" (instead of "0.0.0.0") as the default \
host to
listen on.
- FreeBSD's /bin/sh needs continuation characters to understand what
we're assigning to `command` in foo_precmd(). This seems sensible and
doesn't break NetBSD.
Bump version.
|
2018-12-15 07:31:35 by Amitai Schleier | Files touched by this commit (5) |
Log message:
Fix previous: required_files the tcprules, not the cdb (which gets
autogenerated if it doesn't exist). Point more actionably at SRS and TLS
setup docs. Bump version.
|
2018-12-14 07:55:07 by Amitai Schleier | Files touched by this commit (6) |
Log message:
K&R-style braces in rc.d scripts. NFCI.
|
2018-12-14 07:49:31 by Amitai Schleier | Files touched by this commit (13) |
Log message:
Extract most of MESSAGE to README.pkgsrc. (MESSAGE was getting too long.)
Comment out qmail-qfilter-viruscan in control/smtpfilters. It's not a
very precise tool, so the cost (false positives) probably outweighs the
benefit (blocked malware attachments) for many users.
Also not a sensible default: rejecting incoming mail on SPF
explicit-fail. This needs to be an admin decision because, among other
reasons, it would also reject messages forwarded through servers that
haven't configured SRS. Document SPF setup, including how to reject
(with this caveat) and how to greylist SPF explicit-pass (which would
otherwise be exempted from greylisting).
Rename greylisting-spp-with-exemptions to greylisting-spp-wrapper. Add a
feature: to effectively omit IP from the (IP,sender,recipient) tuple,
add GL_WRAPPER_TCPREMOTEIP="127.127.127.127" to control/tcprules/smtp.
rc.d scripts:
- Location of tcprules file is configurable
- By default, CDB is auto-rebuilt as needed on service start
- CDB auto-rebuilding can be configured off
Bump version.
|