2008-10-13 17:24:37 by Amitai Schlair | Files touched by this commit (2) |
Log message:
Update to 4.0.5. From the changelog:
- If the idle timeout is not configured, it is now set to 20 minutes
after qmail exits to prevent never-ending spamdyke processing.
Thanks to Matthew Kettlewell for reporting this one.
- Fixed the AUTH advertisements to display correctly when
"smtp-auth-level" is "always" or \
"always-encrypted". Thanks
to Youri Kravatsky for reporting this one.
- Fixed a sequencing error that would cause qmail to exit prematurely,
even if valid recipients could still possibly be given. Thanks
to David Stiller for reporting this one.
- Fixed the handling of unencoded null characters in messages
(technically not legal) so spamdyke does become confused and
timeout. Thanks to Arthur Girardi for reporting this one.
- Fixed an issue in the DNS query code that was setting array indexes
beyond the end of the array, resulting in garbage log messages
and segmentation faults. Thanks to Arthur Girardi for reporting
this one.
- Fixed verbose logging in the RHSBL filter to print the correct
log message. Thanks to Arthur Girardi for reporting this one.
- Rewrote the address parser to correctly handle strange/invalid
email addresses. Thanks to Erald Troja for reporting this one.
- Fixed a serious error in the code that loads array values from
files that was returning pointers to unallocated memory, causing
segmentation faults. Many, many thanks to David Stiller for
reporting this one and providing tons of help to nail it down.
- Fixed a serious error that was attempting to move data by
dereferencing the NULL address when the remote server disconnected
unexpectedly, causing segmentation faults. Many, many thanks
to David Stiller for reporting this one and providing tons of
help to nail it down.
|
2008-09-05 22:33:53 by Amitai Schlair | Files touched by this commit (2) |
Log message:
Update to 4.0.4. From the changelog:
Moved the code for loading configuration files into prepare_settings() from
do_spamdyke(). When the default value for the "log-target" option was
being set before the configuration files were read, the syslog option
could be incorrectly set, even if stderr was specified in a file.
Thanks to Eric Shubert for reporting this one.
Changed the configure script to detect environments where printf()/scanf()
use "%ld" for 64-bit integers instead of "%lld" (CentOS \
64-bit). This
wouldn't be necessary if the gcc authors could grasp the idea that
"long int" and "long long int" may be interchangable and \
not emit warnings.
Thanks to kjl for reporting this one.
|
2008-08-15 18:51:59 by Amitai Schlair | Files touched by this commit (1) |
Log message:
Add MESSAGE explaining how to enable spamdyke with qmail-smtpd.
|
2008-08-15 18:48:16 by Amitai Schlair | Files touched by this commit (2) |
Log message:
Update to 4.0.3. From the changelog:
This version fixes two bugs. The first is an integer argument
parsing bug on some systems (FreeBSD). Thanks to Shane Bywater for
reporting this one. The second is a bug parsing invalid nameserver
entries in /etc/resolv.conf that prevented spamdyke from defaulting
to 127.0.0.1. Thanks to slamp slamp for reporting this one.
|
2008-08-07 15:36:05 by Amitai Schlair | Files touched by this commit (2) |
Log message:
Update to 4.0.2. From the changelog:
Fixed a bug in filter_graylist() that was creating infinitely deep \
"_none"
directories. The special-case conversion code added in 4.0.1 was not
checking to see if "_none" was a file or a directory and performing the
conversion every time. Thanks to Bob Alanis for reporting this one.
|
2008-07-18 03:22:39 by Amitai Schlair | Files touched by this commit (2) |
Log message:
Update to 4.0.1. This version fixes several bugs:
- The automatic conversion of a graylist directory structure could
generate errors for empty sender addresses (commonly used for
bounce messages). Thanks to David Stiller for reporting this one.
- Connections encrypted with TLS (not decrypted by spamdyke) weren't
always being rejected, even if there was no chance they should
be accepted. Thanks to Sergio Minini for reporting this one.
- A double-free() problem could result in crashes if the
"rejection-text-graylist" option was used within a configuration
directory.
- Compiling on Solaris was generating a warning.
|
2008-07-16 09:03:22 by Amitai Schlair | Files touched by this commit (6) |
Log message:
Update to 4.0.0. The changelog is unwieldy; highlights:
* Several options have changed names, behaviors, defaults, and/or
possible settings, all of which are explained in the upgrade
instructions.
* Many new options have been added:
config-dir
config-dir-search
dns-blacklist-file
dns-level
dns-max-retries-total
dns-max-retries-primary
dns-server-ip
dns-server-ip-primary
dns-timeout-secs
dns-whitelist-file
filter-level
graylist-exception-ip-entry
graylist-exception-rdns-entry
graylist-level
ip-blacklist-entry
ip-in-rdns-keyword-blacklist-entry
ip-in-rdns-keyword-whitelist-entry
ip-in-rdns-keyword-whitelist-file
ip-whitelist-entry
local-domain-entry
rdns-blacklist-entry
rdns-whitelist-entry
recipient-blacklist-entry
recipient-whitelist-entry
rejection-text-access-denied
rejection-text-dns-blacklist
rejection-text-earlytalker
rejection-text-empty-rdns
rejection-text-graylist
rejection-text-ip-blacklist
rejection-text-ip-in-cc-rdns
rejection-text-ip-in-rdns-keyword-blacklist
rejection-text-local-recipient
rejection-text-max-recipients
rejection-text-missing-sender-mx
rejection-text-rdns-blacklist
rejection-text-recipient-blacklist
rejection-text-reject-all
rejection-text-relaying-denied
rejection-text-rhs-blacklist
rejection-text-sender-blacklist
rejection-text-smtp-auth-required
rejection-text-timeout
rejection-text-unresolvable-rdns
relay-level
rhs-blacklist-file
rhs-whitelist-file
run-as-user
sender-blacklist-entry
sender-whitelist-entry
smtp-auth-level
tls-level
* An example spamdyke.conf has been provided.
|
2008-05-29 01:57:27 by Amitai Schlair | Files touched by this commit (6) |
Log message:
Update to 3.1.8. From the changelog:
This version fixes a bug with the recipient filters that could allow
a clever sender to use a spamdyke-protected server as an open relay.
The sequence of commands are not legal SMTP, so the sender would
have to know the server was running a vulnerable version of spamdyke
to exploit this bug. Thanks to Mirko Buffoni for reporting this
one.
This version also fixes two problems with the idle timeout filter.
The first could cause the connection to be rejected because qmail
is slow to respond (which isn't fair). The second was a tricky
issue where large messages from fast remote servers could be
improperly rejected because the idle timer wasn't being reset.
Thanks to Eric Shubert for reporting and helping me fix this one.
This version also fixes two compiling problems. The first was a
problem in the "configure" script on older Gentoo installations
running gcc 3.4.6 that was treating a preprocessor warning as an
error. Thanks to Thorsten Puzich for reporting and helping me fix
this one. The second was a problem with CentOS 3.8, which doesn't
install the OpenSSL headers in the system include folder. Thanks
to Bruce Schreiber for reporting this one.
|
2008-04-08 07:18:24 by Amitai Schlair | Files touched by this commit (2) |
Log message:
Update to 3.1.7. From the changelog:
This version fixes a bug in the white/blacklist file processor that
was incorrectly matching domains when wildcards were used. Thanks
to Tom for reporting this one.
|
2008-03-30 19:04:48 by Amitai Schlair | Files touched by this commit (2) |
Log message:
Add two missing system includes to fix the build on NetBSD 4.0.
|