by using an rc.d script to launch Exim, as was done before I took over
this port.
This seems to be the most popular approach, and is arguably the
simplest. Folks like me who attach some aesthetic value to using rc(8)
and mailer.conf(8) to launch Exim at startup time should know enough to
blow away the rc.d script and do things any way they please.
For now, use two versions of the POST-INSTALL-NOTES, the only
difference being that the one given to -CURRENT users suggests setting
sendmail_enable to 'NONE', while the one for -STABLE users suggests
'NO'.
Exim may be linked (MySQL) uses a startup script to add its library
path to the linker hints.
Explain the problem in POST-INSTALL-NOTES and provide a sample
startup script.
I think such packages should do away with the script and provide
POST-INSTALL-NOTES that encourage the operator to add the library
path to ldconfig_paths in /etc/rc.conf, but provide this work-around
anyway.
Reported by: Oliver Brandmueller <ob@e-Gitt.NET>
Most notable fixes include tightened string handling in a few
pathalogical cases that some people suspect might be exploitable, at
least in the form of a DoS.
Requested by: Randy Bush <randy@psg.com>
* Mostly incorporates patches already carried by the port.
* Fixes a vulnerability in pipe handling, which was not exposed
by the default configuration, but which could have been exposed
if the configuration were altered appropriately.
Build Exim with compile-time defaults for exim_user and exim_group.
Use the newly added mailnull user, and the now well-established group
mail.
The use of compile-time defaults for these values is not required for
many sites, but are important for more exotic applications.
This ensures that the packages are useful to the widest audience
possible.
the documentation by installing them.
Update the post-install notes to reflect the presence of the new
exim-doc-* ports for alternative documentation formats.
Bump PORTREVISION.
on pipeline input.
Bump PORTREVISION to reflect the change.
Obtained from: exim-users@exim.org
Message-Id: <Pine.SOL.4.33.0111131315260.9828-100000@virgo.cus.cam.ac.uk>
where SIG_IGN as the signal handler for SIGCHLD is bad. This is only
an issue when a significant number of messages is received via pipe
(e.g. with -bS) at a faster rate than they can be dealt with by parallel
delivery agents (e.g. -odqs).
Bump PORTREVISION to reflect the change.
Obtained from: exim-users@exim.org
Message-Id: Pine.SOL.4.33.0111021349170.19636-100000@virgo.cus.cam.ac.uk
* Move the contents of pkg-message into POST-INSTALL-NOTES, which
gets installed in the !NOPORTDOCS case for future reference.
* Refer to POST-INSTALL-NOTES from pkg-message in the !NOPORTDOCS
case. In the NOPORTDOCS case, use POST-INSTALL-NOTES as the
pkg-message.
to install and use Exim from the packages without having to install
XFree86.
* Remove a stale SEDLIST entry for BINOWN handling.
* Use LOCALBASE instead of PREFIX when referring to already installed
software.
* Use more strict pattern matching in SEDLIST.
Folks who want eximon (the Exim monitor) must now either build exim
or one of its slave ports with WITH_EXIMON defined or install the
standalone exim-monitor package.
- Fixes bug where setting local part to /dev/null without setting
file_transport caused Exim to crash.
- Other fixes do not apply to FreeBSD.
* Now that RELENG_4 has bzip2 in the base system, use the bz2
distfiles.
Incorporates the fixes for non-mapped IPv6 listening sockets.
Fixes unclosed MySQL connection bug in delivery subprocesses.
Better RFC compliance with respect to Resent-Subject and
Resent-Reply-To.
Fix handling of unset hostname for OpenLDAP2.
Drop an unclosed connection if more than 5 uncrecognized commands are
received.
Handle \t in fail messages properly.
Bite the bullet _now_ and use MTA user exim instead. This means that
only early adopters of Exim-3.31 are affected, rather than lots more
folks further down the line.
I still think mailnull is better, but nobody in the Exim community
agrees with me. :-)
Bump PORTREVISION as appropriate.
users.
Fix the call to bind() in daemon.c so that the correct addrlen is
passed for a IPv4 or IPv6 struct sockaddr. This fixes the problem
where an exim binary compiled for IPv6 support won't bind() to any IPv4
addresses. The author approves of this patch.
Now that exim+ipv6 works for non-ipv6 FreeBSD hosts, make IPv6 support
default and provide a WITHOUT_IPV6 knob for folks who don't want it.
Turn on WITHOUT_IPV6 for pre-KAME systems, to give RELENG_3 folks a
fighting chance.
* Define LDAP_LIB_TYPE conditionally so that the operator can override
it.
* Allow OPENLDAP1 (or UMICHIGAN) and OPENLDAP2 for LDAP_LIB_TYPE,
depending on the correct ports for each.
The default behaviour of the port is unchanged. However, this change
allows for an exim-ldap2 slave port, if desired, and limits LDAP lookup
types to those that can be supported by the FreeBSD ports tree.
This is primarily a maintenance release, though there are a very small
number of functional additions.
This release does not address the "orphaned -D spool files" problem, but
to date this problem has not been observed on FreeBSD systems.
mailwrapper, which facilitates drop-in replacements for sendmail.
Retire the exim.sh that was installed into ${PREFIX}/etc/rc.d/ to
start Exim, in favour of the mailwrapper approach.
Replace it with a patch against the distribution configure.default,
which changes as little as possible so that folks who are accustomed to
Exim on other platforms will not be astonished.
Install the file as configure.default instead of configure.sample, since
it's as close as damnit to the default Exim configuration file.
The only arguably unnecessary deviation from the default is:
* Accept SMTP relay from the loopback IP address. Too many applications
require this, and the window of abuse is arguably negligible.
``info exim'' would fail to descend into any of the 3 Exim info files
from the dir top branch.
While we're at it, add a pkg-message that
1) Points to the documentation
2) Explains how to get Exim started
run with a kernel that has had IPv6 ommitted from its configuration,
so I can't make this a default (yet).
* Remove crazy handling of exim.sh and replace it with something much
simpler and more sane. This allows non-root users to build, even if
they can't install (properly).
Since BSD UNIX still doesn't offer a user for running an MTA in a
sandbox the way many Linux distributions do, the Exim port uses
the traditional sandbox user for sendmail, called 'sendmail'.
Bump PORTREVISION accordingly.
files/Makefile) that's been a maintenance PITA for too long. Replace it
with a patch against EDITME, now that the sed rules that operate on it
are mostly sensible.
* Features enabled by default are disabled by defining
WITHOUT_FEATURE.
* Features disabled by default are enabled by defining
WITH_FEATURE.
Requested by: alex
AUTH_CRAM_MD5 and AUTH_PLAINTEXT support have nothing to do with PAM,
other than that all three can be used as authentication mechanisms
for SMTP AUTH.
Enable all three by default, so that the package includes them.
included in the package. Folks who don't want them can build Exim
as follows:
cd /path/to/ports/mail/exim
make WITH_MAILDIR=no WITH_MAILSTORE=no WITH_MBX=no