o remove unnecessary patches
o PATCH_* and LIB_DEPENDS (iconv) added
o INSTALLS_SHLIB and LDCONFIG_DIRS added
o scripts/pre-configure changes:
-e added
PREFIX -> LOCALBASE for external programs
new iconv support added (untested)
config.sh generation fixed
PR: 29868
Submitted by: MAINTAINER
Update configure script to be smaller and fix it from trying to grep directories
Update TLS to version for new postfix version
Add missing man pages
PR: 30177
Submitted by: maintainer, slin@infomath.math.nctu.edu.tw
to install and use Exim from the packages without having to install
XFree86.
* Remove a stale SEDLIST entry for BINOWN handling.
* Use LOCALBASE instead of PREFIX when referring to already installed
software.
* Use more strict pattern matching in SEDLIST.
Folks who want eximon (the Exim monitor) must now either build exim
or one of its slave ports with WITH_EXIMON defined or install the
standalone exim-monitor package.
This program is a minimal SMTP client that takes an email
message body and passes it on to a SMTP server (default is the
MTA on the local host). Since it is completely self-supporting,
it is especially suitable for use in restricted environments.
Obtained from: OpenBSD
default before adding the WITH_MUTT_IMAP and WITH_MUTT_POP knobs).
- fix pkg-plist if not build with WITH_MUTT_IMAP or WITH_MUTT_POP.
- rename internal variable to less confusing name
Submitted by: Udo Schweigert <ust@cert.siemens.de>
Sendmail, Inc., and the Sendmail Consortium announce the availability
of sendmail 8.11.6 and 8.12.0.Beta19.
These new versions fix a security problem reported by SecurityFocus
regarding command line processing. This vulnerability is present in
sendmail open source versions between 8.10.0 and 8.11.5 as well as all
8.12.0.Beta versions. Therefore, sendmail 8.12.0.Beta users should upgrade
to 8.12.0.Beta19.
The problem was not present in 8.10 or earlier versions. However, as
always, we recommend using the latest version. Note that this problem is
not remotely exploitable.
- Fixes bug where setting local part to /dev/null without setting
file_transport caused Exim to crash.
- Other fixes do not apply to FreeBSD.
* Now that RELENG_4 has bzip2 in the base system, use the bz2
distfiles.
o Remove redundant BUILD_DEPENDS (only need to depend on p5-Net once).
o Add USE_PERL5.
o Sort pkg-plist.
o Don't fail on deinstall if other Mail:: modules are installed.
PR: ports/29663
Submitted by: Pete Fritchman <petef@databits.net>
* August 6 2001 -- vbsfilter-1.7
* Various fixes for the case where headers and/or body are empty.
* Patch sent in by Sergiy Zhuk <serge@yahoo-inc.com>
*
* Update "dangerous extension" list.
* Noted by David F. Russell <David.F.Russell@ncmail.net>
*
* July 25 2001 -- vbsfilter-1.6
* Also recognise 'name=blah' as well as the more usual 'name="blah"'.
* Patch sent in by Andrea Adams <andrea@vividimage.com>
*
* July 9 2001 -- vbsfilter-1.5
* Add support to reject arbitrary extensions.
*
* March 31 2001 -- vbsfilter-1.4
* Update for sendmail-8.12
*
o Update port to version 1.11
o Support NOPORTDOCS, deploy DOCSDIR
o Update DESCR, add WWW tag
PR: 29368
Submitted by: Pete Fritchman <petef@databits.net>
been broken by the incompatibility between db3.2 and db3.3.
I am unconditionally bumping the PORTREVISION's to eliminate possible
troubles that should not happen before the coming release.
Sorry for inconvenience. I'll try to check compatibility hard before
committing next time.
Fix a possible race condition when sending a HUP signal to restart
the daemon. This could terminate the current process without
starting a new daemon. Problem reported by Wolfgang Breyha
of SE Netway Communications.
Only apply MaxHeadersLength when receiving a message via SMTP or
the command line. Problem noted by Andrey J. Melnikoff.
When finding the system's local hostname on an IPv6-enabled system
which doesn't have any IPv6 interface addresses, fall back
to looking up only IPv4 addresses. Problem noted by Tim
Bosserman of EarthLink.
When commands were being rejected due to check_relay or TCP
Wrappers, the ETRN command was not giving a response.
Incoming IPv4 connections on a Family=inet6 daemon (using
IPv4-mapped addresses) were incorrectly labeled as "may be
forged". Problem noted by Per Steinar Iversen of Oslo
University College.
Shutdown address test mode cleanly on SIGTERM. Problem noted by
Greg King of the OAO Corporation.
Restore the original real uid (changed in main() to prevent
out of band signals) before invoking a delivery agent.
Some delivery agents use this for the "From " envelope
"header". Problem noted by Leslie Carroll of the
University at Albany.
Mark closed file descriptors properly to avoid reuse. Problem
noted by Jeff Bronson of J.D. Bronson, Inc.
Setting Timeout options on the command line will also override
their sub-suboptions in the .cf file, e.g., -O
Timeout.queuereturn=2d will set all queuereturn timeouts
to 2 days. Problem noted by Roger B.A. Klorese.
CONFIG: Fix parsing for IPv6 domain literals in addresses
(user@[IPv6:address]). Problem noted by Liyuan Zhou.
Incorporates the fixes for non-mapped IPv6 listening sockets.
Fixes unclosed MySQL connection bug in delivery subprocesses.
Better RFC compliance with respect to Resent-Subject and
Resent-Reply-To.
Fix handling of unset hostname for OpenLDAP2.
Drop an unclosed connection if more than 5 uncrecognized commands are
received.
Handle \t in fail messages properly.
* WITH_MUTT_POP
* WITH_MUTT_IMAP
* WITH_MUTT_POP_IMAP
They replace the --enable-pop and --enable-imap options that were the
defaults. Now you have the choice to build with one or the other, both,
or neither (which is useful for those of us who don't need those
features).
Bump PORTREVISION.
Approved by: maintainer
* Add info about tlb in post-install-notes.
* Add WITH_POSTFIX_APPROVE_PATCH knob to fix problem with Postfix's
Delivered-To and Majordomo's approve command.
* Add security fixes from PR ports/28282 with a small change, use SHA1
instead of MD5 for generating cookies.
* Remove security warning, which isn't necessary anymore.
PR: 28282
Submitted by: anders@fix.no
Bite the bullet _now_ and use MTA user exim instead. This means that
only early adopters of Exim-3.31 are affected, rather than lots more
folks further down the line.
I still think mailnull is better, but nobody in the Exim community
agrees with me. :-)
Bump PORTREVISION as appropriate.
users.
Fix the call to bind() in daemon.c so that the correct addrlen is
passed for a IPv4 or IPv6 struct sockaddr. This fixes the problem
where an exim binary compiled for IPv6 support won't bind() to any IPv4
addresses. The author approves of this patch.
Now that exim+ipv6 works for non-ipv6 FreeBSD hosts, make IPv6 support
default and provide a WITHOUT_IPV6 knob for folks who don't want it.
Turn on WITHOUT_IPV6 for pre-KAME systems, to give RELENG_3 folks a
fighting chance.
- IPv6 patch was updated to 20010709 version.
(Now, reconfig by SIGHUP should work. However, since master is
running without root privilege, re-bind to privileged port still
fails. I believe it is original problem.)
Let the user override the MySQL username, password and db at build time.
Let the user override the vchkpw gid and the vpopmail uid.
Bump PORTREVISION.
Approved by: nbm (maintainer)
* Define LDAP_LIB_TYPE conditionally so that the operator can override
it.
* Allow OPENLDAP1 (or UMICHIGAN) and OPENLDAP2 for LDAP_LIB_TYPE,
depending on the correct ports for each.
The default behaviour of the port is unchanged. However, this change
allows for an exim-ldap2 slave port, if desired, and limits LDAP lookup
types to those that can be supported by the FreeBSD ports tree.
original maintainer has not responded to emails and this port is very old.
PR: ports/28397
Reviewed by: Duncan Barclay <dmlb@dmlb.org> (original patches)
Patches fixed by: dwcjr
utility supplied with Exim is intended for systems that don't have
something as nifty as newsyslog(8).
I'm tempted to remove the utility from the port/package, but this
delta to pkg-message is less controversial.
o successfully exits even if etc/imap directory fails to remove.
o do not overwrite mailboxes at pkg_add.
o and then bump PORTREVISION.
PR: 28496
Submitted by: "Scot W. Hetzel" <hetzels@westbend.net>
not explicitly listed by TkRat, but known to TCL (koi8-u, koi8-r, for
example). The patch is being reviewed by the author for inclusion into
the next release.
Add WWW to pkg-descr (http://www.tkrat.org/).
This is primarily a maintenance release, though there are a very small
number of functional additions.
This release does not address the "orphaned -D spool files" problem, but
to date this problem has not been observed on FreeBSD systems.
and KDE), and is fully featured, including MIME support, multiple accounts,
filtering, etc. It currently runs under Linux, FreeBSD, and Solaris.
WWW: http://kiltdown.sourceforge.net/
- Save more documentation in %%PREFIX%%/share/doc/sendmail
- Update Sendmail package, only libmilter will be installed.
- Bump PORTREVISION
- Cleanup configuration, reduced overhead in "site.config.m4" files
- New option SENDMAIL_WITHOUT_IPV6=yes
- Use global WITH_TLS as well as SENDMAIL_WITH_TLS
- New slave ports: sendmail-sasl, sendmail-ldap
- vbsfilter now build a package
FreeBSD has shipped with mailwrapper(8), which facilitates the use of
drop-in replacements for sendmail. Retire exim.sh in favour of the
mailwrapper(8) approach.
Requested by: AMAKAWA Shuhei <sa264@cam.ac.uk>
mailwrapper, which facilitates drop-in replacements for sendmail.
Retire the exim.sh that was installed into ${PREFIX}/etc/rc.d/ to
start Exim, in favour of the mailwrapper approach.
Fix a problem with building Kerberos 4 (Kerberos 5 is still broken).
PR: 27941 (the Kerberos 4 build problem)
Submitted by: Shawn Halpenny <malachai@iname.com>
Approved by: maintainer
Make port compliant with NOPORTDOCS
Remove pkg-plist.htmlfiles in new NOPORTDOC procedure
Add two patches to be applied post-patch for NOPORTDOC
Correct pkg-plist to be compliant with NOPORTDOCS
Enable pop3 and imap4
Add hook for SSL
Put distfiles in mutt dist_subdir
Don't depend on sgml on alpha
Submitted by: maintainer
Reviewed by: will
A continuum in the history for this file isn't necessary. What _is_
important is the purpose of the patch today:
*) Changes the test used to determine whether a file should be installed
to cope with files which we "touch" to zero bytes for packaging
purposes.
*) Causes the configure file to be installed as a sample only. The
administrator needs to rename this file to "activate" exim.
*) Changes the invocation of make-info to be less prone to fail on
silly errors and fixes the info(1) titles so that, for example
``info exim'' actually enters the exim.info file.
Replace it with a patch against the distribution configure.default,
which changes as little as possible so that folks who are accustomed to
Exim on other platforms will not be astonished.
Install the file as configure.default instead of configure.sample, since
it's as close as damnit to the default Exim configuration file.
The only arguably unnecessary deviation from the default is:
* Accept SMTP relay from the loopback IP address. Too many applications
require this, and the window of abuse is arguably negligible.
``info exim'' would fail to descend into any of the 3 Exim info files
from the dir top branch.
While we're at it, add a pkg-message that
1) Points to the documentation
2) Explains how to get Exim started
needed.) This update was performed by me locally at the same time as the
submitter.
Changes include:
- Updated SSL support.
- Added CRAM authentication support.
- Added MailDir configuration option to specify the default location of local
mailboxes when relative paths are used.
- Added support for uploading local messages to the IMAP server.
- Added CopyDeletedTo configuration option to cause isync to move deleted
messages to a particular mailbox on the server when they are expunged.
- Started to re-use passwords for multiple mailboxes
Submitted by: Pete Fritchman <petef@databits.net>
Also change PATCH_SITES and PATCH_FILES to foo+= instead of = to allow multiple options to be used when we have multiple options that are compatible with each other
Submitted by: will
Reviewed by: will
Add --enable-compressed to VVV
Remove --enable-compressed from normal build because it requires compressed folder support.
Submitted by: jim
Reviewed by: maintainer, jim
Poppy is a small perl script that allows you to perform simple tasks
on a POP3 or IMAP server. It is of most use in a "limited resources
environment" whether thats low disk space, slow internet connection,
or no graphical environment.
run with a kernel that has had IPv6 ommitted from its configuration,
so I can't make this a default (yet).
* Remove crazy handling of exim.sh and replace it with something much
simpler and more sane. This allows non-root users to build, even if
they can't install (properly).
- respect existing CXXFLAGS
- properly support NOPORTDOCS (fix plist)
- add pkg-message
- take over as maintainer
PR: 28027
Submitted by: Pete Fritchman <petef@electron.databits.net>
Since BSD UNIX still doesn't offer a user for running an MTA in a
sandbox the way many Linux distributions do, the Exim port uses
the traditional sandbox user for sendmail, called 'sendmail'.
Bump PORTREVISION accordingly.
files/Makefile) that's been a maintenance PITA for too long. Replace it
with a patch against EDITME, now that the sed rules that operate on it
are mostly sensible.
* Features enabled by default are disabled by defining
WITHOUT_FEATURE.
* Features disabled by default are enabled by defining
WITH_FEATURE.
Requested by: alex
AUTH_CRAM_MD5 and AUTH_PLAINTEXT support have nothing to do with PAM,
other than that all three can be used as authentication mechanisms
for SMTP AUTH.
Enable all three by default, so that the package includes them.
included in the package. Folks who don't want them can build Exim
as follows:
cd /path/to/ports/mail/exim
make WITH_MAILDIR=no WITH_MAILSTORE=no WITH_MBX=no
1) Lower the syslog priority of various messages so that only serious
application problems are sent to /var/log/messages and the console
using the standard syslog.conf.
2) Log successful login attempts to that POP-before-SMTP log watchers
can make use of popd's syslog output.
The author has already agreed to incorporate these patches, but will
probably not roll a new release just for this.
1) Lower the syslog priority of various messages so that only serious
application problems are sent to /var/log/messages and the console
using the standard syslog.conf.
2) Log successful login attempts to that POP-before-SMTP log watchers
can make use of popd's syslog output.
The author has already agreed to incorporate these patches, but will
probably not roll a new release just for this.
replacing @PREFIX@ with ${PREFIX}
2) Rewrite rc script patching to both handle more cases and
fix (1). Mostly within thereal-post-patch target
3) Update files/maildir both due to (2) and to resemble the rc
scripts supplied with the qmail distribution
Prompted by: Thomas Sarlandie <sarfata@altern.org>
pkg-plist cleanup.
Update to TLS patch 0.7.2.
Update to IPv6 patch 20010228pl02-v6-20010503a.
Complain if user tries to compile with both TLS and IPv6 enabled.
Complain if user tries to compile with IPv6 on non-i386 platform (ie alpha).
Change maintainer e-mail address.
Submitted by: blaz@si.FreeBSD.org (maintainer)
PR: ports/27098
v2.108 Released May 07, 2001 17:10 (PST)
- try to avoid deadlock in LogBounces() by setting a timeout on
the OpenDB() call
- add config parameter "umask"
[suggested by gshapiro@gshapiro.net]
- don't set Reply-To: header in NewPending()
[suggested by gshapiro@gshapiro.net]
- "mailqueue" is now restricted by the "memberlist" command
[suggested by gshapiro@gshapiro.net]
- make use of the "domain" setting on preselected lists using the
mail interface
[requested by gshapiro@gshapiro.net]
- trim spaces off of possible signature terminators in
IdentifyMessage()
[suggested by gshapiro@gshapiro.net]
- LIBMSK: reimplement Absolute()
The following resulted from a code audit by Greg Shapiro of
Sendmail, Inc. <gshapiro@gshapiro.net>, whose help is greatly
appreciated:
- SECURITY: shed privileges when -C is used on the command line
- SECURITY: add a popen() wrapper to shed privileges when the command
being executed isn't sendmail
- SECURITY: bounce requests or mail referring to addresses containing
bogus characters, to prevent remote attacks
- SECURITY: add some boundary checking in a few places I'd missed
- SECURITY: be paranoid and call sendmail with "--" before
arguments provided remotely to prevent remote attacks
- SECURITY: verify access permissions with lm_access() to prevent
unauthorized file giveaways and overwrites
- SECURITY: be pedantic about list names to prevent nasty operations
- SECURITY: add and begin using lm_safefopen()
o Several fixes
o Improvements to poppassd
o Remove extra-patch since it has been merged into the distribution
Prompted by: Brett Jackson <brett@modlogic.com>, sudz@ns3g.com,
Mars G Miro <mars@cannoncreek.com>
