replacing @PREFIX@ with ${PREFIX}
2) Rewrite rc script patching to both handle more cases and
fix (1). Mostly within thereal-post-patch target
3) Update files/maildir both due to (2) and to resemble the rc
scripts supplied with the qmail distribution
Prompted by: Thomas Sarlandie <sarfata@altern.org>
pkg-plist cleanup.
Update to TLS patch 0.7.2.
Update to IPv6 patch 20010228pl02-v6-20010503a.
Complain if user tries to compile with both TLS and IPv6 enabled.
Complain if user tries to compile with IPv6 on non-i386 platform (ie alpha).
Change maintainer e-mail address.
Submitted by: blaz@si.FreeBSD.org (maintainer)
PR: ports/27098
v2.108 Released May 07, 2001 17:10 (PST)
- try to avoid deadlock in LogBounces() by setting a timeout on
the OpenDB() call
- add config parameter "umask"
[suggested by gshapiro@gshapiro.net]
- don't set Reply-To: header in NewPending()
[suggested by gshapiro@gshapiro.net]
- "mailqueue" is now restricted by the "memberlist" command
[suggested by gshapiro@gshapiro.net]
- make use of the "domain" setting on preselected lists using the
mail interface
[requested by gshapiro@gshapiro.net]
- trim spaces off of possible signature terminators in
IdentifyMessage()
[suggested by gshapiro@gshapiro.net]
- LIBMSK: reimplement Absolute()
The following resulted from a code audit by Greg Shapiro of
Sendmail, Inc. <gshapiro@gshapiro.net>, whose help is greatly
appreciated:
- SECURITY: shed privileges when -C is used on the command line
- SECURITY: add a popen() wrapper to shed privileges when the command
being executed isn't sendmail
- SECURITY: bounce requests or mail referring to addresses containing
bogus characters, to prevent remote attacks
- SECURITY: add some boundary checking in a few places I'd missed
- SECURITY: be paranoid and call sendmail with "--" before
arguments provided remotely to prevent remote attacks
- SECURITY: verify access permissions with lm_access() to prevent
unauthorized file giveaways and overwrites
- SECURITY: be pedantic about list names to prevent nasty operations
- SECURITY: add and begin using lm_safefopen()
o Several fixes
o Improvements to poppassd
o Remove extra-patch since it has been merged into the distribution
Prompted by: Brett Jackson <brett@modlogic.com>, sudz@ns3g.com,
Mars G Miro <mars@cannoncreek.com>
home directory is set to /nonexistent .
Not all systems encourage the use of /nonexistent as a home directory,
so this is not a change that should be incorporated into the Exim
distribution.
This change allows local deliveries into /var/mail for users with
no valid home directory.
