A new opensmtpd portable snapshot is available at:
http://www.opensmtpd.org/archives/opensmtpd-201505091607p1.tar.gz
Checksum:
SHA256 (opensmtpd-201505091607p1.tar.gz) =
8722e8ce4f1e7796c75f170aa3ec63755b4a4220d2f1646244ab4cd76ab63fde
A summary of the content of this snapshot is available below.
Please test and let us know if it breaks something!
If this snapshot doesn't work, please also test with a previous one,
to help us spot where the issue is coming from. You can access all
previous snapshots here:
http://www.opensmtpd.org/archives/
The OpenSMTPD team ;-)
Summary of changes since last snapshot (opensmtpd-201502012312p1):
-----------------------------------------------------------------
- tons of configure.ac cleanups
- remove some dead code, unused functions and variables
- implement smtpctl subcommand: discover <evpid>|<msgid>
- fix possible NULL deref in SNI code
- add support for masquerading
- defer from callback overriding later
- display exact version of TLS used
- SSL_CTX_use_certificate_chain renamed in OpenBSD
- virtual users may exceed MAX_LOG_NAME
- do not use dirent->d_namlen, it's not portable
- improve logging format
- do not terminate message walk on a corrupt envelope
- implement smtpctl subcommand: uncorrupt <evpid>|<msgid>
- fix makemap for values that contains a '#'
- use AI_ADDRCONFIG when resolv hosts on startup
- getlogin() usage fix to match sendmail behaviour
- fix mandoc -Tlint warnings/errors.
- cleanup smtpd.conf(5)
- document how to use anti-spoofing rules to reject spam
- remove useless include
- remove duplicate code
- fix bad logic in SNI handling that can lead to a crash (from 5.4.5)
- remove SNI warnings that have annoyed many users
- allow generating DSN without headers
- smtpd -F allows running OpenSMTPD foreground while retaining log to syslog
- smtp and mta TLS setup can never be concurrent anymore, simplify lka
- rename SSL imsg's to TLS
- turn the lka certificate verification into an async operation
- smtpd enqueue -S does not take an argument, fix optstring accordingly [1]
- fix a possible deadlock between the smtp process and a filter
- socket()/socketpair() create non-blocking sockets directly, no need for
fcntl()
- add make uninstall
- remove compat layer for OpenBSD 5.5 and older, we only support up to two
releases
- fix format strings
- valid_domain() now uses res_hnok() rather than own logic
- fix a documentation bug with regard to tls verify
- document -T options in smtpd(8)
- rework pki & ca implementation to make them distinct
- allow fallback ca and pki, as well as overriding ca and pki for listener
& relay
- cleanup SNI, it is now done at the SMTP level, not the SMTP session level
[1] by Nathanael Rensen
[2] by Bernard Spil
--
You received this mail because you are subscribed to [email protected]
To unsubscribe, send a mail to: [email protected]
