ble I try to avoid that and stick with unpatched upstream releases.
> net-libs/courier-unicode 1.3 (current is 1.4)
We have 1.4 in testing. I'll put that into stable together with the
next courier version.
--
Hanno Böck
https://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: FE737
[] name. So it must be "delete [] n" instead.
See attached patch, please apply.
These kinds of issues can be found by testing with address sanitizer
(-fsanitize=address in cflags).
--
Hanno Böck
https://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: FE73757FA60E4E21B937579FA5880072BBB51E42
-fno-common.
See attached patch, it'll declare the variable as extern in gpg.c.
Please apply.
--
Hanno Böck
https://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: FE73757FA60E4E21B937579FA5880072BBB51E42
--- a/libs/sqwebmail/gpg.c 2015-02-27 20:13:32.0 +0100
+++ b/libs/sqwebmail/gpg.c
to avoid it.
Right now we simply don't allow parallel installation of courier and
ucspi-tcp, and if you're set on keeping addcr with this name I think
we'll keep it that way.
--
Hanno Böck
https://hboeck.de/
mail/jabber: ha...@hboeck.
it still seems
popular. And unlike the courier tool I think the ucspi-tcp tool isn't
primarily meant to be used internally, so renaming it would cause more
complications.
--
Hanno Böck
https://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: FE73757FA60E4E21B937579FA5880072BBB51E42
pgpWWPx2_
happen in
the TLS UTA working [3].
[1] https://tools.ietf.org/html/draft-brotman-mta-sts-00
[2] https://tools.ietf.org/html/draft-ietf-uta-email-deep-05
[3] https://www.ietf.org/mailman/listinfo/uta
--
Hanno Böck
https://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: BBB51E42
pgp4mvi
ly patch.
cu,
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: BBB51E42
--- a/authgetconfig.c 2013-08-25 20:44:47.0 +0200
+++ b/authgetconfig.c 2015-11-14 19:08:02.909325278 +0100
@@ -76,7 +76,7 @@
for (i=0; i
pgp57eEKKIJsH.pgp
Description: OpenPGP digital s
instances of this warning in courier.
Please apply.
cu,
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: BBB51E42
diff -Naur a/libs/sqwebmail/pcp.c b/libs/sqwebmail/pcp.c
--- a/libs/sqwebmail/pcp.c 2013-08-25 20:46:53.0 +0200
+++ b/libs/sqwebmail/pcp.c 2015-05-12 11:46
On Fri, 27 Feb 2015 18:46:23 +0100
Hanno Böck wrote:
> courier-unicode installs a file
> /usr/include/unicode.h
Addition: It's more than that, /usr/lib/libuncode.* also collides. So I
think both should be renamed (something
like /usr/lib/libunicode-courier.* or /usr/lib/libcour
Hanno
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: BBB51E42
pgpH2aBE61zzc.pgp
Description: OpenPGP digital signature
--
Dive into the World of Parallel Programming The Go Parallel Website, sponsored
by
test suite more robust
in uncommon environments. See attached patch, please apply.
cu,
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: BBB51E42
--- courier-0.74.1-plain/libs/maildrop/testsuite2 2013-08-30 02:36:07.0 +0200
+++ courier-0.74.1/libs/maildrop/testsuite2 2015
Hi,
Compiling courier 0.74.1 throws a warning about an implicit declaration
of the function
rfc1035_spf_gettxt_n
in the file testlookup.c.
This can easily be fixed by adding an explicit declaration. See
attached patch, please apply.
cu,
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha
nobody uses them).
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: BBB51E42
pgptVJPY5ZU6F.pgp
Description: OpenPGP digital signature
--
Dive into the World of Parallel Programming. The Go Parallel Webs
on the (Postfix) server-side. Is
> there an equivalent for courier smtpd?
There is, but that's not the point. The attacker can still intercept
the connection. It needs to be enforced on the client as well.
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: BBB51E42
pgpG69
he right place to discuss it, hope we don't annoy
others with offtopic discussions.
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: BBB51E42
pgpnBeaRtwE9z.pgp
Description: OpenPGP digital signature
settings with "starttls if available" should be considered
dangerous. If they use starttls they need to fixate that and make sure
it can't be randomly removed.
(would be worth having a project checking various mailclients for that)
--
Hanno Böck
http://hboeck.de/
mail/jabber: h
f it helps: you can also ask
me to do so if you're about to release new versions)
cu,
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: BBB51E42
diff -Naur courier-0.74.0/libs/gpglib/Makefile.am courier-0.74.0-1/libs/gpglib/Makefile.am
--- courier-0.74.0/libs/gpglib/Makefile.a
oesn't
sound like a whole lot to me, but I noted the "big ones" like gmail
prefer adding IP adresses)
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: B
I get this for all my domains.
They use a single include for spf. I don't think that's unreasonable.
Looks to me as this tool is broken, not the spf config.
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: BBB51E42
signature.asc
D
Am Wed, 22 Oct 2014 23:26:16 -0400
schrieb Sam Varshavchik :
> Download: http://www.courier-mta.org/download.html
Quote:
22-Oct-2014 20141122courier-0.73.2.20141122.tar.bz2
20141122? On my calendar it's october. Package from the future? :-)
--
Hanno Böck
http://hboeck.d
I'd like to get the spf-related fixes and generally a new courier
version pushed to Gentoo.
I can do this with the snapshot, however I'd prefer a real release.
Sam, can you make a new release based on the latest snapshot?
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hbo
ryptographic perspective there wouldn't be a problem in
pre-generating one set of DH params and shipping them as the default
with all courier installations.
Btw, is there currently a way of using ECDH-ciphersuites with courier?
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboe
s practically breakable on a normal
home PC these days.
I'd strongly advise to raise these defaults to 2048, which is a
reasonable value these days.
cu,
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: BBB51E42
signature
ng special.
cu,
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: BBB51E42
signature.asc
Description: PGP signature
--
Slashdot TV. Video for Nerds. Stuff that Matters.
http://pubads.g.doubleclick.ne
hould be fixed nevertheless.
Please apply, patch is against courier git.
cu,
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GPG: BBB51E42
diff -Naur courier-upstream.git/courier/courier/module.esmtp/Makefile.am courier-courier.git/courier/courier/module.esmtp/Makefile.am
--- co
s one uses the ld-parameter
--as-needed. Many linux distributions do this by default these days, so
it's better to have the linking order correct.
See attached patch. It's against the courier-libs git repo. Please
apply.
cu,
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.d
correct
implementation of TLS 1.0 can handle this gracefully.
So mx.nv.net is using broken hardware or software. Tell them. There's
nothing you can do about it except not supporting newer and better
crypto standards (which really should not be an option if you're
serious).
--
Han
put something else inside the TLS_CERTFILE ? Is the order of
> the key, cert, intermediary CA and root CA important in the PEM file?
The order matters. First Cert, then intermediate. You shouldn't put the
root in at all.
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha...@hboeck.de
GP
On Thu, 10 Apr 2014 12:48:34 +0200
Hanno Böck wrote:
> I see.
> Then probably a different approach might be easier: Providing an
> option to change the name under that esmtpd gets logged into syslog.
>
> I think basically changing this line
> courieresmtpd.c:
n
to change the name under that esmtpd gets logged into syslog.
I think basically changing this line
courieresmtpd.c:clog_open_syslog("courieresmtpd");
from a hardcoded string to something configurable would do, right?
--
Hanno Böck
http://hboeck.de/
mail/jabber: ha..
that gets passed to courierlogger.
However, the esmtpd startup script seems a bit different and doesn't
call the logger directly.
Is there a reason why LOGGEROPTS is not available for esmtpd? Sam,
could this be changed for the next version?
cu,
--
Hanno Böck
http://hboeck.de/
Sam, attached you'll find a patch that changes all instances of test
-w / test ! -w in couriers Makefiles.
courier-fix-root-check-svn.diff.gz
is against latest courier svn and excludes all files not in svn (that
are generated by autotools)
Can you apply this one?
--
Hanno
Makefile.in, but
wrong for Makefile.am.
See attached patch - rediffed against 0.68.2, tested and this time
hopefully correct.
--
Hanno Böck mail/jabber: ha...@hboeck.de
GPG: BBB51E42 http://www.hboeck.de/
diff -Naur courier-0.68.2-orig/courier/module.esmtp/Makefile.am couri
Hi Sam,
On Thu, 07 Jun 2012 19:06:08 -0400
Sam Varshavchik wrote:
> Hanno Böck writes:
>
> > So the correct way should be another test for root, e.g.
> > test `id -u` != 0
> >
> > I've prepared a patch.
> > This is for both Makefile.in and Makefi
the issue ONLY for module.esmtp, although
it seems to be
prevalent all over the couriere Makefile.am files. I wanted first to
discuss if this is the correct approach to fix it. If you're okay with
that, I'll send you further patches for the others.
--
Hanno Böck mail/jabber:
Hi Sam,
Can you make a new release out of the latest courier snapshot?
(I'm personally mostly interested in the "make check" fix from 06-28, as this
is stopping gentoo stabilization - yes, I could backport or just use the snap,
but it'd be nicer to have a release ;-)
cu, H
hould probably get an update. Alternatively you
could just throw away the bundled version and require libltdl to be installed
system wide. Bundling librarys is a bad idea anyway imho (due to security
issues like this one).
--
Hanno Böck Blog: http://www.hboeck.de
rally a useful idea. But others may
have a different opinion on that, so I think this should be made optional.
See attached patch, adds an option TARPIT to esmtpd config.
--
Hanno Böck Blog: http://www.hboeck.de/
GPG: 3DBD3B20 Jabber/Mail:ha...@hboeck.de
the same mail later
again will work (RFC 2821), so from what I can see, it should always be 531.
If I'm wrong, please explain me why.
--
Hanno Böck Blog: http://www.hboeck.de/
GPG: 3DBD3B20 Jabber/Mail:ha...@hboeck.de
http://schokokeks.org - professiona
ble aNULL and enable
MEDIUM
--
Hanno Böck Blog: http://www.hboeck.de/
GPG: 3DBD3B20 Jabber/Mail:ha...@hboeck.de
http://schokokeks.org - professional webhosting
diff -Naur courier-0.62.2/courier/courierd.dist.in courier-0.62.2-sslstring/courier/courierd.dist.i
Am Sonntag 22 Februar 2009 schrieb Sam Varshavchik:
> Yes, but I'm shocked that this is even needed in the first place. Who's
> still running 0.48?
I don't know if it is - this patch is probably pretty old and I just want to
reduce the amount of patches in the pac
This patch is taken from gentoo linux, adds some additional dirs to
authmigrate in courier-authlib (against latest 0.62.2), shouldn't hurt to
apply.
--
Hanno Böck Blog: http://www.hboeck.de/
GPG: 3DBD3B20 Jabber/Mail:ha...@hboeck.de
--- courier-au
Hi,
Attached patch adds the DESTDIR variable to some places so installing into
DESTDIR works.
Please apply.
--
Hanno Böck Blog: http://www.hboeck.de/
GPG: 3DBD3B20 Jabber/Mail:[EMAIL PROTECTED]
--- authmigrate.in.orig 2008-07-21 01:58:52.0 +0200
undefined reference to `gdbm_open'
/tmp/courier-0.58.0/gdbmobj/gdbmobj.c:70: undefined reference to `gdbm_fdesc'
collect2: ld returned 1 exit status
make[2]: *** [couriertcpd] Error 1
make[2]: Leaving directory `/tmp/courier-0.58.0/tcpd'
make[1]: *** [all] Error 2
make[1
44 matches
Mail list logo
