Re: [courier-users] Preferred OS for Courier mail server

2017-01-10 Thread Hanno Böck
e patches, but if possible I try to avoid that and stick with unpatched upstream releases. > net-libs/courier-unicode 1.3 (current is 1.4) We have 1.4 in testing. I'll put that into stable together with the next courier version. -- Hanno Böck https://hboeck.de/ m

[courier-users] [patch] fix new/delete mismatch

2016-09-19 Thread Hanno Böck
[] name. So it must be "delete [] n" instead. See attached patch, please apply. These kinds of issues can be found by testing with address sanitizer (-fsanitize=address in cflags). -- Hanno Böck https://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: FE73757FA60E4E21B937579FA5880072BBB51E42

[courier-users] [patch] fix duplicate definition of sqwebmail_content_charset in courier

2016-09-19 Thread Hanno Böck
-fno-common. See attached patch, it'll declare the variable as extern in gpg.c. Please apply. -- Hanno Böck https://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: FE73757FA60E4E21B937579FA5880072BBB51E42 --- a/libs/sqwebmail/gpg.c 2015-02-27 20:13:32.0 +0100 +++ b/libs/sqwebmail/gpg.c 2016

Re: [courier-users] addcr name collission - can we rename it?

2016-09-19 Thread Hanno Böck
now we simply don't allow parallel installation of courier and ucspi-tcp, and if you're set on keeping addcr with this name I think we'll keep it that way. -- Hanno Böck https://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: FE73757FA60E4E21B937579FA5880072BBB51E42 pgpca5xT

[courier-users] addcr name collission - can we rename it?

2016-09-13 Thread Hanno Böck
popular. And unlike the courier tool I think the ucspi-tcp tool isn't primarily meant to be used internally, so renaming it would cause more complications. -- Hanno Böck https://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: FE73757FA60E4E21B937579FA5880072BBB51E42 pgpWWPx2_3xID.pgp Description

[courier-users] MTA STS / transport security

2016-08-14 Thread Hanno Böck
in the TLS UTA working [3]. [1] https://tools.ietf.org/html/draft-brotman-mta-sts-00 [2] https://tools.ietf.org/html/draft-ietf-uta-email-deep-05 [3] https://www.ietf.org/mailman/listinfo/uta -- Hanno Böck https://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 pgp4mviWvZ1GO.pgp

[courier-users] [PATCH] avoid invalid memory read in courier-authlib / authgetconfig

2015-11-14 Thread Hanno Böck
ly patch. cu, -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 --- a/authgetconfig.c 2013-08-25 20:44:47.0 +0200 +++ b/authgetconfig.c 2015-11-14 19:08:02.909325278 +0100 @@ -76,7 +76,7 @@ for (i=0; i<configauth_size; ) { p=configauth+i; - if (memcmp(p, e

[courier-users] [patch] disable warnings regarding format string security

2015-05-12 Thread Hanno Böck
instances of this warning in courier. Please apply. cu, -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 diff -Naur a/libs/sqwebmail/pcp.c b/libs/sqwebmail/pcp.c --- a/libs/sqwebmail/pcp.c 2013-08-25 20:46:53.0 +0200 +++ b/libs/sqwebmail/pcp.c 2015-05-12 11:46

[courier-users] file /usr/include/unicode.h collides with libunicode

2015-02-27 Thread Hanno Böck
-- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 pgpH2aBE61zzc.pgp Description: OpenPGP digital signature -- Dive into the World of Parallel Programming The Go Parallel Website, sponsored by Intel

Re: [courier-users] file /usr/include/unicode.h collides with libunicode

2015-02-27 Thread Hanno Böck
On Fri, 27 Feb 2015 18:46:23 +0100 Hanno Böck ha...@hboeck.de wrote: courier-unicode installs a file /usr/include/unicode.h Addition: It's more than that, /usr/lib/libuncode.* also collides. So I think both should be renamed (something like /usr/lib/libunicode-courier.* or /usr/lib/libcourier

[courier-users] [PATCH] make testsuite work with user without a default shell

2015-02-16 Thread Hanno Böck
the test suite more robust in uncommon environments. See attached patch, please apply. cu, -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 --- courier-0.74.1-plain/libs/maildrop/testsuite2 2013-08-30 02:36:07.0 +0200 +++ courier-0.74.1/libs/maildrop/testsuite2 2015

[courier-users] [PATCH] fix implicit declaration in testlookup.c

2015-02-16 Thread Hanno Böck
Hi, Compiling courier 0.74.1 throws a warning about an implicit declaration of the function rfc1035_spf_gettxt_n in the file testlookup.c. This can easily be fixed by adding an explicit declaration. See attached patch, please apply. cu, -- Hanno Böck http://hboeck.de/ mail/jabber: ha

Re: [courier-users] Ports, SSL and STARTTLS for ESMTP

2015-02-08 Thread Hanno Böck
on the (Postfix) server-side. Is there an equivalent for courier smtpd? There is, but that's not the point. The attacker can still intercept the connection. It needs to be enforced on the client as well. -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 pgpG69WNmKCc7

Re: [courier-users] Ports, SSL and STARTTLS for ESMTP

2015-02-08 Thread Hanno Böck
nobody uses them). -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 pgptVJPY5ZU6F.pgp Description: OpenPGP digital signature -- Dive into the World of Parallel Programming. The Go Parallel

Re: [courier-users] Ports, SSL and STARTTLS for ESMTP

2015-02-07 Thread Hanno Böck
this is the right place to discuss it, hope we don't annoy others with offtopic discussions. -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 pgpnBeaRtwE9z.pgp Description: OpenPGP digital signature

Re: [courier-users] Ports, SSL and STARTTLS for ESMTP

2015-02-07 Thread Hanno Böck
-logins. Mail settings with starttls if available should be considered dangerous. If they use starttls they need to fixate that and make sure it can't be randomly removed. (would be worth having a project checking various mailclients for that) -- Hanno Böck http://hboeck.de/ mail/jabber: ha

Re: [courier-users] New versions of courier, courier-imap, sqwebmail, maildrop, and cone packages released

2014-12-13 Thread Hanno Böck
: you can also ask me to do so if you're about to release new versions) cu, -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 diff -Naur courier-0.74.0/libs/gpglib/Makefile.am courier-0.74.0-1/libs/gpglib/Makefile.am --- courier-0.74.0/libs/gpglib/Makefile.am 2014-12-04 03:31

Re: [courier-users] Courier and rfc 4408 spf

2014-11-04 Thread Hanno Böck
this for all my domains. They use a single include for spf. I don't think that's unreasonable. Looks to me as this tool is broken, not the spf config. -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 signature.asc Description: PGP signature

Re: [courier-users] Build 20141122 of courier and courier-imap packages

2014-10-23 Thread Hanno Böck
Am Wed, 22 Oct 2014 23:26:16 -0400 schrieb Sam Varshavchik mr...@courier-mta.com: Download: http://www.courier-mta.org/download.html Quote: 22-Oct-2014 20141122courier-0.73.2.20141122.tar.bz2 20141122? On my calendar it's october. Package from the future? :-) -- Hanno Böck http

Re: [courier-users] problems with esmtpd / cert / pem reading after update to latest snapshot (no start line)

2014-09-20 Thread Hanno Böck
perspective there wouldn't be a problem in pre-generating one set of DH params and shipping them as the default with all courier installations. Btw, is there currently a way of using ECDH-ciphersuites with courier? -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42

[courier-users] problems with esmtpd / cert / pem reading after update to latest snapshot (no start line)

2014-09-19 Thread Hanno Böck
, -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 signature.asc Description: PGP signature -- Slashdot TV. Video for Nerds. Stuff that Matters. http://pubads.g.doubleclick.net/gampad/clk?id

Re: [courier-users] problems with esmtpd / cert / pem reading after update to latest snapshot (no start line)

2014-09-19 Thread Hanno Böck
that this is practically breakable on a normal home PC these days. I'd strongly advise to raise these defaults to 2048, which is a reasonable value these days. cu, -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 signature.asc Description: PGP signature

[courier-users] [patch] fix linking variables in module.esmtp

2014-09-17 Thread Hanno Böck
be fixed nevertheless. Please apply, patch is against courier git. cu, -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 diff -Naur courier-upstream.git/courier/courier/module.esmtp/Makefile.am courier-courier.git/courier/courier/module.esmtp/Makefile.am --- courier

[courier-users] [PATCH] fix linking order with -lunicode

2014-09-12 Thread Hanno Böck
uses the ld-parameter --as-needed. Many linux distributions do this by default these days, so it's better to have the linking order correct. See attached patch. It's against the courier-libs git repo. Please apply. cu, -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42

Re: [courier-users] OpenSSL crash with STARTTLS in Courier

2014-05-04 Thread Hanno Böck
hardware or software. Tell them. There's nothing you can do about it except not supporting newer and better crypto standards (which really should not be an option if you're serious). -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42 signature.asc Description: PGP signature

Re: [courier-users] StartSSL SHA-2 x509 certificates with Courier

2014-05-01 Thread Hanno Böck
something else inside the TLS_CERTFILE ? Is the order of the key, cert, intermediary CA and root CA important in the PEM file? The order matters. First Cert, then intermediate. You shouldn't put the root in at all. -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42

Re: [courier-users] LOGGEROPT and esmtpd

2014-04-10 Thread Hanno Böck
under that esmtpd gets logged into syslog. I think basically changing this line courieresmtpd.c:clog_open_syslog(courieresmtpd); from a hardcoded string to something configurable would do, right? -- Hanno Böck http://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: BBB51E42

Re: [courier-users] LOGGEROPT and esmtpd

2014-04-10 Thread Hanno Böck
On Thu, 10 Apr 2014 12:48:34 +0200 Hanno Böck ha...@hboeck.de wrote: I see. Then probably a different approach might be easier: Providing an option to change the name under that esmtpd gets logged into syslog. I think basically changing this line courieresmtpd.c

[courier-users] LOGGEROPT and esmtpd

2014-04-07 Thread Hanno Böck
passed to courierlogger. However, the esmtpd startup script seems a bit different and doesn't call the logger directly. Is there a reason why LOGGEROPTS is not available for esmtpd? Sam, could this be changed for the next version? cu, -- Hanno Böck http://hboeck.de/ mail/jabber: ha

Re: [courier-users] [PATCH] courier should use DESTDIR on test ! -w commands

2012-06-24 Thread Hanno Böck
Sam, attached you'll find a patch that changes all instances of test -w / test ! -w in couriers Makefiles. courier-fix-root-check-svn.diff.gz is against latest courier svn and excludes all files not in svn (that are generated by autotools) Can you apply this one? -- Hanno Böck

Re: [courier-users] [PATCH] courier should use DESTDIR on test ! -w commands

2012-06-16 Thread Hanno Böck
for Makefile.in, but wrong for Makefile.am. See attached patch - rediffed against 0.68.2, tested and this time hopefully correct. -- Hanno Böck mail/jabber: ha...@hboeck.de GPG: BBB51E42 http://www.hboeck.de/ diff -Naur courier-0.68.2-orig/courier/module.esmtp/Makefile.am courier

Re: [courier-users] [PATCH] courier should use DESTDIR on test ! -w commands

2012-06-15 Thread Hanno Böck
Hi Sam, On Thu, 07 Jun 2012 19:06:08 -0400 Sam Varshavchik mr...@courier-mta.com wrote: Hanno Böck writes: So the correct way should be another test for root, e.g. test `id -u` != 0 I've prepared a patch. This is for both Makefile.in and Makefile.am to avoid the need for autotools

[courier-users] [PATCH] courier should use DESTDIR on test ! -w commands

2012-06-07 Thread Hanno Böck
ONLY for module.esmtp, although it seems to be prevalent all over the couriere Makefile.am files. I wanted first to discuss if this is the correct approach to fix it. If you're okay with that, I'll send you further patches for the others. -- Hanno Böck mail/jabber: ha...@hboeck.de GPG

[courier-users] Request for a new release?

2010-10-04 Thread Hanno Böck
Hi Sam, Can you make a new release out of the latest courier snapshot? (I'm personally mostly interested in the make check fix from 06-28, as this is stopping gentoo stabilization - yes, I could backport or just use the snap, but it'd be nicer to have a release ;-) cu, Hanno -- Hanno Böck

[courier-users] courier-authlib: bundled libltdl contains security issues

2010-03-06 Thread Hanno Böck
probably get an update. Alternatively you could just throw away the bundled version and require libltdl to be installed system wide. Bundling librarys is a bad idea anyway imho (due to security issues like this one). -- Hanno Böck Blog: http://www.hboeck.de/ GPG

[courier-users] [PATCH] option to disable tarpitting

2010-02-02 Thread Hanno Böck
a useful idea. But others may have a different opinion on that, so I think this should be made optional. See attached patch, adds an option TARPIT to esmtpd config. -- Hanno Böck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber/Mail:ha...@hboeck.de http

[courier-users] maxrcpts soft and hard?

2009-10-01 Thread Hanno Böck
. If I'm wrong, please explain me why. -- Hanno Böck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber/Mail:ha...@hboeck.de http://schokokeks.org - professional webhosting signature.asc Description: This is a digitally signed message part

[courier-users] [PATCH] disable aNULL-ciphers, maybe enable medium ciphers

2009-08-12 Thread Hanno Böck
MEDIUM -- Hanno Böck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber/Mail:ha...@hboeck.de http://schokokeks.org - professional webhosting diff -Naur courier-0.62.2/courier/courierd.dist.in courier-0.62.2-sslstring/courier/courierd.dist.in --- courier-0.62.2

[courier-users] [PATCH] add additional dirs to authmigrate.in

2009-02-22 Thread Hanno Böck
This patch is taken from gentoo linux, adds some additional dirs to authmigrate in courier-authlib (against latest 0.62.2), shouldn't hurt to apply. -- Hanno Böck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber/Mail:ha...@hboeck.de --- courier-authlib

Re: [courier-users] [PATCH] add additional dirs to authmigrate.in

2009-02-22 Thread Hanno Böck
Am Sonntag 22 Februar 2009 schrieb Sam Varshavchik: Yes, but I'm shocked that this is even needed in the first place. Who's still running 0.48? I don't know if it is - this patch is probably pretty old and I just want to reduce the amount of patches in the package. -- Hanno Böck

[courier-users] [PATCH] Add destdir support to authmigrate.in in courier-authlib

2008-07-20 Thread Hanno Böck
Hi, Attached patch adds the DESTDIR variable to some places so installing into DESTDIR works. Please apply. -- Hanno Böck Blog: http://www.hboeck.de/ GPG: 3DBD3B20 Jabber/Mail:[EMAIL PROTECTED] --- authmigrate.in.orig 2008-07-21 01:58:52.0 +0200

[courier-users] courier compilation fails with --as-needed

2007-11-24 Thread Hanno Böck
to `gdbm_fdesc' collect2: ld returned 1 exit status make[2]: *** [couriertcpd] Error 1 make[2]: Leaving directory `/tmp/courier-0.58.0/tcpd' make[1]: *** [all] Error 2 make[1]: Leaving directory `/tmp/courier-0.58.0/tcpd' make: *** [all-recursive] Error 1 -- Hanno Böck Blog: http