summaryrefslogtreecommitdiff
AgeCommit message (Expand)Author
2010-12-15Implement -D whitelist invoking user restriction.Phil Pennock
2010-12-14doc-txt updates for the security changesPhil Pennock
2010-12-14Implement -D filtering, first pass.Phil Pennock
2010-12-14Document the change to system_filter_user's default.Phil Pennock
2010-12-14Change the default for system_filter_user.Phil Pennock
2010-12-12Allow only absolute paths in TRUSTED_CONFIG_PREFIX_LIST, fix store leakDavid Woodhouse
2010-12-12Set FD_CLOEXEC on SMTP sockets after forking to handle the connection.David Woodhouse
2010-12-12Add TRUSTED_CONFIG_PREFIX_FILE optionDavid Woodhouse
2010-12-12Remove ALT_CONFIG_ROOT_ONLY build option, effectively making it always true.David Woodhouse
2010-12-11Check configure file permissions even for non-default files if still privilegedDavid Woodhouse
2010-12-11Don't allow a configure file which is writeable by the Exim user or groupDavid Woodhouse
2010-12-11Add Valgrind hooks for memory poolsDavid Woodhouse
2010-09-05OpenSSL and XSL changes documented.Phil Pennock
2010-09-05Document the ClamAV ExtendedDetectionInfo response handling.Phil Pennock
2010-09-05OpenSSL 1.0.0 const fix for SSL_get_current_cipherPhil Pennock
2010-09-05Guidance on contributing to Exim.Phil Pennock
2010-09-05Use public http: URLs for XSL includes.Phil Pennock
2010-09-05Rework clamd response handling to be more robust.Phil Pennock
2010-07-19Merge ssh://tahini.csx.cam.ac.uk/home/git/eximJohn Jetmore
2010-07-19Somehow in learning how to use git I lost half the changes needed to fix the ...John Jetmore
2010-07-19Bugzilla #1006: Keep EHLO attributes in case STARTTLS errors are ignoredTom Kistner
2010-07-16The test architecture can't support having the testsuite user and the Exim us...John Jetmore
2010-07-16Change to allow test 0383 to work on HFS+ (non-case-sensitive FS)John Jetmore
2010-07-04Fix malware regression for cmdline scanner introduced in PP/08.Phil Pennock
2010-06-14added expansion tests for bool{} and bool_lax{}John Jetmore
2010-06-14print sizeof(off_t) in initial -bV output. Refuse to tun tests is sizeof(off...John Jetmore
2010-06-14Clarify that the ACL framework is not invoked for -bmalware, so that usingPhil Pennock
2010-06-13Remove logic branch which can use PRIdMAX for SIZE_T_FMT because it failsPhil Pennock
2010-06-12account for new information TLS log line added in tls-openssl.c 1.23John Jetmore
2010-06-12removed extraneous "\n" from the end of some log_write lines, removed "magic"...John Jetmore
2010-06-12Add tcp_wrappers_daemon_name (closes: bug #278)John Jetmore
2010-06-12iaddressing bug 966 and my own concerns, stop sending non-panic error to pani...John Jetmore
2010-06-09Minor doc updates:Phil Pennock
2010-06-08another change related to Date/Message-Id order, just took me a while to real...John Jetmore
2010-06-08log/5101 - header order, plus new wording for appendfile to dir from MBX secu...John Jetmore
2010-06-07Run when EXIM_USER=notroot specified.Phil Pennock
2010-06-07For the new SIZE_T_FMT, if not C99 then our size_t conversion specifierPhil Pennock
2010-06-07Both bool{} and bool_lax{} should ignore trailing whitespace.Phil Pennock
2010-06-07Added bool_lax{} expansion operator, which uses Router condition logic toPhil Pennock
2010-06-07Allow Routers to have multiple conditions, IF each one yields a strict bool.Phil Pennock
2010-06-07Clean up compiler warnings from { gcc -Wall }, many of which I introduced withPhil Pennock
2010-06-06Build without WITH_CONTENT_SCAN.Phil Pennock
2010-06-06No longer permit the exim user to be root. Fixes: #752Phil Pennock
2010-06-06Implement --version. Fixes: #973Phil Pennock
2010-06-06Light documentation dusting from patch provided by John Horne.Phil Pennock
2010-06-06Implement "control = debug" ACL control. Fixes: #937Phil Pennock
2010-06-05New expansion operator: reverse_ipPhil Pennock
2010-06-05Update OptionLists. (Claim for 4.72 because 4.73 not yet complete and don'tPhil Pennock
2010-06-05ClamAV INSTREAM scanning by default, unless built with WITH_OLD_CLAMAV_STREAM.Phil Pennock
2010-06-05Deal with anonymous SSL giving us no peer certificate.Phil Pennock