Age | Commit message (Collapse) | Author | |
---|---|---|---|
2012-06-04 | Add $tls_in_* variables; note the old names as deprecated. | Jeremy Harris | |
2012-06-04 | Add hosts_verify_avoid_tls option to smtp transport. | Jeremy Harris | |
2012-06-04 | Fix post-rebase merge issues. | Jeremy Harris | |
2012-06-04 | Split out OpenSSL and GnuTLS versions of tests. | Jeremy Harris | |
2012-06-04 | Change use of $tls_cipher in client context to $tls_out_cipher. | Jeremy Harris | |
2012-06-04 | Fix bug verifying certs on dual-tls. | Jeremy Harris | |
2012-06-04 | Support transport hosts_avoid_tls for cutthrough. | Jeremy Harris | |
2012-06-04 | Add testcase for callout fallback from ESMTP to SMTP. | Jeremy Harris | |
2012-06-04 | Better debug. | Jeremy Harris | |
2012-06-04 | Fix testsuite cases affected by 8bitmime-as-default. | Jeremy Harris | |
2012-06-04 | Fix tls variables order, and testsuite case 5401 (cutthrough) for changes ↵ | Jeremy Harris | |
that went in with dual-tls. | |||
2012-06-04 | Deal explicitly with attempt to callout via null transport; fixes crash. | Jeremy Harris | |
2012-06-04 | Fixup testsuite cases affected by dual-tls - mainly EHLO on callouts. | Jeremy Harris | |
2012-06-04 | Dual-tls - split management of TLS into in- and out-bound connection-handling. | Jeremy Harris | |
Enables concurrent use from a single process, and thereby use for cutthrough delivery. As a side-effect EHLO and TLS use for verify callouts introduced. This was a manual import from elsewhere and is known to fail the test-suite. | |||
2012-06-04 | Testsuite cases for basic cutthrough_delivery. | Jeremy Harris | |
Also fixed bug where a predata acl was required for cutthrough. | |||
2012-06-04 | Basic cutthrough delivery. | Jeremy Harris | |
2012-06-04 | Test for proper parsing of optional MAIL FROM args. | Todd Lyons | |
2012-06-04 | Refactor optional MAIL FROM args | Todd Lyons | |
2012-06-04 | Test system - parse ipv6 addresses with no :: in them. | Todd Lyons | |
2012-06-04 | Remove extraneous #ifndef guards from config.h.default | Jeremy Harris | |
2012-06-03 | Implement -G => "control=suppress_local_fixups" | Phil Pennock | |
fixes bug 1117 | |||
2012-06-03 | Cmdline -L option; also -Ac -Am -X<logfile> | Phil Pennock | |
These are for Sendmail compatibility. bug 1117 | |||
2012-06-03 | ChangeLog: note cyrus plugin use situation | Phil Pennock | |
2012-06-03 | Cyrus SASL: set host;port properties on auth driver | Phil Pennock | |
2012-06-03 | copyright year | Phil Pennock | |
2012-06-03 | DSCP: inbound via control = dscp/<value> | Phil Pennock | |
2012-06-02 | Docs: pipes in redirect, need for quote caution | Phil Pennock | |
2012-06-02 | Christof Meerwald (for patches in bug 1095) | Phil Pennock | |
2012-06-02 | DSCP: take numeric values too. | Phil Pennock | |
Also fix doc claim that value is unexpanded. Also strip affix whitespace before numeric conversion and fixed string comparison. | |||
2012-06-02 | FreeBSD is ELF and has been for a long time | Phil Pennock | |
2012-06-02 | DSCP: document; hex print; -bI:dscp | Phil Pennock | |
2012-06-01 | DSCP support, tentative | Phil Pennock | |
2012-06-01 | DNSSEC babystep: dns_use_dnssec & $sender_host_dnssec | Phil Pennock | |
2012-06-01 | improve PH entry, per Bill Hacker's suggestion | Phil Pennock | |
2012-06-01 | ACKNOWLEDGEMENTS update, covering a few years | Phil Pennock | |
2012-06-01 | tls_dh_min_bits smtp transport option | Phil Pennock | |
Could not find an API for use with OpenSSL, so GnuTLS only | |||
2012-06-01 | Make -n combine with -bP to inhibit names | Phil Pennock | |
2012-06-01 | Add -bI:help and -bI:sieve | Phil Pennock | |
2012-05-31 | Doc: drop .new/.wen, update previousversion. | Phil Pennock | |
Also, drop fix one place which claimed TLS SNI support was OpenSSL only. | |||
2012-05-30 | Revert "Lower EXIM_CLIENT_DH_MIN_BITS 1024 -> 512."exim-4_80 | Phil Pennock | |
This reverts commit 83f4c7515f3eb06dc070e78edd2694c1d088e5fd. This was not a new check! The call to gnutls_dh_set_prime_bits() was made with DH_BITS in Exim 4.77, so the only difference is that now an administrator can choose at compile time to change the lower bound. So keeping this at 1024 is not a regression and if we can't talk to them now, we couldn't before, and we shouldn't lower security by default. The reverted commit was only acceptable IF it was still better than what we had in Exim 4.77. | |||
2012-05-30 | Lower EXIM_CLIENT_DH_MIN_BITS 1024 -> 512. | Phil Pennock | |
Wolfgang Breyha saw a real-world site using 768 bits. | |||
2012-05-28 | Merge openssl_disable_ssl2 branchexim-4_80_RC7 | Phil Pennock | |
2012-05-27 | typo fix: "overriden" -> "overridden" from Andreas Metzler | Phil Pennock | |
2012-05-27 | release: don't try to sign .tar.lz files | Phil Pennock | |
2012-05-27 | Test: update for new tls_dhparam (suite used on Scientific Linux 6 test host). | Jeremy Harris | |
2012-05-27 | Doc: fix glitchexim-4_80_RC6 | Phil Pennock | |
2012-05-27 | Test: update for new tls_dhparam | Phil Pennock | |
2012-05-27 | Doc: SECTgnutlsparam referencing tls_dhparam | Phil Pennock | |
2012-05-27 | For DH, use standard primes from RFCs | Phil Pennock | |
2012-05-27 | ">" -> ">=" for EXIM_CLIENT_DH_MIN_BITS+10 | Phil Pennock | |