| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2018-09-09 | Docs: more indexing of affix-related bits | Jeremy Harris | |
| 2018-09-07 | Fix broken doc links and http→https where possible | Phil Pennock | |
| I got a cookie-cutter email from folks noting the modssl.org doc links were broken and asking us to use their site instead, which was both helpful and a rather heavy page with advertising on it, so not something I want our docs to link to. Fixed the modssl link to point to the correct current Apache docs, since mod_ssl has not been a separate project for … a very long time. Audited every `http:` link in the Spec, replacing with https if available, updating URLs as needed, or trimming deadwood as appropriate. This did edit one license text, but in a way which I believe is reasonable and in the license holder's best interests. * Use comments with a datestamp for any remaining http: URLs, showing when they were last audited * Suggest migrating away from Berkeley DB. * Drop mention of a patched `pam_unix` module which is no longer available. * In revamping the CDB tools links, add my own tools. * Redo the intro text for the mod_ssl stuff (first person voice of PH). * Rescorla's book's online examples appear to be gone; drop mention of them and point to Ristić's more recent book too. * Point to wikipedia list of DNSxL services as an overview, in part because I dropped the reference to the defunct rfc-ignorant.org and there was no good candidate as an exemplar for domain-based lists. * Note that mksd is a candidate for removal from Exim since mks_vir is dead. * Drop LogReport/lire reference (dead/gone and can't find it). * Redo proxy protocol spec-linking text. * Replace FAQ A1701 with text saying "don't do that" (self-signed certs) and just telling people to use a CA instead, pointing strongly to Let's Encrypt. We did nobody any favors with that old text still being present today (it was entirely appropriate when written). | |||
| 2018-08-23 | DMARC: Fix forensic-report envelopes to permit non-null. Bug 1896 | Jeremy Harris | |
| 2018-08-22 | Use single-bit fields for global flags | Jeremy Harris | |
| 2018-08-22 | Logging: server pipelining offer but no uptake | Jeremy Harris | |
| 2018-08-21 | Builtin macros for log_selector values | Jeremy Harris | |
| 2018-08-21 | Logging: pipelining log_selector | Jeremy Harris | |
| 2018-08-17 | UTF8/locale: document constraints on current expansions. | Phil Pennock | |
| 2018-08-16 | Fix utf8clean not replacing incomplete final character | Phil Pennock | |
| Before, it was just dropped, but we document that it's replaced by ?. Tests updated, manual test-case for -be prompt is: ${utf8clean:${length_1:フィル}} | |||
| 2018-08-09 | Fix cutthrough delivery for more than one iteration of address redirection. ↵ | Jeremy Harris | |
| Bug 2296 | |||
| 2018-08-05 | Docs: add explicit warning on spoolfile formats | Jeremy Harris | |
| 2018-08-04 | 18N: fix docs for option name. Bug 2246 | Gedalya | |
| Incorrect at introduction in 71c158466d. | |||
| 2018-08-04 | REQUIRETLS: amplify docs discussion | Jeremy Harris | |
| 2018-07-31 | Make -n work with macros too | Phil Pennock | |
| Have `exim -n -bP macro FOO` just print the value of the macro `FOO`, without the `name=` prefix. This is the same handling as used for option values. If the invoker asks for multiple macros in one invocation, with `-n`, then that's their problem. | |||
| 2018-07-28 | I18N: add a utf8_downconvert option to the smtp transport. Bug 2248 | Jeremy Harris | |
| 2018-07-27 | Support REQUIRETLS | Jeremy Harris | |
| 2018-07-18 | I18N: reject SMTPUTF8 MAIL command when facility not advertised | Jeremy Harris | |
| 2018-07-18 | I18N: Fix protocol recorded for a multi-SMTPUTF8-message connection. Bug 2287 | Jeremy Harris | |
| 2018-07-18 | Docs: clarify rolled-up dkim status availability in data ACL | Jeremy Harris | |
| 2018-07-13 | doc: DANE: don't claim TA can be elided from chain | Phil Pennock | |
| While technically an implementation can choose to use a public TA from DNS or elsewhere to populate a missing TA from the chain, that creates interoperability issues and the OpenSSL integration code, at least, doesn't support that and after a bit of work drilling through layers of abstraction, I've not figured out what GnuTLS does and I've decided I don't care. So I'm heeding Viktor's advice and changing the docs to just say to publish the TA in the chain sent by the server. | |||
| 2018-07-10 | nit typo | Phil Pennock | |
| 2018-07-10 | Document problems with SHA-1 in certs with DANE-TA | Phil Pennock | |
| Very few domains are using SHA-1 in EE certs issued from a CA used in DANE-TA anchoring, but some are. Meanwhile apparently GnuTLS now defaults to disabling SHA-1 in chains. Which is eminently reasonable. I do not believe that Exim should re-enable use of SHA-1 here. Let it die. Document with warnings that folks using a private CA for certs to be publicly trusted via DANE-TA should follow decent operational issuance practices. Also update my Channel Binding docs for GSASL to warn that Channel Binding is Broken™. | |||
| 2018-06-27 | Restore rsmapd support | Jeremy Harris | |
| Following discussions on the exim-user mailinglist it seems that the conclusion that the interface was nonfunctioning was unwarranted. | |||
| 2018-06-26 | tidying | Jeremy Harris | |
| 2018-06-26 | Revert "Support Rspamd. Patch from Andrew Lewis, lightly editorialised" | Jeremy Harris | |
| This reverts commit c5f280e20a8e3ecd5f016b8fb34a436588915ed2. | |||
| 2018-06-25 | Expansions: A tls option on ${readsocket }. Bug 2282 | Jeremy Harris | |
| 2018-06-25 | ARC: Fix verification to do AS checks in reverse order | Jeremy Harris | |
| Broken from the original introduction (617d39327e) | |||
| 2018-06-24 | TLS: rework client-side use with an explicit context rather than a global | Jeremy Harris | |
| 2018-06-21 | DKIM: Fix signing for body lines starting with a pair of dots. Bug 2284 | Jeremy Harris | |
| Broken-by: 42055a3385 | |||
| 2018-06-21 | Docs: spelling | Kirill Miazine | |
| 2018-06-20 | OpenSSL: TLSv1.3 notes | Jeremy Harris | |
| 2018-06-14 | OpenSSL: enable use of TLS 1.3 (with OpenSSL 1.1.0 and later) | Jeremy Harris | |
| 2018-06-14 | Add client-ip info to non-pass iprev ${authres } lines | Jeremy Harris | |
| 2018-06-12 | Clarify the socket address family (UNIX) for server_socket (dovecot) | Heiko Schlittermann (HS12-RIPE) | |
| Wishlist item (#2280) is created for INET connections. See https://bugs.exim.org/show_bug.cgi?id=2280 | |||
| 2018-06-09 | DKIM: support timestamp and expiry tags in signing. Bug 2260 | Jeremy Harris | |
| 2018-06-07 | Follow CNAME chains only one step. Bug 2264 | Jeremy Harris | |
| 2018-06-07 | ARC: Fix signing for case when DKIM signing failed | Jeremy Harris | |
| 2018-06-06 | Change-log | Jeremy Harris | |
| 2018-05-24 | Use serial number 1 for self-generated selfsigned certificate | Jeremy Harris | |
| Broken-by: 23bb69826c | |||
| 2018-05-19 | Docs: add note on DKIM signing-limit security | Jeremy Harris | |
| 2018-05-16 | Callouts: record succeeding random local-part tests. Bug 177 | Jeremy Harris | |
| 2018-05-16 | Content scanning: Fix locking on message spool files. Bug 2275 | Jeremy Harris | |
| 2018-05-15 | Don't open spool data-files which are symlinks | Phil Pennock | |
| 2018-05-07 | tidying | Jeremy Harris | |
| 2018-05-05 | Cutthrough: fix race resulting in duplicate-delivery. Bug 2273 | Jeremy Harris | |
| 2018-05-01 | Expansions: new ${lheader:<name>}. Bug 2272 | Jeremy Harris | |
| 2018-04-28 | Docs: minor fixes | Jeremy Harris | |
| 2018-04-25 | ARC: add $arc_oldest_pass variable, for verify | Jeremy Harris | |
| 2018-04-25 | ARC: support $arc_domains also for verify fails | Jeremy Harris | |
| 2018-04-24 | ARC: add $arc_domains variable, for verify pass | Jeremy Harris | |
 |
index : user/henk/code/exim.git | |
| [no description] | git repository hosting |
| summaryrefslogtreecommitdiff |