summaryrefslogtreecommitdiff
path: root/doc
AgeCommit message (Collapse)Author
2018-02-12Revert "Macros: convert to tree for speed of lookup"Jeremy Harris
This reverts commit 165acdd1ea3b7399b2279f94c881f8e366efaf71.
2018-02-10Fix base64d() buffer size (CVE-2018-6789)Heiko Schlittermann (HS12-RIPE)
Credits for discovering this bug: Meh Chang <meh@devco.re> (cherry picked from commit 062990cc1b2f9e5d82a413b53c8f0569075de700)
2018-02-10Macros: return macro-presence status from "exim -bP macro <name>"Jeremy Harris
2018-02-09Builtin macros for sha3-hash and ed25519-signing supportJeremy Harris
2018-02-09Macros: convert to tree for speed of lookupJeremy Harris
2018-02-08Fix conversation closedown with the Avast malware scanner. Bug 2113Jeremy Harris
2018-02-07Repair Heimdal GSSAPI authenticator init part 2Phil Pennock
Broken-by: d185889f4
2018-02-07Repair Heimdal GSSAPI authenticator initPhil Pennock
Broken-by: f2ed27cf5f
2018-02-07DKIM: fix buffer overflow in verifyJeremy Harris
Caused crash in free() by corrupting malloc metadata. Reported-by: University of Cambridge Broken-by: 80a47a2c96
2018-02-07Cutthrough: silently ignore ACL control when the message cannot be ↵Jeremy Harris
cutthrough-routed
2018-02-06DKIM: Ed25519 signatures (GnuTLS 3.6.0 and later)Jeremy Harris
2018-02-03Docs: Spell-check spec.xfptVladimir Panteleev
2018-02-03Docs: Fix formatting of $dkim_verify_status variable descriptionVladimir Panteleev
2018-02-03Docs: Fix syntax in ${filter} exampleVladimir Panteleev
2018-02-02String expansions: support sha3 under OpenSSL (1.1.1+)Jeremy Harris
2018-01-31Doc update: RFC 8314 submissions servicePhil Pennock
Using TLS-on-connect is no longer a legacy mode for bad clients, but instead standards-track-RFC-compliant best current practice. Plus ça change, plus c'est la même chose.
2018-01-28Routing: dnslookup and manualroute routers: ipv4_only, ipv4_prefer options. ↵Jeremy Harris
Bug 2149
2018-01-27GnuTLS: fix to ignore timeout on unrelated callout connection. Bug 2174Jeremy Harris
2018-01-26Cutthrough: fix for port-number defined by router. Bug 2229Jeremy Harris
2018-01-25Cutthrough: fix multi-message initiating connections. Bug 2230Jeremy Harris
2018-01-20Docs: Update DKIM section with RFC 8301 requirementsJeremy Harris
2018-01-17DB: show the Berkeley DB runtime library version, for "-d -bV"Jeremy Harris
2018-01-16Logging: Receive duration on <= lines. Bug 353Jeremy Harris
2018-01-13Lookups: fix mysql lookup returns for no-data "queries",Jeremy Harris
when the number of rows affected is returned. Bug 2223 Broken-by: acec9514b1 Also enhance the testsuite mysql testcase to be standalone and move to standard-run set and add a specific testcase for this bug. Testcase working on Fedora at least - we'll see what happens on other platforms where executable locaation may vary.
2018-01-13Docs: SPF no longer ExperimentalJeremy Harris
2018-01-07DKIM: permit dkim_private_key to override dkim_strict on signing. Bug 2220Jeremy Harris
2018-01-06Logging: disable the verbose DKIM verification line by default; add a tag to ↵Jeremy Harris
<= lines. New log_selector controls "dkim" and "dkim_verbose".
2018-01-05SPF: promote from Experimental to mainline statusJeremy Harris
2018-01-05Docs: remove extraneous options from variables indexJeremy Harris
2018-01-03tidyingJeremy Harris
2018-01-01Docs: remove mention of the ClamAV "STREAM" methodJeremy Harris
2018-01-01Content scan: Remove support for the 7-year deprecated ClamAV "STREAM" methodJeremy Harris
2018-01-01Content scan: Disable "aveserver", "kavdaemon" and "mksd" in the template ↵Jeremy Harris
makefile. Bugs 1143, 1594
2018-01-01Feature macros, show-supported and build-time selection for malware interfacesJeremy Harris
2017-12-30MIME ACL: fix SMTP response for non-accept result of the ACL. Bug 2214.Jeremy Harris
As far as I can see this was broken back in 2013, f4c1088 for 4.82
2017-12-29Fix issue with continued-connections when the DNS shifts unreliablyJeremy Harris
2017-12-29Fix crash associated with dnsdb lookup done from DKIM ACL. Bug 2215Jeremy Harris
Broken-by: cc55f4208e
2017-12-28DKIM: tighter checking while parsing signature headers. Bug 2217Jeremy Harris
2017-12-24Lookups: fix pgsql multiple-row, single-column returnJeremy Harris
Report & fix from James <list@xdrv.co.uk>; additional tidying and testcase by JGH Broken-by: acec9514b1
2017-12-20ACL: Disallow '/' characters in queue names specified for "queue="Jeremy Harris
2017-12-19Merge branch '4.next'Jeremy Harris
2017-12-19Docs: clean for next releaseJeremy Harris
2017-12-19DANE: support under GnuTLS. Bug 1523Jeremy Harris
GnuTLS version 3.0.0 onwards; still Experimental
2017-12-18Testsuite: move CRL testcases away from using SHA1-signed certsJeremy Harris
2017-12-12CHUNKING: flush input stream after message-fatal error detection. Bug 2201exim-4_90_RC4exim-4_90Jeremy Harris
2017-12-08openssl guidance: install shared libraries tooPhil Pennock
2017-12-03Docs: amend warning on on lack of multiple-OCSP-proof supportJeremy Harris
2017-12-03GnuTLS: multiple server certs, OCSP stapling. Bug 2092Jeremy Harris
2017-12-03Docs: clarify smtp transport tls_verify_certificates optionJeremy Harris
2017-12-03Docs: add notes on lack of multiple-OCSP-proof supportJeremy Harris
This would be wanted for server OCSP stapling in a dual RSA/ECDSA certificate installation
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-02 17:32:27 +0000