summaryrefslogtreecommitdiff
path: root/doc
AgeCommit message (Collapse)Author
2018-04-08Added util/renew-opendmarc-tlds.sh script to renew PSLPhil Pennock
2018-04-08OpenSSL: Revert the disabling of the session-cache. Bug 2255Jeremy Harris
Session cacheing is never useful, as we use a new context for every TLS startup. However, removing the support triggers odd behaviour from Outlook Express (only when there is an IMAP server on the same machine as Exim): an initial connect from the OE client fails, the immediate retry works.
2018-04-06Logging: fix DKIM precis received log line element.Jeremy Harris
Broken-by: 2c47372fad
2018-04-02Avast: implement pass_unscanned optionHeiko Schlittermann (HS12-RIPE)
2018-04-02Avast: improve compliance with avast-protocol(5)Heiko Schlittermann (HS12-RIPE)
Treat scanner errors as malware. Defer on scanner tmpfail only.
2018-03-31Docs: tidy the ChangeLog fileJeremy Harris
2018-03-28Implement dane_require_tls_ciphers (theoretically)Phil Pennock
It compiles with OpenSSL, on Darwin (if restore Darwin OS). It doesn't crash immediately, but more testing is needed from a place where port 25 is not just blocked.
2018-03-28Document new dane_require_tls_ciphersPhil Pennock
Haven't written the code yet, but writing the docs first helped me affirm that this makes sense and feels clean. Code in next commit.
2018-03-26Cutthrough: for an onward finaldot timeout, generate an initator 450 in ↵Jeremy Harris
defer=pass mode
2018-03-26ARC: cutthrough delivery may not be used with ARC signingJeremy Harris
2018-03-26Cutthrough: enforce non-use in combination with DKIM signing or transport filterJeremy Harris
Broken-by: 02b41d7106
2018-03-26Add ARC signing caveatsPhil Pennock
2018-03-26SPF: remove the deprecated "err_temp" and "err_perm" result namesJeremy Harris
2018-03-26DKIM: document proper Ed25519 key-generation methods; remove helper programJeremy Harris
2018-03-26Expand directory opetion for queuefile transportJeremy Harris
2018-03-25Add non-mtp source info to ${authres }Jeremy Harris
2018-03-25DKIM: document generation of RSA keysJeremy Harris
2018-03-25DKIM: document Ed25519 private key generation under OpenSSL (1.1.1+)Jeremy Harris
2018-03-25DKIM: move ed25519_privkey_pem_to_pubkey_raw_b64 to src/util/ and add usage ↵Jeremy Harris
notes to docs
2018-03-25Docs: more on ${authresults }Jeremy Harris
2018-03-24ARC: give more detail with "bad signing-spec" messageJeremy Harris
2018-03-24Mark variables that are unused before release of store in the queue-list loopJeremy Harris
2018-03-23Address jgh notes re OpenSSLPhil Pennock
* `/usr/local` is fair, on Linux, but I deliberately picked something specific to OpenSSL to make the context clear and limit bad interactions with other locally-installed software. * `RPATH` and `RUNPATH` are not the same and are deeply twisty in their interactions. <https://blog.qt.io/blog/2011/10/28/rpath-and-runpath/> is a decent summary.
2018-03-23Docs: typoJeremy Harris
2018-03-23Fix spool_wireformat final-dot on LMTP transport. Bug 2258Jeremy Harris
Broken-by: 328c5688db
2018-03-23exiqsumm fix: Check @ARGV exists before testing itGraeme Fowler
2018-03-22Set a TERM handler to terminate properly if running as PID 1Heiko Schlittermann (HS12-RIPE)
2018-03-22SPF: additional variable $spf_result_guessed; tweak authresults string ↵Jeremy Harris
indicating guess
2018-03-21ARC: on the smtp transport option take empty or forced-fail to disable signingJeremy Harris
2018-03-20Not all the world is binutils ldPhil Pennock
2018-03-20Fix pipe transport to not use a socket-only syscall. Bug 2257Jeremy Harris
Broken-by: 42055a3385
2018-03-18DMARC: if ACL condition not called, do not add anything to authres stringJeremy Harris
Previously "skipped" was added; that is no only done for an actual call which could not be completed
2018-03-18DMARC: add results to generic authres string; remove $dmarc_ar_headerJeremy Harris
2018-03-17DKIM: Ed25519 signatures under OpenSSL (1.1.1 or later)Jeremy Harris
OpenSSL 1.1.1 is not released yet, but operation has been checked against the current source
2018-03-16openssl: use += for LDFLAGS, drop env PC docsPhil Pennock
Using `LDFLAGS=` instead of `LDFLAGS+=` will stomp over an earlier setting of LDFLAGS, and the DMARC support is now further up in `src/EDITME`, thus likely to get stomped upon. Rather than continue to document using `PKG_CONFIG_PATH` via env, the in-Local/Makefile support has been around for a little while now, so go ahead and make that the only way we suggest here. Add a mention of _why_ we use both `USE_OPENSSL_PC` and `LDFLAGS`.
2018-03-16Fix heavy-pipeline SMTP command input corruption. Bug 2250Jeremy Harris
2018-03-15Docs: copyright yearexim-4_91_RC1Jeremy Harris
2018-03-15Docs: changemar markupJeremy Harris
2018-03-15Mark variables that are unused before release of store in the receive ↵Jeremy Harris
message loop
2018-03-15NewStuff & doc addition for redis cluster changesGraeme Fowler
2018-03-13ARC: add $arc_state, $arc_state_reason and add reason to authres stringJeremy Harris
2018-03-13Mark variables unused before release of store in the queue-runner loopJeremy Harris
2018-03-13Mark variables unused before release of store in the daemon loopJeremy Harris
2018-03-12Update to protocol used by avast 2.2.0 (Multiline responses) (Bug 2112)Heiko Schlittermann (HS12-RIPE)
Based on a patch by Victor Ustugov.
2018-03-11Fix ldap lookups for zero-length attribute value. Bug 2251Jeremy Harris
Broken-by: acec9514b1
2018-03-11PRDR: append overall DATA acceptance message to delivery log line "C=" item. ↵Simon Arlott
Bug 2253 It can have useful tracking info from the destination, eg. their message Id.
2018-03-07DANE: add dane:fail eventJeremy Harris
2018-03-06Docs: expand DKIM verification notesJeremy Harris
2018-03-06Changelog entry for redis cluster MOVED handlingGraeme Fowler
2018-03-03ARC initial implementation. Experimental. Bug 2162Jeremy Harris
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-18 22:37:07 +0000