summaryrefslogtreecommitdiff
path: root/doc
AgeCommit message (Collapse)Author
2017-01-19VRFY: advertise in EHLO response, if there is an ACL definedJeremy Harris
2017-01-19VRFY: add docs note on results, and additional test casesJeremy Harris
2017-01-19Docs: add note on round-robin DNS problems vs. authenticationJeremy Harris
2017-01-18Bug-fix no_require_dnssec parsing & spelling fixesJosh Soref
Patches from Josh Soref fixing spelling fixed two bugs: * Parsing `no_require_dnssec` configuration option * Setting `_HAVE_TRANSPORT_APPEND_MAILDIR` macro (for config parsing) [ PP pulled these two out into a separate commit to update the ChangeLog accordingly. ]
2017-01-18214 spelling fixesJosh Soref
2017-01-11Docs: add note on DKIM ACL triggersJeremy Harris
2017-01-03CHUNKING: fix non-pipelined synch checks. Bug 2004Jeremy Harris
2017-01-02PROXY: fix v2 protocol decode. Bugs 2003, 1747Jeremy Harris
2017-01-02wip: OpenSSL docs on custom installPhil Pennock
To fix before merge: ability to use `$ORIGIN` in linker line via Exim config file.
2017-01-01Docs: fix smtp transport TFO option indexingJeremy Harris
2016-12-31Merge remote-tracking branch 'github/pr/50'Phil Pennock
GitHub user @YmrDtnJu "Björn" provided a patch to fix that we called ldap_start_tls_s on ldapi:// connections. This is obviously a correct change, since above we've avoiding initializing the TLS state if using ldapi. Added documentation noting this behaviour.
2016-12-30Docs: Add .new/wen marker for relative includes (Bug 1971)Heiko Schlittermann (HS12-RIPE)
2016-12-29Docs: typoesJeremy Harris
2016-12-29Allow relative file names in .include lines (Closes 1971)Heiko Schlittermann (HS12-RIPE)
2016-12-29Doc: Minor fixesHeiko Schlittermann (HS12-RIPE)
2016-12-29Pipe transport: expand the path optionJeremy Harris
2016-12-27Docs: clarify headers availability in data-time ACLsJeremy Harris
2016-12-26I18N: support IDNA2008. Bug 1911Jeremy Harris
2016-12-25Docs: Clean for next releaseJeremy Harris
2016-12-22Doc: clarify CVE-2016-9963Heiko Schlittermann (HS12-RIPE)
2016-12-18Doc: short description of CVE-2016-9963exim-4_88Heiko Schlittermann (HS12-RIPE)
2016-12-18Fix DKIM information leakageJeremy Harris
2016-12-16Docs: typoJeremy Harris
2016-12-13Use long names for the _DRIVER_*, and _OPT_* macrosHeiko Schlittermann (HS12-RIPE)
2016-12-09Doc: fix minor typosHeiko Schlittermann (HS12-RIPE)
2016-12-04OpenSSL: default to tls_eccurve = autoHeiko Schlittermann (HS12-RIPE)
For OpenSSL < 1.0.2: fallback to prime256v1, for newer libraries rely on auto-selection.
2016-11-29Doc: Add hint about spamd and half-closed connectionsHeiko Schlittermann (HS12-RIPE)
2016-11-28Doc: Minor corrections/additionsHeiko Schlittermann (HS12-RIPE)
2016-11-25Update ChangeLogJeremy Harris
2016-11-08Ensure socket is nonblocking before draining. Bug 1914Jeremy Harris
2016-11-04Add syslog_pid option.Heiko Schlittermann (HS12-RIPE)
This option suppresses the PID duplication to syslog. As syslog/systemd add the PID of the logging process automatically.
2016-11-02Fix OCSP proof verification for direct-signed proofs. Bug 1909Jeremy Harris
2016-10-23Update README.UPDATING; fix typos in ChangeLog/NewStuffPhil Pennock
2016-10-23Fix bug with aborted server TLS connection, under GnuTLSJeremy Harris
Longstanding, but exposed by 60d10ce
2016-10-22TCP Fast OpenJeremy Harris
2016-10-18Unbreak build: crypto hdrs not in system includesPhil Pennock
If using pkg-config to get the paths for various packages and the crypto library headers are not in the system headers, then the hash work broke the Exim build by requiring the CFLAGS manipulation for _all_ builds, not just the TLS libraries. Shows up on MacOS where there's a system OpenSSL but not system OpenSSL headers (because only SecureTransport is supported) and using brew-installed OpenSSL. I've also coded the fix for GnuTLS on the same basis, but that's untested. Fixes bug 1906
2016-10-15New: queuefile transport, under EXPERIMENTAL_QUEUEFILEAndrew Colin Kissa
2016-10-12Docs: add warning on SNI-dependent certfile expansion needing a good defaultJeremy Harris
2016-10-09Docs: add section on builtin macrosJeremy Harris
2016-10-08DH parameters update, new values & defaultexim-4_88_RC2Phil Pennock
* Add three new Exim-specific DH parameter constants; state provenance, but no way for others to verify; this is a signed commit, which is about as much as we can do for the truly paranoid: provide an audit trail. * Add the RFC 7919 DH primes + No TLS feature negotiation, per 7919, but the DH primes can be used if folks so choose * Fixed broken format string in util/gen_pkcs3.c * Tried to make gen_pkcs3.c support q values. + Turns out, q doesn't affect the PEM and that's not a mistake in my initialisation; I've checked with a cryptographer, we're losing some server-side optimizations but not any security properties for our scenario. Fixes: 1895
2016-10-08Fix callouts connection fallback from TLS to cleartext. Bug 1897Jeremy Harris
2016-10-05Docs: add another index entry for delay_warningJeremy Harris
2016-10-02Logging: connection_reject log selector should apply also to the connect aclJeremy Harris
2016-09-28Refactor driver feature-macro generation to be driven by existing tablesJeremy Harris
Would like to do lookup drivers too but unsure about dyn-linked variants
2016-09-28Default to filesystem space/inode checking enabledJeremy Harris
2016-09-25Add automatic macros for config-file options. Bug 1819Jeremy Harris
2016-09-25Docs: fix quotesJeremy Harris
2016-09-23Doc: add clarification for DKIM exampleexim-4_88_RC1Jeremy Harris
2016-09-22Defend against symlink attack by another process running as eximJeremy Harris
Reported-by: http://www.halfdog.net/Security/2016/DebianEximSpoolLocalRoot/
2016-09-22Routing: avoid doing the one_time replacement operation when a redirect ↵Jeremy Harris
leaves the address unchanged When done, in combination with a defer the retry would see the address as delivered, hence losing mail.
generated by cgit v1.2.3 (git 2.39.1) at 2024-10-20 03:49:11 +0000