summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2017-06-03Fix crash in transport, on second smtp-connect fail for a list of target hostsJeremy Harris
Reported as the sequence: 1MX: 554 on connect (banner) 2MX: TCP conn timeout
2017-05-30Malware: make "sock" cmdline default usable. Bug 2111Jeremy Harris
2017-05-25typoJeremy Harris
2017-05-21TLS: do not use DH_bits for LibreSSL; it is not supported (as of LibreSSL 2.3.2)Jeremy Harris
2017-05-21Debug: more info during server-side authenticationJeremy Harris
2017-05-21OpenSSL: add sender_host_address info to certificate verify error log ↵Jeremy Harris
messages when in verify callout
2017-05-20Use DH_bits for OpenSSL 1.1.0Phil Pennock
Fixes bug 2095
2017-05-19TLS: PIPELINING under OpenSSLJeremy Harris
2017-05-17TLS: do decent PIPELINING under TLS, at least with GnuTLSJeremy Harris
I've not found an equivalent in OpenSSL of gnutls_record_cork() nor gnutls_record_check_pending() yet.
2017-05-14Revert "DANE: do not trust a non-dnssec NXDOMAIN return for the TLSA lookup"Jeremy Harris
This reverts commit 5d6bdf01a921a88030e9baec7ba5f238da90e979.
2017-05-09Add option commandline_checks_require_adminPhil Pennock
May help with scenarios already so broken that bug report 2118 is actually an issue (Wordpress vuln).
2017-05-07DANE: do not trust a non-dnssec NXDOMAIN return for the TLSA lookupJeremy Harris
2017-05-07DANE: avoid info leak by checking TLSA dnssec before connecting to MXJeremy Harris
2017-05-07tidyingJeremy Harris
2017-05-06Enable use of sendfile on FreeBSDJeremy Harris
2017-05-06Enable use of sendfile on FreeBSDJeremy Harris
2017-05-06Teach SMTP input sync check ("input sent too soon") about SMTP input bufferingJeremy Harris
2017-05-06Docs: add note on Received-By: header creation under cutthroughJeremy Harris
2017-05-04CHUNKING / wire-format spool: use block-copies for receiptionJeremy Harris
2017-05-01tidying: coverityJeremy Harris
2017-04-30Fix continue_more on TLS connection. Bug 2104Jeremy Harris
2017-04-29tidying: coverity fixesJeremy Harris
2017-04-28Support wire-format spoolfilesJeremy Harris
2017-04-26Enable use of sendfileJeremy Harris
2017-04-26Tweak debug outputJeremy Harris
2017-04-23Fix DISABLE_DKIM biuldJeremy Harris
2017-04-23DKIM: avoid use of temporary file for signingJeremy Harris
2017-04-18CHUNKING: pipeline data right after the BDAT commandJeremy Harris
2017-04-17Reduce number of places knowing about filename-construction for mbox ↵Jeremy Harris
file-for-scanning
2017-04-16Rework detection of multiple ports on a given IP, for the daemon status lineJeremy Harris
Previously only spotted adjacent cases in the address list, now a full scan
2017-04-16tidyingJeremy Harris
2017-04-15Transport: fix smtp under combo of mua_wrapper and limited max_rcptJeremy Harris
2017-04-14Builtin macros: note config trigger line in debug outputJeremy Harris
2017-04-12$SOURCE_DATE_EPOCH support for build date stampPhil Pennock
If, and _only_ if, $SOURCE_DATE_EPOCH is found in environ during build, use it to set the timestamp embedded in the binary instead of using __DATE__ and __TIME__ cpp directives. This per <https://reproducible-builds.org/specs/source-date-epoch/> spec. It's sane and sensible, without removing date stamping which matters. The examples encourage packagers to use timestamps which do change when they backport patches, so that the date remains useful for distinguishing builds instead of claiming one date forever across multiple patchlevels. This change written so that the old behaviour and code is used if the environment variable is not found, to better continue to support ancient platforms with other variants of date(1). Built with and without an override, on macOS.
2017-04-11compiler quieteningJeremy Harris
2017-04-09typoJeremy Harris
2017-04-08tidyingJeremy Harris
2017-04-06tidyingJeremy Harris
2017-04-06Callout/hold: ensure TLS-proxy process is not waited for as a transport processJeremy Harris
2017-04-06Debug: show error for SMTP read responseJeremy Harris
2017-04-05Callout/hold: fix uninitialized variableJeremy Harris
2017-04-02Openssl: disable session-tickets by default and session-cache alwaysJeremy Harris
2017-04-02tidyingJeremy Harris
2017-03-22tidyingJeremy Harris
2017-03-21Callouts: a "hold" option for receipient-verify, which keeps the connection ↵Jeremy Harris
open both for further recipients and for eventual delivery.
2017-03-21Logging: make cipher info available for continued-TLS connection deliveriesJeremy Harris
2017-03-20exigrep: migrate to Getopt::Long, allow --no-pagerHeiko Schlittermann (HS12-RIPE)
This gives us long/more descriptive option names. Add an option to supress the use of a pager.
2017-03-19exigrep: use a pager if stdout is connected to a terminalHeiko Schlittermann (HS12-RIPE)
2017-03-19exigrep: add POD and -h, -mHeiko Schlittermann (HS12-RIPE)
2017-03-18Expansions: check numeric values of IPv4 address componentsJeremy Harris
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-30 22:32:31 +0000