summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2019-10-18Change the default of dnssec_request_domains to '*'Heiko Schlittermann (HS12-RIPE)
2019-10-17OpenSSL: full-chain OCSP stapling. Bug 1466Jeremy Harris
2019-10-17ARC: harden versus badly-formatted AMS lineJeremy Harris
2019-10-17exipick: use Pod::UsageHeiko Schlittermann (HS12-RIPE)
2019-10-17exipick: Add formatting tags for PODHeiko Schlittermann (HS12-RIPE)
2019-10-16exipick: support for named queuesHeiko Schlittermann (HS12-RIPE)
2019-10-15OpenSSL: SSLKEYLOGFILE supportJeremy Harris
2019-10-14environment groomingJeremy Harris
2019-10-13missing type on Solaris dummyJeremy Harris
2019-10-12Dummies for Solaris buildJeremy Harris
2019-10-12Dummies for Solaris buildJeremy Harris
2019-10-12Fix errorcheck in smtp transportJeremy Harris
2019-10-12Performance timing measurementsJeremy Harris
2019-10-06OpenSSL: explicit add for sha256 digest method no longer needed for recent ↵Jeremy Harris
library versions
2019-10-06GnuTLS: pkcs11-init no longer needed for recent library versionsJeremy Harris
2019-10-06GnuTLS: global-init call not needed for recent library versionsJeremy Harris
2019-10-06GnuTLS: lose DH-param setup, for recent library versions where no longer neededJeremy Harris
2019-10-04Events: Add smtp:ehlo eventJeremy Harris
2019-10-04PRDR: add implementation notes in sample configurationJeremy Harris
2019-10-02DSN: add References: header. Bug 2452Jeremy Harris
2019-10-01OpenSSL: clearer log message for TCP conn close at SSL_acceptJeremy Harris
2019-09-30tidyingJeremy Harris
2019-09-29Build: linux only needs libnsl for LOOKUP_NISJeremy Harris
2019-09-29OpenSSL: fix build on earlier library versionsJeremy Harris
2019-09-29OpenSSL: support OCSP stapling on multi-cert serversJeremy Harris
2019-09-29tidyingJeremy Harris
2019-09-29DKIM: fix errorcheck in signing, lilbgcrypt version. Bug 2450Jeremy Harris
2019-09-26GnuTLS: full-chain OCSP stapling. Bug 1466Jeremy Harris
2019-09-22DNS: do not skip initial two components of SRV & TLSA lookups before ↵Simon Arlott
checking name syntax. The introduction of DKIM added _ to the permitted chars, so those components will pass.
2019-09-22DMARC: promote the support from Experimental to mainlineJeremy Harris
2019-09-22Fix taint-checking on SolarisJeremy Harris
2019-09-21GnuTLS: fix build on older librariesJeremy Harris
2019-09-21GnuTLS: fix build on intermediate-age librariesJeremy Harris
Broken-by: e54893330b
2019-09-20GnuTLS: fix non-OCSP bulidJeremy Harris
Broken-by: 7613df821d
2019-09-20GnuTLS: Move to more-modern stapling APIJeremy Harris
2019-09-19Fix taint-checking on SolarisJeremy Harris
2019-09-19Build: Solaris workaroundsMartin Preen
2019-09-17Docs: Adjust on TLSA, dnssec_request_domainsHeiko Schlittermann (HS12-RIPE)
2019-09-16Consistent logging, always use DKIM instead of mixed DKIM/PDKIMHeiko Schlittermann (HS12-RIPE)
2019-09-10Refuse to open a msglog file with .. in the path.Jeremy Harris
Recent exploits have use this as a step for overwriting system files, and msglog file should always be under the spooldir, so add this as a defence-in-depth tactic
2019-09-10tidyingJeremy Harris
2019-09-08Fix unaligned access (more cleanly) in DNS regative-cachingJeremy Harris
2019-09-08Fix unaligned access in DNS negative-cachingJeremy Harris
2019-09-08string.c: do not interpret '\\' before '\0' (CVE-2019-15846)Heiko Schlittermann (HS12-RIPE)
Add documents about CVE-2019-15846 Add testcase for CVE-2019-15846 Update Changelog Add Announcements (cherry picked from commit 2600301ba6dbac5c9d640c87007a07ee6dcea1f4, 6693563381 and cdc7f9a966)
2019-09-05Support TTL from SOA for NXDOMAIN & NODATA cache entries for dnslists. Bug 1395Jeremy Harris
2019-09-05Build: do not override the system "cc", on Linux and OpenBSDJeremy Harris
2019-09-05tidyingJeremy Harris
2019-09-04Fix taint-checking on FreeBSDJeremy Harris
2019-09-03tidyingJeremy Harris
2019-09-02Build: another go at Solaris workaroundsJeremy Harris
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-12 09:57:17 +0000