| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: eximon | Distribution: openSUSE 12.1 |
| Version: 4.75 | Vendor: openSUSE |
| Release: 5.1.3 | Build date: Sat Oct 29 16:54:06 2011 |
| Group: Productivity/Networking/Email/Servers | Build host: build31 |
| Size: 97714 | Source RPM: exim-4.75-5.1.3.src.rpm |
| Packager: http://bugs.opensuse.org | |
| Url: http://www.exim.org/ | |
| Summary: Eximon, an graphical frontend to administer Exim's mail queue | |
This allows administrators to view the exim agent's mail queue and
logs, and perform a variety of actions on queued messages, such as
freezing, bouncing and thawing messages, and even editing body and
header of mails.
Authors:
--------
Philip Hazel <ph10@cus.cam.ac.uk>
GPLv2+
* Mon May 09 2011 dmueller@suse.de
- check format strings
* Sat May 07 2011 lars@samba.org
- The new ldap_require_cert option would segfault if used; use upstream patch
to address the ldap_set_option() issue; (beo#230); (beo#1108).
* Fri May 06 2011 lars@samba.org
- Cast third arg to void * when calling ldap_set_option().
* Fri May 06 2011 lars@samba.org
- update to 4.75
- Workround for PCRE version dependency in version reporting
Bugzilla 1073
- Permit LOOKUP_foo enabling on the make command-line.
Also via indented variable definition in the Makefile.
- Restore caching of spamd results with expanded spamd_address.
- Build issue: lookups-Makefile now exports LC_ALL=C
Improves build reliability.
- Fix wide character breakage in the rfc2047 coding; Fixes bug 1064.
- Allow underscore in dnslist lookups; Fixes bug 1026.
- Bugzilla 230: Support TLS-enabled LDAP (in addition to ldaps).
- Fixed exiqgrep to cope with mailq missing size issue
Fixes bug 943.
- Bugzilla 1083: when lookup expansion defers, escape the output which
is logged, to avoid truncation.
- Bugzilla 1042: implement freeze_signal on pipe transports.
- Bugzilla 1061: restrict error messages sent over SMTP to not reveal
SQL string expansion failure details.
- Bugzilla 486: implement %M datestamping in log filenames.
- New lookups functionality failed to compile on old gcc which rejects
extern declarations in function scope.
- Use sig_atomic_t for flags set from signal handlers.
Check getgroups() return and improve debugging.
Fixed developed for diagnosis in bug 927 (which turned out to be
a kernel bug).
- Bugzilla 1055: Update $message_linecount for maildir_tag.
- Bugzilla 1056: Improved spamd server selection.
- Bugzilla 1086: Deal with maildir quota file races.
- Bugzilla 1019: DKIM multiple signature generation fix.
- Fix to spam.c to accommodate older gcc versions which dislike
variable declaration deep within a block.
- Make DISABLE_DKIM build knob functional.
- Bugzilla 968: child_open_uid: restore default SIGPIPE handler
* Fri May 06 2011 lars@samba.org
- Don't pass DKIM compound log line as format string; (beo#1106); (bnc#692227).
* Thu Mar 10 2011 poeml@cmdline.net
- postgresql-enabled build when build_with_pgsql is defined (which is done in a
linked package named server:mail/exim-postgresql)
* Sat Feb 05 2011 lars@samba.org
- Workround for PCRE version dependancy in version reporting; (beo#1073).
* Fri Feb 04 2011 lars@samba.org
- update to 4.74
- Failure to get a lock on a hints database can have serious
consequences so log it to the panic log.
- Log LMTP confirmation messages in the same way as SMTP,
controlled using the smtp_confirmation log selector.
- Include the error message when we fail to unlink a spool file.
- Bugzilla 139: Support dynamically loaded lookups as modules.
- Bugzilla 139: Documentation and portability issues.
Avoid GNU Makefile-isms, let Exim continue to build on BSD.
Handle per-OS dynamic-module compilation flags.
- Let /dev/null have normal permissions.
The 4.73 fixes were a little too stringent and complained about the
permissions on /dev/null. Exempt it from some checks.
- Report version information for many libraries, including
Exim version information for dynamically loaded libraries. Created
version.h, now support a version extension string for distributors
who patch heavily. Dynamic module ABI change.
- CVE-2011-0017 - check return value of setuid/setgid. This is a
privilege escalation vulnerability whereby the Exim run-time user
can cause root to append content of the attacker's choosing to
arbitrary files.
- Bugzilla 1041: merged DCC maintainer's fixes for return code.
- Bugzilla 1071: fix delivery logging with untrusted macros.
If dropping privileges for untrusted macros, we disabled normal logging
on the basis that it would fail; for the Exim run-time user, this is not
the case, and it resulted in successful deliveries going unlogged.
- update to 4.73
- Date: & Message-Id: revert to normally being appended to a message,
only prepend for the Resent-* case. Fixes regression introduced in
Exim 4.70 by NM/22 for Bugzilla 607.
- Include check_rfc2047_length in configure.default because we're seeing
increasing numbers of administrators be bitten by this.
- Added DISABLE_DKIM and comment to src/EDITME
- Bugzilla 994: added openssl_options main configuration option.
- Bugzilla 995: provide better SSL diagnostics on failed reads.
- Bugzilla 834: provide a permit_coredump option for pipe transports.
- Adjust NTLM authentication to handle SASL Initial Response.
- If TLS negotiated an anonymous cipher, we could end up with SSL but
without a peer certificate, leading to a segfault because of an
assumption that peers always have certificates. Be a little more
paranoid. Problem reported by Martin Tscholak.
- Bugzilla 926: switch ClamAV to use the new zINSTREAM API for content
filtering; old API available if built with WITH_OLD_CLAMAV_STREAM=yes
NB: ClamAV planning to remove STREAM in "middle of 2010".
CL also introduces -bmalware, various -d+acl logging additions and
more caution in buffer sizes.
- Implemented reverse_ip expansion operator.
- Bugzilla 937: provide a "debug" ACL control.
- Bugzilla 922: Documentation dusting, patch provided by John Horne.
- Bugzilla 973: Implement --version.
- Bugzilla 752: Refuse to build/run if Exim user is root/0.
- Build without WITH_CONTENT_SCAN. Path from Andreas Metzler.
- Bugzilla 816: support multiple condition rules on Routers.
- Add bool_lax{} expansion operator and use that for combining multiple
condition rules, instead of bool{}. Make both bool{} and bool_lax{}
ignore trailing whitespace.
- prevent non-panic DKIM error from being sent to paniclog
- added tcp_wrappers_daemon_name to allow host entries other than
"exim" to be used
- Fix malware regression for cmdline scanner introduced in PP/08.
Notification from Dr Andrew Aitchison.
- Change ClamAV response parsing to be more robust and to handle ClamAV's
ExtendedDetectionInfo response format.
Notification from John Horne.
- OpenSSL 1.0.0a compatibility const-ness change, should be backwards
compatible.
- Added a CONTRIBUTING file. Fixed the documentation build to use http:
XSL and documented dependency on system catalogs, with examples of how
it normally works.
- Added Valgrind hooks in store.c to help it capture out-of-bounds store
access.
- Bugzilla 1044: CVE-2010-4345 - partial fix: restrict default behaviour
of CONFIGURE_OWNER and CONFIGURE_GROUP options to no longer allow a
configuration file which is writeable by the Exim user or group.
- Bugzilla 1044: CVE-2010-4345 - part two: extend checks for writeability
of configuration files to cover files specified with the -C option if
they are going to be used with root privileges, not just the default
configuration file.
- Bugzilla 1044: CVE-2010-4345 - part three: remove ALT_CONFIG_ROOT_ONLY
option (effectively making it always true).
- Add TRUSTED_CONFIG_PREFIX_FILE option to allow alternative configuration
files to be used while preserving root privileges.
- Set FD_CLOEXEC on SMTP sockets after forking in the daemon, to ensure
that rogue child processes cannot use them.
- Bugzilla 1047: change the default for system_filter_user to be the Exim
run-time user, instead of root.
- Add WHITELIST_D_MACROS option to let some macros be overriden by the
Exim run-time user without dropping privileges.
- Remove use of va_copy() which breaks pre-C99 systems. Duplicate the
result string, instead of calling string_vformat() twice with the same
arguments.
- Allow TRUSTED_CONFIG_PREFIX_FILE only for Exim or CONFIGURE_OWNER, not
for other users. Others should always drop root privileges if they use
- C on the command line, even for a whitelisted configure file.
- Turn TRUSTED_CONFIG_PREFIX_FILE into TRUSTED_CONFIG_FILE. No prefixes.
- Fixed bug #1002 - Message loss when using multiple deliveries
* Fri Feb 04 2011 lars@samba.org
- Check return values of setgid/setuid; CVE-2011-0017; (bnc#668599).
* Fri Dec 10 2010 lars@samba.org
- Fix memory corruption in string_format code for pre-11.3 systems;
CVE-2010-4344; (beo#787); (bnc#658731).
- Fix remote root vulnerability; CVE-2010-4345; (bnc#658731).
* Wed Jul 14 2010 dmueller@suse.de
- fix mysql provides to be versioned again
* Tue Jun 08 2010 poeml@cmdline.net
- update to 4.72
- installed exipick 20100104.1, adding $max_received_linelength, $data_path,
and $header_path variables; fixed documentation bugs and typos
- installed exipick 20100222.0, added --input-dir and --finput to allow
exipick to access non-standard spools, including the "frozen" queue
(Finput)
- Bugzilla 965: Support mysql stored procedures. Patch from Alain Williams
- Bugzilla 961: Spacing fix (syntax error) on Makefile directives for NetBSD
- Bugzilla 955: Documentation fix for max_rcpts. Patch from Andreas Metzler
- Bugzilla 954: Fix for unknown responses from Dovecot authenticator. Patch
from Kirill Miazine
- Bugzilla 671: Added umask to procmail example.
- installed exipick 20100323.0, fixing doc bug
- Bugzilla 988: CVE-2010-2023 - prevent hardlink attack on sticky mail
directory. Notification and patch from Dan Rosenberg.
- PDKIM: Upgrade PolarSSL files to upstream version 0.12.1.
- Improve log output when DKIM signing operation fails.
- Treat the transport option dkim_domain as a colon separated list, not as a
single string, and sign the message with each element, omitting multiple
occurences of the same signer.
- Null terminate DKIM strings, Null initialise DKIM variable Bugzilla 985,
986. Patch by Simon Arlott
- Bugzilla 967. dnsdb DNS TXT record bug fix (DKIM-related) Patch by Simon
Arlott
- Bugzilla 989: CVE-2010-2024 - work round race condition on MBX locking.
Notification from Dan Rosenberg.
* Wed May 26 2010 poeml@cmdline.net
- fix build of exim-mysql package by correcting path in postinstall script;
patch kindly provided by Christian Schweingruber
* Tue Nov 24 2009 poeml@cmdline.net
- update to 4.71
Bugfixes over 4.70:
* Bugzilla 912: Fix DKIM segfault on empty headers/body
* Bugzilla 913: Documentation fix for gnutls_* options.
* Bugzilla 722: Documentation for randint. Better randomness defaults.
* Bugzilla 847: Enable DNSDB lookup by default.
* Bugzilla 915: Flag broken perl installation during build.
* Sat Nov 14 2009 poeml@cmdline.net
- update to 4.70
This release is a combination feature and bug fix release.
The major new features are:-
* Native DKIM support without an external library.
* Experimental DCC support via dccifd (contributed by Wolfgang Breyha).
Other changes:-
* PCRE is no longer included with the Exim distribution. You will
need a separate PCRE library (and matching headers) to compile
Exim. You will need to change your Local/Makefile to support
this. Most modern systems have a packaged PCRE library,
alternatively PCRE can be found at http://www.pcre.org/
* Experimental Yahoo! Domainkeys support dropped in favor of
native DKIM support.
* The documentation has been updated and regenerated.
As usual, all changes are in the doc/ChangeLog file:
http://vcs.exim.org/viewvc/exim/exim-doc/doc-txt/ChangeLog?view=markup&pathrev=exim_4_70
* Tue Jun 09 2009 poeml@suse.de
- silence some rpmlint warnings, by removing executable permissions
from utilities packaged under documentation.
- in the exim-mysql package, remove the versioned Provides, because
rpmlint doesn't like it at all.
/usr/bin/eximon /usr/bin/eximon.bin
Generated by rpm2html 1.8.1
Fabrice Bellet, Mon May 13 09:58:30 2013